diff --git a/backend/.mvn/jvm.config b/backend/.mvn/jvm.config
new file mode 100644
index 0000000..b55b5a7
--- /dev/null
+++ b/backend/.mvn/jvm.config
@@ -0,0 +1 @@
+-XX:+EnableDynamicAgentLoading
diff --git a/backend/checkstyle.xml b/backend/checkstyle.xml
new file mode 100644
index 0000000..2bfbd05
--- /dev/null
+++ b/backend/checkstyle.xml
@@ -0,0 +1,48 @@
+<?xml version="1.0"?>
+<!DOCTYPE module PUBLIC
+    "-//Checkstyle//DTD Checkstyle Configuration 1.3//EN"
+    "https://checkstyle.org/dtds/configuration_1_3.dtd">
+<!--
+  项目 checkstyle 规则（Spring Boot + Lombok 友好，不使用 sun_checks.xml 的过严规则）
+  规则原则：检查明显的代码问题，不干预 Lombok 注解生成类、不要求 final 参数、不限制行长。
+-->
+<module name="Checker">
+  <property name="charset" value="UTF-8"/>
+  <property name="severity" value="error"/>
+  <property name="fileExtensions" value="java"/>
+
+  <module name="TreeWalker">
+    <!-- 未使用的 import -->
+    <module name="UnusedImports"/>
+    <!-- 重复 import -->
+    <module name="RedundantImport"/>
+    <!-- 通配符 import（java.util.* 等）-->
+    <module name="AvoidStarImport"/>
+
+    <!-- 左大括号位置 -->
+    <module name="LeftCurly"/>
+    <!-- 空代码块（空 catch 需有注释）-->
+    <module name="EmptyBlock">
+      <property name="option" value="text"/>
+    </module>
+
+    <!-- switch 缺少 default -->
+    <module name="MissingSwitchDefault"/>
+
+    <!-- == 比较 String 字面量 -->
+    <module name="StringLiteralEquality"/>
+
+    <!-- 多余的分号 -->
+    <module name="EmptyStatement"/>
+
+    <!-- 修饰符顺序 (public static final ...) -->
+    <module name="ModifierOrder"/>
+
+    <!-- 不允许 System.out.println（生产代码用 logger）-->
+    <module name="Regexp">
+      <property name="format" value="System\.(out|err)\.print"/>
+      <property name="illegalPattern" value="true"/>
+      <property name="message" value="请使用 logger 而非 System.out/err.print"/>
+    </module>
+  </module>
+</module>
diff --git a/backend/pom.xml b/backend/pom.xml
new file mode 100644
index 0000000..38a77f4
--- /dev/null
+++ b/backend/pom.xml
@@ -0,0 +1,160 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <parent>
+        <groupId>org.springframework.boot</groupId>
+        <artifactId>spring-boot-starter-parent</artifactId>
+        <version>3.3.5</version>
+        <relativePath/>
+    </parent>
+
+    <groupId>com.example</groupId>
+    <artifactId>erp</artifactId>
+    <version>0.0.1-SNAPSHOT</version>
+    <name>erp</name>
+    <description>小羚羊 ERP 后端</description>
+    <packaging>jar</packaging>
+
+    <properties>
+        <java.version>21</java.version>
+        <lombok.version>1.18.36</lombok.version>
+        <mybatis-plus.version>3.5.7</mybatis-plus.version>
+        <jjwt.version>0.12.6</jjwt.version>
+        <hutool.version>5.8.28</hutool.version>
+        <flyway.version>10.17.0</flyway.version>
+    </properties>
+
+    <dependencies>
+        <!-- Web -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+        </dependency>
+
+        <!-- Security -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-security</artifactId>
+        </dependency>
+
+        <!-- Validation -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-validation</artifactId>
+        </dependency>
+
+        <!-- MyBatis-Plus (Spring Boot 3) -->
+        <dependency>
+            <groupId>com.baomidou</groupId>
+            <artifactId>mybatis-plus-spring-boot3-starter</artifactId>
+            <version>${mybatis-plus.version}</version>
+        </dependency>
+
+        <!-- MySQL -->
+        <dependency>
+            <groupId>com.mysql</groupId>
+            <artifactId>mysql-connector-j</artifactId>
+            <scope>runtime</scope>
+        </dependency>
+
+        <!-- Flyway -->
+        <dependency>
+            <groupId>org.flywaydb</groupId>
+            <artifactId>flyway-core</artifactId>
+            <version>${flyway.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.flywaydb</groupId>
+            <artifactId>flyway-mysql</artifactId>
+            <version>${flyway.version}</version>
+        </dependency>
+
+        <!-- JWT (JJWT 0.12.x) -->
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt-api</artifactId>
+            <version>${jjwt.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt-impl</artifactId>
+            <version>${jjwt.version}</version>
+            <scope>runtime</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.jsonwebtoken</groupId>
+            <artifactId>jjwt-jackson</artifactId>
+            <version>${jjwt.version}</version>
+            <scope>runtime</scope>
+        </dependency>
+
+        <!-- Lombok -->
+        <dependency>
+            <groupId>org.projectlombok</groupId>
+            <artifactId>lombok</artifactId>
+            <optional>true</optional>
+        </dependency>
+
+        <!-- Hutool -->
+        <dependency>
+            <groupId>cn.hutool</groupId>
+            <artifactId>hutool-all</artifactId>
+            <version>${hutool.version}</version>
+        </dependency>
+
+        <!-- Test -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-checkstyle-plugin</artifactId>
+                <configuration>
+                    <configLocation>checkstyle.xml</configLocation>
+                    <consoleOutput>true</consoleOutput>
+                    <failsOnError>true</failsOnError>
+                    <includeTestSourceDirectory>false</includeTestSourceDirectory>
+                </configuration>
+            </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-surefire-plugin</artifactId>
+                <configuration>
+                    <argLine>
+                        -XX:+EnableDynamicAgentLoading
+                        -Dnet.bytebuddy.experimental=true
+                        --add-opens java.base/java.lang=ALL-UNNAMED
+                        --add-opens java.base/java.lang.invoke=ALL-UNNAMED
+                        --add-opens java.base/java.util=ALL-UNNAMED
+                    </argLine>
+                </configuration>
+            </plugin>
+            <plugin>
+                <groupId>org.springframework.boot</groupId>
+                <artifactId>spring-boot-maven-plugin</artifactId>
+                <configuration>
+                    <excludes>
+                        <exclude>
+                            <groupId>org.projectlombok</groupId>
+                            <artifactId>lombok</artifactId>
+                        </exclude>
+                    </excludes>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+</project>
diff --git a/backend/src/main/java/com/example/erp/Application.java b/backend/src/main/java/com/example/erp/Application.java
new file mode 100644
index 0000000..32927cc
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/Application.java
@@ -0,0 +1,11 @@
+package com.example.erp;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+public class Application {
+    public static void main(String[] args) {
+        SpringApplication.run(Application.class, args);
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/common/constants/AuthErrorCode.java b/backend/src/main/java/com/example/erp/common/constants/AuthErrorCode.java
new file mode 100644
index 0000000..ef4b70d
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/common/constants/AuthErrorCode.java
@@ -0,0 +1,11 @@
+package com.example.erp.common.constants;
+
+public final class AuthErrorCode {
+
+    public static final int USERNAME_OR_PASSWORD_ERROR = 40100;
+    public static final int ACCOUNT_DISABLED = 40101;
+    public static final int ACCOUNT_LOCKED = 40102;
+    public static final int REFRESH_TOKEN_INVALID = 40103;
+
+    private AuthErrorCode() {}
+}
diff --git a/backend/src/main/java/com/example/erp/common/constants/UsrErrorCode.java b/backend/src/main/java/com/example/erp/common/constants/UsrErrorCode.java
new file mode 100644
index 0000000..e25dbb9
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/common/constants/UsrErrorCode.java
@@ -0,0 +1,13 @@
+package com.example.erp.common.constants;
+
+public final class UsrErrorCode {
+
+    public static final int PERMISSION_DENIED = 40300;
+    public static final int SELF_ADMIN_CHANGE = 40301;
+    public static final int USERNAME_EXISTS = 40901;
+    public static final int USER_CODE_EXISTS = 40902;
+    public static final int EMPLOYEE_NOT_FOUND = 40001;
+    public static final int USER_NOT_FOUND = 40400;
+
+    private UsrErrorCode() {}
+}
diff --git a/backend/src/main/java/com/example/erp/common/exception/BizException.java b/backend/src/main/java/com/example/erp/common/exception/BizException.java
new file mode 100644
index 0000000..554ddd9
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/common/exception/BizException.java
@@ -0,0 +1,14 @@
+package com.example.erp.common.exception;
+
+import lombok.Getter;
+
+@Getter
+public class BizException extends RuntimeException {
+
+    private final int code;
+
+    public BizException(int code, String message) {
+        super(message);
+        this.code = code;
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/common/exception/GlobalExceptionHandler.java b/backend/src/main/java/com/example/erp/common/exception/GlobalExceptionHandler.java
new file mode 100644
index 0000000..3a6e523
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/common/exception/GlobalExceptionHandler.java
@@ -0,0 +1,31 @@
+package com.example.erp.common.exception;
+
+import com.example.erp.common.response.Result;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.validation.FieldError;
+import org.springframework.web.bind.MethodArgumentNotValidException;
+import org.springframework.web.bind.annotation.ExceptionHandler;
+import org.springframework.web.bind.annotation.RestControllerAdvice;
+
+@Slf4j
+@RestControllerAdvice
+public class GlobalExceptionHandler {
+
+    @ExceptionHandler(BizException.class)
+    public Result<Void> handleBizException(BizException e) {
+        return Result.fail(e.getCode(), e.getMessage());
+    }
+
+    @ExceptionHandler(MethodArgumentNotValidException.class)
+    public Result<Void> handleValidation(MethodArgumentNotValidException e) {
+        FieldError fe = e.getBindingResult().getFieldErrors().stream().findFirst().orElse(null);
+        String msg = fe != null ? fe.getDefaultMessage() : "参数校验失败";
+        return Result.fail(40001, msg);
+    }
+
+    @ExceptionHandler(Exception.class)
+    public Result<Void> handleException(Exception e) {
+        log.error("未处理异常", e);
+        return Result.fail(99000, "系统内部错误");
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/common/response/Result.java b/backend/src/main/java/com/example/erp/common/response/Result.java
new file mode 100644
index 0000000..c8bb6c1
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/common/response/Result.java
@@ -0,0 +1,27 @@
+package com.example.erp.common.response;
+
+import lombok.Getter;
+
+@Getter
+public class Result<T> {
+
+    private final int code;
+    private final String message;
+    private final T data;
+    private final long timestamp;
+
+    private Result(int code, String message, T data) {
+        this.code = code;
+        this.message = message;
+        this.data = data;
+        this.timestamp = System.currentTimeMillis();
+    }
+
+    public static <T> Result<T> ok(T data) {
+        return new Result<>(200, "操作成功", data);
+    }
+
+    public static <T> Result<T> fail(int code, String message) {
+        return new Result<>(code, message, null);
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/common/util/JwtUtil.java b/backend/src/main/java/com/example/erp/common/util/JwtUtil.java
new file mode 100644
index 0000000..386b4ba
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/common/util/JwtUtil.java
@@ -0,0 +1,75 @@
+package com.example.erp.common.util;
+
+import com.example.erp.common.constants.AuthErrorCode;
+import com.example.erp.common.exception.BizException;
+import com.example.erp.config.JwtProperties;
+import io.jsonwebtoken.Claims;
+import io.jsonwebtoken.JwtException;
+import io.jsonwebtoken.Jwts;
+import io.jsonwebtoken.security.Keys;
+import lombok.RequiredArgsConstructor;
+import org.springframework.stereotype.Component;
+
+import javax.crypto.SecretKey;
+import java.nio.charset.StandardCharsets;
+import java.util.Date;
+
+@Component
+@RequiredArgsConstructor
+public class JwtUtil {
+
+    private final JwtProperties properties;
+
+    private SecretKey key() {
+        return Keys.hmacShaKeyFor(properties.getSecret().getBytes(StandardCharsets.UTF_8));
+    }
+
+    public String generateAccessToken(String userId, String username, String userType, String brandId) {
+        long now = System.currentTimeMillis();
+        return Jwts.builder()
+                .subject(userId)
+                .claim("username", username)
+                .claim("userType", userType)
+                .claim("brandId", brandId)
+                .issuedAt(new Date(now))
+                .expiration(new Date(now + properties.getAccessTokenExpiry() * 1000))
+                .signWith(key(), Jwts.SIG.HS256)
+                .compact();
+    }
+
+    public String generateRefreshToken(String userId, String brandId) {
+        long now = System.currentTimeMillis();
+        return Jwts.builder()
+                .subject(userId)
+                .claim("brandId", brandId)
+                .claim("type", "refresh")
+                .issuedAt(new Date(now))
+                .expiration(new Date(now + properties.getRefreshTokenExpiry() * 1000))
+                .signWith(key(), Jwts.SIG.HS256)
+                .compact();
+    }
+
+    public Claims parseAccessToken(String token) {
+        return doParse(token);
+    }
+
+    public Claims parseRefreshToken(String token) {
+        Claims claims = doParse(token);
+        if (!"refresh".equals(claims.get("type", String.class))) {
+            throw new BizException(AuthErrorCode.REFRESH_TOKEN_INVALID, "Refresh Token 已失效，请重新登录");
+        }
+        return claims;
+    }
+
+    private Claims doParse(String token) {
+        try {
+            return Jwts.parser()
+                    .verifyWith(key())
+                    .build()
+                    .parseSignedClaims(token)
+                    .getPayload();
+        } catch (JwtException e) {
+            throw new BizException(AuthErrorCode.REFRESH_TOKEN_INVALID, "Token 已失效，请重新登录");
+        }
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/common/vo/PageVO.java b/backend/src/main/java/com/example/erp/common/vo/PageVO.java
new file mode 100644
index 0000000..2356001
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/common/vo/PageVO.java
@@ -0,0 +1,26 @@
+package com.example.erp.common.vo;
+
+import com.baomidou.mybatisplus.core.metadata.IPage;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.util.List;
+
+@Getter
+@Setter
+public class PageVO<T> {
+
+    private long total;
+    private long page;
+    private long pageSize;
+    private List<T> list;
+
+    public static <T> PageVO<T> of(IPage<T> iPage) {
+        PageVO<T> vo = new PageVO<>();
+        vo.total = iPage.getTotal();
+        vo.page = iPage.getCurrent();
+        vo.pageSize = iPage.getSize();
+        vo.list = iPage.getRecords();
+        return vo;
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/config/BeanConfig.java b/backend/src/main/java/com/example/erp/config/BeanConfig.java
new file mode 100644
index 0000000..62858c0
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/config/BeanConfig.java
@@ -0,0 +1,14 @@
+package com.example.erp.config;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+
+@Configuration
+public class BeanConfig {
+
+    @Bean
+    public BCryptPasswordEncoder passwordEncoder() {
+        return new BCryptPasswordEncoder();
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/config/JwtAuthenticationFilter.java b/backend/src/main/java/com/example/erp/config/JwtAuthenticationFilter.java
new file mode 100644
index 0000000..b261f3e
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/config/JwtAuthenticationFilter.java
@@ -0,0 +1,50 @@
+package com.example.erp.config;
+
+import com.example.erp.common.exception.BizException;
+import com.example.erp.common.util.JwtUtil;
+import io.jsonwebtoken.Claims;
+import jakarta.servlet.FilterChain;
+import jakarta.servlet.ServletException;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.stereotype.Component;
+import org.springframework.util.StringUtils;
+import org.springframework.web.filter.OncePerRequestFilter;
+
+import java.io.IOException;
+import java.util.Collections;
+
+@Component
+@RequiredArgsConstructor
+public class JwtAuthenticationFilter extends OncePerRequestFilter {
+
+    private final JwtUtil jwtUtil;
+
+    @Override
+    protected void doFilterInternal(HttpServletRequest request,
+                                    HttpServletResponse response,
+                                    FilterChain chain) throws ServletException, IOException {
+        String header = request.getHeader("Authorization");
+        if (StringUtils.hasText(header) && header.startsWith("Bearer ")) {
+            String token = header.substring(7);
+            try {
+                Claims claims = jwtUtil.parseAccessToken(token);
+                UserPrincipal principal = new UserPrincipal(
+                        claims.getSubject(),
+                        claims.get("username", String.class),
+                        claims.get("userType", String.class),
+                        claims.get("brandId", String.class));
+                UsernamePasswordAuthenticationToken auth =
+                        new UsernamePasswordAuthenticationToken(
+                                principal, null, Collections.emptyList());
+                SecurityContextHolder.getContext().setAuthentication(auth);
+            } catch (BizException ignored) {
+                // invalid token — no auth set; Spring Security will return 401
+            }
+        }
+        chain.doFilter(request, response);
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/config/JwtProperties.java b/backend/src/main/java/com/example/erp/config/JwtProperties.java
new file mode 100644
index 0000000..dd172ab
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/config/JwtProperties.java
@@ -0,0 +1,16 @@
+package com.example.erp.config;
+
+import lombok.Getter;
+import lombok.Setter;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.stereotype.Component;
+
+@Getter
+@Setter
+@Component
+@ConfigurationProperties(prefix = "jwt")
+public class JwtProperties {
+    private String secret;
+    private long accessTokenExpiry;
+    private long refreshTokenExpiry;
+}
diff --git a/backend/src/main/java/com/example/erp/config/MyBatisPlusConfig.java b/backend/src/main/java/com/example/erp/config/MyBatisPlusConfig.java
new file mode 100644
index 0000000..d859eea
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/config/MyBatisPlusConfig.java
@@ -0,0 +1,20 @@
+package com.example.erp.config;
+
+import com.baomidou.mybatisplus.annotation.DbType;
+import com.baomidou.mybatisplus.extension.plugins.MybatisPlusInterceptor;
+import com.baomidou.mybatisplus.extension.plugins.inner.PaginationInnerInterceptor;
+import org.mybatis.spring.annotation.MapperScan;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+
+@Configuration
+@MapperScan("com.example.erp.module.*.mapper")
+public class MyBatisPlusConfig {
+
+    @Bean
+    public MybatisPlusInterceptor mybatisPlusInterceptor() {
+        MybatisPlusInterceptor interceptor = new MybatisPlusInterceptor();
+        interceptor.addInnerInterceptor(new PaginationInnerInterceptor(DbType.MYSQL));
+        return interceptor;
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/config/SecurityConfig.java b/backend/src/main/java/com/example/erp/config/SecurityConfig.java
new file mode 100644
index 0000000..1ce020e
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/config/SecurityConfig.java
@@ -0,0 +1,36 @@
+package com.example.erp.config;
+
+import jakarta.servlet.http.HttpServletResponse;
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
+import org.springframework.security.config.http.SessionCreationPolicy;
+import org.springframework.security.web.SecurityFilterChain;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+
+@Configuration
+@EnableWebSecurity
+@RequiredArgsConstructor
+public class SecurityConfig {
+
+    private final JwtAuthenticationFilter jwtAuthenticationFilter;
+
+    @Bean
+    public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
+        http
+            .csrf(AbstractHttpConfigurer::disable)
+            .sessionManagement(sm -> sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
+            .authorizeHttpRequests(auth -> auth
+                .requestMatchers("/api/auth/**").permitAll()
+                .anyRequest().authenticated()
+            )
+            .exceptionHandling(ex -> ex
+                .authenticationEntryPoint((request, response, authException) ->
+                    response.sendError(HttpServletResponse.SC_UNAUTHORIZED)))
+            .addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);
+        return http.build();
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/config/UserPrincipal.java b/backend/src/main/java/com/example/erp/config/UserPrincipal.java
new file mode 100644
index 0000000..08a985b
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/config/UserPrincipal.java
@@ -0,0 +1,3 @@
+package com.example.erp.config;
+
+public record UserPrincipal(String userId, String username, String userType, String brandId) {}
diff --git a/backend/src/main/java/com/example/erp/module/usr/controller/AuthController.java b/backend/src/main/java/com/example/erp/module/usr/controller/AuthController.java
new file mode 100644
index 0000000..acbb01d
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/controller/AuthController.java
@@ -0,0 +1,42 @@
+package com.example.erp.module.usr.controller;
+
+import com.example.erp.common.response.Result;
+import com.example.erp.module.usr.dto.LoginReqDTO;
+import com.example.erp.module.usr.dto.RefreshTokenReqDTO;
+import com.example.erp.module.usr.service.AuthService;
+import com.example.erp.module.usr.vo.BrandVO;
+import com.example.erp.module.usr.vo.LoginVO;
+import jakarta.validation.Valid;
+import lombok.RequiredArgsConstructor;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+import java.util.List;
+import java.util.Map;
+
+@RestController
+@RequestMapping("/api/auth")
+@RequiredArgsConstructor
+public class AuthController {
+
+    private final AuthService authService;
+
+    @PostMapping("/login")
+    public Result<LoginVO> login(@Valid @RequestBody LoginReqDTO req) {
+        return Result.ok(authService.login(req));
+    }
+
+    @PostMapping("/refresh")
+    public Result<Map<String, String>> refresh(@Valid @RequestBody RefreshTokenReqDTO req) {
+        String newToken = authService.refresh(req.getRefreshToken());
+        return Result.ok(Map.of("accessToken", newToken));
+    }
+
+    @GetMapping("/brands")
+    public Result<List<BrandVO>> brands() {
+        return Result.ok(authService.getBrands());
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/controller/UserController.java b/backend/src/main/java/com/example/erp/module/usr/controller/UserController.java
new file mode 100644
index 0000000..c556d68
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/controller/UserController.java
@@ -0,0 +1,80 @@
+package com.example.erp.module.usr.controller;
+
+import com.example.erp.common.response.Result;
+import com.example.erp.common.vo.PageVO;
+import com.example.erp.config.UserPrincipal;
+import com.example.erp.module.usr.dto.UserCreateReqDTO;
+import com.example.erp.module.usr.dto.UserListQueryDTO;
+import com.example.erp.module.usr.dto.UserUpdateReqDTO;
+import com.example.erp.module.usr.service.UserService;
+import com.example.erp.module.usr.vo.PermissionGroupVO;
+import com.example.erp.module.usr.vo.StaffVO;
+import com.example.erp.module.usr.vo.UserCreateRespVO;
+import com.example.erp.module.usr.vo.UserListItemVO;
+import com.example.erp.module.usr.vo.UserUpdateRespVO;
+import jakarta.validation.Valid;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.core.annotation.AuthenticationPrincipal;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.PutMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;
+
+import java.util.List;
+
+@RestController
+@RequestMapping("/api/usr")
+@RequiredArgsConstructor
+public class UserController {
+
+    private final UserService userService;
+
+    @PostMapping("/users")
+    public Result<UserCreateRespVO> createUser(
+            @Valid @RequestBody UserCreateReqDTO req,
+            @AuthenticationPrincipal UserPrincipal principal) {
+        return Result.ok(userService.createUser(req, principal));
+    }
+
+    // REQ-USR-003: 查询用户
+    @GetMapping("/users")
+    public Result<PageVO<UserListItemVO>> getUsers(
+            @RequestParam(defaultValue = "username") String queryField,
+            @RequestParam(defaultValue = "contains") String matchType,
+            @RequestParam(defaultValue = "") String queryValue,
+            @RequestParam(defaultValue = "1") int page,
+            @RequestParam(defaultValue = "20") int pageSize,
+            @AuthenticationPrincipal UserPrincipal principal) {
+        UserListQueryDTO q = new UserListQueryDTO();
+        q.setQueryField(queryField);
+        q.setMatchType(matchType);
+        q.setQueryValue(queryValue);
+        q.setPage(page);
+        q.setPageSize(pageSize);
+        return Result.ok(userService.getUserList(q, principal.brandId()));
+    }
+
+    // REQ-USR-002: 修改用户
+    @PutMapping("/users/{userId}")
+    public Result<UserUpdateRespVO> updateUser(
+            @PathVariable String userId,
+            @Valid @RequestBody UserUpdateReqDTO req,
+            @AuthenticationPrincipal UserPrincipal principal) {
+        return Result.ok(userService.updateUser(userId, req, principal));
+    }
+
+    @GetMapping("/users/staffs")
+    public Result<List<StaffVO>> getStaffs(@AuthenticationPrincipal UserPrincipal principal) {
+        return Result.ok(userService.getStaffs(principal.brandId()));
+    }
+
+    @GetMapping("/users/permission-groups")
+    public Result<List<PermissionGroupVO>> getPermissionGroups(
+            @AuthenticationPrincipal UserPrincipal principal) {
+        return Result.ok(userService.getPermissionGroups(principal.brandId()));
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/dto/LoginReqDTO.java b/backend/src/main/java/com/example/erp/module/usr/dto/LoginReqDTO.java
new file mode 100644
index 0000000..4074d97
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/dto/LoginReqDTO.java
@@ -0,0 +1,19 @@
+package com.example.erp.module.usr.dto;
+
+import jakarta.validation.constraints.NotBlank;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class LoginReqDTO {
+
+    @NotBlank(message = "公司编号不能为空")
+    private String brandNo;
+
+    @NotBlank(message = "用户名不能为空")
+    private String username;
+
+    @NotBlank(message = "密码不能为空")
+    private String password;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/dto/RefreshTokenReqDTO.java b/backend/src/main/java/com/example/erp/module/usr/dto/RefreshTokenReqDTO.java
new file mode 100644
index 0000000..fcb23a2
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/dto/RefreshTokenReqDTO.java
@@ -0,0 +1,13 @@
+package com.example.erp.module.usr.dto;
+
+import jakarta.validation.constraints.NotBlank;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class RefreshTokenReqDTO {
+
+    @NotBlank(message = "refreshToken 不能为空")
+    private String refreshToken;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/dto/UserCreateReqDTO.java b/backend/src/main/java/com/example/erp/module/usr/dto/UserCreateReqDTO.java
new file mode 100644
index 0000000..681ec04
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/dto/UserCreateReqDTO.java
@@ -0,0 +1,33 @@
+package com.example.erp.module.usr.dto;
+
+import jakarta.validation.constraints.NotBlank;
+import jakarta.validation.constraints.Pattern;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.util.List;
+
+@Getter
+@Setter
+public class UserCreateReqDTO {
+
+    @NotBlank(message = "用户号不能为空")
+    private String userCode;
+
+    @NotBlank(message = "用户名不能为空")
+    private String username;
+
+    @NotBlank(message = "用户类型不能为空")
+    @Pattern(regexp = "普通用户|超级管理员", message = "用户类型无效")
+    private String userType;
+
+    @NotBlank(message = "语言不能为空")
+    @Pattern(regexp = "中文|英文|繁体", message = "语言无效")
+    private String language;
+
+    private boolean canEditDoc = false;
+
+    private String employeeId;
+
+    private List<String> permGroupIds;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/dto/UserListQueryDTO.java b/backend/src/main/java/com/example/erp/module/usr/dto/UserListQueryDTO.java
new file mode 100644
index 0000000..3ed4f84
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/dto/UserListQueryDTO.java
@@ -0,0 +1,15 @@
+package com.example.erp.module.usr.dto;
+
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class UserListQueryDTO {
+
+    private String queryField = "username";
+    private String matchType = "contains";
+    private String queryValue;
+    private int page = 1;
+    private int pageSize = 20;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/dto/UserUpdateReqDTO.java b/backend/src/main/java/com/example/erp/module/usr/dto/UserUpdateReqDTO.java
new file mode 100644
index 0000000..27783c3
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/dto/UserUpdateReqDTO.java
@@ -0,0 +1,27 @@
+package com.example.erp.module.usr.dto;
+
+import jakarta.validation.constraints.NotBlank;
+import jakarta.validation.constraints.NotNull;
+import jakarta.validation.constraints.Pattern;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.util.List;
+
+@Getter
+@Setter
+public class UserUpdateReqDTO {
+
+    @NotBlank(message = "用户类型不能为空")
+    @Pattern(regexp = "普通用户|超级管理员", message = "用户类型无效")
+    private String userType;
+
+    @NotBlank(message = "语言不能为空")
+    @Pattern(regexp = "中文|英文|繁体", message = "语言无效")
+    private String language;
+    private boolean canEditDoc;
+    private boolean isDisabled;
+    private String employeeId;
+    @NotNull(message = "权限组列表不能为空")
+    private List<String> permGroupIds;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/entity/BrandEntity.java b/backend/src/main/java/com/example/erp/module/usr/entity/BrandEntity.java
new file mode 100644
index 0000000..ca3f9ca
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/entity/BrandEntity.java
@@ -0,0 +1,40 @@
+package com.example.erp.module.usr.entity;
+
+import com.baomidou.mybatisplus.annotation.IdType;
+import com.baomidou.mybatisplus.annotation.TableField;
+import com.baomidou.mybatisplus.annotation.TableId;
+import com.baomidou.mybatisplus.annotation.TableName;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Setter
+@TableName("brand")
+public class BrandEntity {
+
+    @TableId(value = "iIncrement", type = IdType.AUTO)
+    private Integer iIncrement;
+
+    @TableField("sId")
+    private String sId;
+
+    @TableField("sBrandsId")
+    private String sBrandsId;
+
+    @TableField("sSubsidiaryId")
+    private String sSubsidiaryId;
+
+    @TableField("tCreateDate")
+    private LocalDateTime tCreateDate;
+
+    @TableField("sName")
+    private String sName;
+
+    @TableField("sShortName")
+    private String sShortName;
+
+    @TableField("sNo")
+    private String sNo;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/entity/PermissionGroupEntity.java b/backend/src/main/java/com/example/erp/module/usr/entity/PermissionGroupEntity.java
new file mode 100644
index 0000000..858b730
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/entity/PermissionGroupEntity.java
@@ -0,0 +1,40 @@
+package com.example.erp.module.usr.entity;
+
+import com.baomidou.mybatisplus.annotation.IdType;
+import com.baomidou.mybatisplus.annotation.TableField;
+import com.baomidou.mybatisplus.annotation.TableId;
+import com.baomidou.mybatisplus.annotation.TableName;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Setter
+@TableName("usr_permission_group")
+public class PermissionGroupEntity {
+
+    @TableId(value = "iIncrement", type = IdType.AUTO)
+    private Integer iIncrement;
+
+    @TableField("sId")
+    private String sId;
+
+    @TableField("sBrandsId")
+    private String sBrandsId;
+
+    @TableField("sSubsidiaryId")
+    private String sSubsidiaryId;
+
+    @TableField("tCreateDate")
+    private LocalDateTime tCreateDate;
+
+    @TableField("sGroupCode")
+    private String sGroupCode;
+
+    @TableField("sGroupName")
+    private String sGroupName;
+
+    @TableField("sCategory")
+    private String sCategory;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/entity/StaffEntity.java b/backend/src/main/java/com/example/erp/module/usr/entity/StaffEntity.java
new file mode 100644
index 0000000..9368712
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/entity/StaffEntity.java
@@ -0,0 +1,52 @@
+package com.example.erp.module.usr.entity;
+
+import com.baomidou.mybatisplus.annotation.IdType;
+import com.baomidou.mybatisplus.annotation.TableField;
+import com.baomidou.mybatisplus.annotation.TableId;
+import com.baomidou.mybatisplus.annotation.TableName;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Setter
+@TableName("tStaff")
+public class StaffEntity {
+
+    @TableId(value = "iIncrement", type = IdType.AUTO)
+    private Integer iIncrement;
+
+    @TableField("sId")
+    private String sId;
+
+    @TableField("sBrandsId")
+    private String sBrandsId;
+
+    @TableField("sSubsidiaryId")
+    private String sSubsidiaryId;
+
+    @TableField("tCreateDate")
+    private LocalDateTime tCreateDate;
+
+    @TableField("sStaffNo")
+    private String sStaffNo;
+
+    @TableField("sStaffName")
+    private String sStaffName;
+
+    @TableField("sDepartment")
+    private String sDepartment;
+
+    @TableField("sCreatedBy")
+    private String sCreatedBy;
+
+    @TableField("bDeleted")
+    private Integer bDeleted;
+
+    @TableField("tDeletedDate")
+    private LocalDateTime tDeletedDate;
+
+    @TableField("sDeletedBy")
+    private String sDeletedBy;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/entity/UserPermissionEntity.java b/backend/src/main/java/com/example/erp/module/usr/entity/UserPermissionEntity.java
new file mode 100644
index 0000000..e54ff93
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/entity/UserPermissionEntity.java
@@ -0,0 +1,37 @@
+package com.example.erp.module.usr.entity;
+
+import com.baomidou.mybatisplus.annotation.IdType;
+import com.baomidou.mybatisplus.annotation.TableField;
+import com.baomidou.mybatisplus.annotation.TableId;
+import com.baomidou.mybatisplus.annotation.TableName;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Setter
+@TableName("usr_user_permission")
+public class UserPermissionEntity {
+
+    @TableId(value = "iIncrement", type = IdType.AUTO)
+    private Integer iIncrement;
+
+    @TableField("sId")
+    private String sId;
+
+    @TableField("sBrandsId")
+    private String sBrandsId;
+
+    @TableField("sSubsidiaryId")
+    private String sSubsidiaryId;
+
+    @TableField("tCreateDate")
+    private LocalDateTime tCreateDate;
+
+    @TableField("sUserId")
+    private String sUserId;
+
+    @TableField("sPermGroupId")
+    private String sPermGroupId;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/entity/UsrUserEntity.java b/backend/src/main/java/com/example/erp/module/usr/entity/UsrUserEntity.java
new file mode 100644
index 0000000..75cc588
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/entity/UsrUserEntity.java
@@ -0,0 +1,67 @@
+package com.example.erp.module.usr.entity;
+
+import com.baomidou.mybatisplus.annotation.IdType;
+import com.baomidou.mybatisplus.annotation.TableField;
+import com.baomidou.mybatisplus.annotation.TableId;
+import com.baomidou.mybatisplus.annotation.TableName;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Setter
+@TableName("usr_user")
+public class UsrUserEntity {
+
+    @TableId(value = "iIncrement", type = IdType.AUTO)
+    private Integer iIncrement;
+
+    @TableField("sId")
+    private String sId;
+
+    @TableField("sBrandsId")
+    private String sBrandsId;
+
+    @TableField("sSubsidiaryId")
+    private String sSubsidiaryId;
+
+    @TableField("tCreateDate")
+    private LocalDateTime tCreateDate;
+
+    @TableField("sUserCode")
+    private String sUserCode;
+
+    @TableField("sUsername")
+    private String sUsername;
+
+    @TableField("sPasswordHash")
+    private String sPasswordHash;
+
+    @TableField("sUserType")
+    private String sUserType;
+
+    @TableField("sLanguage")
+    private String sLanguage;
+
+    @TableField("bCanEditDoc")
+    private Integer bCanEditDoc;
+
+    @TableField("bIsDisabled")
+    private Integer bIsDisabled;
+
+    @TableField("sEmployeeId")
+    private String sEmployeeId;
+
+    @TableField("sCreatorUsername")
+    private String sCreatorUsername;
+
+    @TableField("tLastLoginDate")
+    private LocalDateTime tLastLoginDate;
+
+    @TableField("iLoginFailCount")
+    private Integer iLoginFailCount;
+
+    @TableField("tLockUntil")
+    private LocalDateTime tLockUntil;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/mapper/BrandMapper.java b/backend/src/main/java/com/example/erp/module/usr/mapper/BrandMapper.java
new file mode 100644
index 0000000..74785ad
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/mapper/BrandMapper.java
@@ -0,0 +1,7 @@
+package com.example.erp.module.usr.mapper;
+
+import com.baomidou.mybatisplus.core.mapper.BaseMapper;
+import com.example.erp.module.usr.entity.BrandEntity;
+
+public interface BrandMapper extends BaseMapper<BrandEntity> {
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/mapper/PermissionGroupMapper.java b/backend/src/main/java/com/example/erp/module/usr/mapper/PermissionGroupMapper.java
new file mode 100644
index 0000000..9dfaa91
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/mapper/PermissionGroupMapper.java
@@ -0,0 +1,8 @@
+package com.example.erp.module.usr.mapper;
+
+import com.baomidou.mybatisplus.core.mapper.BaseMapper;
+import com.example.erp.module.usr.entity.PermissionGroupEntity;
+import org.apache.ibatis.annotations.Mapper;
+
+@Mapper
+public interface PermissionGroupMapper extends BaseMapper<PermissionGroupEntity> {}
diff --git a/backend/src/main/java/com/example/erp/module/usr/mapper/StaffMapper.java b/backend/src/main/java/com/example/erp/module/usr/mapper/StaffMapper.java
new file mode 100644
index 0000000..487b460
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/mapper/StaffMapper.java
@@ -0,0 +1,8 @@
+package com.example.erp.module.usr.mapper;
+
+import com.baomidou.mybatisplus.core.mapper.BaseMapper;
+import com.example.erp.module.usr.entity.StaffEntity;
+import org.apache.ibatis.annotations.Mapper;
+
+@Mapper
+public interface StaffMapper extends BaseMapper<StaffEntity> {}
diff --git a/backend/src/main/java/com/example/erp/module/usr/mapper/UserPermissionMapper.java b/backend/src/main/java/com/example/erp/module/usr/mapper/UserPermissionMapper.java
new file mode 100644
index 0000000..9ff318d
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/mapper/UserPermissionMapper.java
@@ -0,0 +1,8 @@
+package com.example.erp.module.usr.mapper;
+
+import com.baomidou.mybatisplus.core.mapper.BaseMapper;
+import com.example.erp.module.usr.entity.UserPermissionEntity;
+import org.apache.ibatis.annotations.Mapper;
+
+@Mapper
+public interface UserPermissionMapper extends BaseMapper<UserPermissionEntity> {}
diff --git a/backend/src/main/java/com/example/erp/module/usr/mapper/UsrUserMapper.java b/backend/src/main/java/com/example/erp/module/usr/mapper/UsrUserMapper.java
new file mode 100644
index 0000000..f27b26c
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/mapper/UsrUserMapper.java
@@ -0,0 +1,18 @@
+package com.example.erp.module.usr.mapper;
+
+import com.baomidou.mybatisplus.core.metadata.IPage;
+import com.baomidou.mybatisplus.core.mapper.BaseMapper;
+import com.example.erp.module.usr.entity.UsrUserEntity;
+import com.example.erp.module.usr.vo.UserListItemVO;
+import org.apache.ibatis.annotations.Param;
+
+public interface UsrUserMapper extends BaseMapper<UsrUserEntity> {
+
+    IPage<UserListItemVO> selectUserList(
+            IPage<UserListItemVO> page,
+            @Param("brandId") String brandId,
+            @Param("queryField") String queryField,
+            @Param("matchType") String matchType,
+            @Param("queryValue") String queryValue
+    );
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/service/AuthService.java b/backend/src/main/java/com/example/erp/module/usr/service/AuthService.java
new file mode 100644
index 0000000..c99be52
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/service/AuthService.java
@@ -0,0 +1,16 @@
+package com.example.erp.module.usr.service;
+
+import com.example.erp.module.usr.dto.LoginReqDTO;
+import com.example.erp.module.usr.vo.BrandVO;
+import com.example.erp.module.usr.vo.LoginVO;
+
+import java.util.List;
+
+public interface AuthService {
+
+    LoginVO login(LoginReqDTO req);
+
+    String refresh(String refreshToken);
+
+    List<BrandVO> getBrands();
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/service/UserService.java b/backend/src/main/java/com/example/erp/module/usr/service/UserService.java
new file mode 100644
index 0000000..69dc415
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/service/UserService.java
@@ -0,0 +1,27 @@
+package com.example.erp.module.usr.service;
+
+import com.example.erp.common.vo.PageVO;
+import com.example.erp.config.UserPrincipal;
+import com.example.erp.module.usr.dto.UserCreateReqDTO;
+import com.example.erp.module.usr.dto.UserListQueryDTO;
+import com.example.erp.module.usr.dto.UserUpdateReqDTO;
+import com.example.erp.module.usr.vo.PermissionGroupVO;
+import com.example.erp.module.usr.vo.StaffVO;
+import com.example.erp.module.usr.vo.UserCreateRespVO;
+import com.example.erp.module.usr.vo.UserListItemVO;
+import com.example.erp.module.usr.vo.UserUpdateRespVO;
+
+import java.util.List;
+
+public interface UserService {
+
+    UserCreateRespVO createUser(UserCreateReqDTO req, UserPrincipal principal);
+
+    List<StaffVO> getStaffs(String brandId);
+
+    List<PermissionGroupVO> getPermissionGroups(String brandId);
+
+    PageVO<UserListItemVO> getUserList(UserListQueryDTO query, String brandId);
+
+    UserUpdateRespVO updateUser(String userId, UserUpdateReqDTO req, UserPrincipal principal);
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/service/impl/AuthServiceImpl.java b/backend/src/main/java/com/example/erp/module/usr/service/impl/AuthServiceImpl.java
new file mode 100644
index 0000000..d5fd0fe
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/service/impl/AuthServiceImpl.java
@@ -0,0 +1,138 @@
+package com.example.erp.module.usr.service.impl;
+
+import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
+import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
+import com.baomidou.mybatisplus.core.conditions.update.LambdaUpdateWrapper;
+import com.example.erp.common.constants.AuthErrorCode;
+import com.example.erp.common.exception.BizException;
+import com.example.erp.common.util.JwtUtil;
+import com.example.erp.module.usr.dto.LoginReqDTO;
+import com.example.erp.module.usr.entity.BrandEntity;
+import com.example.erp.module.usr.entity.UsrUserEntity;
+import com.example.erp.module.usr.mapper.BrandMapper;
+import com.example.erp.module.usr.mapper.UsrUserMapper;
+import com.example.erp.module.usr.service.AuthService;
+import com.example.erp.module.usr.vo.BrandVO;
+import com.example.erp.module.usr.vo.LoginVO;
+import io.jsonwebtoken.Claims;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+import java.time.LocalDateTime;
+import java.time.temporal.ChronoUnit;
+import java.util.List;
+import java.util.stream.Collectors;
+
+@Service
+@RequiredArgsConstructor
+public class AuthServiceImpl implements AuthService {
+
+    private final BrandMapper brandMapper;
+    private final UsrUserMapper userMapper;
+    private final JwtUtil jwtUtil;
+    private final BCryptPasswordEncoder passwordEncoder;
+
+    @Override
+    @Transactional
+    public LoginVO login(LoginReqDTO req) {
+        // 1. 查 brand
+        BrandEntity brand = brandMapper.selectOne(
+                new LambdaQueryWrapper<BrandEntity>().eq(BrandEntity::getSNo, req.getBrandNo()));
+        if (brand == null) {
+            throw new BizException(AuthErrorCode.USERNAME_OR_PASSWORD_ERROR, "用户名或密码错误");
+        }
+
+        // 2. 查 user（多租户）
+        UsrUserEntity user = userMapper.selectOne(
+                new LambdaQueryWrapper<UsrUserEntity>()
+                        .eq(UsrUserEntity::getSUsername, req.getUsername())
+                        .eq(UsrUserEntity::getSBrandsId, brand.getSId()));
+        if (user == null) {
+            throw new BizException(AuthErrorCode.USERNAME_OR_PASSWORD_ERROR, "用户名或密码错误");
+        }
+
+        // 3. 禁用检查
+        if (Integer.valueOf(1).equals(user.getBIsDisabled())) {
+            throw new BizException(AuthErrorCode.ACCOUNT_DISABLED, "账号已被禁用，请联系管理员");
+        }
+
+        // 4. 锁定检查
+        if (user.getTLockUntil() != null && user.getTLockUntil().isAfter(LocalDateTime.now())) {
+            long seconds = ChronoUnit.SECONDS.between(LocalDateTime.now(), user.getTLockUntil());
+            int minutes = (int) Math.ceil(seconds / 60.0);
+            throw new BizException(AuthErrorCode.ACCOUNT_LOCKED, "账号已被锁定，请 " + minutes + " 分钟后重试");
+        }
+
+        // 5. 密码校验
+        if (!passwordEncoder.matches(req.getPassword(), user.getSPasswordHash())) {
+            int newCount = (user.getILoginFailCount() == null ? 0 : user.getILoginFailCount()) + 1;
+            LambdaUpdateWrapper<UsrUserEntity> updateWrapper = new LambdaUpdateWrapper<UsrUserEntity>()
+                    .eq(UsrUserEntity::getSId, user.getSId())
+                    .set(UsrUserEntity::getILoginFailCount, newCount);
+            if (newCount >= 5) {
+                LocalDateTime lockUntil = LocalDateTime.now().plusMinutes(30);
+                updateWrapper.set(UsrUserEntity::getTLockUntil, lockUntil);
+                userMapper.update(null, updateWrapper);
+                throw new BizException(AuthErrorCode.ACCOUNT_LOCKED, "账号已被锁定，请 30 分钟后重试");
+            }
+            userMapper.update(null, updateWrapper);
+            throw new BizException(AuthErrorCode.USERNAME_OR_PASSWORD_ERROR, "用户名或密码错误");
+        }
+
+        // 6. 登录成功
+        userMapper.update(null, new LambdaUpdateWrapper<UsrUserEntity>()
+                .eq(UsrUserEntity::getSId, user.getSId())
+                .set(UsrUserEntity::getILoginFailCount, 0)
+                .set(UsrUserEntity::getTLockUntil, null)
+                .set(UsrUserEntity::getTLastLoginDate, LocalDateTime.now()));
+
+        String accessToken = jwtUtil.generateAccessToken(
+                user.getSId(), user.getSUsername(), user.getSUserType(), brand.getSId());
+        String refreshToken = jwtUtil.generateRefreshToken(user.getSId(), brand.getSId());
+
+        LoginVO.UserInfoVO userInfo = new LoginVO.UserInfoVO();
+        userInfo.setUserId(user.getSId());
+        userInfo.setUsername(user.getSUsername());
+        userInfo.setUserType(user.getSUserType());
+        userInfo.setLanguage(user.getSLanguage());
+        userInfo.setBrandId(brand.getSId());
+
+        LoginVO vo = new LoginVO();
+        vo.setAccessToken(accessToken);
+        vo.setRefreshToken(refreshToken);
+        vo.setExpiresIn(86400L);
+        vo.setUserInfo(userInfo);
+        return vo;
+    }
+
+    @Override
+    public String refresh(String refreshToken) {
+        Claims claims = jwtUtil.parseRefreshToken(refreshToken);
+        String userId = claims.getSubject();
+        String brandId = claims.get("brandId", String.class);
+
+        UsrUserEntity user = userMapper.selectOne(
+                new LambdaQueryWrapper<UsrUserEntity>().eq(UsrUserEntity::getSId, userId));
+        if (user == null
+                || Integer.valueOf(1).equals(user.getBIsDisabled())
+                || (user.getTLockUntil() != null && user.getTLockUntil().isAfter(LocalDateTime.now()))) {
+            throw new BizException(AuthErrorCode.REFRESH_TOKEN_INVALID, "Refresh Token 已失效，请重新登录");
+        }
+
+        return jwtUtil.generateAccessToken(user.getSId(), user.getSUsername(), user.getSUserType(), brandId);
+    }
+
+    @Override
+    public List<BrandVO> getBrands() {
+        List<BrandEntity> brands = brandMapper.selectList(
+                new QueryWrapper<BrandEntity>().select("sNo", "sName").orderByAsc("sName"));
+        return brands.stream().map(b -> {
+            BrandVO vo = new BrandVO();
+            vo.setSNo(b.getSNo());
+            vo.setSName(b.getSName());
+            return vo;
+        }).collect(Collectors.toList());
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java b/backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java
new file mode 100644
index 0000000..eb2457b
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java
@@ -0,0 +1,215 @@
+package com.example.erp.module.usr.service.impl;
+
+import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
+import com.baomidou.mybatisplus.core.conditions.update.LambdaUpdateWrapper;
+import com.baomidou.mybatisplus.core.metadata.IPage;
+import com.baomidou.mybatisplus.extension.plugins.pagination.Page;
+import com.example.erp.common.constants.UsrErrorCode;
+import com.example.erp.common.exception.BizException;
+import com.example.erp.common.vo.PageVO;
+import com.example.erp.config.UserPrincipal;
+import com.example.erp.module.usr.dto.UserCreateReqDTO;
+import com.example.erp.module.usr.dto.UserListQueryDTO;
+import com.example.erp.module.usr.dto.UserUpdateReqDTO;
+import com.example.erp.module.usr.entity.PermissionGroupEntity;
+import com.example.erp.module.usr.entity.StaffEntity;
+import com.example.erp.module.usr.entity.UserPermissionEntity;
+import com.example.erp.module.usr.entity.UsrUserEntity;
+import com.example.erp.module.usr.mapper.PermissionGroupMapper;
+import com.example.erp.module.usr.mapper.StaffMapper;
+import com.example.erp.module.usr.mapper.UserPermissionMapper;
+import com.example.erp.module.usr.mapper.UsrUserMapper;
+import com.example.erp.module.usr.service.UserService;
+import com.example.erp.module.usr.vo.PermissionGroupVO;
+import com.example.erp.module.usr.vo.StaffVO;
+import com.example.erp.module.usr.vo.UserCreateRespVO;
+import com.example.erp.module.usr.vo.UserListItemVO;
+import com.example.erp.module.usr.vo.UserUpdateRespVO;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+import java.time.LocalDateTime;
+import java.util.List;
+import java.util.UUID;
+import java.util.stream.Collectors;
+
+@Service
+@RequiredArgsConstructor
+public class UserServiceImpl implements UserService {
+
+    private final UsrUserMapper userMapper;
+    private final StaffMapper staffMapper;
+    private final PermissionGroupMapper permGroupMapper;
+    private final UserPermissionMapper userPermissionMapper;
+    private final BCryptPasswordEncoder passwordEncoder;
+
+    @Override
+    @Transactional
+    public UserCreateRespVO createUser(UserCreateReqDTO req, UserPrincipal principal) {
+        if (!"超级管理员".equals(principal.userType())) {
+            throw new BizException(UsrErrorCode.PERMISSION_DENIED, "权限不足");
+        }
+
+        if (userMapper.selectCount(new LambdaQueryWrapper<UsrUserEntity>()
+                .eq(UsrUserEntity::getSUserCode, req.getUserCode())) > 0) {
+            throw new BizException(UsrErrorCode.USER_CODE_EXISTS, "用户号已存在");
+        }
+
+        if (userMapper.selectCount(new LambdaQueryWrapper<UsrUserEntity>()
+                .eq(UsrUserEntity::getSUsername, req.getUsername())
+                .eq(UsrUserEntity::getSBrandsId, principal.brandId())) > 0) {
+            throw new BizException(UsrErrorCode.USERNAME_EXISTS, "用户名已存在");
+        }
+
+        if (req.getEmployeeId() != null) {
+            StaffEntity staff = staffMapper.selectOne(new LambdaQueryWrapper<StaffEntity>()
+                    .eq(StaffEntity::getSId, req.getEmployeeId())
+                    .eq(StaffEntity::getSBrandsId, principal.brandId()));
+            if (staff == null) {
+                throw new BizException(UsrErrorCode.EMPLOYEE_NOT_FOUND, "员工不存在");
+            }
+        }
+
+        UsrUserEntity user = new UsrUserEntity();
+        user.setSId(UUID.randomUUID().toString());
+        user.setSBrandsId(principal.brandId());
+        user.setSCreatorUsername(principal.username());
+        user.setTCreateDate(LocalDateTime.now());
+        user.setSUserCode(req.getUserCode());
+        user.setSUsername(req.getUsername());
+        user.setSPasswordHash(passwordEncoder.encode("666666"));
+        user.setSUserType(req.getUserType());
+        user.setSLanguage(req.getLanguage());
+        user.setBCanEditDoc(req.isCanEditDoc() ? 1 : 0);
+        user.setBIsDisabled(0);
+        user.setSEmployeeId(req.getEmployeeId());
+        user.setILoginFailCount(0);
+        userMapper.insert(user);
+
+        if (req.getPermGroupIds() != null && !req.getPermGroupIds().isEmpty()) {
+            List<UserPermissionEntity> perms = req.getPermGroupIds().stream()
+                    .map(groupId -> {
+                        UserPermissionEntity perm = new UserPermissionEntity();
+                        perm.setSId(UUID.randomUUID().toString());
+                        perm.setSBrandsId(principal.brandId());
+                        perm.setTCreateDate(LocalDateTime.now());
+                        perm.setSUserId(user.getSId());
+                        perm.setSPermGroupId(groupId);
+                        return perm;
+                    })
+                    .collect(Collectors.toList());
+            userPermissionMapper.insert(perms);
+        }
+
+        UserCreateRespVO vo = new UserCreateRespVO();
+        vo.setUserId(user.getSId());
+        vo.setUserCode(user.getSUserCode());
+        vo.setUsername(user.getSUsername());
+        return vo;
+    }
+
+    @Override
+    @Transactional(readOnly = true)
+    public List<StaffVO> getStaffs(String brandId) {
+        List<StaffEntity> staffs = staffMapper.selectList(new LambdaQueryWrapper<StaffEntity>()
+                .eq(StaffEntity::getSBrandsId, brandId)
+                .eq(StaffEntity::getBDeleted, 0));
+        return staffs.stream().map(s -> {
+            StaffVO vo = new StaffVO();
+            vo.setSId(s.getSId());
+            vo.setSStaffName(s.getSStaffName());
+            return vo;
+        }).collect(Collectors.toList());
+    }
+
+    // REQ-USR-003: 查询用户
+    @Override
+    @Transactional(readOnly = true)
+    public PageVO<UserListItemVO> getUserList(UserListQueryDTO query, String brandId) {
+        int cappedSize = Math.min(query.getPageSize(), 100);
+        IPage<UserListItemVO> iPage = new Page<>(query.getPage(), cappedSize);
+        String queryValue = query.getQueryValue() == null ? "" : query.getQueryValue();
+        IPage<UserListItemVO> result = userMapper.selectUserList(iPage, brandId, query.getQueryField(), query.getMatchType(), queryValue);
+        return PageVO.of(result);
+    }
+
+    @Override
+    @Transactional(readOnly = true)
+    public List<PermissionGroupVO> getPermissionGroups(String brandId) {
+        List<PermissionGroupEntity> groups = permGroupMapper.selectList(new LambdaQueryWrapper<PermissionGroupEntity>()
+                .eq(PermissionGroupEntity::getSBrandsId, brandId));
+        return groups.stream().map(g -> {
+            PermissionGroupVO vo = new PermissionGroupVO();
+            vo.setSId(g.getSId());
+            vo.setSGroupCode(g.getSGroupCode());
+            vo.setSGroupName(g.getSGroupName());
+            vo.setSCategory(g.getSCategory());
+            return vo;
+        }).collect(Collectors.toList());
+    }
+
+    // REQ-USR-002: 修改用户
+    @Override
+    @Transactional
+    public UserUpdateRespVO updateUser(String userId, UserUpdateReqDTO req, UserPrincipal principal) {
+        if (!"超级管理员".equals(principal.userType())) {
+            throw new BizException(UsrErrorCode.PERMISSION_DENIED, "权限不足");
+        }
+
+        UsrUserEntity existing = userMapper.selectOne(new LambdaQueryWrapper<UsrUserEntity>()
+                .eq(UsrUserEntity::getSId, userId)
+                .eq(UsrUserEntity::getSBrandsId, principal.brandId()));
+        if (existing == null) {
+            throw new BizException(UsrErrorCode.USER_NOT_FOUND, "用户不存在");
+        }
+
+        if (principal.userId().equals(userId) && !"超级管理员".equals(req.getUserType())) {
+            throw new BizException(UsrErrorCode.SELF_ADMIN_CHANGE, "禁止修改自己的管理员角色");
+        }
+
+        if (req.getEmployeeId() != null) {
+            StaffEntity staff = staffMapper.selectOne(new LambdaQueryWrapper<StaffEntity>()
+                    .eq(StaffEntity::getSId, req.getEmployeeId())
+                    .eq(StaffEntity::getSBrandsId, principal.brandId()));
+            if (staff == null) {
+                throw new BizException(UsrErrorCode.EMPLOYEE_NOT_FOUND, "员工不存在");
+            }
+        }
+
+        userMapper.update(null, new LambdaUpdateWrapper<UsrUserEntity>()
+                .eq(UsrUserEntity::getSId, userId)
+                .eq(UsrUserEntity::getSBrandsId, principal.brandId())
+                .set(UsrUserEntity::getSUserType, req.getUserType())
+                .set(UsrUserEntity::getSLanguage, req.getLanguage())
+                .set(UsrUserEntity::getBCanEditDoc, req.isCanEditDoc() ? 1 : 0)
+                .set(UsrUserEntity::getBIsDisabled, req.isDisabled() ? 1 : 0)
+                .set(UsrUserEntity::getSEmployeeId, req.getEmployeeId()));
+
+        userPermissionMapper.delete(new LambdaQueryWrapper<UserPermissionEntity>()
+                .eq(UserPermissionEntity::getSUserId, userId)
+                .eq(UserPermissionEntity::getSBrandsId, principal.brandId()));
+
+        if (req.getPermGroupIds() != null && !req.getPermGroupIds().isEmpty()) {
+            List<UserPermissionEntity> perms = req.getPermGroupIds().stream()
+                    .map(groupId -> {
+                        UserPermissionEntity perm = new UserPermissionEntity();
+                        perm.setSId(UUID.randomUUID().toString());
+                        perm.setSBrandsId(principal.brandId());
+                        perm.setTCreateDate(LocalDateTime.now());
+                        perm.setSUserId(userId);
+                        perm.setSPermGroupId(groupId);
+                        return perm;
+                    })
+                    .collect(Collectors.toList());
+            userPermissionMapper.insert(perms);
+        }
+
+        UserUpdateRespVO vo = new UserUpdateRespVO();
+        vo.setUserId(userId);
+        vo.setUsername(existing.getSUsername());
+        vo.setUpdatedAt(LocalDateTime.now());
+        return vo;
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/vo/BrandVO.java b/backend/src/main/java/com/example/erp/module/usr/vo/BrandVO.java
new file mode 100644
index 0000000..a94d50a
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/vo/BrandVO.java
@@ -0,0 +1,15 @@
+package com.example.erp.module.usr.vo;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class BrandVO {
+    @JsonProperty("sNo")
+    private String sNo;
+
+    @JsonProperty("sName")
+    private String sName;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/vo/LoginVO.java b/backend/src/main/java/com/example/erp/module/usr/vo/LoginVO.java
new file mode 100644
index 0000000..39bc955
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/vo/LoginVO.java
@@ -0,0 +1,24 @@
+package com.example.erp.module.usr.vo;
+
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class LoginVO {
+
+    private String accessToken;
+    private String refreshToken;
+    private long expiresIn;
+    private UserInfoVO userInfo;
+
+    @Getter
+    @Setter
+    public static class UserInfoVO {
+        private String userId;
+        private String username;
+        private String userType;
+        private String language;
+        private String brandId;
+    }
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/vo/PermissionGroupVO.java b/backend/src/main/java/com/example/erp/module/usr/vo/PermissionGroupVO.java
new file mode 100644
index 0000000..201de85
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/vo/PermissionGroupVO.java
@@ -0,0 +1,18 @@
+package com.example.erp.module.usr.vo;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class PermissionGroupVO {
+    @JsonProperty("sId")
+    private String sId;
+    @JsonProperty("sGroupCode")
+    private String sGroupCode;
+    @JsonProperty("sGroupName")
+    private String sGroupName;
+    @JsonProperty("sCategory")
+    private String sCategory;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/vo/StaffVO.java b/backend/src/main/java/com/example/erp/module/usr/vo/StaffVO.java
new file mode 100644
index 0000000..6b58361
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/vo/StaffVO.java
@@ -0,0 +1,14 @@
+package com.example.erp.module.usr.vo;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class StaffVO {
+    @JsonProperty("sId")
+    private String sId;
+    @JsonProperty("sStaffName")
+    private String sStaffName;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/vo/UserCreateRespVO.java b/backend/src/main/java/com/example/erp/module/usr/vo/UserCreateRespVO.java
new file mode 100644
index 0000000..27859d2
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/vo/UserCreateRespVO.java
@@ -0,0 +1,12 @@
+package com.example.erp.module.usr.vo;
+
+import lombok.Getter;
+import lombok.Setter;
+
+@Getter
+@Setter
+public class UserCreateRespVO {
+    private String userId;
+    private String userCode;
+    private String username;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/vo/UserListItemVO.java b/backend/src/main/java/com/example/erp/module/usr/vo/UserListItemVO.java
new file mode 100644
index 0000000..dfba429
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/vo/UserListItemVO.java
@@ -0,0 +1,48 @@
+package com.example.erp.module.usr.vo;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import lombok.Getter;
+import lombok.Setter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Setter
+public class UserListItemVO {
+
+    @JsonProperty("sId")
+    private String sId;
+
+    @JsonProperty("sUsername")
+    private String sUsername;
+
+    @JsonProperty("sUserCode")
+    private String sUserCode;
+
+    @JsonProperty("sUserType")
+    private String sUserType;
+
+    @JsonProperty("sLanguage")
+    private String sLanguage;
+
+    @JsonProperty("bCanEditDoc")
+    private Integer bCanEditDoc;
+
+    @JsonProperty("bIsDisabled")
+    private Integer bIsDisabled;
+
+    @JsonProperty("tLastLoginDate")
+    private LocalDateTime tLastLoginDate;
+
+    @JsonProperty("sCreatorUsername")
+    private String sCreatorUsername;
+
+    @JsonProperty("tCreateDate")
+    private LocalDateTime tCreateDate;
+
+    @JsonProperty("sStaffName")
+    private String sStaffName;
+
+    @JsonProperty("sDepartment")
+    private String sDepartment;
+}
diff --git a/backend/src/main/java/com/example/erp/module/usr/vo/UserUpdateRespVO.java b/backend/src/main/java/com/example/erp/module/usr/vo/UserUpdateRespVO.java
new file mode 100644
index 0000000..6fdb495
--- /dev/null
+++ b/backend/src/main/java/com/example/erp/module/usr/vo/UserUpdateRespVO.java
@@ -0,0 +1,15 @@
+package com.example.erp.module.usr.vo;
+
+import lombok.Getter;
+import lombok.Setter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Setter
+public class UserUpdateRespVO {
+
+    private String userId;
+    private String username;
+    private LocalDateTime updatedAt;
+}
diff --git a/backend/src/main/resources/application-dev.yml b/backend/src/main/resources/application-dev.yml
new file mode 100644
index 0000000..a58b22c
--- /dev/null
+++ b/backend/src/main/resources/application-dev.yml
@@ -0,0 +1,4 @@
+logging:
+  level:
+    com.example.erp: DEBUG
+    org.springframework.security: DEBUG
diff --git a/backend/src/main/resources/application.yml b/backend/src/main/resources/application.yml
new file mode 100644
index 0000000..dd5f5b6
--- /dev/null
+++ b/backend/src/main/resources/application.yml
@@ -0,0 +1,27 @@
+spring:
+  datasource:
+    url: jdbc:mysql://${DB_HOST}:${DB_PORT}/${DB_SCHEMA}?useSSL=false&serverTimezone=Asia/Shanghai&allowPublicKeyRetrieval=true&characterEncoding=UTF-8
+    username: ${DB_USER}
+    password: ${DB_PASSWORD}
+    driver-class-name: com.mysql.cj.jdbc.Driver
+  flyway:
+    locations: classpath:db/migration
+    baseline-on-migrate: true
+    baseline-version: 1
+    validate-on-migrate: false
+    out-of-order: false
+
+server:
+  port: 8080
+
+jwt:
+  secret: ${JWT_SECRET}
+  access-token-expiry: 86400
+  refresh-token-expiry: 604800
+
+mybatis-plus:
+  configuration:
+    map-underscore-to-camel-case: false
+  global-config:
+    db-config:
+      id-type: auto
diff --git a/backend/src/main/resources/db/migration/V1__initial_schema.sql b/backend/src/main/resources/db/migration/V1__initial_schema.sql
new file mode 100644
index 0000000..6f7ef83
--- /dev/null
+++ b/backend/src/main/resources/db/migration/V1__initial_schema.sql
@@ -0,0 +1,151 @@
+-- Flyway migration V1 — initial schema for 小羚羊
+-- Generated: 2026-05-08T01:01:55Z
+-- Source: 由 A4 db-init 从 docs/03-数据库设计文档.md 翻译生成（schema SSoT 是 docs/03）
+-- This is the FIRST migration; subsequent schema changes must be written as new files sql/migrations/V2__<desc>.sql, V3__... etc.
+-- Apply: Flyway runs this automatically at Spring Boot startup.
+-- Do not hand-edit this file after it is committed; write a new migration instead.
+
+SET NAMES utf8mb4;
+SET CHARACTER_SET_CLIENT = utf8mb4;
+
+-- ============================================================
+-- Table: usr_user
+-- ============================================================
+CREATE TABLE `usr_user` (
+  `iIncrement`       INT           NOT NULL AUTO_INCREMENT                  COMMENT '整数主键 ID（标准列）',
+  `sId`              VARCHAR(100)  NULL                                      COMMENT '业务 ID（标准列）',
+  `sBrandsId`        VARCHAR(100)  NULL                                      COMMENT '品牌 ID（多租户隔离，标准列）',
+  `sSubsidiaryId`    VARCHAR(100)  NULL                                      COMMENT '子公司 ID（组织层级隔离，标准列）',
+  `tCreateDate`      DATETIME      NOT NULL                                  COMMENT '创建时间（标准列）',
+  `sUserCode`        VARCHAR(50)   NOT NULL                                  COMMENT '用户号（业务编号，人类可读唯一标识）',
+  `sUsername`        VARCHAR(100)  NOT NULL                                  COMMENT '用户名（登录标识，全局唯一，不可修改）',
+  `sPasswordHash`    VARCHAR(255)  NOT NULL                                  COMMENT 'BCrypt 哈希密码，禁止存储明文',
+  `sUserType`        VARCHAR(20)   NOT NULL  DEFAULT '普通用户'              COMMENT '用户类型：普通用户 / 超级管理员',
+  `sLanguage`        VARCHAR(20)   NOT NULL  DEFAULT '中文'                  COMMENT '界面语言：中文 / 英文 / 繁体',
+  `bCanEditDoc`      TINYINT(1)    NOT NULL  DEFAULT 0                       COMMENT '单据修改权限：0=否，1=是',
+  `bIsDisabled`      TINYINT(1)    NOT NULL  DEFAULT 0                       COMMENT '是否作废/禁用：0=正常，1=禁用',
+  `sEmployeeId`      VARCHAR(100)  NULL                                      COMMENT '关联职员 ID（跨模块引用，职员未关联时为 NULL）',
+  `sCreatorUsername` VARCHAR(100)  NULL                                      COMMENT '制单人用户名（冗余字段，便于列表展示）',
+  `tLastLoginDate`   DATETIME      NULL                                      COMMENT '最后登录时间',
+  `iLoginFailCount`  INT           NOT NULL  DEFAULT 0                       COMMENT '连续登录失败次数，用于防暴力破解',
+  `tLockUntil`       DATETIME      NULL                                      COMMENT '账号锁定截止时间，NULL 表示未锁定',
+  PRIMARY KEY (`iIncrement`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci
+  COMMENT='用户账户主表，存储登录信息、类型、语言偏好及安全控制字段';
+
+-- ============================================================
+-- Table: usr_permission_group
+-- ============================================================
+CREATE TABLE `usr_permission_group` (
+  `iIncrement`    INT           NOT NULL AUTO_INCREMENT  COMMENT '整数主键 ID（标准列）',
+  `sId`           VARCHAR(100)  NULL                      COMMENT '业务 ID（标准列）',
+  `sBrandsId`     VARCHAR(100)  NULL                      COMMENT '品牌 ID（多租户隔离，标准列）',
+  `sSubsidiaryId` VARCHAR(100)  NULL                      COMMENT '子公司 ID（组织层级隔离，标准列）',
+  `tCreateDate`   DATETIME      NOT NULL                  COMMENT '创建时间（标准列）',
+  `sGroupCode`    VARCHAR(100)  NOT NULL                  COMMENT '权限代码（如 usr:create、usr:edit），全局唯一',
+  `sGroupName`    VARCHAR(200)  NOT NULL                  COMMENT '权限显示名称（如"新增用户"、"修改用户"）',
+  `sCategory`     VARCHAR(100)  NULL                      COMMENT '权限分类标签，用于前端权限分组展示',
+  PRIMARY KEY (`iIncrement`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci
+  COMMENT='权限分类/权限组定义表，每行对应一个可分配给用户的权限项';
+
+-- ============================================================
+-- Table: usr_user_permission
+-- ============================================================
+CREATE TABLE `usr_user_permission` (
+  `iIncrement`    INT           NOT NULL AUTO_INCREMENT  COMMENT '整数主键 ID（标准列）',
+  `sId`           VARCHAR(100)  NULL                      COMMENT '业务 ID（标准列）',
+  `sBrandsId`     VARCHAR(100)  NULL                      COMMENT '品牌 ID（多租户隔离，标准列）',
+  `sSubsidiaryId` VARCHAR(100)  NULL                      COMMENT '子公司 ID（组织层级隔离，标准列）',
+  `tCreateDate`   DATETIME      NOT NULL                  COMMENT '创建时间（标准列）',
+  `sUserId`       VARCHAR(100)  NOT NULL                  COMMENT '关联 usr_user.sId',
+  `sPermGroupId`  VARCHAR(100)  NOT NULL                  COMMENT '关联 usr_permission_group.sId',
+  PRIMARY KEY (`iIncrement`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci
+  COMMENT='用户与权限组的多对多关联表';
+
+-- ============================================================
+-- Table: tStaff
+-- ============================================================
+CREATE TABLE `tStaff` (
+  `iIncrement`    INT           NOT NULL AUTO_INCREMENT  COMMENT '整数主键 ID（标准列）',
+  `sId`           VARCHAR(100)  NULL                      COMMENT '业务 ID（标准列）',
+  `sBrandsId`     VARCHAR(100)  NULL                      COMMENT '品牌 ID（多租户隔离，标准列）',
+  `sSubsidiaryId` VARCHAR(100)  NULL                      COMMENT '子公司 ID（组织层级隔离，标准列）',
+  `tCreateDate`   DATETIME      NOT NULL                  COMMENT '创建时间（标准列）',
+  `sStaffNo`      VARCHAR(50)   NULL                      COMMENT '职员编号；系统内唯一',
+  `sStaffName`    VARCHAR(50)   NOT NULL                  COMMENT '职员姓名',
+  `sDepartment`   VARCHAR(100)  NULL      DEFAULT NULL    COMMENT '所属部门（本期暂用字符串，未来如需独立 tDepartment 字典表再另行重构）',
+  `sCreatedBy`    VARCHAR(50)   NULL                      COMMENT '制单人',
+  `bDeleted`      BIT(1)        NOT NULL  DEFAULT 0       COMMENT '软删除标记',
+  `tDeletedDate`  DATETIME      NULL      DEFAULT NULL    COMMENT '软删除时间',
+  `sDeletedBy`    VARCHAR(50)   NULL      DEFAULT NULL    COMMENT '软删除操作人',
+  PRIMARY KEY (`iIncrement`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci
+  COMMENT='职员维度（员工名 / 部门 / 编号）';
+
+-- ============================================================
+-- Table: brand
+-- ============================================================
+CREATE TABLE `brand` (
+  `iIncrement`    INT           NOT NULL AUTO_INCREMENT  COMMENT '整数主键 ID（标准列）',
+  `sId`           VARCHAR(100)  NULL                      COMMENT '业务 ID（标准列）',
+  `sBrandsId`     VARCHAR(100)  NULL                      COMMENT '品牌 ID（多租户隔离，标准列）',
+  `sSubsidiaryId` VARCHAR(100)  NULL                      COMMENT '子公司 ID（组织层级隔离，标准列）',
+  `tCreateDate`   DATETIME      NOT NULL                  COMMENT '创建时间（标准列）',
+  `sName`         VARCHAR(100)  NULL                      COMMENT '公司名称',
+  `sShortName`    VARCHAR(100)  NULL                      COMMENT '公司简称',
+  `sNo`           VARCHAR(100)  NULL                      COMMENT '单位编号（登录账号根据单位编号作为前缀）',
+  PRIMARY KEY (`iIncrement`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci
+  COMMENT='公司表';
+
+-- ============================================================
+-- Indexes: usr_user
+-- ============================================================
+CREATE UNIQUE INDEX `uk_usr_user_sid`       ON `usr_user` (`sId`);
+CREATE UNIQUE INDEX `uk_usr_user_username`  ON `usr_user` (`sUsername`);
+CREATE UNIQUE INDEX `uk_usr_user_usercode`  ON `usr_user` (`sUserCode`);
+CREATE        INDEX `idx_usr_user_tenant`   ON `usr_user` (`sBrandsId`, `sSubsidiaryId`);
+CREATE        INDEX `idx_usr_user_type`     ON `usr_user` (`sUserType`);
+CREATE        INDEX `idx_usr_user_disabled` ON `usr_user` (`bIsDisabled`);
+
+-- ============================================================
+-- Indexes: usr_permission_group
+-- ============================================================
+CREATE UNIQUE INDEX `uk_usr_perm_group_sid`    ON `usr_permission_group` (`sId`);
+CREATE UNIQUE INDEX `uk_usr_perm_group_code`   ON `usr_permission_group` (`sGroupCode`);
+CREATE        INDEX `idx_usr_perm_group_tenant` ON `usr_permission_group` (`sBrandsId`, `sSubsidiaryId`);
+
+-- ============================================================
+-- Indexes: usr_user_permission
+-- ============================================================
+CREATE UNIQUE INDEX `uk_usr_user_perm`        ON `usr_user_permission` (`sUserId`, `sPermGroupId`);
+CREATE        INDEX `idx_usr_user_perm_user`  ON `usr_user_permission` (`sUserId`);
+CREATE        INDEX `idx_usr_user_perm_group` ON `usr_user_permission` (`sPermGroupId`);
+
+-- ============================================================
+-- Indexes: tStaff
+-- ============================================================
+CREATE UNIQUE INDEX `uk_staff_no`      ON `tStaff` (`sStaffNo`);
+CREATE        INDEX `idx_staff_name`   ON `tStaff` (`sStaffName`);
+CREATE        INDEX `idx_department`   ON `tStaff` (`sDepartment`);
+
+-- ============================================================
+-- Indexes: brand
+-- ============================================================
+CREATE UNIQUE INDEX `uk_brand_no`    ON `brand` (`sNo`);
+CREATE        INDEX `idx_brand_name` ON `brand` (`sName`);
+
+-- ============================================================
+-- Foreign Keys
+-- ============================================================
+ALTER TABLE `usr_user_permission`
+  ADD CONSTRAINT `fk_usr_user_perm_user`
+    FOREIGN KEY (`sUserId`) REFERENCES `usr_user` (`sId`)
+    ON DELETE CASCADE ON UPDATE CASCADE;
+
+ALTER TABLE `usr_user_permission`
+  ADD CONSTRAINT `fk_usr_user_perm_group`
+    FOREIGN KEY (`sPermGroupId`) REFERENCES `usr_permission_group` (`sId`)
+    ON DELETE CASCADE ON UPDATE CASCADE;
diff --git a/backend/src/main/resources/db/migration/V2__fix_username_unique_per_tenant.sql b/backend/src/main/resources/db/migration/V2__fix_username_unique_per_tenant.sql
new file mode 100644
index 0000000..e207bbf
--- /dev/null
+++ b/backend/src/main/resources/db/migration/V2__fix_username_unique_per_tenant.sql
@@ -0,0 +1,7 @@
+-- Flyway migration V2 — fix usr_user username uniqueness to per-tenant scope
+-- Generated: 2026-05-08
+-- Reason: uk_usr_user_username was globally unique; same username must be allowed across different brands (sBrandsId)
+-- New unique constraint: (sUsername, sBrandsId) composite
+
+ALTER TABLE usr_user DROP INDEX uk_usr_user_username;
+CREATE UNIQUE INDEX uk_usr_user_username_tenant ON usr_user (sUsername, sBrandsId);
diff --git a/backend/src/main/resources/mapper/UsrUserMapper.xml b/backend/src/main/resources/mapper/UsrUserMapper.xml
new file mode 100644
index 0000000..a6ec4e9
--- /dev/null
+++ b/backend/src/main/resources/mapper/UsrUserMapper.xml
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE mapper PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN"
+        "http://mybatis.org/dtd/mybatis-3-mapper.dtd">
+<mapper namespace="com.example.erp.module.usr.mapper.UsrUserMapper">
+
+    <!-- REQ-USR-003: 查询用户 -->
+    <select id="selectUserList" resultType="com.example.erp.module.usr.vo.UserListItemVO">
+        SELECT u.sId, u.sUsername, u.sUserCode, u.sUserType, u.sLanguage,
+               u.bCanEditDoc, u.bIsDisabled, u.tLastLoginDate, u.sCreatorUsername, u.tCreateDate,
+               s.sStaffName, s.sDepartment
+        FROM usr_user u
+        LEFT JOIN tStaff s ON u.sEmployeeId = s.sId
+                           AND s.sBrandsId = u.sBrandsId
+                           AND s.bDeleted = 0
+        WHERE u.sBrandsId = #{brandId}
+        <if test="queryValue != null and queryValue != ''">
+            <choose>
+                <when test="queryField == 'username'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sUsername LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sUsername NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sUsername = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'staffName'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND s.sStaffName LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND (s.sStaffName IS NULL OR s.sStaffName NOT LIKE CONCAT('%', #{queryValue}, '%'))</when>
+                        <otherwise>AND s.sStaffName = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'userCode'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sUserCode LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sUserCode NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sUserCode = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'department'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND s.sDepartment LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND (s.sDepartment IS NULL OR s.sDepartment NOT LIKE CONCAT('%', #{queryValue}, '%'))</when>
+                        <otherwise>AND s.sDepartment = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'userType'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sUserType LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sUserType NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sUserType = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'creator'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sCreatorUsername LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sCreatorUsername NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sCreatorUsername = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'disabled'">
+                    <choose>
+                        <when test="queryValue == '是'">AND u.bIsDisabled = 1</when>
+                        <when test="queryValue == '否'">AND u.bIsDisabled = 0</when>
+                    </choose>
+                </when>
+                <when test="queryField == 'lastLoginDate'">
+                    AND DATE(u.tLastLoginDate) = #{queryValue}
+                </when>
+            </choose>
+        </if>
+        ORDER BY u.tCreateDate DESC
+    </select>
+
+</mapper>
diff --git a/backend/src/test/java/com/example/erp/ApplicationContextTest.java b/backend/src/test/java/com/example/erp/ApplicationContextTest.java
new file mode 100644
index 0000000..88fabbd
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/ApplicationContextTest.java
@@ -0,0 +1,14 @@
+package com.example.erp;
+
+import org.junit.jupiter.api.Test;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.test.context.ActiveProfiles;
+
+@SpringBootTest
+@ActiveProfiles("test")
+class ApplicationContextTest {
+
+    @Test
+    void contextLoads() {
+    }
+}
diff --git a/backend/src/test/java/com/example/erp/common/JwtUtilTest.java b/backend/src/test/java/com/example/erp/common/JwtUtilTest.java
new file mode 100644
index 0000000..8fbce7e
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/common/JwtUtilTest.java
@@ -0,0 +1,56 @@
+package com.example.erp.common;
+
+import com.example.erp.common.exception.BizException;
+import com.example.erp.common.util.JwtUtil;
+import com.example.erp.config.JwtProperties;
+import io.jsonwebtoken.Claims;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+class JwtUtilTest {
+
+    private JwtUtil jwtUtil;
+
+    @BeforeEach
+    void setUp() {
+        JwtProperties props = new JwtProperties();
+        props.setSecret("testSecretKey32CharactersMinimumXXXXX");
+        props.setAccessTokenExpiry(86400L);
+        props.setRefreshTokenExpiry(604800L);
+        jwtUtil = new JwtUtil(props);
+    }
+
+    @Test
+    void generateAndParseAccessToken_containsAllClaims() {
+        String token = jwtUtil.generateAccessToken("u1", "admin", "超级管理员", "b1");
+        Claims claims = jwtUtil.parseAccessToken(token);
+
+        assertEquals("u1", claims.getSubject());
+        assertEquals("admin", claims.get("username", String.class));
+        assertEquals("超级管理员", claims.get("userType", String.class));
+        assertEquals("b1", claims.get("brandId", String.class));
+        assertNotNull(claims.getExpiration());
+    }
+
+    @Test
+    void parseRefreshToken_withAccessToken_throws40103() {
+        String accessToken = jwtUtil.generateAccessToken("u1", "admin", "普通用户", "b1");
+        BizException ex = assertThrows(BizException.class, () -> jwtUtil.parseRefreshToken(accessToken));
+        assertEquals(40103, ex.getCode());
+    }
+
+    @Test
+    void parseAccessToken_withExpiredToken_throws40103() {
+        JwtProperties expiredProps = new JwtProperties();
+        expiredProps.setSecret("testSecretKey32CharactersMinimumXXXXX");
+        expiredProps.setAccessTokenExpiry(-1L);
+        expiredProps.setRefreshTokenExpiry(604800L);
+        JwtUtil expiredJwtUtil = new JwtUtil(expiredProps);
+
+        String token = expiredJwtUtil.generateAccessToken("u1", "admin", "普通用户", "b1");
+        BizException ex = assertThrows(BizException.class, () -> jwtUtil.parseAccessToken(token));
+        assertEquals(40103, ex.getCode());
+    }
+}
diff --git a/backend/src/test/java/com/example/erp/common/ResultTest.java b/backend/src/test/java/com/example/erp/common/ResultTest.java
new file mode 100644
index 0000000..3fb583f
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/common/ResultTest.java
@@ -0,0 +1,31 @@
+package com.example.erp.common;
+
+import com.example.erp.common.response.Result;
+import org.junit.jupiter.api.Test;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+class ResultTest {
+
+    @Test
+    void ok_setsCode200AndData() {
+        Result<String> result = Result.ok("hello");
+        assertEquals(200, result.getCode());
+        assertEquals("hello", result.getData());
+        assertEquals("操作成功", result.getMessage());
+    }
+
+    @Test
+    void fail_setsCodeAndNullData() {
+        Result<Object> result = Result.fail(40100, "用户名或密码错误");
+        assertEquals(40100, result.getCode());
+        assertNull(result.getData());
+        assertEquals("用户名或密码错误", result.getMessage());
+    }
+
+    @Test
+    void ok_hasPositiveTimestamp() {
+        Result<Void> result = Result.ok(null);
+        assertTrue(result.getTimestamp() > 0);
+    }
+}
diff --git a/backend/src/test/java/com/example/erp/module/usr/AuthControllerTest.java b/backend/src/test/java/com/example/erp/module/usr/AuthControllerTest.java
new file mode 100644
index 0000000..7a9809d
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/module/usr/AuthControllerTest.java
@@ -0,0 +1,106 @@
+package com.example.erp.module.usr;
+
+import com.example.erp.common.exception.BizException;
+import com.example.erp.module.usr.dto.LoginReqDTO;
+import com.example.erp.module.usr.service.AuthService;
+import com.example.erp.module.usr.vo.BrandVO;
+import com.example.erp.module.usr.vo.LoginVO;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.autoconfigure.web.servlet.WebMvcTest;
+import org.springframework.boot.test.mock.mockito.MockBean;
+import org.springframework.context.annotation.Import;
+import org.springframework.http.MediaType;
+import org.springframework.test.web.servlet.MockMvc;
+
+import java.util.List;
+import java.util.Map;
+
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyString;
+import static org.mockito.Mockito.when;
+import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.*;
+import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.*;
+
+import com.example.erp.config.SecurityConfig;
+import com.example.erp.config.JwtAuthenticationFilter;
+import com.example.erp.config.BeanConfig;
+import com.example.erp.common.util.JwtUtil;
+import com.example.erp.config.JwtProperties;
+import com.example.erp.module.usr.controller.AuthController;
+
+@WebMvcTest(controllers = AuthController.class)
+@Import({SecurityConfig.class, JwtAuthenticationFilter.class, BeanConfig.class, JwtUtil.class, JwtProperties.class})
+class AuthControllerTest {
+
+    @Autowired private MockMvc mockMvc;
+    @Autowired private ObjectMapper objectMapper;
+    @MockBean private AuthService authService;
+
+    @Test
+    void login_wrongPassword_returns40100() throws Exception {
+        when(authService.login(any())).thenThrow(new BizException(40100, "用户名或密码错误"));
+
+        Map<String, String> body = Map.of("brandNo", "STD", "username", "admin", "password", "wrong");
+        mockMvc.perform(post("/api/auth/login")
+                        .contentType(MediaType.APPLICATION_JSON)
+                        .content(objectMapper.writeValueAsString(body)))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(40100))
+                .andExpect(jsonPath("$.message").value("用户名或密码错误"));
+    }
+
+    @Test
+    void login_validCredentials_returns200AndTokens() throws Exception {
+        LoginVO.UserInfoVO userInfo = new LoginVO.UserInfoVO();
+        userInfo.setUserId("u1");
+        userInfo.setUsername("admin");
+        userInfo.setUserType("普通用户");
+        userInfo.setLanguage("中文");
+        userInfo.setBrandId("b1");
+
+        LoginVO loginVO = new LoginVO();
+        loginVO.setAccessToken("access-token");
+        loginVO.setRefreshToken("refresh-token");
+        loginVO.setExpiresIn(86400L);
+        loginVO.setUserInfo(userInfo);
+
+        when(authService.login(any())).thenReturn(loginVO);
+
+        Map<String, String> body = Map.of("brandNo", "STD", "username", "admin", "password", "666666");
+        mockMvc.perform(post("/api/auth/login")
+                        .contentType(MediaType.APPLICATION_JSON)
+                        .content(objectMapper.writeValueAsString(body)))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(200))
+                .andExpect(jsonPath("$.data.accessToken").value("access-token"))
+                .andExpect(jsonPath("$.data.userInfo.userId").value("u1"));
+    }
+
+    @Test
+    void refresh_withInvalidToken_returns40103() throws Exception {
+        when(authService.refresh(anyString())).thenThrow(new BizException(40103, "Refresh Token 已失效，请重新登录"));
+
+        Map<String, String> body = Map.of("refreshToken", "invalid-token");
+        mockMvc.perform(post("/api/auth/refresh")
+                        .contentType(MediaType.APPLICATION_JSON)
+                        .content(objectMapper.writeValueAsString(body)))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(40103));
+    }
+
+    @Test
+    void getBrands_returns200AndList() throws Exception {
+        BrandVO b = new BrandVO();
+        b.setSNo("STD");
+        b.setSName("标准版");
+        when(authService.getBrands()).thenReturn(List.of(b));
+
+        mockMvc.perform(get("/api/auth/brands"))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(200))
+                .andExpect(jsonPath("$.data[0].sNo").value("STD"))
+                .andExpect(jsonPath("$.data[0].sName").value("标准版"));
+    }
+}
diff --git a/backend/src/test/java/com/example/erp/module/usr/AuthServiceTest.java b/backend/src/test/java/com/example/erp/module/usr/AuthServiceTest.java
new file mode 100644
index 0000000..d3610ea
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/module/usr/AuthServiceTest.java
@@ -0,0 +1,201 @@
+package com.example.erp.module.usr;
+
+import com.example.erp.common.exception.BizException;
+import com.example.erp.common.util.JwtUtil;
+import com.example.erp.module.usr.dto.LoginReqDTO;
+import com.example.erp.module.usr.entity.BrandEntity;
+import com.example.erp.module.usr.entity.UsrUserEntity;
+import com.example.erp.module.usr.mapper.BrandMapper;
+import com.example.erp.module.usr.mapper.UsrUserMapper;
+import com.example.erp.module.usr.service.impl.AuthServiceImpl;
+import com.example.erp.module.usr.vo.BrandVO;
+import com.example.erp.module.usr.vo.LoginVO;
+import io.jsonwebtoken.Claims;
+import com.baomidou.mybatisplus.core.MybatisConfiguration;
+import com.baomidou.mybatisplus.core.metadata.TableInfoHelper;
+import org.apache.ibatis.builder.MapperBuilderAssistant;
+import org.junit.jupiter.api.BeforeAll;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.junit.jupiter.MockitoExtension;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+
+import java.time.LocalDateTime;
+import java.util.List;
+import java.util.Map;
+
+import static org.junit.jupiter.api.Assertions.*;
+import static org.mockito.ArgumentMatchers.*;
+import static org.mockito.Mockito.*;
+
+@ExtendWith(MockitoExtension.class)
+class AuthServiceTest {
+
+    @BeforeAll
+    static void initMyBatisEntityCache() {
+        TableInfoHelper.initTableInfo(
+            new MapperBuilderAssistant(new MybatisConfiguration(), ""),
+            UsrUserEntity.class);
+    }
+
+
+    @Mock private BrandMapper brandMapper;
+    @Mock private UsrUserMapper userMapper;
+    @Mock private JwtUtil jwtUtil;
+    @Mock private BCryptPasswordEncoder passwordEncoder;
+
+    @InjectMocks
+    private AuthServiceImpl authService;
+
+    private LoginReqDTO req;
+    private BrandEntity brand;
+    private UsrUserEntity user;
+
+    @BeforeEach
+    void setUp() {
+        req = new LoginReqDTO();
+        req.setBrandNo("STD");
+        req.setUsername("admin");
+        req.setPassword("666666");
+
+        brand = new BrandEntity();
+        brand.setSId("b1");
+        brand.setSNo("STD");
+        brand.setSName("标准版");
+
+        user = new UsrUserEntity();
+        user.setSId("u1");
+        user.setSUsername("admin");
+        user.setSPasswordHash("$2a$10$hashed");
+        user.setSUserType("普通用户");
+        user.setSLanguage("中文");
+        user.setBIsDisabled(0);
+        user.setILoginFailCount(0);
+        user.setTLockUntil(null);
+    }
+
+    @Test
+    void login_brandNotFound_throws40100() {
+        when(brandMapper.selectOne(any())).thenReturn(null);
+        BizException ex = assertThrows(BizException.class, () -> authService.login(req));
+        assertEquals(40100, ex.getCode());
+    }
+
+    @Test
+    void login_userNotFound_throws40100() {
+        when(brandMapper.selectOne(any())).thenReturn(brand);
+        when(userMapper.selectOne(any())).thenReturn(null);
+        BizException ex = assertThrows(BizException.class, () -> authService.login(req));
+        assertEquals(40100, ex.getCode());
+    }
+
+    @Test
+    void login_accountDisabled_throws40101() {
+        user.setBIsDisabled(1);
+        when(brandMapper.selectOne(any())).thenReturn(brand);
+        when(userMapper.selectOne(any())).thenReturn(user);
+        BizException ex = assertThrows(BizException.class, () -> authService.login(req));
+        assertEquals(40101, ex.getCode());
+    }
+
+    @Test
+    void login_accountLocked_throws40102WithRemainingMinutes() {
+        user.setTLockUntil(LocalDateTime.now().plusMinutes(20));
+        when(brandMapper.selectOne(any())).thenReturn(brand);
+        when(userMapper.selectOne(any())).thenReturn(user);
+        BizException ex = assertThrows(BizException.class, () -> authService.login(req));
+        assertEquals(40102, ex.getCode());
+        assertTrue(ex.getMessage().contains("分钟"));
+    }
+
+    @Test
+    void login_wrongPassword_firstTime_throws40100AndIncrementsCount() {
+        when(brandMapper.selectOne(any())).thenReturn(brand);
+        when(userMapper.selectOne(any())).thenReturn(user);
+        when(passwordEncoder.matches(anyString(), anyString())).thenReturn(false);
+        BizException ex = assertThrows(BizException.class, () -> authService.login(req));
+        assertEquals(40100, ex.getCode());
+        verify(userMapper).update(isNull(), any());
+    }
+
+    @Test
+    void login_wrongPassword_5thTime_setsLockAndThrows40102() {
+        user.setILoginFailCount(4);
+        when(brandMapper.selectOne(any())).thenReturn(brand);
+        when(userMapper.selectOne(any())).thenReturn(user);
+        when(passwordEncoder.matches(anyString(), anyString())).thenReturn(false);
+        BizException ex = assertThrows(BizException.class, () -> authService.login(req));
+        assertEquals(40102, ex.getCode());
+        verify(userMapper).update(isNull(), any());
+    }
+
+    @Test
+    void login_success_resetsCountAndReturnsTokens() {
+        when(brandMapper.selectOne(any())).thenReturn(brand);
+        when(userMapper.selectOne(any())).thenReturn(user);
+        when(passwordEncoder.matches(anyString(), anyString())).thenReturn(true);
+        when(jwtUtil.generateAccessToken(anyString(), anyString(), anyString(), anyString())).thenReturn("access-token");
+        when(jwtUtil.generateRefreshToken(anyString(), anyString())).thenReturn("refresh-token");
+
+        LoginVO result = authService.login(req);
+
+        assertEquals("access-token", result.getAccessToken());
+        assertEquals("refresh-token", result.getRefreshToken());
+        assertEquals(86400L, result.getExpiresIn());
+        assertNotNull(result.getUserInfo());
+        assertEquals("u1", result.getUserInfo().getUserId());
+        verify(userMapper).update(isNull(), any());
+    }
+
+    // ---- Task 6: refresh + getBrands tests ----
+
+    @Test
+    void refresh_validRefreshToken_returnsNewAccessToken() {
+        Claims claims = mock(Claims.class);
+        when(claims.getSubject()).thenReturn("u1");
+        when(claims.get("brandId", String.class)).thenReturn("b1");
+        when(jwtUtil.parseRefreshToken("valid-refresh")).thenReturn(claims);
+        when(userMapper.selectOne(any())).thenReturn(user);
+        when(jwtUtil.generateAccessToken(anyString(), anyString(), anyString(), anyString())).thenReturn("new-access-token");
+
+        String newToken = authService.refresh("valid-refresh");
+        assertEquals("new-access-token", newToken);
+    }
+
+    @Test
+    void refresh_lockedUser_throws40103() {
+        Claims claims = mock(Claims.class);
+        when(claims.getSubject()).thenReturn("u1");
+        when(claims.get("brandId", String.class)).thenReturn("b1");
+        when(jwtUtil.parseRefreshToken("valid-refresh")).thenReturn(claims);
+        user.setTLockUntil(LocalDateTime.now().plusMinutes(25));
+        when(userMapper.selectOne(any())).thenReturn(user);
+
+        BizException ex = assertThrows(BizException.class, () -> authService.refresh("valid-refresh"));
+        assertEquals(40103, ex.getCode());
+    }
+
+    @Test
+    void refresh_invalidRefreshToken_throws40103() {
+        when(jwtUtil.parseRefreshToken("bad-token"))
+                .thenThrow(new BizException(40103, "Refresh Token 已失效，请重新登录"));
+        BizException ex = assertThrows(BizException.class, () -> authService.refresh("bad-token"));
+        assertEquals(40103, ex.getCode());
+    }
+
+    @Test
+    void getBrands_returnsListSortedByName() {
+        BrandEntity b1 = new BrandEntity();
+        b1.setSNo("STD"); b1.setSName("标准版");
+        BrandEntity b2 = new BrandEntity();
+        b2.setSNo("ENT"); b2.setSName("企业版");
+        when(brandMapper.selectList(any())).thenReturn(List.of(b1, b2));
+
+        List<BrandVO> result = authService.getBrands();
+        assertEquals(2, result.size());
+        assertEquals("标准版", result.get(0).getSName());
+    }
+}
diff --git a/backend/src/test/java/com/example/erp/module/usr/BrandMapperTest.java b/backend/src/test/java/com/example/erp/module/usr/BrandMapperTest.java
new file mode 100644
index 0000000..9f9f3a2
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/module/usr/BrandMapperTest.java
@@ -0,0 +1,47 @@
+package com.example.erp.module.usr;
+
+import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
+import com.example.erp.module.usr.entity.BrandEntity;
+import com.example.erp.module.usr.mapper.BrandMapper;
+import org.junit.jupiter.api.AfterEach;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.test.context.ActiveProfiles;
+
+import java.time.LocalDateTime;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+@SpringBootTest
+@ActiveProfiles("test")
+class BrandMapperTest {
+
+    @Autowired
+    private BrandMapper brandMapper;
+
+    @BeforeEach
+    void setUp() {
+        BrandEntity brand = new BrandEntity();
+        brand.setSId("b-test-mapper-001");
+        brand.setSNo("TST");
+        brand.setSName("测试版");
+        brand.setTCreateDate(LocalDateTime.now());
+        brandMapper.insert(brand);
+    }
+
+    @AfterEach
+    void tearDown() {
+        brandMapper.delete(new LambdaQueryWrapper<BrandEntity>().eq(BrandEntity::getSNo, "TST"));
+    }
+
+    @Test
+    void findByNo_returnsCorrectBrand() {
+        BrandEntity found = brandMapper.selectOne(
+                new LambdaQueryWrapper<BrandEntity>().eq(BrandEntity::getSNo, "TST"));
+        assertNotNull(found);
+        assertEquals("测试版", found.getSName());
+        assertEquals("b-test-mapper-001", found.getSId());
+    }
+}
diff --git a/backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java b/backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java
new file mode 100644
index 0000000..5e4a91f
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java
@@ -0,0 +1,175 @@
+package com.example.erp.module.usr;
+
+import com.example.erp.config.BeanConfig;
+import com.example.erp.config.JwtAuthenticationFilter;
+import com.example.erp.config.JwtProperties;
+import com.example.erp.config.SecurityConfig;
+import com.example.erp.common.util.JwtUtil;
+import com.example.erp.module.usr.controller.UserController;
+import com.example.erp.module.usr.service.UserService;
+import com.example.erp.common.vo.PageVO;
+import com.example.erp.module.usr.dto.UserListQueryDTO;
+import com.example.erp.module.usr.dto.UserUpdateReqDTO;
+import com.example.erp.module.usr.vo.UserCreateRespVO;
+import com.example.erp.module.usr.vo.UserListItemVO;
+import com.example.erp.module.usr.vo.UserUpdateRespVO;
+import com.example.erp.module.usr.vo.StaffVO;
+import com.example.erp.module.usr.vo.PermissionGroupVO;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import org.junit.jupiter.api.Test;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.autoconfigure.web.servlet.WebMvcTest;
+import org.springframework.boot.test.mock.mockito.MockBean;
+import org.springframework.context.annotation.Import;
+import org.springframework.http.MediaType;
+import org.springframework.test.context.ActiveProfiles;
+import org.springframework.test.web.servlet.MockMvc;
+import org.springframework.test.web.servlet.request.RequestPostProcessor;
+
+import java.util.List;
+import java.util.Map;
+
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyString;
+import static org.mockito.Mockito.when;
+import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.*;
+import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.*;
+
+@ActiveProfiles("test")
+@WebMvcTest(controllers = UserController.class)
+@Import({SecurityConfig.class, JwtAuthenticationFilter.class, BeanConfig.class, JwtUtil.class, JwtProperties.class})
+class UserControllerTest {
+
+    @Autowired private MockMvc mockMvc;
+    @Autowired private ObjectMapper objectMapper;
+    @Autowired private JwtUtil jwtUtil;
+    @MockBean private UserService userService;
+
+    RequestPostProcessor superAdmin() {
+        String token = jwtUtil.generateAccessToken("u1", "admin", "超级管理员", "b1");
+        return request -> { request.addHeader("Authorization", "Bearer " + token); return request; };
+    }
+
+    @Test
+    void createUser_noAuth_returns401() throws Exception {
+        mockMvc.perform(post("/api/usr/users")
+                        .contentType(MediaType.APPLICATION_JSON)
+                        .content("{}"))
+                .andExpect(status().isUnauthorized());
+    }
+
+    @Test
+    void createUser_validRequest_returns200() throws Exception {
+        UserCreateRespVO resp = new UserCreateRespVO();
+        resp.setUserId("new-user-id");
+        resp.setUserCode("UC001");
+        resp.setUsername("testuser");
+        when(userService.createUser(any(), any())).thenReturn(resp);
+
+        Map<String, Object> body = Map.of(
+                "userCode", "UC001",
+                "username", "testuser",
+                "userType", "普通用户",
+                "language", "中文");
+        mockMvc.perform(post("/api/usr/users")
+                        .with(superAdmin())
+                        .contentType(MediaType.APPLICATION_JSON)
+                        .content(objectMapper.writeValueAsString(body)))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(200))
+                .andExpect(jsonPath("$.data.userId").value("new-user-id"));
+    }
+
+    @Test
+    void createUser_missingUserCode_returns40001() throws Exception {
+        Map<String, Object> body = Map.of(
+                "username", "testuser",
+                "userType", "普通用户",
+                "language", "中文");
+        mockMvc.perform(post("/api/usr/users")
+                        .with(superAdmin())
+                        .contentType(MediaType.APPLICATION_JSON)
+                        .content(objectMapper.writeValueAsString(body)))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(40001));
+    }
+
+    @Test
+    void getStaffs_returns200() throws Exception {
+        StaffVO s = new StaffVO();
+        s.setSId("s1");
+        s.setSStaffName("张三");
+        when(userService.getStaffs(anyString())).thenReturn(List.of(s));
+
+        mockMvc.perform(get("/api/usr/users/staffs").with(superAdmin()))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(200))
+                .andExpect(jsonPath("$.data[0].sId").value("s1"));
+    }
+
+    @Test
+    void getUsers_withToken_returns200() throws Exception {
+        PageVO<UserListItemVO> page = new PageVO<>();
+        page.setTotal(0);
+        page.setPage(1);
+        page.setPageSize(20);
+        page.setList(List.of());
+        when(userService.getUserList(any(UserListQueryDTO.class), anyString())).thenReturn(page);
+
+        mockMvc.perform(get("/api/usr/users").with(superAdmin()))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(200))
+                .andExpect(jsonPath("$.data.total").value(0))
+                .andExpect(jsonPath("$.data.list").isArray());
+    }
+
+    @Test
+    void getUsers_noAuth_returns401() throws Exception {
+        mockMvc.perform(get("/api/usr/users"))
+                .andExpect(status().isUnauthorized());
+    }
+
+    @Test
+    void updateUser_withToken_returns200() throws Exception {
+        UserUpdateRespVO resp = new UserUpdateRespVO();
+        resp.setUserId("u-target");
+        resp.setUsername("alice");
+        resp.setUpdatedAt(java.time.LocalDateTime.now());
+        when(userService.updateUser(anyString(), any(UserUpdateReqDTO.class), any())).thenReturn(resp);
+
+        UserUpdateReqDTO body = new UserUpdateReqDTO();
+        body.setUserType("普通用户");
+        body.setLanguage("中文");
+        body.setPermGroupIds(List.of());
+
+        mockMvc.perform(put("/api/usr/users/u-target").with(superAdmin())
+                        .contentType(org.springframework.http.MediaType.APPLICATION_JSON)
+                        .content(objectMapper.writeValueAsString(body)))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(200))
+                .andExpect(jsonPath("$.data.userId").value("u-target"))
+                .andExpect(jsonPath("$.data.username").value("alice"));
+    }
+
+    @Test
+    void updateUser_noAuth_returns401() throws Exception {
+        mockMvc.perform(put("/api/usr/users/u-target")
+                        .contentType(org.springframework.http.MediaType.APPLICATION_JSON)
+                        .content("{}"))
+                .andExpect(status().isUnauthorized());
+    }
+
+    @Test
+    void getPermissionGroups_returns200() throws Exception {
+        PermissionGroupVO g = new PermissionGroupVO();
+        g.setSId("g1");
+        g.setSGroupCode("usr:create");
+        g.setSGroupName("新增用户");
+        when(userService.getPermissionGroups(anyString())).thenReturn(List.of(g));
+
+        mockMvc.perform(get("/api/usr/users/permission-groups").with(superAdmin()))
+                .andExpect(status().isOk())
+                .andExpect(jsonPath("$.code").value(200))
+                .andExpect(jsonPath("$.data[0].sGroupCode").value("usr:create"));
+    }
+}
diff --git a/backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java b/backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java
new file mode 100644
index 0000000..88ab7fa
--- /dev/null
+++ b/backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java
@@ -0,0 +1,313 @@
+package com.example.erp.module.usr;
+
+import com.baomidou.mybatisplus.core.metadata.IPage;
+import com.baomidou.mybatisplus.extension.plugins.pagination.Page;
+import com.example.erp.common.exception.BizException;
+import com.example.erp.common.vo.PageVO;
+import com.example.erp.config.UserPrincipal;
+import com.example.erp.module.usr.dto.UserCreateReqDTO;
+import com.example.erp.module.usr.dto.UserListQueryDTO;
+import com.example.erp.module.usr.dto.UserUpdateReqDTO;
+import com.example.erp.module.usr.vo.UserListItemVO;
+import com.example.erp.module.usr.vo.UserUpdateRespVO;
+import com.example.erp.module.usr.entity.StaffEntity;
+import com.example.erp.module.usr.entity.UsrUserEntity;
+import com.example.erp.module.usr.entity.UserPermissionEntity;
+import com.example.erp.module.usr.mapper.PermissionGroupMapper;
+import com.example.erp.module.usr.mapper.StaffMapper;
+import com.example.erp.common.constants.UsrErrorCode;
+import com.example.erp.module.usr.mapper.UserPermissionMapper;
+import com.example.erp.module.usr.mapper.UsrUserMapper;
+import com.example.erp.module.usr.service.impl.UserServiceImpl;
+import com.example.erp.module.usr.vo.UserCreateRespVO;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.junit.jupiter.MockitoExtension;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+
+import java.util.List;
+
+import static org.junit.jupiter.api.Assertions.*;
+import static org.mockito.ArgumentMatchers.*;
+import static org.mockito.Mockito.*;
+
+@ExtendWith(MockitoExtension.class)
+class UserServiceTest {
+
+    @Mock private UsrUserMapper userMapper;
+    @Mock private StaffMapper staffMapper;
+    @Mock private PermissionGroupMapper permGroupMapper;
+    @Mock private UserPermissionMapper userPermissionMapper;
+    @Mock private BCryptPasswordEncoder passwordEncoder;
+
+    @InjectMocks
+    private UserServiceImpl userService;
+
+    private UserCreateReqDTO req;
+    private UserPrincipal superAdmin;
+    private UserPrincipal normalUser;
+
+    @BeforeEach
+    void setUp() {
+        req = new UserCreateReqDTO();
+        req.setUserCode("UC001");
+        req.setUsername("testuser");
+        req.setUserType("普通用户");
+        req.setLanguage("中文");
+
+        superAdmin = new UserPrincipal("u1", "admin", "超级管理员", "b1");
+        normalUser = new UserPrincipal("u2", "user", "普通用户", "b1");
+    }
+
+    @Test
+    void createUser_normalUser_throws40300() {
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.createUser(req, normalUser));
+        assertEquals(40300, ex.getCode());
+    }
+
+    @Test
+    void createUser_success_insertsUserAndReturnsVO() {
+        when(userMapper.selectCount(any())).thenReturn(0L);
+        when(passwordEncoder.encode(anyString())).thenReturn("$2a$10$hashed");
+        when(userMapper.insert(any(UsrUserEntity.class))).thenReturn(1);
+
+        UserCreateRespVO vo = userService.createUser(req, superAdmin);
+
+        assertNotNull(vo.getUserId());
+        assertEquals("UC001", vo.getUserCode());
+        assertEquals("testuser", vo.getUsername());
+        verify(userMapper).insert(any(UsrUserEntity.class));
+    }
+
+    @Test
+    void createUser_duplicateUserCode_throws40902() {
+        when(userMapper.selectCount(any())).thenReturn(1L);
+
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.createUser(req, superAdmin));
+        assertEquals(40902, ex.getCode());
+    }
+
+    @Test
+    void createUser_duplicateUsername_throws40901() {
+        when(userMapper.selectCount(any())).thenReturn(0L, 1L);
+
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.createUser(req, superAdmin));
+        assertEquals(40901, ex.getCode());
+    }
+
+    @Test
+    @SuppressWarnings("unchecked")
+    void createUser_withPermGroups_insertsPermissions() {
+        req.setPermGroupIds(List.of("g1", "g2"));
+        when(userMapper.selectCount(any())).thenReturn(0L);
+        when(passwordEncoder.encode(anyString())).thenReturn("$2a$10$hashed");
+        when(userMapper.insert(any(UsrUserEntity.class))).thenReturn(1);
+
+        userService.createUser(req, superAdmin);
+
+        verify(userPermissionMapper).insert(argThat((java.util.Collection<UserPermissionEntity> c) -> c.size() == 2));
+    }
+
+    @Test
+    void getUserList_queryDtoDefaults() {
+        UserListQueryDTO q = new UserListQueryDTO();
+        assertEquals("username", q.getQueryField());
+        assertEquals("contains", q.getMatchType());
+        assertEquals(20, q.getPageSize());
+        assertEquals(1, q.getPage());
+    }
+
+    @Test
+    void getUserList_capsPageSizeAt100_callsMapper() {
+        IPage<UserListItemVO> mockPage = new Page<>(1, 100, 5);
+        when(userMapper.selectUserList(argThat(p -> p.getSize() == 100), eq("b1"), any(), any(), any()))
+                .thenReturn(mockPage);
+
+        UserListQueryDTO q = new UserListQueryDTO();
+        q.setPageSize(200);
+        PageVO<UserListItemVO> result = userService.getUserList(q, "b1");
+
+        assertEquals(5L, result.getTotal());
+        verify(userMapper).selectUserList(argThat(p -> p.getSize() == 100), eq("b1"), any(), any(), any());
+    }
+
+    @Test
+    void getUserList_emptyQueryValue_doesNotFilter() {
+        IPage<UserListItemVO> mockPage = new Page<>(1, 20, 2);
+        when(userMapper.selectUserList(any(), eq("b1"), eq("username"), eq("contains"), eq("")))
+                .thenReturn(mockPage);
+
+        UserListQueryDTO q = new UserListQueryDTO();
+        q.setQueryValue(null);
+        PageVO<UserListItemVO> result = userService.getUserList(q, "b1");
+
+        assertEquals(2L, result.getTotal());
+    }
+
+    @Test
+    void createUser_invalidEmployeeId_throws40001() {
+        req.setEmployeeId("bad-staff-id");
+        when(userMapper.selectCount(any())).thenReturn(0L);
+        when(staffMapper.selectOne(any())).thenReturn(null);
+
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.createUser(req, superAdmin));
+        assertEquals(UsrErrorCode.EMPLOYEE_NOT_FOUND, ex.getCode());
+    }
+
+    @Test
+    void updateUser_dtoDefaults() {
+        com.example.erp.module.usr.dto.UserUpdateReqDTO dto = new com.example.erp.module.usr.dto.UserUpdateReqDTO();
+        dto.setUserType("普通用户");
+        dto.setLanguage("中文");
+        dto.setCanEditDoc(false);
+        dto.setDisabled(false);
+        dto.setEmployeeId(null);
+        dto.setPermGroupIds(List.of());
+
+        assertEquals("普通用户", dto.getUserType());
+        assertEquals("中文", dto.getLanguage());
+        assertFalse(dto.isCanEditDoc());
+        assertFalse(dto.isDisabled());
+        assertNull(dto.getEmployeeId());
+        assertTrue(dto.getPermGroupIds().isEmpty());
+
+        com.example.erp.module.usr.vo.UserUpdateRespVO resp = new com.example.erp.module.usr.vo.UserUpdateRespVO();
+        resp.setUserId("u1");
+        resp.setUsername("alice");
+        resp.setUpdatedAt(java.time.LocalDateTime.now());
+        assertEquals("u1", resp.getUserId());
+        assertEquals("alice", resp.getUsername());
+        assertNotNull(resp.getUpdatedAt());
+
+        assertEquals(40400, UsrErrorCode.USER_NOT_FOUND);
+        assertEquals(40301, UsrErrorCode.SELF_ADMIN_CHANGE);
+    }
+
+    @Test
+    void updateUser_nonAdmin_throws40300() {
+        UserUpdateReqDTO dto = new UserUpdateReqDTO();
+        dto.setUserType("普通用户");
+        dto.setLanguage("中文");
+        dto.setPermGroupIds(List.of());
+
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.updateUser("u-target", dto, normalUser));
+        assertEquals(UsrErrorCode.PERMISSION_DENIED, ex.getCode());
+    }
+
+    @Test
+    void updateUser_userNotFound_throws40400() {
+        UserUpdateReqDTO dto = new UserUpdateReqDTO();
+        dto.setUserType("普通用户");
+        dto.setLanguage("中文");
+        dto.setPermGroupIds(List.of());
+        when(userMapper.selectOne(any())).thenReturn(null);
+
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.updateUser("u-target", dto, superAdmin));
+        assertEquals(UsrErrorCode.USER_NOT_FOUND, ex.getCode());
+    }
+
+    @Test
+    void updateUser_selfAdminChange_throws40301() {
+        UserUpdateReqDTO dto = new UserUpdateReqDTO();
+        dto.setUserType("普通用户");
+        dto.setLanguage("中文");
+        dto.setPermGroupIds(List.of());
+        UsrUserEntity existing = new UsrUserEntity();
+        existing.setSId("u1");
+        existing.setSUsername("admin");
+        when(userMapper.selectOne(any())).thenReturn(existing);
+
+        // superAdmin.userId() == "u1", target userId == "u1" → self-admin change
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.updateUser("u1", dto, superAdmin));
+        assertEquals(UsrErrorCode.SELF_ADMIN_CHANGE, ex.getCode());
+    }
+
+    @Test
+    void updateUser_selfAdminKeepType_doesNotThrow() {
+        UserUpdateReqDTO dto = new UserUpdateReqDTO();
+        dto.setUserType("超级管理员");
+        dto.setLanguage("中文");
+        dto.setPermGroupIds(List.of());
+        UsrUserEntity existing = new UsrUserEntity();
+        existing.setSId("u1");
+        existing.setSUsername("admin");
+        when(userMapper.selectOne(any())).thenReturn(existing);
+        when(userMapper.update(any(), any())).thenReturn(1);
+
+        // 自己保持 超级管理员 角色 → 不应抛 40301
+        assertDoesNotThrow(() -> userService.updateUser("u1", dto, superAdmin));
+    }
+
+    @Test
+    void updateUser_invalidEmployee_throws40001() {
+        UserUpdateReqDTO dto = new UserUpdateReqDTO();
+        dto.setUserType("普通用户");
+        dto.setLanguage("中文");
+        dto.setEmployeeId("bad-emp");
+        dto.setPermGroupIds(List.of());
+        UsrUserEntity existing = new UsrUserEntity();
+        existing.setSId("u-target");
+        existing.setSUsername("alice");
+        when(userMapper.selectOne(any())).thenReturn(existing);
+        when(staffMapper.selectOne(any())).thenReturn(null);
+
+        BizException ex = assertThrows(BizException.class,
+                () -> userService.updateUser("u-target", dto, superAdmin));
+        assertEquals(UsrErrorCode.EMPLOYEE_NOT_FOUND, ex.getCode());
+    }
+
+    @Test
+    void updateUser_happyPath_updatesAndReturnsResp() {
+        UserUpdateReqDTO dto = new UserUpdateReqDTO();
+        dto.setUserType("超级管理员");
+        dto.setLanguage("英文");
+        dto.setCanEditDoc(true);
+        dto.setDisabled(false);
+        dto.setPermGroupIds(List.of("g1", "g2"));
+        UsrUserEntity existing = new UsrUserEntity();
+        existing.setSId("u-target");
+        existing.setSUsername("alice");
+        when(userMapper.selectOne(any())).thenReturn(existing);
+        when(userMapper.update(any(), any())).thenReturn(1);
+        when(userPermissionMapper.delete(any())).thenReturn(0);
+
+        UserUpdateRespVO resp = userService.updateUser("u-target", dto, superAdmin);
+
+        assertNotNull(resp);
+        assertEquals("u-target", resp.getUserId());
+        assertEquals("alice", resp.getUsername());
+        assertNotNull(resp.getUpdatedAt());
+        verify(userMapper).update(any(), any());
+        verify(userPermissionMapper).delete(any());
+        verify(userPermissionMapper).insert(argThat((java.util.Collection<UserPermissionEntity> c) -> c.size() == 2));
+    }
+
+    @Test
+    void updateUser_emptyPermGroupIds_onlyDeletes() {
+        UserUpdateReqDTO dto = new UserUpdateReqDTO();
+        dto.setUserType("普通用户");
+        dto.setLanguage("中文");
+        dto.setPermGroupIds(List.of());
+        UsrUserEntity existing = new UsrUserEntity();
+        existing.setSId("u-target");
+        existing.setSUsername("bob");
+        when(userMapper.selectOne(any())).thenReturn(existing);
+        when(userMapper.update(any(), any())).thenReturn(1);
+        when(userPermissionMapper.delete(any())).thenReturn(0);
+
+        userService.updateUser("u-target", dto, superAdmin);
+
+        verify(userPermissionMapper).delete(any());
+        verify(userPermissionMapper, never()).insert(anyList());
+    }
+}
diff --git a/backend/src/test/resources/application-test.yml b/backend/src/test/resources/application-test.yml
new file mode 100644
index 0000000..b301682
--- /dev/null
+++ b/backend/src/test/resources/application-test.yml
@@ -0,0 +1,19 @@
+spring:
+  datasource:
+    url: jdbc:mysql://${DB_HOST:118.178.19.35}:${DB_PORT:3318}/${DB_SCHEMA:xlyweberp_vibe_erp_test}?useSSL=false&serverTimezone=Asia/Shanghai&allowPublicKeyRetrieval=true&characterEncoding=UTF-8
+    username: ${DB_USER:xlyprint}
+    password: ${DB_PASSWORD:xlyXLYprint2016}
+    driver-class-name: com.mysql.cj.jdbc.Driver
+  flyway:
+    baseline-on-migrate: true
+    baseline-version: 1
+    validate-on-migrate: false
+
+jwt:
+  secret: ${JWT_SECRET:a3b7e8f1c4d6029e5b8f37a1c9d2e4068b5f1d3a7c0e9b2f48d6a1c5e7f9b3d2}
+  access-token-expiry: 86400
+  refresh-token-expiry: 604800
+
+logging:
+  level:
+    com.example.erp: DEBUG
diff --git a/docs/03-数据库设计文档.md b/docs/03-数据库设计文档.md
index b543682..b038d06 100644
--- a/docs/03-数据库设计文档.md
+++ b/docs/03-数据库设计文档.md
@@ -64,7 +64,7 @@ usr_user（用户主表）
 
 ### 索引
 
-- `uk_usr_user_username` (UNIQUE): `sUsername` — 全局唯一约束
+- `uk_usr_user_username_tenant` (UNIQUE): `(sUsername, sBrandsId)` — 用户名在同一 brand 内唯一（V2 迁移：原全局唯一改为多租户复合唯一）
 - `uk_usr_user_usercode` (UNIQUE): `sUserCode` — 用户号唯一约束
 - `idx_usr_user_tenant` (INDEX): `sBrandsId, sSubsidiaryId` — 多租户隔离查询
 - `idx_usr_user_type` (INDEX): `sUserType` — 按用户类型过滤
diff --git a/docs/04-技术规范.md b/docs/04-技术规范.md
index 768cf69..3d44691 100644
--- a/docs/04-技术规范.md
+++ b/docs/04-技术规范.md
@@ -147,8 +147,8 @@ type 取值：`feat` / `fix` / `refactor` / `test` / `docs` / `chore`
 
 ### 3.2 分页查询
 
-- **入参**：`pageNum`（从 1 起）、`pageSize`（默认 20，最大 100）
-- **出参**：`{ list: [], total: N, pageNum: N, pageSize: N }`
+- **入参**：`page`（从 1 起）、`pageSize`（默认 20，最大 100）
+- **出参**：`{ list: [], total: N, page: N, pageSize: N }`
 - 后端使用 MyBatis-Plus `Page<T>` 对象；前端使用 Ant Design `Table` 的 `pagination` 属性
 
 ### 3.3 日期与金额
diff --git a/docs/05-API接口契约.md b/docs/05-API接口契约.md
index 0780d93..551f1e0 100644
--- a/docs/05-API接口契约.md
+++ b/docs/05-API接口契约.md
@@ -24,7 +24,7 @@ BasePath: `/api`
 除登录接口外，所有接口均需在请求头携带 `Authorization: Bearer <access_token>`。Token 由 REQ-USR-004 登录接口签发，有效期 24 小时。
 
 ### 分页参数
-列表查询接口统一使用以下分页入参：`pageNum`（页码，从 1 起）、`pageSize`（每页条数，默认 20，最大 100）。响应体 `data` 字段格式：`{ list: [], total: N, pageNum: N, pageSize: N }`。
+列表查询接口统一使用以下分页入参：`page`（页码，从 1 起）、`pageSize`（每页条数，默认 20，最大 100）。响应体 `data` 字段格式：`{ list: [], total: N, page: N, pageSize: N }`。
 
 ## 接口清单
 （各模块接口段落见下方，由 `downstream-gen` 按 REQ 填入）
@@ -73,8 +73,8 @@ BasePath: `/api`
 - **Path**: `/api/usr/users`
 - **Auth**: Bearer Token
 - **Permission**: `usr:query`
-- **请求**: Query 参数：`field=用户名|员工名|用户号|部门|用户类型|作废|登录日期|制单人`、`matchMode=包含|不包含|等于`、`value=string`、`pageNum=int`、`pageSize=int`
-- **响应**: `{ list: [{ "userId", "username", "staffName", "userCode", "department", "userType", "language", "isDisabled", "lastLoginDate", "creatorUsername", "createDate" }], total, pageNum, pageSize }` — 密码字段不返回
+- **请求**: Query 参数：`queryField=username|staffName|userCode|department|userType|disabled|lastLoginDate|creator`（默认 username）、`matchType=contains|notContains|equals`（默认 contains）、`queryValue=string`、`page=int`（默认 1）、`pageSize=int`（默认 20，最大 100）
+- **响应**: `{ list: [{ "sId", "sUsername", "sUserCode", "sUserType", "sLanguage", "bIsDisabled", "tLastLoginDate", "sCreatorUsername", "tCreateDate", "sStaffName", "sDepartment" }], total, page, pageSize }` — sPasswordHash / iLoginFailCount / tLockUntil 不返回
 
 #### 错误码
 - `40001` — 参数校验失败
diff --git a/docs/08-模块任务管理.md b/docs/08-模块任务管理.md
index ed5c7ca..fe62454 100644
--- a/docs/08-模块任务管理.md
+++ b/docs/08-模块任务管理.md
@@ -58,9 +58,9 @@
 - module_usr 用户管理
   - 依赖: —
   - 路径: backend/module/usr/, frontend/pages/usr/
-  - MR: —
+  - MR: !1
   - 功能:
-    - [ ] REQ-USR-004 用户登录
-    - [ ] REQ-USR-001 增加用户
-    - [ ] REQ-USR-003 查询用户
-    - [ ] REQ-USR-002 修改用户
+    - [x] REQ-USR-004 用户登录
+    - [x] REQ-USR-001 增加用户
+    - [x] REQ-USR-003 查询用户
+    - [x] REQ-USR-002 修改用户
diff --git a/docs/superpowers/module-reports/2026-05-08-module_usr.md b/docs/superpowers/module-reports/2026-05-08-module_usr.md
new file mode 100644
index 0000000..b58df0d
--- /dev/null
+++ b/docs/superpowers/module-reports/2026-05-08-module_usr.md
@@ -0,0 +1,115 @@
+---
+module_id: module_usr
+date: 2026-05-08
+git_range: master..module-module_usr
+---
+
+# 模块完成报告 — module_usr 用户管理
+
+## ① 模块信息
+- 模块 ID: module_usr
+- 模块名: 用户管理
+- 开发区间: master..module-module_usr（共 29 commits）
+
+## ② REQ 完成清单
+
+- [x] REQ-USR-004 — 用户登录
+  - spec: docs/superpowers/specs/2026-05-08-REQ-USR-004.md
+  - plan: docs/superpowers/plans/2026-05-08-REQ-USR-004.md
+  - review: docs/superpowers/reviews/2026-05-08-REQ-USR-004.md
+
+- [x] REQ-USR-001 — 增加用户
+  - spec: docs/superpowers/specs/2026-05-08-REQ-USR-001.md
+  - plan: docs/superpowers/plans/2026-05-08-REQ-USR-001.md
+  - review: docs/superpowers/reviews/2026-05-08-REQ-USR-001.md
+
+- [x] REQ-USR-003 — 查询用户
+  - spec: docs/superpowers/specs/2026-05-08-REQ-USR-003.md
+  - plan: docs/superpowers/plans/2026-05-08-REQ-USR-003.md
+  - review: docs/superpowers/reviews/2026-05-08-REQ-USR-003.md
+
+- [x] REQ-USR-002 — 修改用户
+  - spec: docs/superpowers/specs/2026-05-08-REQ-USR-002.md
+  - plan: docs/superpowers/plans/2026-05-08-REQ-USR-002.md
+  - review: docs/superpowers/reviews/2026-05-08-REQ-USR-002.md
+
+## ③ 文件变更表
+
+| 文件 | 操作 | 说明 |
+|---|---|---|
+| backend/pom.xml | 新增 | Spring Boot 3 项目配置，含 checkstyle 插件 |
+| backend/checkstyle.xml | 新增 | 项目 checkstyle 规则（Spring Boot 友好） |
+| backend/src/main/java/com/example/erp/common/\* | 新增 | Result/BizException/GlobalExceptionHandler/JwtUtil/PageVO/错误码常量 |
+| backend/src/main/java/com/example/erp/config/\* | 新增 | SecurityConfig/JwtFilter/JwtProperties/UserPrincipal/BeanConfig/MybatisPlusConfig |
+| backend/src/main/java/com/example/erp/module/usr/controller/\* | 新增 | AuthController（登录/刷新/品牌列表）、UserController（CRUD 接口） |
+| backend/src/main/java/com/example/erp/module/usr/service/\* | 新增 | AuthService/AuthServiceImpl/UserService/UserServiceImpl |
+| backend/src/main/java/com/example/erp/module/usr/entity/\* | 新增 | BrandEntity/UsrUserEntity/StaffEntity/PermissionGroupEntity/UserPermissionEntity |
+| backend/src/main/java/com/example/erp/module/usr/mapper/\* | 新增 | BrandMapper/UsrUserMapper/StaffMapper/PermissionGroupMapper/UserPermissionMapper |
+| backend/src/main/java/com/example/erp/module/usr/dto/\* | 新增 | LoginReqDTO/RefreshTokenReqDTO/UserCreateReqDTO/UserListQueryDTO/UserUpdateReqDTO |
+| backend/src/main/java/com/example/erp/module/usr/vo/\* | 新增 | LoginVO/BrandVO/StaffVO/PermissionGroupVO/UserCreateRespVO/UserListItemVO/UserUpdateRespVO |
+| backend/src/main/resources/mapper/UsrUserMapper.xml | 新增 | selectUserList 动态查询 SQL |
+| backend/src/main/resources/db/migration/V1\_\_initial\_schema.sql | 新增 | 初始全量 schema |
+| backend/src/main/resources/db/migration/V2\_\_fix\_username\_unique\_per\_tenant.sql | 新增 | 用户名唯一索引改为租户范围内唯一 |
+| backend/src/test/\* | 新增 | 49 个测试（ApplicationContext/JwtUtil/Result/AuthService/AuthController/UserService/UserController/BrandMapper） |
+| frontend/src/api/auth.ts | 新增 | 登录/刷新 API 函数 |
+| frontend/src/api/request.ts | 新增 | Axios 请求拦截器（含 JWT 自动注入） |
+| frontend/src/api/usr.ts | 新增 | 用户增/查/改 API 接口及类型定义 |
+| frontend/src/pages/usr/LoginPage.tsx | 新增 | 登录页（多品牌选择） |
+| frontend/src/pages/usr/UserFormDrawer.tsx | 新增 | 新增/修改用户抽屉（复用组件） |
+| frontend/src/pages/usr/UserListPage.tsx | 新增 | 用户列表（搜索+分页+操作列） |
+| frontend/src/store/\* | 新增 | Redux auth 切片（credentials/userInfo） |
+| frontend/src/components/PermButton.tsx | 新增 | 基于用户类型的权限按钮组件 |
+| frontend/src/test/\* | 新增 | 10 个前端测试（authSlice/LoginPage/UserListPage） |
+| frontend/package.json | 修改 | lint 脚本改为 tsc --noEmit（eslint 未安装） |
+| docs/03-数据库设计文档.md | 修改 | 同步 V2 migration 唯一索引变更 |
+| docs/04-技术规范.md | 修改 | 分页入参规范统一为 page（原 pageNum） |
+| docs/05-API接口契约.md | 修改 | 分页规范同步更新 |
+| docs/08-模块任务管理.md | 修改 | 4 个 REQ 全部勾选 [x] |
+| scripts/test.sh | 修改 | 添加 Java 21 PATH 适配（Lombok 兼容性） |
+
+## ④ 数据库使用表
+- 读: `brand`（登录品牌列表）、`tStaff`（员工下拉）、`usr_permission_group`（权限组下拉）
+- 写: `usr_user`（登录时更新 tLastLoginDate/iLoginFailCount/tLockUntil；新增/修改用户字段）、`usr_user_permission`（新增/修改时先删后插）
+
+## ⑤ 测试结果
+- `scripts/test.sh` 最终：green
+- 通过: 59 / 失败: 0 / 跳过: 0
+- 覆盖率: 未配置覆盖率工具（所有业务路径已有对应测试用例）
+
+## ⑥ 本模块新增 Migration
+
+- `backend/src/main/resources/db/migration/V1__initial_schema.sql` — 全量初始 schema（usr_user / tStaff / usr_permission_group / usr_user_permission / brand 五张表）
+- `backend/src/main/resources/db/migration/V2__fix_username_unique_per_tenant.sql` — 将 uk_usr_user_username 从全局唯一改为租户范围内唯一（允许不同 brand 使用相同用户名）
+
+## ⑦ 跨模块改动清单（软规则 S2）
+
+本项目当前仅含 module_usr 一个模块，无跨模块改动。
+
+改动了两处项目级规范文档：
+- `docs/04-技术规范.md § 3.2`：分页入参统一为 `page`（REQ-USR-003 review 发现 `pageNum` 与实现不一致，修正文档）
+- `docs/05-API接口契约.md`：分页规范同步更新
+
+## ⑧ 偏离 spec 清单
+
+- REQ-USR-002：`UserListPage` 传给编辑抽屉的 `initialData` 中 `permGroupIds` 字段未传值（始终为空数组）。原因：用户列表 API 不返回每用户的权限组关联，无法在列表页预填。规格 § 前端交互设计 line 103 已明确说明"初始化为空数组即可，用户可重新勾选"，属有意决策而非实现缺陷。
+
+## ⑨ AI reviewer 报告汇总
+
+- REQ-USR-004: round 2 — approve（link: docs/superpowers/reviews/2026-05-08-REQ-USR-004.md）
+- REQ-USR-001: round 2 — approve（link: docs/superpowers/reviews/2026-05-08-REQ-USR-001.md）
+- REQ-USR-003: round 4 — approve（link: docs/superpowers/reviews/2026-05-08-REQ-USR-003.md）
+- REQ-USR-002: round 2 — approve（link: docs/superpowers/reviews/2026-05-08-REQ-USR-002.md）
+
+## ⑩ 已知问题
+
+1. **前端 lint 工具缺失**：`eslint` 未在 `package.json` 中声明为 devDependency，lint 脚本临时改为 `tsc --noEmit`。建议后续补充 ESLint + TypeScript ESLint 插件配置。
+2. **`updatedAt` 序列化格式**：`UserUpdateRespVO.updatedAt` 未加 `@JsonFormat` 注解，依赖 Jackson 全局配置。如未配置全局 LocalDateTime 序列化器，返回值可能为数组格式而非 ISO-8601 字符串。
+3. **controller 层 BizException 错误码映射测试缺失**：`UserControllerTest` 未覆盖 40300/40400/40301 通过 `GlobalExceptionHandler` 映射为 JSON 错误码的路径（低风险，handler 已通过 createUser 路径间接覆盖）。
+
+## ⑪ 下一模块预览
+
+当前项目 `docs/02-开发计划.md` 仅包含 module_usr 一个模块，无后续模块。本次开发计划全部完成。
+
+## ⑫ MR 链接
+
+http://git.xlyprint.cn/zhuzc/test3/-/merge_requests/1
diff --git a/docs/superpowers/module-reports/module_usr-test-gate.md b/docs/superpowers/module-reports/module_usr-test-gate.md
new file mode 100644
index 0000000..f39dcec
--- /dev/null
+++ b/docs/superpowers/module-reports/module_usr-test-gate.md
@@ -0,0 +1,27 @@
+## Local test gate — module_usr
+
+执行时间: 2026-05-08T12:40:11+08:00
+
+### scripts/test.sh (subagent)
+- 子会话: a5ec519c45282bef8
+- 命令: ./scripts/test.sh
+- 退出码: 0
+- 通过: 59 / 失败: 0
+- 关键 stdout (≤30 行):
+
+```
+[test.sh] 1/6 setup test db
+[test.sh] 2/6 build
+[test.sh] 3/6 lint
+  Backend: 0 Checkstyle violations — BUILD SUCCESS
+  Frontend: tsc --noEmit (0 errors)
+[test.sh] 4/6 unit + integration
+  Backend: Tests run: 49, Failures: 0, Errors: 0, Skipped: 0
+  Frontend: Test Files 3 passed (3), Tests 10 passed (10)
+[test.sh] 5/6 E2E
+[test.sh] e2e 略
+[test.sh] 6/6 reset test db
+[test.sh] GREEN
+```
+
+结论: green
diff --git a/docs/superpowers/plans/2026-05-08-REQ-USR-001.md b/docs/superpowers/plans/2026-05-08-REQ-USR-001.md
new file mode 100644
index 0000000..4deafdd
--- /dev/null
+++ b/docs/superpowers/plans/2026-05-08-REQ-USR-001.md
@@ -0,0 +1,343 @@
+# REQ-USR-001 增加用户 Implementation Plan
+
+> **Execution:** Parent skill `feature-tdd` executes this plan task-by-task. Steps use checkbox (`- [ ]`) syntax for tracking.
+
+**Goal:** 超级管理员通过 POST /api/usr/users 新建用户账号，系统自动初始化密码、写入权限关联；前端提供「用户管理」页+新增 Drawer 表单。
+
+**Architecture:** Spring Boot 后端新增 UserController（三个端点：createUser / getStaffs / getPermissionGroups）+ UserServiceImpl（业务逻辑+事务）+ 三个辅助 Entity/Mapper（StaffEntity、PermissionGroupEntity、UserPermissionEntity）。JwtAuthenticationFilter 升级为存储 UserPrincipal record，使 Controller 通过 @AuthenticationPrincipal 取到 brandId / username / userType。前端新增 api/usr.ts + UserListPage.tsx + UserFormDrawer.tsx，在 App.tsx 补充 /usr/users 路由。
+
+**Tech Stack:** Spring Boot 3.3.5 + MyBatis-Plus 3.5.7 + Lombok + Spring Security + spring-security-test；React 18 + Ant Design 5 + Vitest + @testing-library/react
+
+---
+
+## 文件映射
+
+**新建**：
+- `backend/.../config/UserPrincipal.java` — JWT principal record（userId, username, userType, brandId）
+- `backend/.../module/usr/entity/StaffEntity.java` — 映射 tStaff
+- `backend/.../module/usr/entity/PermissionGroupEntity.java` — 映射 usr_permission_group
+- `backend/.../module/usr/entity/UserPermissionEntity.java` — 映射 usr_user_permission
+- `backend/.../module/usr/mapper/StaffMapper.java`
+- `backend/.../module/usr/mapper/PermissionGroupMapper.java`
+- `backend/.../module/usr/mapper/UserPermissionMapper.java`
+- `backend/.../common/constants/UsrErrorCode.java` — 40300/40901/40902
+- `backend/.../module/usr/dto/UserCreateReqDTO.java`
+- `backend/.../module/usr/vo/UserCreateRespVO.java`
+- `backend/.../module/usr/vo/StaffVO.java`
+- `backend/.../module/usr/vo/PermissionGroupVO.java`
+- `backend/.../module/usr/service/UserService.java`
+- `backend/.../module/usr/service/impl/UserServiceImpl.java`
+- `backend/.../module/usr/controller/UserController.java`
+- `backend/.../module/usr/UserServiceTest.java`
+- `backend/.../module/usr/UserControllerTest.java`
+- `frontend/src/api/usr.ts`
+- `frontend/src/pages/usr/UserListPage.tsx`
+- `frontend/src/pages/usr/UserFormDrawer.tsx`
+- `frontend/src/test/UserListPage.test.tsx`
+
+**修改**：
+- `backend/.../config/JwtAuthenticationFilter.java` — 存 UserPrincipal 而非 String（CLAUDE.md S2，必要基础设施）
+- `frontend/src/App.tsx` — 补 /usr/users 路由
+
+---
+
+## 合同级常量
+
+**UsrErrorCode**：
+- `PERMISSION_DENIED = 40300`
+- `USERNAME_EXISTS = 40901`
+- `USER_CODE_EXISTS = 40902`
+
+**UsrErrorCode 用法**：`throw new BizException(UsrErrorCode.PERMISSION_DENIED, "权限不足")`
+
+**UserPrincipal（Java record）**：
+```java
+package com.example.erp.config;
+public record UserPrincipal(String userId, String username, String userType, String brandId) {}
+```
+
+**JWT claim 名**（来自 JwtUtil.generateAccessToken）：
+- subject → userId
+- `"username"` → username
+- `"userType"` → userType
+- `"brandId"` → brandId
+
+---
+
+### Task 1: UserPrincipal + JwtAuthenticationFilter 升级（跨模块基础设施 S2）
+
+**Files:**
+- Create: `backend/src/main/java/com/example/erp/config/UserPrincipal.java`
+- Modify: `backend/src/main/java/com/example/erp/config/JwtAuthenticationFilter.java`
+
+**API shape:**
+- `record UserPrincipal(String userId, String username, String userType, String brandId) {}`
+- `JwtAuthenticationFilter.doFilterInternal()` — 解析 claims 后构造 `UserPrincipal`，存入 `UsernamePasswordAuthenticationToken` 的 principal
+
+- [ ] **Step 1: 写失败测试（在 UserControllerTest 中）**
+  - 文件：`backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java`
+  - 仅写类骨架 + 一个空测试方法 `createUser_noToken_returns401()`，注解 `@WebMvcTest(controllers = UserController.class)`
+  - 此时编译失败（UserController 不存在）→ 子会话确认 FAIL
+
+- [ ] **Step 2: 实现 UserPrincipal + 修改 JwtAuthenticationFilter**
+  - 创建 `UserPrincipal.java` record（见合同级常量）
+  - 修改 `JwtAuthenticationFilter.doFilterInternal()`：
+    ```java
+    UserPrincipal principal = new UserPrincipal(
+        claims.getSubject(),
+        claims.get("username", String.class),
+        claims.get("userType", String.class),
+        claims.get("brandId", String.class)
+    );
+    UsernamePasswordAuthenticationToken auth =
+        new UsernamePasswordAuthenticationToken(principal, null, Collections.emptyList());
+    SecurityContextHolder.getContext().setAuthentication(auth);
+    ```
+
+- [ ] **Step 3: 子会话验证已有测试仍通过**
+  - 命令：`JAVA_HOME=/opt/homebrew/opt/openjdk@21/libexec/openjdk.jdk/Contents/Home mvn test -pl backend -Dtest=AuthControllerTest,AuthServiceTest`
+  - 期待：全部 PASS
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/main/java/com/example/erp/config/UserPrincipal.java backend/src/main/java/com/example/erp/config/JwtAuthenticationFilter.java`
+  - `git commit -m "feat(usr): UserPrincipal record + JwtFilter升级存principal REQ-USR-001"`
+
+---
+
+### Task 2: 实体 + Mapper + 错误码 + DTO/VO 骨架
+
+**Files:**
+- Create: `backend/src/main/java/com/example/erp/module/usr/entity/StaffEntity.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/entity/PermissionGroupEntity.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/entity/UserPermissionEntity.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/mapper/StaffMapper.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/mapper/PermissionGroupMapper.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/mapper/UserPermissionMapper.java`
+- Create: `backend/src/main/java/com/example/erp/common/constants/UsrErrorCode.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/dto/UserCreateReqDTO.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/vo/UserCreateRespVO.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/vo/StaffVO.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/vo/PermissionGroupVO.java`
+
+**StaffEntity 字段**（来自 docs/03 tStaff 表）：`iIncrement(PK)`, `sId`, `sBrandsId`, `sSubsidiaryId`, `tCreateDate`, `sStaffNo`, `sStaffName`, `sDepartment`, `sCreatedBy`, `bDeleted(Bit/Integer)`, `tDeletedDate`, `sDeletedBy`；`@TableName("tStaff")`
+
+**PermissionGroupEntity 字段**：`iIncrement(PK)`, `sId`, `sBrandsId`, `sSubsidiaryId`, `tCreateDate`, `sGroupCode`, `sGroupName`, `sCategory`；`@TableName("usr_permission_group")`
+
+**UserPermissionEntity 字段**：`iIncrement(PK)`, `sId`, `sBrandsId`, `sSubsidiaryId`, `tCreateDate`, `sUserId`, `sPermGroupId`；`@TableName("usr_user_permission")`
+
+**UserCreateReqDTO 字段**（`@Valid` 注解）：
+```java
+@NotBlank String userCode;
+@NotBlank String username;
+@NotBlank @Pattern(regexp = "普通用户|超级管理员") String userType;
+@NotBlank @Pattern(regexp = "中文|英文|繁体") String language;
+boolean canEditDoc = false;
+String employeeId;           // nullable
+List<String> permGroupIds;   // nullable
+```
+
+**UserCreateRespVO**：`String userId, userCode, username`
+**StaffVO**：`String sId, sStaffName`
+**PermissionGroupVO**：`String sId, sGroupCode, sGroupName, sCategory`
+
+- [ ] **Step 1: 写失败测试**
+  - 在 `UserServiceTest.java` 中写类骨架 + 一个空测试 `createUser_normalUser_throws40300()`，引用 `UserService`（未创建）
+  - 子会话确认编译 FAIL
+
+- [ ] **Step 2: 创建所有文件**
+  - 按上方规格创建所有 entity / mapper / errorcode / dto / vo 文件
+  - 每个 mapper 继承 `BaseMapper<T>`
+  - 每个 entity 使用 Lombok `@Getter @Setter`
+
+- [ ] **Step 3: 子会话验证编译通过**
+  - 命令：`JAVA_HOME=... mvn compile -pl backend`
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/main/java/`
+  - `git commit -m "feat(usr): 实体/Mapper/DTO/VO骨架 + UsrErrorCode REQ-USR-001"`
+
+---
+
+### Task 3: UserServiceImpl — createUser 业务逻辑
+
+**Files:**
+- Create: `backend/src/main/java/com/example/erp/module/usr/service/UserService.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java`
+- Test: `backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+
+**API shape:**
+- `UserService#createUser(UserCreateReqDTO req, UserPrincipal principal) : UserCreateRespVO`
+- `UserService#getStaffs(String brandId) : List<StaffVO>`
+- `UserService#getPermissionGroups(String brandId) : List<PermissionGroupVO>`
+
+**createUser 逻辑序列**：
+1. `!"超级管理员".equals(principal.userType())` → `throw new BizException(40300, "权限不足")`
+2. `userMapper.selectCount(LQ...eq(sUserCode, req.getUserCode())) > 0` → `throw new BizException(40902, "用户号已存在")`
+3. `userMapper.selectCount(LQ...eq(sUsername).eq(sBrandsId)) > 0` → `throw new BizException(40901, "用户名已存在")`
+4. `req.getEmployeeId() != null` → `staffMapper.selectOne(LQ...eq(sId).eq(sBrandsId)) == null` → `throw new BizException(40001, "员工不存在")`
+5. 构造 `UsrUserEntity`：sId=UUID，sBrandsId=principal.brandId()，sCreatorUsername=principal.username()，tCreateDate=now，sPasswordHash=passwordEncoder.encode("666666")，bIsDisabled=0，iLoginFailCount=0
+6. `userMapper.insert(user)`
+7. `permGroupIds` 非 null 且非空 → 循环 `userPermissionMapper.insert(new UserPermissionEntity(UUID, brandId, now, user.sId, groupId))`
+8. 返回 `UserCreateRespVO(user.sId, user.sUserCode, user.sUsername)`
+
+**UserServiceImpl 依赖**：`@RequiredArgsConstructor`；注入 `UsrUserMapper`、`StaffMapper`、`PermissionGroupMapper`、`UserPermissionMapper`、`BCryptPasswordEncoder`
+
+- [ ] **Step 1: 写失败测试**
+  - `UserServiceTest.java` 完整写入下列测试（全部引用 `UserService` 接口），子会话确认失败（UserService 接口不存在）：
+    - `createUser_normalUser_throws40300` — principal.userType=普通用户 → BizException(40300)
+    - `createUser_success_insertsUserAndReturnsVO` — all mocks pass → 验证 userMapper.insert 被调用，返回 VO 有 userId
+    - `createUser_duplicateUserCode_throws40902` — selectCount 第1次返回 1L → BizException(40902)
+    - `createUser_duplicateUsername_throws40901` — selectCount 第1次返回 0L，第2次返回 1L → BizException(40901)
+    - `createUser_withPermGroups_insertsPermissions` — permGroupIds=["g1","g2"] → verify userPermissionMapper.insert 被调用 2 次
+    - `createUser_invalidEmployeeId_throws40001` — staffMapper.selectOne 返回 null → BizException(40001)
+
+- [ ] **Step 2: 实现 UserService + UserServiceImpl**
+  - 创建 `UserService.java` 接口（三个方法签名）
+  - 创建 `UserServiceImpl.java`，`@Service @RequiredArgsConstructor`，按逻辑序列实现 `createUser()`
+  - `getStaffs(brandId)`: `staffMapper.selectList(LQ...eq(sBrandsId, brandId).eq(bDeleted, 0).select("sId","sStaffName"))` → 映射 `StaffVO`
+  - `getPermissionGroups(brandId)`: `permGroupMapper.selectList(LQ...eq(sBrandsId, brandId))` → 映射 `PermissionGroupVO`（如 brandId 空则 selectList(null)）
+
+- [ ] **Step 3: 子会话验证 UserServiceTest 全部通过**
+  - 命令：`JAVA_HOME=... mvn test -pl backend -Dtest=UserServiceTest`
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/`
+  - `git commit -m "feat(usr): UserServiceImpl.createUser + getStaffs + getPermissionGroups REQ-USR-001"`
+
+---
+
+### Task 4: UserController — 三个端点
+
+**Files:**
+- Create: `backend/src/main/java/com/example/erp/module/usr/controller/UserController.java`
+- Test: `backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java`
+
+**API shape:**
+```java
+@RestController
+@RequestMapping("/api/usr")
+@RequiredArgsConstructor
+public class UserController {
+    private final UserService userService;
+
+    @PostMapping("/users")
+    public Result<UserCreateRespVO> createUser(
+            @Valid @RequestBody UserCreateReqDTO req,
+            @AuthenticationPrincipal UserPrincipal principal) { ... }
+
+    @GetMapping("/users/staffs")
+    public Result<List<StaffVO>> getStaffs(@AuthenticationPrincipal UserPrincipal principal) { ... }
+
+    @GetMapping("/users/permission-groups")
+    public Result<List<PermissionGroupVO>> getPermissionGroups(@AuthenticationPrincipal UserPrincipal principal) { ... }
+}
+```
+
+**测试助手** — `SecurityMockMvcRequestPostProcessors.authentication(...)` 注入 UserPrincipal：
+```java
+static RequestPostProcessor superAdmin() {
+    return authentication(new UsernamePasswordAuthenticationToken(
+        new UserPrincipal("u1","admin","超级管理员","b1"), null, emptyList()));
+}
+static RequestPostProcessor normalUser() {
+    return authentication(new UsernamePasswordAuthenticationToken(
+        new UserPrincipal("u2","user","普通用户","b1"), null, emptyList()));
+}
+```
+
+- [ ] **Step 1: 写失败测试**
+  - `UserControllerTest.java` 完整（`@WebMvcTest(UserController.class)` + `@Import(SecurityConfig, JwtAuthenticationFilter, BeanConfig, JwtUtil, JwtProperties)` + `@MockBean UserService`）：
+    - `createUser_noAuth_returns401` — 无 auth header → Spring Security 返回 401
+    - `createUser_validRequest_returns200` — `superAdmin()` + mock service返回VO → 验证 code=200, data.userId 非空
+    - `createUser_missingUserCode_returns40001` — 请求体 userCode 为空 → 验证 code=40001
+    - `getStaffs_returns200` — `superAdmin()` + mock returns list → 验证 code=200
+    - `getPermissionGroups_returns200` — `superAdmin()` + mock returns list → 验证 code=200
+  - 子会话确认 FAIL（UserController 不存在）
+
+- [ ] **Step 2: 实现 UserController**
+  - 按 API shape 创建 `UserController.java`
+  - `createUser`: `Result.ok(userService.createUser(req, principal))`
+  - `getStaffs`: `Result.ok(userService.getStaffs(principal.brandId()))`
+  - `getPermissionGroups`: `Result.ok(userService.getPermissionGroups(principal.brandId()))`
+
+- [ ] **Step 3: 子会话验证 UserControllerTest 全部通过**
+  - 命令：`JAVA_HOME=... mvn test -pl backend -Dtest=UserControllerTest,UserServiceTest,AuthControllerTest,AuthServiceTest`
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/`
+  - `git commit -m "feat(usr): UserController POST/users GET/staffs GET/permission-groups REQ-USR-001"`
+
+---
+
+### Task 5: 前端 api/usr.ts + UserFormDrawer + UserListPage + App.tsx 路由
+
+**Files:**
+- Create: `frontend/src/api/usr.ts`
+- Create: `frontend/src/pages/usr/UserListPage.tsx`
+- Create: `frontend/src/pages/usr/UserFormDrawer.tsx`
+- Create: `frontend/src/test/UserListPage.test.tsx`
+- Modify: `frontend/src/App.tsx`
+
+**api/usr.ts 接口**：
+```ts
+export interface StaffVO { sId: string; sStaffName: string }
+export interface PermissionGroupVO { sId: string; sGroupCode: string; sGroupName: string; sCategory: string | null }
+export interface UserCreateReq {
+  userCode: string; username: string; userType: '普通用户' | '超级管理员';
+  language: '中文' | '英文' | '繁体'; canEditDoc?: boolean;
+  employeeId?: string | null; permGroupIds?: string[]
+}
+export interface UserCreateResp { userId: string; userCode: string; username: string }
+
+export function getStaffs(): Promise<StaffVO[]>
+export function getPermissionGroups(): Promise<PermissionGroupVO[]>
+export function createUser(req: UserCreateReq): Promise<UserCreateResp>
+```
+（`request.get('/usr/users/staffs')` 等）
+
+**UserFormDrawer.tsx** props: `open: boolean`, `onClose: () => void`, `onSuccess: () => void`
+- `useEffect` 拉取 staffs + permissionGroups
+- Form 字段：userCode(Input), username(Input), userType(Select), language(Select), canEditDoc(Checkbox), employeeId(Select, options=staffs), permissions(Table with checkbox column)
+- 提交：调 `createUser()`，成功 → `message.success('新增用户成功')` + `onSuccess()`；失败 → `message.error(e.message)`
+
+**UserListPage.tsx**:
+- 顶部「新增」按钮（`<PermButton permission="usr:create">`，由 authSlice 中 userType 控制显示）
+- 点击按钮 → `setDrawerOpen(true)`
+- `<UserFormDrawer open={drawerOpen} onClose={() => setDrawerOpen(false)} onSuccess={() => setDrawerOpen(false)} />`
+- 表格区域为 stub（empty Table，REQ-USR-003 补充）
+
+**PermButton**（如不存在则在本任务创建 `frontend/src/components/PermButton.tsx`）：
+```tsx
+// REQ-USR-001: 权限按钮，根据 userType 控制显示
+export function PermButton({ permission, children, ...props }: { permission: string } & ButtonProps) {
+  const userType = useAppSelector(s => s.auth.userInfo?.userType)
+  // usr:create / usr:edit 仅超级管理员可见
+  if (userType !== '超级管理员') return null
+  return <Button {...props}>{children}</Button>
+}
+```
+
+**App.tsx 新增路由**：
+```tsx
+<Route path="/usr/users" element={<PrivateRoute><UserListPage /></PrivateRoute>} />
+```
+
+**测试 `UserListPage.test.tsx`**（三个测试）：
+1. `superAdmin_seesNewButton` — store userType=超级管理员 → 「新增」按钮可见
+2. `normalUser_doesNotSeeNewButton` — store userType=普通用户 → 「新增」按钮不可见
+3. `clickNewButton_opensDrawer` — 超级管理员点击新增 → UserFormDrawer 出现（mock API calls with vi.mock）
+
+- [ ] **Step 1: 写失败测试**
+  - 写 `UserListPage.test.tsx` 三个测试（引用 `UserListPage`、`PermButton`）
+  - 子会话确认 FAIL（文件不存在）
+
+- [ ] **Step 2: 实现**
+  - 按上方规格创建 `api/usr.ts`、`components/PermButton.tsx`、`UserFormDrawer.tsx`、`UserListPage.tsx`
+  - 修改 `App.tsx` 添加路由
+
+- [ ] **Step 3: 子会话验证前端测试通过**
+  - 命令：`cd frontend && npm run test -- --run`
+
+- [ ] **Step 4: Commit**
+  - `git add frontend/src/`
+  - `git commit -m "feat(usr): 前端 UserListPage + UserFormDrawer + usr.ts + PermButton REQ-USR-001"`
diff --git a/docs/superpowers/plans/2026-05-08-REQ-USR-002.md b/docs/superpowers/plans/2026-05-08-REQ-USR-002.md
new file mode 100644
index 0000000..9593785
--- /dev/null
+++ b/docs/superpowers/plans/2026-05-08-REQ-USR-002.md
@@ -0,0 +1,309 @@
+---
+req_id: REQ-USR-002
+date: 2026-05-08
+spec_ref: docs/superpowers/specs/2026-05-08-REQ-USR-002.md
+---
+
+# 修改用户 Implementation Plan
+
+> **Execution:** Parent skill `feature-tdd` executes this plan task-by-task. Steps use checkbox (`- [ ]`) syntax for tracking.
+
+**Goal:** 实现 `PUT /api/usr/users/{userId}`，允许超级管理员修改用户类型、语言、权限等，并在前端用户列表增加"修改"按钮触发编辑抽屉。
+
+**Architecture:** 后端遵循现有三层（Controller → Service → Mapper）模式，新增 UserUpdateReqDTO/UserUpdateRespVO，UserServiceImpl.updateUser 做权限、存在性、自身角色三重校验后执行字段更新 + 权限组先删后插；前端复用 UserFormDrawer（新增 userId/initialData props 区分 create/edit 模式），UserListPage 增加"操作"列。
+
+**Tech Stack:** Spring Boot 3 / MyBatis-Plus LambdaUpdateWrapper / @Transactional / React 18 / Ant Design 5 / Vitest
+
+---
+
+## Schema 改动
+
+无（不需要新 migration）
+
+## 文件变更清单
+
+- Create: `backend/src/main/java/com/example/erp/module/usr/dto/UserUpdateReqDTO.java` — 修改用户请求体
+- Create: `backend/src/main/java/com/example/erp/module/usr/vo/UserUpdateRespVO.java` — 修改用户响应 VO
+- Modify: `backend/src/main/java/com/example/erp/common/constants/UsrErrorCode.java` — 追加 USER_NOT_FOUND=40400 / SELF_ADMIN_CHANGE=40301
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/UserService.java` — 追加 updateUser 接口方法
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java` — 实现 updateUser
+- Modify: `backend/src/main/java/com/example/erp/module/usr/controller/UserController.java` — 追加 PUT /users/{userId}
+- Modify: `backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java` — 追加 updateUser 测试
+- Modify: `backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java` — 追加 HTTP 测试
+- Modify: `frontend/src/api/usr.ts` — 追加 UserUpdateReq / UserUpdateResp / updateUser()
+- Modify: `frontend/src/pages/usr/UserFormDrawer.tsx` — 支持 edit 模式（userId + initialData props）
+- Modify: `frontend/src/pages/usr/UserListPage.tsx` — 追加操作列 + editingUser 状态
+- Modify: `frontend/src/test/UserListPage.test.tsx` — 追加编辑流程测试
+
+---
+
+## 任务步骤
+
+### Task 1: 错误码 + DTO/VO 数据结构
+
+**Files:**
+- Modify: `backend/src/main/java/com/example/erp/common/constants/UsrErrorCode.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/dto/UserUpdateReqDTO.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/vo/UserUpdateRespVO.java`
+- Test: `backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+
+**API shape:**
+```
+UserUpdateReqDTO {
+  String userType;       // "普通用户" | "超级管理员"
+  String language;       // "中文" | "英文" | "繁体"
+  boolean canEditDoc;
+  boolean isDisabled;
+  String employeeId;     // nullable
+  List<String> permGroupIds;
+}
+
+UserUpdateRespVO {
+  String userId;
+  String username;
+  LocalDateTime updatedAt;
+}
+
+UsrErrorCode.USER_NOT_FOUND  = 40400
+UsrErrorCode.SELF_ADMIN_CHANGE = 40301
+```
+
+- [ ] **Step 1: 写失败测试**
+  - 测试名: `UserServiceTest#updateUser_dtoDefaults`
+  - 意图: `new UserUpdateReqDTO()` 后各字段可 set/get；`new UserUpdateRespVO()` 可 set/get userId/username/updatedAt；`UsrErrorCode.USER_NOT_FOUND == 40400`，`UsrErrorCode.SELF_ADMIN_CHANGE == 40301`
+  - 子会话确认 FAIL（类不存在）
+
+- [ ] **Step 2: 实现最小代码**
+  - 在 UsrErrorCode 追加两个常量
+  - 创建 UserUpdateReqDTO（@Getter @Setter，6 个字段）
+  - 创建 UserUpdateRespVO（@Getter @Setter，3 个字段：userId/username/updatedAt: LocalDateTime）
+
+- [ ] **Step 3: 子会话验证 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/main/java/com/example/erp/common/constants/UsrErrorCode.java backend/src/main/java/com/example/erp/module/usr/dto/UserUpdateReqDTO.java backend/src/main/java/com/example/erp/module/usr/vo/UserUpdateRespVO.java backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+  - `git commit -m "feat(usr): 添加 UserUpdateReqDTO / UserUpdateRespVO / 错误码 REQ-USR-002"`
+
+---
+
+### Task 2: UserService.updateUser 实现（含权限校验与权限组 replace）
+
+**Files:**
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/UserService.java`
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java`
+- Test: `backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+
+**API shape:**
+```
+UserService#updateUser(String userId, UserUpdateReqDTO req, UserPrincipal principal) : UserUpdateRespVO
+```
+
+业务逻辑约束（按顺序执行）：
+1. `!"超级管理员".equals(principal.userType())` → `BizException(PERMISSION_DENIED, "权限不足")`
+2. `userMapper.selectOne(sId=userId AND sBrandsId=brandId)` == null → `BizException(USER_NOT_FOUND, "用户不存在")`
+3. `principal.userId().equals(userId) && !"超级管理员".equals(req.getUserType())` → `BizException(SELF_ADMIN_CHANGE, "禁止修改自己的管理员角色")`
+4. `req.getEmployeeId() != null` → staffMapper 校验存在性，不存在 → `BizException(EMPLOYEE_NOT_FOUND, "员工不存在")`
+5. 用 `LambdaUpdateWrapper<UsrUserEntity>` 更新 sUserType/sLanguage/bCanEditDoc/bIsDisabled/sEmployeeId（按 sId=userId AND sBrandsId=brandId）
+6. `userPermissionMapper.delete(sUserId=userId AND sBrandsId=brandId)`，再批量 insert 新 UserPermissionEntity 列表（permGroupIds 为空时只删不插）
+7. 返回 UserUpdateRespVO（userId, username=entity.sUsername, updatedAt=LocalDateTime.now()）
+
+- [ ] **Step 1: 写失败测试（共 6 个）**
+
+  **T1** `updateUser_nonAdmin_throws40300`
+  - 意图: principal.userType="普通用户" → BizException.code==40300
+  - principal: new UserPrincipal("u1","admin","普通用户","b1")
+
+  **T2** `updateUser_userNotFound_throws40400`
+  - 意图: 超级管理员 principal，userMapper.selectOne 返回 null → BizException.code==40400
+
+  **T3** `updateUser_selfAdminChange_throws40301`
+  - 意图: principal.userId=="u1"，userId=="u1"，req.userType="普通用户" → BizException.code==40301
+  - userMapper.selectOne 需 stub 返回一个存在的用户实体
+
+  **T4** `updateUser_invalidEmployee_throws40001`
+  - 意图: req.employeeId="bad-emp"，staffMapper.selectOne 返回 null → BizException.code==40001
+  - userMapper.selectOne stub 返回有效用户；principal.userId!="u-target" 确保不触发 40301
+
+  **T5** `updateUser_happyPath_updatesAndReturnsResp`
+  - 意图: 一切校验通过 → userMapper 执行 update；permissionMapper 先 delete 再 insert；返回 vo.userId/username/updatedAt 非 null
+  - Stub: userMapper.selectOne 返回含 sUsername="alice" 的实体；staffMapper.selectOne 返回非 null（若 employeeId 非 null）；userMapper.update 返回 1；delete/insert 正常
+
+  **T6** `updateUser_emptyPermGroupIds_onlyDeletes`
+  - 意图: req.permGroupIds=[] → userPermissionMapper.delete 被调用；insert 不被调用
+  - verify(userPermissionMapper, never()).insert(anyList())
+
+  - 子会话确认 6 个测试均 FAIL（方法不存在）
+
+- [ ] **Step 2: 在 UserService 接口追加方法声明，在 UserServiceImpl 实现 updateUser**
+  - 使用 @Transactional
+  - 注意: UsrUserEntity 已有 sId / sUserType / sLanguage / bCanEditDoc / bIsDisabled / sEmployeeId 字段（来自现有代码）
+
+- [ ] **Step 3: 子会话验证全部 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/main/java/com/example/erp/module/usr/service/ backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+  - `git commit -m "feat(usr): UserService.updateUser 三重校验 + 权限组 replace REQ-USR-002"`
+
+---
+
+### Task 3: UserController PUT /api/usr/users/{userId}
+
+**Files:**
+- Modify: `backend/src/main/java/com/example/erp/module/usr/controller/UserController.java`
+- Test: `backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java`
+
+**API shape:**
+```
+@PutMapping("/users/{userId}")
+public Result<UserUpdateRespVO> updateUser(
+    @PathVariable String userId,
+    @Valid @RequestBody UserUpdateReqDTO req,
+    @AuthenticationPrincipal UserPrincipal principal)
+// REQ-USR-002: 修改用户
+```
+
+- [ ] **Step 1: 写失败测试（共 2 个）**
+
+  **T1** `updateUser_withToken_returns200`
+  - 意图: PUT /api/usr/users/u-target，含超级管理员 Token，body={userType,language,canEditDoc,isDisabled,permGroupIds}
+  - stub: userService.updateUser(any,any,any) 返回 UserUpdateRespVO{userId="u-target",username="alice",updatedAt=now}
+  - 断言: HTTP 200, $.code==200, $.data.userId=="u-target", $.data.username=="alice"
+
+  **T2** `updateUser_noAuth_returns401`
+  - 意图: 无 Token → HTTP 401
+
+  - 子会话确认 FAIL（endpoint 不存在）
+
+- [ ] **Step 2: 在 UserController 追加 PUT /users/{userId} 方法，加 // REQ-USR-002: 修改用户 注释**
+
+- [ ] **Step 3: 子会话验证 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/main/java/com/example/erp/module/usr/controller/UserController.java backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java`
+  - `git commit -m "feat(usr): PUT /api/usr/users/{userId} REQ-USR-002"`
+
+---
+
+### Task 4: 前端 API + UserFormDrawer edit 模式
+
+**Files:**
+- Modify: `frontend/src/api/usr.ts`
+- Modify: `frontend/src/pages/usr/UserFormDrawer.tsx`
+- Test: `frontend/src/test/UserListPage.test.tsx`
+
+**API shape (usr.ts):**
+```ts
+export interface UserUpdateReq {
+  userType: string
+  language: string
+  canEditDoc: boolean
+  isDisabled: boolean
+  employeeId: string | null
+  permGroupIds: string[]
+}
+
+export interface UserUpdateResp {
+  userId: string
+  username: string
+  updatedAt: string
+}
+
+export function updateUser(userId: string, req: UserUpdateReq): Promise<UserUpdateResp>
+// → request.put(`/usr/users/${userId}`, req)
+```
+
+**UserFormDrawer props 扩展:**
+```ts
+interface Props {
+  open: boolean
+  onClose: () => void
+  onSuccess: () => void
+  userId?: string          // 非 null = edit 模式
+  initialData?: {
+    userType: string
+    language: string
+    canEditDoc: boolean
+    isDisabled: boolean
+    employeeId?: string | null
+  }
+}
+```
+edit 模式行为：
+- 抽屉 title="修改用户"，隐藏 userCode/username Form.Item
+- open 时用 initialData 初始化 form（form.setFieldsValue），selectedPermIds=[]
+- 提交调 updateUser(userId, req) 而非 createUser；req.isDisabled 从 form.values.isDisabled 读取（Checkbox valuePropName="checked"）
+
+- [ ] **Step 1: 写失败测试**
+
+  在 `UserListPage.test.tsx` vi.mock 里追加:
+  ```ts
+  updateUser: vi.fn().mockResolvedValue({ userId: 'u1', username: 'alice', updatedAt: '2026-05-08T10:00:00' })
+  ```
+
+  **T1** `editMode_drawerTitle_shows修改用户`
+  - renderPage，设 drawerOpen=true + editingUser 存在（通过点击模拟行上的修改按钮）
+  - 断言: screen 中存在 "修改用户" 文本
+
+  **T2** `editMode_submit_callsUpdateUser`
+  - 打开 edit 抽屉，点击确认
+  - waitFor: vi.mocked(updateUser) 被调用 1 次
+
+  - 子会话确认 FAIL（updateUser 不存在于 mock 和 usr.ts）
+
+- [ ] **Step 2: 在 usr.ts 追加 UserUpdateReq / UserUpdateResp / updateUser；改造 UserFormDrawer 支持 edit props**
+
+- [ ] **Step 3: 子会话验证 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git add frontend/src/api/usr.ts frontend/src/pages/usr/UserFormDrawer.tsx frontend/src/test/UserListPage.test.tsx`
+  - `git commit -m "feat(usr): updateUser API + UserFormDrawer edit 模式 REQ-USR-002"`
+
+---
+
+### Task 5: UserListPage 操作列 + editingUser 状态
+
+**Files:**
+- Modify: `frontend/src/pages/usr/UserListPage.tsx`
+- Test: `frontend/src/test/UserListPage.test.tsx`
+
+**行为:**
+- columns 末尾追加 "操作" 列，每行渲染 `<PermButton permission="usr:edit" onClick={() => setEditingUser(row)}>修改</PermButton>`
+- 新增状态: `const [editingUser, setEditingUser] = useState<UserListItemVO | null>(null)`
+- UserFormDrawer 新增两个 props：
+  - `open={drawerOpen || editingUser !== null}`（或用 editDrawerOpen 独立状态）
+  - `userId={editingUser?.sId}`
+  - `initialData={editingUser ? { userType: editingUser.sUserType, language: editingUser.sLanguage, canEditDoc: false, isDisabled: editingUser.bIsDisabled === 1, employeeId: null } : undefined}`
+  - 注意：UserListItemVO 不含 bCanEditDoc，edit 模式下默认 false，用户可手动勾选
+  - `onSuccess={() => { setEditingUser(null); load(1) }}`
+  - `onClose={() => setEditingUser(null)}`
+
+  注意：区分新增抽屉（drawerOpen）和编辑抽屉（editingUser !== null），两者可独立触发 UserFormDrawer，也可复用同一个实例——推荐独立实例避免状态冲突：新增用 drawerOpen/setDrawerOpen，编辑用 editingUser/setEditingUser。
+
+- [ ] **Step 1: 写失败测试**
+
+  **T1** `editButton_openEditDrawer`
+  - mock getUserList 返回 1 行（sId='u1',sUsername='alice',...）
+  - renderPage('超级管理员')
+  - waitFor: screen 中有 "alice" 渲染出来
+  - 点击 "修改" 按钮
+  - waitFor: screen 中有 "修改用户" 文本（抽屉标题）
+
+  - 子会话确认 FAIL（无"修改"按钮）
+
+- [ ] **Step 2: 在 UserListPage 追加操作列和编辑抽屉逻辑；追加 // REQ-USR-002: 修改用户 注释**
+
+- [ ] **Step 3: 子会话验证 PASS（全量测试：后端 45+ / 前端 11+）**
+
+- [ ] **Step 4: Commit**
+  - `git add frontend/src/pages/usr/UserListPage.tsx frontend/src/test/UserListPage.test.tsx`
+  - `git commit -m "feat(usr): UserListPage 修改按钮 + 编辑抽屉 REQ-USR-002"`
+
+---
+
+## 提交计划
+
+- `feat(usr): 添加 UserUpdateReqDTO / UserUpdateRespVO / 错误码 REQ-USR-002`（覆盖 Task 1）
+- `feat(usr): UserService.updateUser 三重校验 + 权限组 replace REQ-USR-002`（覆盖 Task 2）
+- `feat(usr): PUT /api/usr/users/{userId} REQ-USR-002`（覆盖 Task 3）
+- `feat(usr): updateUser API + UserFormDrawer edit 模式 REQ-USR-002`（覆盖 Task 4）
+- `feat(usr): UserListPage 修改按钮 + 编辑抽屉 REQ-USR-002`（覆盖 Task 5）
diff --git a/docs/superpowers/plans/2026-05-08-REQ-USR-003.md b/docs/superpowers/plans/2026-05-08-REQ-USR-003.md
new file mode 100644
index 0000000..c5ef5df
--- /dev/null
+++ b/docs/superpowers/plans/2026-05-08-REQ-USR-003.md
@@ -0,0 +1,472 @@
+---
+req_id: REQ-USR-003
+date: 2026-05-08
+spec_ref: docs/superpowers/specs/2026-05-08-REQ-USR-003.md
+---
+
+# Plan: REQ-USR-003 查询用户
+
+> **Execution:** Parent skill `feature-tdd` executes this plan task-by-task. Steps use checkbox (`- [ ]`) syntax for tracking.
+
+**Goal:** 实现 `GET /api/usr/users` 动态查询分页接口（8 字段 × 3 匹配方式，LEFT JOIN tStaff）及前端搜索列表页。
+
+**Architecture:** 自定义 MyBatis XML Mapper 实现 LEFT JOIN 动态 SQL + MyBatis-Plus `IPage` 分页；Service 层负责 pageSize 上限截断与 queryValue 空值短路；Controller 收 `@RequestParam`，`@AuthenticationPrincipal` 取 brandId。前端用 `useEffect` 初始加载 + 搜索按钮触发重新查询，Ant Design Table 接收 `PageVO` 分页数据。
+
+**Tech Stack:** Spring Boot 3 / MyBatis-Plus 3.x / JUnit 5 + Mockito / React 18 / Ant Design 5 / Vitest + @testing-library/react
+
+---
+
+## Schema 改动
+无（V1 已包含 usr_user、tStaff 所有字段）
+
+## 文件变更清单
+
+- Create: `backend/src/main/java/com/example/erp/common/vo/PageVO.java` — 通用分页包装（含 `static of(IPage<T>)` 工厂）
+- Create: `backend/src/main/java/com/example/erp/module/usr/dto/UserListQueryDTO.java` — 查询入参 DTO
+- Create: `backend/src/main/java/com/example/erp/module/usr/vo/UserListItemVO.java` — 列表项 VO（11 字段）
+- Create: `backend/src/main/resources/mapper/UsrUserMapper.xml` — LEFT JOIN 动态分页 SQL
+- Modify: `backend/src/main/java/com/example/erp/module/usr/mapper/UsrUserMapper.java` — 添加 `selectUserList`
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/UserService.java` — 添加 `getUserList` 签名
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java` — 实现 `getUserList`
+- Modify: `backend/src/main/java/com/example/erp/module/usr/controller/UserController.java` — 添加 `GET /api/usr/users`
+- Modify: `backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java` — 添加 `getUserList` 测试
+- Modify: `backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java` — 添加 `getUsers` 测试
+- Modify: `frontend/src/api/usr.ts` — 添加 `UserListQueryReq`, `UserListItemVO`, `PageVO`, `getUserList()`
+- Modify: `frontend/src/pages/usr/UserListPage.tsx` — 搜索表单 + 真实 Table + 分页
+- Modify: `frontend/src/test/UserListPage.test.tsx` — 添加列表初始加载测试
+
+## 任务步骤
+
+---
+
+### Task 1: 后端 VO/DTO 骨架（PageVO + UserListItemVO + UserListQueryDTO）
+
+**Files:**
+- Create: `backend/src/main/java/com/example/erp/common/vo/PageVO.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/dto/UserListQueryDTO.java`
+- Create: `backend/src/main/java/com/example/erp/module/usr/vo/UserListItemVO.java`
+- Test: `backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+
+**API shape（锁定签名）：**
+```java
+// PageVO<T> — com.example.erp.common.vo
+@Getter @Setter
+public class PageVO<T> {
+    private long total;
+    private long page;
+    private long pageSize;
+    private List<T> list;
+
+    public static <T> PageVO<T> of(IPage<T> iPage) {
+        PageVO<T> vo = new PageVO<>();
+        vo.total = iPage.getTotal();
+        vo.page = iPage.getCurrent();
+        vo.pageSize = iPage.getSize();
+        vo.list = iPage.getRecords();
+        return vo;
+    }
+}
+
+// UserListQueryDTO — com.example.erp.module.usr.dto
+@Getter @Setter
+public class UserListQueryDTO {
+    private String queryField = "username";
+    private String matchType = "contains";
+    private String queryValue;
+    private int page = 1;
+    private int pageSize = 20;
+}
+
+// UserListItemVO — com.example.erp.module.usr.vo（全部字段加 @JsonProperty）
+@Getter @Setter
+public class UserListItemVO {
+    @JsonProperty("sId")           private String sId;
+    @JsonProperty("sUsername")     private String sUsername;
+    @JsonProperty("sUserCode")     private String sUserCode;
+    @JsonProperty("sUserType")     private String sUserType;
+    @JsonProperty("sLanguage")     private String sLanguage;
+    @JsonProperty("bIsDisabled")   private Integer bIsDisabled;
+    @JsonProperty("tLastLoginDate") private LocalDateTime tLastLoginDate;
+    @JsonProperty("sCreatorUsername") private String sCreatorUsername;
+    @JsonProperty("tCreateDate")   private LocalDateTime tCreateDate;
+    @JsonProperty("sStaffName")    private String sStaffName;
+    @JsonProperty("sDepartment")   private String sDepartment;
+}
+```
+
+- [ ] **Step 1: 写失败测试**
+  - 在 `UserServiceTest.java` 顶部 import `UserListQueryDTO`
+  - 添加占位测试方法（方法体可为空，仅引用该类型使编译失败）：
+    ```java
+    @Test
+    void getUserList_capsPageSizeAt100() {
+        UserListQueryDTO q = new UserListQueryDTO();
+        q.setPageSize(200);
+    }
+    ```
+  - 子会话确认：`mvn test -pl backend -Dtest=UserServiceTest` 编译失败（`UserListQueryDTO` 符号找不到）
+
+- [ ] **Step 2: 创建 VO/DTO**
+  - 创建 `PageVO.java`（含 `of()` 工厂）
+  - 创建 `UserListQueryDTO.java`
+  - 创建 `UserListItemVO.java`
+
+- [ ] **Step 3: 子会话验证 PASS**
+  - `mvn test -pl backend -Dtest=UserServiceTest` 全部通过
+
+- [ ] **Step 4: Commit**
+  - `git add backend/src/main/java/com/example/erp/common/vo/PageVO.java backend/src/main/java/com/example/erp/module/usr/dto/UserListQueryDTO.java backend/src/main/java/com/example/erp/module/usr/vo/UserListItemVO.java backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+  - `git commit -m "feat(usr): 添加 PageVO / UserListQueryDTO / UserListItemVO REQ-USR-003"`
+
+---
+
+### Task 2: 自定义 Mapper（UsrUserMapper.xml + 方法声明）
+
+**Files:**
+- Create: `backend/src/main/resources/mapper/UsrUserMapper.xml`
+- Modify: `backend/src/main/java/com/example/erp/module/usr/mapper/UsrUserMapper.java`
+- Test: `backend/src/test/java/com/example/erp/module/usr/UserServiceTest.java`
+
+**API shape（锁定方法签名）：**
+```java
+// UsrUserMapper.java — 新增方法
+IPage<UserListItemVO> selectUserList(
+    IPage<UserListItemVO> page,
+    @Param("brandId") String brandId,
+    @Param("queryField") String queryField,
+    @Param("matchType") String matchType,
+    @Param("queryValue") String queryValue
+);
+```
+
+**XML SQL 完整内容（UsrUserMapper.xml）：**
+```xml
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE mapper PUBLIC "-//mybatis.org//DTD Mapper 3.0//EN"
+        "http://mybatis.org/dtd/mybatis-3-mapper.dtd">
+<mapper namespace="com.example.erp.module.usr.mapper.UsrUserMapper">
+
+    <select id="selectUserList" resultType="com.example.erp.module.usr.vo.UserListItemVO">
+        SELECT u.sId, u.sUsername, u.sUserCode, u.sUserType, u.sLanguage,
+               u.bIsDisabled, u.tLastLoginDate, u.sCreatorUsername, u.tCreateDate,
+               s.sStaffName, s.sDepartment
+        FROM usr_user u
+        LEFT JOIN tStaff s ON u.sEmployeeId = s.sId
+                           AND s.sBrandsId = u.sBrandsId
+                           AND s.bDeleted = 0
+        WHERE u.sBrandsId = #{brandId}
+        <if test="queryValue != null and queryValue != ''">
+            <choose>
+                <when test="queryField == 'username'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sUsername LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sUsername NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sUsername = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'staffName'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND s.sStaffName LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND s.sStaffName NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND s.sStaffName = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'userCode'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sUserCode LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sUserCode NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sUserCode = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'department'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND s.sDepartment LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND s.sDepartment NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND s.sDepartment = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'userType'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sUserType LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sUserType NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sUserType = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'creator'">
+                    <choose>
+                        <when test="matchType == 'contains'">AND u.sCreatorUsername LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <when test="matchType == 'notContains'">AND u.sCreatorUsername NOT LIKE CONCAT('%', #{queryValue}, '%')</when>
+                        <otherwise>AND u.sCreatorUsername = #{queryValue}</otherwise>
+                    </choose>
+                </when>
+                <when test="queryField == 'disabled'">
+                    <choose>
+                        <when test="queryValue == '是'">AND u.bIsDisabled = 1</when>
+                        <when test="queryValue == '否'">AND u.bIsDisabled = 0</when>
+                    </choose>
+                </when>
+                <when test="queryField == 'lastLoginDate'">
+                    AND DATE(u.tLastLoginDate) = #{queryValue}
+                </when>
+            </choose>
+        </if>
+        ORDER BY u.tCreateDate DESC
+    </select>
+
+</mapper>
+```
+
+注：`mybatis-plus.mapper-locations` 默认为 `classpath*:/mapper/**/*.xml`，文件放 `src/main/resources/mapper/UsrUserMapper.xml` 会自动扫描到。
+
+- [ ] **Step 1: 写失败测试**
+  - 在 `UserServiceTest.java` 中添加 mock stub 引用 `selectUserList`：
+    ```java
+    @Test
+    void getUserList_callsSelectUserList() {
+        IPage<UserListItemVO> mockPage = new Page<>(1, 20, 0);
+        when(userMapper.selectUserList(any(), eq("b1"), any(), any(), any()))
+            .thenReturn(mockPage);
+        // getUserList 方法此时不存在于 UserService → 编译失败
+    }
+    ```
+  - 同时 `@Mock private UsrUserMapper userMapper` 已有，直接 `userMapper.selectUserList(...)` 引用即可触发编译失败
+  - 子会话确认 FAIL（`selectUserList` 方法不存在）
+
+- [ ] **Step 2: 实现 Mapper**
+  - `UsrUserMapper.java` 添加 `selectUserList` 方法（带 `@Param` 注解，需 import `com.baomidou.mybatisplus.extension.plugins.pagination.Page`）
+  - 创建 `src/main/resources/mapper/UsrUserMapper.xml`
+
+- [ ] **Step 3: 子会话验证 PASS**
+  - `mvn test -pl backend -Dtest=UserServiceTest` 通过
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): 添加 selectUserList XML 动态分页查询 REQ-USR-003"`
+
+---
+
+### Task 3: Service 层 + Controller 端点
+
+**Files:**
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/UserService.java`
+- Modify: `backend/src/main/java/com/example/erp/module/usr/service/impl/UserServiceImpl.java`
+- Modify: `backend/src/main/java/com/example/erp/module/usr/controller/UserController.java`
+- Test: `UserServiceTest.java`（service 层）、`UserControllerTest.java`（HTTP 层）
+
+**API shape（锁定签名）：**
+```java
+// UserService 接口
+PageVO<UserListItemVO> getUserList(UserListQueryDTO query, String brandId);
+
+// UserServiceImpl — getUserList 实现逻辑
+@Transactional(readOnly = true)
+public PageVO<UserListItemVO> getUserList(UserListQueryDTO query, String brandId) {
+    int cappedSize = Math.min(query.getPageSize(), 100);
+    IPage<UserListItemVO> iPage = new Page<>(query.getPage(), cappedSize);
+    userMapper.selectUserList(iPage, brandId,
+        query.getQueryField(), query.getMatchType(),
+        query.getQueryValue() == null ? "" : query.getQueryValue());
+    return PageVO.of(iPage);
+}
+
+// UserController — 新增端点
+@GetMapping("/users")
+public Result<PageVO<UserListItemVO>> getUsers(
+    @RequestParam(defaultValue = "username") String queryField,
+    @RequestParam(defaultValue = "contains") String matchType,
+    @RequestParam(defaultValue = "") String queryValue,
+    @RequestParam(defaultValue = "1") int page,
+    @RequestParam(defaultValue = "20") int pageSize,
+    @AuthenticationPrincipal UserPrincipal principal) {
+    UserListQueryDTO q = new UserListQueryDTO();
+    q.setQueryField(queryField);
+    q.setMatchType(matchType);
+    q.setQueryValue(queryValue);
+    q.setPage(page);
+    q.setPageSize(pageSize);
+    return Result.ok(userService.getUserList(q, principal.brandId()));
+}
+```
+
+- [ ] **Step 1: 写失败测试（Service）**
+  - 测试名: `UserServiceTest#getUserList_capsPageSizeAt100_callsMapper`
+  - 意图：`pageSize=200` → mapper 被调用时 `iPage.getSize() == 100`；返回的 `PageVO.getTotal() == 5`
+  - 断言 sketch：
+    ```java
+    UserListQueryDTO q = new UserListQueryDTO();
+    q.setPageSize(200);
+    IPage<UserListItemVO> mockPage = new Page<>(1, 100, 5);
+    when(userMapper.selectUserList(argThat(p -> p.getSize() == 100), eq("b1"), any(), any(), any()))
+        .thenReturn(mockPage);
+    PageVO<UserListItemVO> result = userService.getUserList(q, "b1");  // 编译失败
+    assertEquals(5, result.getTotal());
+    ```
+  - 子会话确认 FAIL（`getUserList` 不在接口/实现中）
+
+- [ ] **Step 2: 实现 Service**
+  - `UserService.java` 添加 `getUserList` 方法签名
+  - `UserServiceImpl.java` 实现（pageSize cap + delegate + `PageVO.of`）
+
+- [ ] **Step 3: 子会话验证 Service PASS**
+  - `mvn test -pl backend -Dtest=UserServiceTest` 通过
+
+- [ ] **Step 4: 写失败测试（Controller）**
+  - 测试名: `UserControllerTest#getUsers_withToken_returns200`
+  - 意图：带 JWT Token 的 `GET /api/usr/users` → HTTP 200，响应 JSON 中 `$.data.total` 存在
+  - mock stub：`when(userService.getUserList(any(), eq("b1"))).thenReturn(pageVO)`（pageVO.total=0, pageVO.list=[]）
+  - 子会话确认 FAIL（端点不存在 → Spring 返回 404 或方法签名缺失导致编译失败）
+
+- [ ] **Step 5: 实现 Controller 端点**
+  - `UserController.java` 添加 `@GetMapping("/users")` 方法
+
+- [ ] **Step 6: 子会话验证 Controller PASS**
+  - `mvn test -pl backend -Dtest=UserControllerTest` 通过
+
+- [ ] **Step 7: Commit**
+  - `git commit -m "feat(usr): getUserList service + GET /api/usr/users 端点 REQ-USR-003"`
+
+---
+
+### Task 4: 前端 API 类型 + 用户列表页
+
+**Files:**
+- Modify: `frontend/src/api/usr.ts`
+- Modify: `frontend/src/pages/usr/UserListPage.tsx`
+- Modify: `frontend/src/test/UserListPage.test.tsx`
+
+**API shape（锁定 usr.ts 新增部分）：**
+```ts
+export interface UserListQueryReq {
+  queryField?: string;
+  matchType?: string;
+  queryValue?: string;
+  page?: number;
+  pageSize?: number;
+}
+
+export interface UserListItemVO {
+  sId: string;
+  sUsername: string;
+  sUserCode: string;
+  sUserType: string;
+  sLanguage: string;
+  bIsDisabled: number;
+  tLastLoginDate: string | null;
+  sCreatorUsername: string | null;
+  tCreateDate: string;
+  sStaffName: string | null;
+  sDepartment: string | null;
+}
+
+export interface PageVO<T> {
+  total: number;
+  page: number;
+  pageSize: number;
+  list: T[];
+}
+
+export function getUserList(params?: UserListQueryReq): Promise<PageVO<UserListItemVO>> {
+  return request.get('/usr/users', { params })
+}
+```
+
+**UserListPage.tsx 结构（含搜索表单）：**
+```tsx
+export default function UserListPage() {
+  const [data, setData] = useState<PageVO<UserListItemVO> | null>(null)
+  const [queryField, setQueryField] = useState('username')
+  const [matchType, setMatchType] = useState('contains')
+  const [queryValue, setQueryValue] = useState('')
+  const [page, setPage] = useState(1)
+
+  const load = (pg = 1) => {
+    getUserList({ queryField, matchType, queryValue, page: pg, pageSize: 20 }).then(setData)
+    setPage(pg)
+  }
+
+  useEffect(() => { load() }, [])  // 初始加载
+
+  const columns: ColumnsType<UserListItemVO> = [
+    { title: '用户名', dataIndex: 'sUsername' },
+    { title: '员工名', dataIndex: 'sStaffName' },
+    { title: '用户号', dataIndex: 'sUserCode' },
+    { title: '部门',   dataIndex: 'sDepartment' },
+    { title: '用户类型', dataIndex: 'sUserType' },
+    { title: '语言',   dataIndex: 'sLanguage' },
+    { title: '作废',   dataIndex: 'bIsDisabled', render: v => v ? '是' : '否' },
+    { title: '登录日期', dataIndex: 'tLastLoginDate' },
+    { title: '制单人', dataIndex: 'sCreatorUsername' },
+    { title: '制单日期', dataIndex: 'tCreateDate' },
+  ]
+
+  return (
+    <div>
+      <Space style={{ marginBottom: 16 }}>
+        <Select value={queryField} onChange={setQueryField} style={{ width: 120 }}>
+          <Select.Option value="username">用户名</Select.Option>
+          <Select.Option value="staffName">员工名</Select.Option>
+          <Select.Option value="userCode">用户号</Select.Option>
+          <Select.Option value="department">部门</Select.Option>
+          <Select.Option value="userType">用户类型</Select.Option>
+          <Select.Option value="disabled">作废</Select.Option>
+          <Select.Option value="lastLoginDate">登录日期</Select.Option>
+          <Select.Option value="creator">制单人</Select.Option>
+        </Select>
+        <Select value={matchType} onChange={setMatchType} style={{ width: 100 }}>
+          <Select.Option value="contains">包含</Select.Option>
+          <Select.Option value="notContains">不包含</Select.Option>
+          <Select.Option value="equals">等于</Select.Option>
+        </Select>
+        <Input value={queryValue} onChange={e => setQueryValue(e.target.value)} placeholder="查询值" />
+        <Button type="primary" onClick={() => load(1)}>搜索</Button>
+        <PermButton permission="usr:create" type="primary" onClick={() => setDrawerOpen(true)}>新增</PermButton>
+      </Space>
+      <Table
+        dataSource={data?.list ?? []}
+        columns={columns}
+        rowKey="sId"
+        pagination={{
+          total: data?.total ?? 0,
+          pageSize: 20,
+          current: page,
+          onChange: load,
+        }}
+      />
+      <UserFormDrawer open={drawerOpen} onClose={() => setDrawerOpen(false)} onSuccess={() => { setDrawerOpen(false); load(1) }} />
+    </div>
+  )
+}
+```
+
+注：`drawerOpen` state 也需添加（与 Task 1 中 UserListPage 原来的 `drawerOpen` 合并）。
+
+- [ ] **Step 1: 写失败测试**
+  - 测试名: `UserListPage.test.tsx#initialLoad_rendersTableRows`
+  - 意图：mock `getUserList` 返回含 1 条 `{ sId:'u1', sUsername:'alice', ... }` 的 PageVO → 等待 data 渲染后 table 中有 "alice" 文本
+  - 断言 sketch：
+    ```ts
+    vi.mock('@/api/usr', async (importOriginal) => {
+      const actual = await importOriginal<typeof import('@/api/usr')>()
+      return { ...actual, getUserList: vi.fn().mockResolvedValue({ total: 1, page: 1, pageSize: 20, list: [{ sId:'u1', sUsername:'alice', sUserCode:'UC001', sUserType:'普通用户', sLanguage:'中文', bIsDisabled:0, tLastLoginDate:null, sCreatorUsername:'admin', tCreateDate:'2026-01-01', sStaffName:null, sDepartment:null }] }) }
+    })
+    // render + waitFor → screen.getByText('alice')
+    ```
+  - 子会话确认 FAIL（`getUserList` 不在 `usr.ts` 中 → import 报错）
+
+- [ ] **Step 2: 实现前端**
+  - `usr.ts` 添加 `UserListQueryReq`, `UserListItemVO`, `PageVO`, `getUserList()`
+  - `UserListPage.tsx` 重构为搜索表单 + 真实 Table（保留 `drawerOpen` 和 `UserFormDrawer`）
+
+- [ ] **Step 3: 子会话验证 PASS**
+  - `pnpm test --run` 全部通过
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): 用户列表搜索表单 + 分页表格 REQ-USR-003"`
+
+---
+
+## 提交计划
+
+- `feat(usr): 添加 PageVO / UserListQueryDTO / UserListItemVO REQ-USR-003`（覆盖 Task 1）
+- `feat(usr): 添加 selectUserList XML 动态分页查询 REQ-USR-003`（覆盖 Task 2）
+- `feat(usr): getUserList service + GET /api/usr/users 端点 REQ-USR-003`（覆盖 Task 3）
+- `feat(usr): 用户列表搜索表单 + 分页表格 REQ-USR-003`（覆盖 Task 4）
diff --git a/docs/superpowers/plans/2026-05-08-REQ-USR-004.md b/docs/superpowers/plans/2026-05-08-REQ-USR-004.md
new file mode 100644
index 0000000..ebdb67c
--- /dev/null
+++ b/docs/superpowers/plans/2026-05-08-REQ-USR-004.md
@@ -0,0 +1,536 @@
+---
+req_id: REQ-USR-004
+date: 2026-05-08
+spec_ref: docs/superpowers/specs/2026-05-08-REQ-USR-004.md
+---
+
+# REQ-USR-004 用户登录 Implementation Plan
+
+> **Execution:** Parent skill `feature-tdd` executes this plan task-by-task. Steps use checkbox (`- [ ]`) syntax for tracking.
+
+**Goal:** 从零搭建后端 Spring Boot 3 项目与前端 Vite+React 项目，实现三条公开认证接口（POST /api/auth/login、POST /api/auth/refresh、GET /api/auth/brands），完成多租户隔离的 JWT 登录认证及账号锁定防暴力破解。
+
+**Architecture:** 后端分四层推进：公共层（Result/BizException/JwtUtil）→ 数据访问层（BrandMapper/UsrUserMapper）→ 业务层（AuthServiceImpl，含 brand 多租户查找、BCrypt 校验、禁用/锁定检查、失败计数、JWT 签发 6 条业务规则）→ 接口层（SecurityConfig + AuthController）。前端分三层推进：项目骨架 → Axios 封装 + Redux authSlice → LoginPage.tsx 含 brand 下拉 + 用户名密码表单。
+
+**Tech Stack:** Spring Boot 3.x · Spring Security · JJWT 0.12.x · MyBatis-Plus 3.5.x · Flyway 10.x · MySQL 8.x · Vite · React 18 · Ant Design 5.x · Redux Toolkit · Axios · Vitest + @testing-library/react
+
+---
+
+## Schema 改动
+
+无（`sql/migrations/V1__initial_schema.sql` 已包含 `usr_user` + `brand` 表，已 apply 至测试库 `xlyweberp_vibe_erp_test`）
+
+## 文件变更清单
+
+### 后端（全部新建）
+- `backend/pom.xml` — 创建（Spring Boot 3 Maven 项目根 POM）
+- `backend/src/main/java/com/example/erp/Application.java` — 创建（启动类）
+- `backend/src/main/resources/application.yml` — 创建（主配置，DB/JWT 用 `${ENV_VAR}` 占位）
+- `backend/src/main/resources/application-dev.yml` — 创建（dev profile，Flyway baseline 防重复迁移）
+- `backend/src/main/resources/db/migration/V1__initial_schema.sql` — 创建（内容与 `sql/migrations/V1__initial_schema.sql` 完全一致，供 Flyway classpath 找到）
+- `backend/src/main/java/com/example/erp/common/response/Result.java` — 创建（统一响应体，含 timestamp）
+- `backend/src/main/java/com/example/erp/common/exception/BizException.java` — 创建（业务异常基类）
+- `backend/src/main/java/com/example/erp/common/constants/AuthErrorCode.java` — 创建（认证错误码常量）
+- `backend/src/main/java/com/example/erp/common/exception/GlobalExceptionHandler.java` — 创建（@RestControllerAdvice）
+- `backend/src/main/java/com/example/erp/common/util/JwtUtil.java` — 创建（JWT 生成 + 解析）
+- `backend/src/main/java/com/example/erp/config/JwtProperties.java` — 创建（@ConfigurationProperties("jwt")）
+- `backend/src/main/java/com/example/erp/module/usr/entity/BrandEntity.java` — 创建（brand 表映射）
+- `backend/src/main/java/com/example/erp/module/usr/entity/UsrUserEntity.java` — 创建（usr_user 表映射）
+- `backend/src/main/java/com/example/erp/module/usr/mapper/BrandMapper.java` — 创建（extends BaseMapper<BrandEntity>）
+- `backend/src/main/java/com/example/erp/module/usr/mapper/UsrUserMapper.java` — 创建（extends BaseMapper<UsrUserEntity>）
+- `backend/src/main/java/com/example/erp/config/MyBatisPlusConfig.java` — 创建（@MapperScan + 分页插件）
+- `backend/src/main/java/com/example/erp/module/usr/dto/LoginReqDTO.java` — 创建（登录入参）
+- `backend/src/main/java/com/example/erp/module/usr/dto/RefreshTokenReqDTO.java` — 创建（刷新入参）
+- `backend/src/main/java/com/example/erp/module/usr/vo/LoginVO.java` — 创建（登录出参，含内部静态类 UserInfoVO）
+- `backend/src/main/java/com/example/erp/module/usr/vo/BrandVO.java` — 创建（brand 下拉出参）
+- `backend/src/main/java/com/example/erp/module/usr/service/AuthService.java` — 创建（接口）
+- `backend/src/main/java/com/example/erp/module/usr/service/impl/AuthServiceImpl.java` — 创建（业务实现）
+- `backend/src/main/java/com/example/erp/config/BeanConfig.java` — 创建（@Bean BCryptPasswordEncoder；与 SecurityConfig 分离，避免循环依赖）
+- `backend/src/main/java/com/example/erp/config/SecurityConfig.java` — 创建（放行 /api/auth/**，注册 JwtFilter）
+- `backend/src/main/java/com/example/erp/config/JwtAuthenticationFilter.java` — 创建（OncePerRequestFilter，验证 Bearer Token）
+- `backend/src/main/java/com/example/erp/module/usr/controller/AuthController.java` — 创建（3 个端点）
+- `backend/src/test/java/com/example/erp/ApplicationContextTest.java` — 创建
+- `backend/src/test/java/com/example/erp/common/JwtUtilTest.java` — 创建
+- `backend/src/test/java/com/example/erp/module/usr/BrandMapperTest.java` — 创建
+- `backend/src/test/java/com/example/erp/module/usr/AuthServiceTest.java` — 创建
+- `backend/src/test/java/com/example/erp/module/usr/AuthControllerTest.java` — 创建
+
+### 前端（全部新建）
+- `frontend/package.json` — 创建
+- `frontend/vite.config.ts` — 创建（代理 /api → http://localhost:8080）
+- `frontend/tsconfig.json` — 创建
+- `frontend/index.html` — 创建
+- `frontend/src/main.tsx` — 创建（Provider + BrowserRouter + App）
+- `frontend/src/App.tsx` — 创建（路由表，/ 重定向 /login，受保护路由守卫 PrivateRoute）
+- `frontend/src/styles/tokens.css` — 创建（内容与根目录 `src/styles/tokens.css` 一致）
+- `frontend/src/api/request.ts` — 创建（Axios 实例 + 请求/响应拦截器 + 401 refresh 流程）
+- `frontend/src/api/auth.ts` — 创建（login / refresh / getBrands 接口函数）
+- `frontend/src/store/index.ts` — 创建（configureStore）
+- `frontend/src/store/slices/authSlice.ts` — 创建（setCredentials / clearCredentials）
+- `frontend/src/pages/usr/LoginPage.tsx` — 创建（AntD Form：brand Select + 用户名 + 密码 + 提交）
+- `frontend/src/test/setup.ts` — 创建（@testing-library/jest-dom setup）
+- `frontend/src/test/authSlice.test.ts` — 创建
+- `frontend/src/test/LoginPage.test.tsx` — 创建
+
+---
+
+## 任务步骤
+
+### Task 1: 后端项目骨架
+
+**Files:**
+- 创建: `backend/pom.xml`
+- 创建: `backend/src/main/java/com/example/erp/Application.java`
+- 创建: `backend/src/main/resources/application.yml`
+- 创建: `backend/src/main/resources/application-dev.yml`
+- 创建: `backend/src/main/resources/db/migration/V1__initial_schema.sql`
+- 测试: `backend/src/test/java/com/example/erp/ApplicationContextTest.java`
+
+**pom.xml 必须包含的依赖：**
+- `spring-boot-starter-parent` 3.x（parent）
+- `spring-boot-starter-web`, `spring-boot-starter-security`, `spring-boot-starter-validation`, `spring-boot-starter-test`
+- `mybatis-plus-spring-boot3-starter` 3.5.x
+- `mysql-connector-j`（runtime scope）
+- `flyway-core` + `flyway-mysql`（10.x）
+- `jjwt-api` + `jjwt-impl` + `jjwt-jackson`（0.12.x；impl/jackson 用 runtime scope）
+- `lombok`（optional）
+- `hutool-all` 5.8.x
+
+**application.yml 关键片段：**
+```yaml
+spring:
+  datasource:
+    url: jdbc:mysql://${DB_HOST}:${DB_PORT}/${DB_SCHEMA}?useSSL=false&serverTimezone=Asia/Shanghai&allowPublicKeyRetrieval=true
+    username: ${DB_USER}
+    password: ${DB_PASSWORD}
+    driver-class-name: com.mysql.cj.jdbc.Driver
+  flyway:
+    locations: classpath:db/migration
+    baseline-on-migrate: true
+    baseline-version: 1
+server:
+  port: 8080
+jwt:
+  secret: ${JWT_SECRET}
+  access-token-expiry: 86400
+  refresh-token-expiry: 604800
+```
+
+**application-dev.yml：**
+```yaml
+spring:
+  config:
+    import: optional:file:.env.local[.properties]
+```
+
+**说明：** `.env.local` 含 `DB_HOST`, `DB_PORT`, `DB_USER`, `DB_PASSWORD`, `DB_SCHEMA`, `JWT_SECRET`。dev profile 通过 `spring.config.import` 自动加载；`baseline-on-migrate=true` + `baseline-version=1` 让 Flyway 把已有 schema 标记为 V1 已应用，不重复执行。
+
+- [ ] **Step 1: 写失败测试**
+  - 测试名: `ApplicationContextTest#contextLoads`
+  - 意图: `@SpringBootTest` 启动 ApplicationContext 不报错（验证 Bean 配置和 DB 连接）
+  - 子会话确认 FAIL（项目不存在，无法编译）
+
+- [ ] **Step 2: 创建 Maven 项目结构**
+  - 创建目录树：`backend/src/main/java/com/example/erp/`、`backend/src/main/resources/db/migration/`、`backend/src/test/java/com/example/erp/`
+  - 写 pom.xml（含上述依赖）
+  - 写 Application.java（`@SpringBootApplication`，标准 main 方法）
+  - 写 application.yml + application-dev.yml（按上述片段）
+  - 复制 `sql/migrations/V1__initial_schema.sql` 内容到 `backend/src/main/resources/db/migration/V1__initial_schema.sql`
+  - 写 `ApplicationContextTest.java`（`@SpringBootTest`，空的 `contextLoads()` 方法）
+  - 写 `backend/src/test/java/com/example/erp/TestApplication.java`（继承 `Application`，供测试使用 dev profile）
+
+- [ ] **Step 3: 子会话运行 `cd backend && mvn test -Dspring.profiles.active=dev`，确认 contextLoads PASS**
+
+- [ ] **Step 4: Commit**
+  - `git add backend/`
+  - `git commit -m "chore(backend): init Spring Boot 3 project skeleton REQ-USR-004"`
+
+---
+
+### Task 2: Common 层（Result / BizException / ErrorCode / GlobalExceptionHandler）
+
+**Files:**
+- 创建: `backend/src/main/java/com/example/erp/common/response/Result.java`
+- 创建: `backend/src/main/java/com/example/erp/common/exception/BizException.java`
+- 创建: `backend/src/main/java/com/example/erp/common/constants/AuthErrorCode.java`
+- 创建: `backend/src/main/java/com/example/erp/common/exception/GlobalExceptionHandler.java`
+- 测试: `backend/src/test/java/com/example/erp/common/ResultTest.java`
+
+**API shape:**
+- `Result<T>` — 字段：`int code`，`String message`，`T data`，`long timestamp`
+  - `static <T> Result<T> ok(T data)` → code=200, message="操作成功", timestamp=System.currentTimeMillis()
+  - `static <T> Result<T> fail(int code, String message)` → data=null, timestamp=System.currentTimeMillis()
+- `BizException(int code, String message)` — 继承 RuntimeException，含 `int code` 字段
+- `GlobalExceptionHandler (@RestControllerAdvice)`:
+  - `handleBizException(BizException e)` → `Result.fail(e.getCode(), e.getMessage())`，HTTP 200
+  - `handleMethodArgumentNotValid(MethodArgumentNotValidException e)` → `Result.fail(40001, 首个字段错误信息)`，HTTP 200
+  - `handleException(Exception e)` → `Result.fail(99000, "系统内部错误")`，记 Logback error 级日志
+
+**合同级错误码常量（AuthErrorCode.java，`public static final int`）：**
+```java
+USERNAME_OR_PASSWORD_ERROR = 40100   // 用户名或密码错误（不区分哪个，防枚举）
+ACCOUNT_DISABLED = 40101             // 账号已被禁用，请联系管理员
+ACCOUNT_LOCKED = 40102               // 账号已被锁定，请 N 分钟后重试
+REFRESH_TOKEN_INVALID = 40103        // Refresh Token 已失效，请重新登录
+```
+
+- [ ] **Step 1: 写失败测试**
+  - `ResultTest#ok_setsCode200AndData` — `Result.ok("hello").getCode() == 200 && "hello".equals(result.getData())`
+  - `ResultTest#fail_setsCodeAndNullData` — `Result.fail(40100, "msg").getCode() == 40100 && result.getData() == null`
+  - `ResultTest#ok_hasTimestamp` — `Result.ok(null).getTimestamp() > 0`
+  - 子会话确认 FAIL（类不存在）
+
+- [ ] **Step 2: 实现 Result.java + BizException.java + AuthErrorCode.java + GlobalExceptionHandler.java**
+
+- [ ] **Step 3: 子会话运行 `mvn test`，确认 3 个 ResultTest PASS**
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): common Result/BizException/AuthErrorCode/GlobalExceptionHandler REQ-USR-004"`
+
+---
+
+### Task 3: JwtUtil
+
+**Files:**
+- 创建: `backend/src/main/java/com/example/erp/config/JwtProperties.java`
+- 创建: `backend/src/main/java/com/example/erp/common/util/JwtUtil.java`
+- 测试: `backend/src/test/java/com/example/erp/common/JwtUtilTest.java`
+
+**API shape:**
+- `JwtProperties (@ConfigurationProperties("jwt"))` — `String secret`，`long accessTokenExpiry`（秒），`long refreshTokenExpiry`（秒）；加 `@EnableConfigurationProperties(JwtProperties.class)` 于 Application 或 Config 类
+- `JwtUtil (@Component)`：注入 JwtProperties
+  - `generateAccessToken(String userId, String username, String userType, String brandId) : String`
+    - claims: sub=userId, "username"=username, "userType"=userType, "brandId"=brandId, exp=now + accessTokenExpiry 秒
+    - HMAC-SHA256，key = `Keys.hmacShaKeyFor(properties.getSecret().getBytes(StandardCharsets.UTF_8))`
+  - `generateRefreshToken(String userId, String brandId) : String`
+    - claims: sub=userId, "brandId"=brandId, "type"="refresh", exp=now + refreshTokenExpiry 秒
+  - `parseAccessToken(String token) : Claims`
+    - 若签名无效或过期 → throw `new BizException(AuthErrorCode.REFRESH_TOKEN_INVALID, "Token 已失效，请重新登录")`
+  - `parseRefreshToken(String token) : Claims`
+    - 解析同 parseAccessToken
+    - 验证 claim "type" == "refresh"；否则 → throw BizException(40103)
+
+- [ ] **Step 1: 写失败测试**
+  - `JwtUtilTest#generateAndParseAccessToken_containsAllClaims`
+    - 构造 JwtUtil（properties: secret="testSecretKey32CharacterMinLength!", accessTokenExpiry=86400, refreshTokenExpiry=604800）
+    - 生成 access token，parseAccessToken → sub=="u1", username=="admin", userType=="超级管理员", brandId=="b1"
+  - `JwtUtilTest#parseRefreshToken_withAccessToken_throws40103`
+    - 生成 access token，传入 parseRefreshToken → 抛 BizException，code=40103
+  - `JwtUtilTest#parseAccessToken_withExpiredToken_throws40103`
+    - 构造 JwtUtil（accessTokenExpiry=-1 或 0），生成 token 后 parseAccessToken → 抛 BizException，code=40103
+  - 子会话确认 FAIL（类不存在）
+
+- [ ] **Step 2: 实现 JwtProperties + JwtUtil**
+  - JJWT 0.12.x API：`Jwts.builder()...signWith(key, Jwts.SIG.HS256).compact()`；解析：`Jwts.parser().verifyWith(key).build().parseSignedClaims(token).getPayload()`
+
+- [ ] **Step 3: 子会话运行 JwtUtilTest（3 个测试），确认 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): JwtUtil generate + parse access/refresh token REQ-USR-004"`
+
+---
+
+### Task 4: Entity + Mapper（BrandEntity / UsrUserEntity）
+
+**Files:**
+- 创建: `backend/src/main/java/com/example/erp/module/usr/entity/BrandEntity.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/entity/UsrUserEntity.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/mapper/BrandMapper.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/mapper/UsrUserMapper.java`
+- 创建: `backend/src/main/java/com/example/erp/config/MyBatisPlusConfig.java`
+- 测试: `backend/src/test/java/com/example/erp/module/usr/BrandMapperTest.java`
+
+**API shape:**
+- `BrandEntity (@TableName("brand"))` — 字段（均 `@TableField("<column_name>")`）：`iIncrement`（@TableId，AUTO），`sId`，`sNo`，`sName`，`sShortName`，`sBrandsId`，`sSubsidiaryId`，`tCreateDate(LocalDateTime)`
+- `UsrUserEntity (@TableName("usr_user"))` — 字段：`iIncrement`（@TableId，AUTO），`sId`，`sBrandsId`，`sSubsidiaryId`，`tCreateDate(LocalDateTime)`，`sUserCode`，`sUsername`，`sPasswordHash`，`sUserType`，`sLanguage`，`bCanEditDoc(Integer)`，`bIsDisabled(Integer)`，`sEmployeeId`，`sCreatorUsername`，`tLastLoginDate(LocalDateTime)`，`iLoginFailCount(Integer)`，`tLockUntil(LocalDateTime)`
+- `BrandMapper extends BaseMapper<BrandEntity>`（无额外方法）
+- `UsrUserMapper extends BaseMapper<UsrUserEntity>`（无额外方法；更新逻辑在 Service 用 LambdaUpdateWrapper 完成）
+- `MyBatisPlusConfig (@Configuration)` — `@MapperScan("com.example.erp.module.*.mapper")`；注册 `MybatisPlusInterceptor` + `PaginationInnerInterceptor(DbType.MYSQL)`
+
+**测试（BrandMapperTest — @SpringBootTest，使用真实测试库）：**
+- `@BeforeEach` 插入 brand 行：`sId='b-test-001', sNo='TST', sName='测试版', iIncrement=null`（自增），其余字段留 null
+- `@AfterEach` DELETE WHERE sNo='TST'
+- 测试方法 `findByNo_returnsCorrectBrand` — `new LambdaQueryWrapper<BrandEntity>().eq(BrandEntity::getSNo, "TST")` selectOne → sName == "测试版"
+
+- [ ] **Step 1: 写失败测试**
+  - `BrandMapperTest#findByNo_returnsCorrectBrand`
+  - 子会话确认 FAIL（类不存在）
+
+- [ ] **Step 2: 实现 Entity + Mapper + MyBatisPlusConfig**
+  - 注意：Entity 字段名用 Java camelCase，`@TableField` 注解对应数据库实际列名（如 `@TableField("sBrandsId")` 或直接用 MyBatis-Plus 全局下划线转换——由于列名本身是驼峰，需关闭 `map-underscore-to-camel-case` 或手动 @TableField）
+
+- [ ] **Step 3: 子会话运行 BrandMapperTest，确认 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): BrandEntity/UsrUserEntity + Mapper REQ-USR-004"`
+
+---
+
+### Task 5: AuthService — 登录核心逻辑
+
+**Files:**
+- 创建: `backend/src/main/java/com/example/erp/module/usr/dto/LoginReqDTO.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/vo/LoginVO.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/service/AuthService.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/service/impl/AuthServiceImpl.java`
+- 创建: `backend/src/main/java/com/example/erp/config/BeanConfig.java`
+- 测试: `backend/src/test/java/com/example/erp/module/usr/AuthServiceTest.java`
+
+**API shape:**
+- `LoginReqDTO` — `@NotBlank String brandNo`，`@NotBlank String username`，`@NotBlank String password`
+- `LoginVO` — `String accessToken`，`String refreshToken`，`long expiresIn`（固定值 86400），`UserInfoVO userInfo`
+  - `UserInfoVO (static inner class)` — `String userId`，`String username`，`String userType`，`String language`，`String brandId`
+- `AuthService` — `LoginVO login(LoginReqDTO req)`；`String refresh(String refreshToken)`；`List<BrandVO> getBrands()`
+- `AuthServiceImpl (@Service @Transactional)` — 注入 `BrandMapper`，`UsrUserMapper`，`JwtUtil`，`BCryptPasswordEncoder`
+
+**AuthServiceImpl.login 业务规则（按顺序）：**
+1. `brandMapper.selectOne(new LambdaQueryWrapper<BrandEntity>().eq(BrandEntity::getSNo, req.getBrandNo()))` → null → `throw new BizException(40100, "用户名或密码错误")`
+2. `userMapper.selectOne(new LambdaQueryWrapper<UsrUserEntity>().eq(UsrUserEntity::getSUsername, req.getUsername()).eq(UsrUserEntity::getSBrandsId, brand.getSId()))` → null → `throw new BizException(40100, "用户名或密码错误")`
+3. `user.getBIsDisabled() == 1` → `throw new BizException(40101, "账号已被禁用，请联系管理员")`
+4. `user.getTLockUntil() != null && user.getTLockUntil().isAfter(LocalDateTime.now())` → 计算 remainMinutes = `(int) Math.ceil(ChronoUnit.SECONDS.between(LocalDateTime.now(), user.getTLockUntil()) / 60.0)` → `throw new BizException(40102, "账号已被锁定，请 " + remainMinutes + " 分钟后重试")`
+5. `!passwordEncoder.matches(req.getPassword(), user.getSPasswordHash())` → `int newCount = user.getILoginFailCount() + 1`
+   - `newCount >= 5`: `LocalDateTime lockUntil = LocalDateTime.now().plusMinutes(30)`；`userMapper.update(null, new LambdaUpdateWrapper<UsrUserEntity>().eq(UsrUserEntity::getSId, user.getSId()).set(UsrUserEntity::getILoginFailCount, newCount).set(UsrUserEntity::getTLockUntil, lockUntil))` → `throw new BizException(40102, "账号已被锁定，请 30 分钟后重试")`
+   - `newCount < 5`: `userMapper.update(null, new LambdaUpdateWrapper<UsrUserEntity>().eq(UsrUserEntity::getSId, user.getSId()).set(UsrUserEntity::getILoginFailCount, newCount))` → `throw new BizException(40100, "用户名或密码错误")`
+6. 成功：`userMapper.update(null, new LambdaUpdateWrapper<UsrUserEntity>().eq(UsrUserEntity::getSId, user.getSId()).set(UsrUserEntity::getILoginFailCount, 0).set(UsrUserEntity::getTLockUntil, null).set(UsrUserEntity::getTLastLoginDate, LocalDateTime.now()))`；签发 tokens；返回 LoginVO
+
+- [ ] **Step 1: 写 7 个失败单元测试（AuthServiceTest — @ExtendWith(MockitoExtension.class)，mock BrandMapper/UsrUserMapper/JwtUtil/BCryptPasswordEncoder）**
+  - `login_brandNotFound_throws40100` — brandMapper.selectOne → null → BizException(40100)
+  - `login_userNotFound_throws40100` — brand 存在，userMapper.selectOne → null → BizException(40100)
+  - `login_accountDisabled_throws40101` — user.bIsDisabled=1 → BizException(40101)
+  - `login_accountLocked_throws40102WithRemainingMinutes` — user.tLockUntil=now+20min → BizException(40102)，message 含 "20 分钟"
+  - `login_wrongPassword_firstTime_throws40100AndIncrementsCount` — BCrypt 不匹配，iLoginFailCount=0 → 更新为 1，throw 40100
+  - `login_wrongPassword_5thTime_setsLockAndThrows40102` — BCrypt 不匹配，iLoginFailCount=4 → 更新为 5，设 tLockUntil，throw 40102
+  - `login_success_resetsCountAndReturnsTokens` — BCrypt 匹配 → reset count，issue tokens，返回 LoginVO
+
+- [ ] **Step 2: 实现 LoginReqDTO + LoginVO + AuthService + AuthServiceImpl.login()**
+  - `BCryptPasswordEncoder` 注入：在 Task 5 中同步创建 `BeanConfig.java`（`@Configuration @Bean BCryptPasswordEncoder passwordEncoder()`），使 Spring context（ApplicationContextTest）在 Task 5 之后仍能正常加载；SecurityConfig（Task 7）不重复声明此 Bean
+
+- [ ] **Step 3: 子会话运行 AuthServiceTest（7 个测试），确认 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): AuthService.login multi-tenant + lockout logic REQ-USR-004"`
+
+---
+
+### Task 6: AuthService — refresh + getBrands
+
+**Files:**
+- 创建: `backend/src/main/java/com/example/erp/module/usr/dto/RefreshTokenReqDTO.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/vo/BrandVO.java`
+- 修改: `backend/src/main/java/com/example/erp/module/usr/service/impl/AuthServiceImpl.java`（新增 refresh + getBrands）
+- 测试: `backend/src/test/java/com/example/erp/module/usr/AuthServiceTest.java`（追加 3 个测试方法）
+
+**API shape:**
+- `RefreshTokenReqDTO` — `@NotBlank String refreshToken`
+- `BrandVO` — `String sNo`，`String sName`
+- `AuthServiceImpl#refresh(String refreshToken) : String`
+  1. `Claims claims = jwtUtil.parseRefreshToken(refreshToken)` — 无效/过期自动抛 BizException(40103)
+  2. `String userId = claims.getSubject(); String brandId = claims.get("brandId", String.class)`
+  3. `UsrUserEntity user = userMapper.selectOne(new LambdaQueryWrapper<UsrUserEntity>().eq(UsrUserEntity::getSId, userId))` → null 或 `bIsDisabled=1` → throw BizException(40103, "Refresh Token 已失效，请重新登录")
+  4. 签发新 accessToken：`jwtUtil.generateAccessToken(user.getSId(), user.getSUsername(), user.getSUserType(), brandId)`；返回新 accessToken 字符串
+- `AuthServiceImpl#getBrands() : List<BrandVO>`
+  - `brandMapper.selectList(new QueryWrapper<BrandEntity>().select("sNo", "sName").orderByAsc("sName"))` → 映射为 BrandVO 列表
+
+- [ ] **Step 1: 写 3 个失败测试（追加到 AuthServiceTest）**
+  - `refresh_validRefreshToken_returnsNewAccessToken` — parseRefreshToken 成功，查库返回有效 user → generateAccessToken 被调用，返回新 token
+  - `refresh_invalidRefreshToken_throws40103` — parseRefreshToken 抛 BizException(40103)
+  - `getBrands_returnsListSortedByName` — brandMapper.selectList 返回 [b1, b2] → 结果 List<BrandVO> 包含对应 sNo/sName
+
+- [ ] **Step 2: 实现 RefreshTokenReqDTO + BrandVO + AuthServiceImpl#refresh() + AuthServiceImpl#getBrands()**
+
+- [ ] **Step 3: 子会话运行 AuthServiceTest（新增 3 个测试），确认 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): AuthService.refresh + getBrands REQ-USR-004"`
+
+---
+
+### Task 7: SecurityConfig + JwtAuthenticationFilter + AuthController
+
+**Files:**
+- 创建: `backend/src/main/java/com/example/erp/config/SecurityConfig.java`
+- 创建: `backend/src/main/java/com/example/erp/config/JwtAuthenticationFilter.java`
+- 创建: `backend/src/main/java/com/example/erp/module/usr/controller/AuthController.java`
+- 测试: `backend/src/test/java/com/example/erp/module/usr/AuthControllerTest.java`
+
+**API shape:**
+- `SecurityConfig (@Configuration @EnableWebSecurity)`:
+  - `@Bean SecurityFilterChain`: `csrf().disable()`；`sessionManagement(STATELESS)`；`authorizeHttpRequests`: `permitAll` for `/api/auth/**`，其余 `authenticated`
+  - `addFilterBefore(JwtAuthenticationFilter, UsernamePasswordAuthenticationFilter)`
+  - 不再声明 BCryptPasswordEncoder @Bean（已在 BeanConfig.java 声明）
+- `JwtAuthenticationFilter extends OncePerRequestFilter`:
+  - 读 `Authorization` header，提取 Bearer token
+  - `jwtUtil.parseAccessToken(token)` → 设 `UsernamePasswordAuthenticationToken` 入 SecurityContextHolder
+  - token 无效 → 不设 context（Spring Security 后续返回 401）；请求路径匹配 `/api/auth/**` → 直接放行不解析
+- `AuthController (@RestController @RequestMapping("/api/auth") @RequiredArgsConstructor)`:
+  - `@PostMapping("/login") Result<LoginVO> login(@Valid @RequestBody LoginReqDTO req)` → `Result.ok(authService.login(req))`
+  - `@PostMapping("/refresh") Result<Map<String,String>> refresh(@Valid @RequestBody RefreshTokenReqDTO req)` → `Result.ok(Map.of("accessToken", authService.refresh(req.getRefreshToken())))`
+  - `@GetMapping("/brands") Result<List<BrandVO>> brands()` → `Result.ok(authService.getBrands())`
+
+- [ ] **Step 1: 写 4 个 MockMvc 失败测试（AuthControllerTest — @WebMvcTest + @MockBean AuthService）**
+  - `login_wrongPassword_returns40100` — authService.login 抛 BizException(40100) → 响应 JSON code=40100
+  - `login_validCredentials_returns200AndTokens` — authService.login 返回 LoginVO → 响应 JSON code=200，accessToken 非空
+  - `refresh_invalidToken_returns40103` — authService.refresh 抛 BizException(40103) → code=40103
+  - `getBrands_returns200AndList` — authService.getBrands 返回 [BrandVO{sNo="STD", sName="标准版"}] → code=200，list 含该项
+
+- [ ] **Step 2: 实现 SecurityConfig + JwtAuthenticationFilter + AuthController**
+
+- [ ] **Step 3: 子会话运行 AuthControllerTest（4 个测试），确认 PASS**
+
+- [ ] **Step 4: 手动 smoke test（如果后端可本地运行）**
+  - `cd backend && mvn spring-boot:run -Dspring-boot.run.profiles=dev`（需 .env.local 在 backend/ 父目录可找到）
+  - `curl -s -X GET http://localhost:8080/api/auth/brands | jq .`
+  - `curl -s -X POST http://localhost:8080/api/auth/login -H "Content-Type: application/json" -d '{"brandNo":"STD","username":"admin","password":"666666"}' | jq .`
+
+- [ ] **Step 5: Commit**
+  - `git commit -m "feat(usr): SecurityConfig + JwtFilter + AuthController REQ-USR-004"`
+
+---
+
+### Task 8: 前端项目骨架
+
+**Files:**
+- 创建: `frontend/package.json`
+- 创建: `frontend/vite.config.ts`
+- 创建: `frontend/tsconfig.json`
+- 创建: `frontend/index.html`
+- 创建: `frontend/src/main.tsx`
+- 创建: `frontend/src/App.tsx`
+- 创建: `frontend/src/styles/tokens.css`
+
+**package.json 关键依赖：**
+```json
+"dependencies": {
+  "react": "^18.3.0", "react-dom": "^18.3.0",
+  "antd": "^5.17.0", "@ant-design/icons": "^5.3.0",
+  "@reduxjs/toolkit": "^2.2.0", "react-redux": "^9.1.0",
+  "react-router-dom": "^6.23.0",
+  "axios": "^1.7.0", "dayjs": "^1.11.0"
+},
+"devDependencies": {
+  "vite": "^5.2.0", "@vitejs/plugin-react": "^4.3.0",
+  "typescript": "^5.4.0",
+  "@types/react": "^18.3.0", "@types/react-dom": "^18.3.0",
+  "vitest": "^1.6.0",
+  "@testing-library/react": "^15.0.0",
+  "@testing-library/jest-dom": "^6.4.0",
+  "@testing-library/user-event": "^14.5.0",
+  "jsdom": "^24.0.0"
+}
+```
+
+**vite.config.ts 关键配置：**
+```ts
+export default defineConfig({
+  plugins: [react()],
+  server: { proxy: { '/api': { target: 'http://localhost:8080', changeOrigin: true } } },
+  test: { environment: 'jsdom', globals: true, setupFiles: './src/test/setup.ts' }
+})
+```
+
+**App.tsx 骨架：** `<BrowserRouter>` 包裹路由，`/login` → `<LoginPage />`，`/` → PrivateRoute（暂时重定向 /login，后续 REQ 补充），`*` → 404
+
+- [ ] **Step 1: 创建前端项目文件结构**
+  - `mkdir -p frontend/src/{styles,api,store/slices,pages/usr,test,hooks,components,utils}`
+  - 写 package.json（上述依赖）
+  - 写 vite.config.ts、tsconfig.json、index.html、src/main.tsx、src/App.tsx（骨架）
+  - 复制 `src/styles/tokens.css` 内容到 `frontend/src/styles/tokens.css`
+  - 写 `frontend/src/test/setup.ts`（`import "@testing-library/jest-dom"`）
+  - `cd frontend && npm install`
+
+- [ ] **Step 2: 验证骨架构建**
+  - `cd frontend && npm run build`（应成功，0 错误）
+
+- [ ] **Step 3: Commit**
+  - `git add frontend/`
+  - `git commit -m "chore(frontend): init Vite React project skeleton REQ-USR-004"`
+
+---
+
+### Task 9: 前端 Auth API 层 + Redux authSlice
+
+**Files:**
+- 创建: `frontend/src/api/request.ts`
+- 创建: `frontend/src/api/auth.ts`
+- 创建: `frontend/src/store/index.ts`
+- 创建: `frontend/src/store/slices/authSlice.ts`
+- 测试: `frontend/src/test/authSlice.test.ts`
+
+**API shape:**
+- `request.ts` — Axios 实例 `baseURL: '/api'`，`timeout: 10000`
+  - 请求拦截器：从 `store.getState().auth.accessToken` 读 token，注入 `Authorization: Bearer ${token}`
+  - 响应拦截器（成功）：`response.data.code !== 200` → 抛 `new Error(response.data.message)`
+  - 响应拦截器（HTTP 401）：调 `auth.refresh(store.getState().auth.refreshToken)` → 更新 store → 重试原请求；refresh 失败 → `store.dispatch(clearCredentials())` → `window.location.href = '/login'`
+- `auth.ts`:
+  - `login(params: { brandNo: string; username: string; password: string }) : Promise<LoginVO>` — POST /api/auth/login
+  - `refresh(refreshToken: string) : Promise<{ accessToken: string }>` — POST /api/auth/refresh
+  - `getBrands() : Promise<BrandVO[]>` — GET /api/auth/brands
+  - 类型定义（TypeScript interface）：`LoginVO`（含 accessToken, refreshToken, expiresIn, userInfo: UserInfoVO），`UserInfoVO`（userId, username, userType, language, brandId），`BrandVO`（sNo, sName）
+- `authSlice` — `createSlice({ name: 'auth', initialState: { accessToken: null, refreshToken: null, userInfo: null } })`
+  - `setCredentials(state, action: PayloadAction<{ accessToken: string; refreshToken: string; userInfo: UserInfoVO }>)` — 更新三字段
+  - `clearCredentials(state)` — 三字段重置 null
+- `store/index.ts` — `configureStore({ reducer: { auth: authReducer } })`；导出 `RootState`、`AppDispatch`
+
+- [ ] **Step 1: 写 2 个失败单元测试（authSlice.test.ts）**
+  - `setCredentials_updatesAllStateFields` — dispatch setCredentials({accessToken:"t1", refreshToken:"r1", userInfo:{userId:"u1",...}}) → state.auth.accessToken=="t1"
+  - `clearCredentials_resetsToNull` — dispatch clearCredentials → state.auth.accessToken==null
+
+- [ ] **Step 2: 实现 request.ts + auth.ts + authSlice + store/index.ts**
+
+- [ ] **Step 3: 子会话运行 `cd frontend && npm run test -- --run`，确认 authSlice 2 个测试 PASS**
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): auth API layer + Redux authSlice REQ-USR-004"`
+
+---
+
+### Task 10: 登录页 LoginPage.tsx
+
+**Files:**
+- 创建: `frontend/src/pages/usr/LoginPage.tsx`
+- 修改: `frontend/src/App.tsx`（添加 /login 路由，PrivateRoute 守卫读 authSlice）
+- 测试: `frontend/src/test/LoginPage.test.tsx`
+
+**UI 规范（来自 docs/06 § 五）：**
+- 版本 `Select`（label="公司/版本"，name="brandNo"）：组件 mount 时调 `getBrands()`，填充选项（value=sNo, label=sName）；defaultValue = sName=="标准版" 对应的 sNo；若无"标准版"则选第一项
+- 用户名 `Input`（label="用户名"，name="username"）：必填
+- 密码 `Input.Password`（label="密码"，name="password"）：必填
+- 提交按钮（text="登录"，`loading={loading}`）：防重复点击
+- 失败：`message.error(接口返回 message)`
+- 成功：`dispatch(setCredentials({accessToken, refreshToken, userInfo}))` → `navigate('/')`
+
+**LoginPage 内部数据流：**
+1. `useEffect(() => { getBrands().then(setBrandOptions) }, [])` — 挂载时获取 brand 列表
+2. `onFinish(values)` → `setLoading(true)` → `await login(values)` → `dispatch(setCredentials(...))` → `navigate('/')` → `finally setLoading(false)`
+
+- [ ] **Step 1: 写 2 个失败测试（LoginPage.test.tsx）**
+  - `renders_brandSelect_username_and_password_fields`
+    - render LoginPage（with Redux Provider + MemoryRouter + mock getBrands → [{sNo:"STD",sName:"标准版"}]）
+    - 断言：combobox（brand Select）存在，`getByPlaceholderText` 或 label "用户名" Input 存在，"密码" Input 存在，"登录" Button 存在
+  - `submit_withValidCredentials_dispatchesSetCredentials`
+    - mock `auth.login` 返回 `{accessToken:"at", refreshToken:"rt", expiresIn:86400, userInfo:{userId:"u1",username:"admin",userType:"超级管理员",language:"中文",brandId:"b1"}}`
+    - 填写 username + password，点击登录 → `store.getState().auth.accessToken == "at"`
+
+- [ ] **Step 2: 实现 LoginPage.tsx + 更新 App.tsx（/login 路由）**
+
+- [ ] **Step 3: 子会话运行 `npm run test -- --run`，确认所有前端测试（包括 authSlice + LoginPage）PASS**
+
+- [ ] **Step 4: Commit**
+  - `git commit -m "feat(usr): LoginPage brand selector + login form REQ-USR-004"`
+
+---
+
+## 提交计划
+
+| 提交消息 | 覆盖 Task |
+|---|---|
+| `chore(backend): init Spring Boot 3 project skeleton REQ-USR-004` | Task 1 |
+| `feat(usr): common Result/BizException/AuthErrorCode/GlobalExceptionHandler REQ-USR-004` | Task 2 |
+| `feat(usr): JwtUtil generate + parse access/refresh token REQ-USR-004` | Task 3 |
+| `feat(usr): BrandEntity/UsrUserEntity + Mapper REQ-USR-004` | Task 4 |
+| `feat(usr): AuthService.login multi-tenant + lockout logic REQ-USR-004` | Task 5 |
+| `feat(usr): AuthService.refresh + getBrands REQ-USR-004` | Task 6 |
+| `feat(usr): SecurityConfig + JwtFilter + AuthController REQ-USR-004` | Task 7 |
+| `chore(frontend): init Vite React project skeleton REQ-USR-004` | Task 8 |
+| `feat(usr): auth API layer + Redux authSlice REQ-USR-004` | Task 9 |
+| `feat(usr): LoginPage brand selector + login form REQ-USR-004` | Task 10 |
diff --git a/docs/superpowers/reviews/2026-05-08-REQ-USR-001.md b/docs/superpowers/reviews/2026-05-08-REQ-USR-001.md
new file mode 100644
index 0000000..b8641ff
--- /dev/null
+++ b/docs/superpowers/reviews/2026-05-08-REQ-USR-001.md
@@ -0,0 +1,21 @@
+---
+req_id: REQ-USR-001
+date: 2026-05-08
+round: 3
+reviewer: superpower-code-reviewer
+---
+
+# Review: REQ-USR-001 — round 3
+
+## 结论
+approve
+
+## Must-fix
+（无）
+
+## Nice-to-have
+- docs/05-API接口契约.md — GET /api/usr/users/staffs 和 GET /api/usr/users/permission-groups 两个接口未写入 docs/05，规格已标注「不在原始清单」但未补录，建议在 module-report 阶段补充
+- UserServiceImpl.java — CLAUDE.md §编码行为约束 第 4 条要求关键方法带 REQ-USR-001 注释标签，当前后端文件均缺失（仅 PermButton.tsx 有一处）
+
+## 反例 / 测试覆盖缺口
+全部三轮 must-fix 已正确修复并通过 41 用例验证。实现与 spec 完全对齐：权限校验、唯一性检查、EMPLOYEE_NOT_FOUND=40001、批量 insert(Collection)、@Transactional 边界、UserPrincipal 基础设施均符合规格。两个 nice-to-have 均为文档/注释层面的缺失，不影响功能正确性。
diff --git a/docs/superpowers/reviews/2026-05-08-REQ-USR-002.md b/docs/superpowers/reviews/2026-05-08-REQ-USR-002.md
new file mode 100644
index 0000000..af5fe0a
--- /dev/null
+++ b/docs/superpowers/reviews/2026-05-08-REQ-USR-002.md
@@ -0,0 +1,29 @@
+---
+req_id: REQ-USR-002
+date: 2026-05-08
+round: 2
+reviewer: superpower-code-reviewer
+---
+
+# Review: REQ-USR-002 — round 2
+
+## 结论
+approve
+
+## Must-fix
+（无）
+
+Round 1 全部 must-fix 已正确修复：
+- M1 ✓ `updateUser_selfAdminKeepType_doesNotThrow` 测试已添加（含 userMapper.update stub）
+- M2 ✓ `UserUpdateReqDTO` 已添加 @NotBlank/@Pattern/@NotNull 校验注解
+- M3 ✓ `UserFormDrawer.InitialData` 已添加 permGroupIds 字段，useEffect 用 `?? []` 初始化
+- M4 ✓ `UserListItemVO` 已添加 bCanEditDoc，mapper SELECT 已加列，UserListPage 传真实值
+
+## Nice-to-have
+- backend/.../vo/UserUpdateRespVO.java — updatedAt 建议添加 @JsonFormat(pattern="yyyy-MM-dd HH:mm:ss") 符合 docs/04 § 3.3 规范
+- frontend/src/test/UserListPage.test.tsx:106 — editMode_submit_callsUpdateUser 可补 toHaveBeenCalledWith('u1', ...) 断言 userId 参数正确
+- frontend/src/pages/usr/UserListPage.tsx:121-128 — initialData 未传 permGroupIds（因列表 API 无此字段），与规格 line 103 说明一致，属有意为之，建议加注释说明
+
+## 反例 / 测试覆盖缺口
+- controller 层 BizException 40300/40400/40301 → 错误码 JSON 映射缺测试（低风险，handler 已在 createUser 路径覆盖）
+- happy-path 未用 ArgumentCaptor 断言 bCanEditDoc/bIsDisabled 映射为正确 int 值（低风险）
diff --git a/docs/superpowers/reviews/2026-05-08-REQ-USR-003.md b/docs/superpowers/reviews/2026-05-08-REQ-USR-003.md
new file mode 100644
index 0000000..70b0352
--- /dev/null
+++ b/docs/superpowers/reviews/2026-05-08-REQ-USR-003.md
@@ -0,0 +1,25 @@
+---
+req_id: REQ-USR-003
+date: 2026-05-08
+round: 4
+reviewer: superpower-code-reviewer
+---
+
+# Review: REQ-USR-003 — round 4
+
+## 结论
+approve
+
+## Must-fix
+（无）
+
+## Nice-to-have
+- backend/src/main/java/com/example/erp/module/usr/controller/UserController.java:35-50 — docs/05 声明了 Permission: usr:query，但当前 SecurityConfig 仅做鉴权（authenticated），未启用 @PreAuthorize，属跨切面 REQ 的存量缺口，非本 REQ 引入
+- backend/src/main/java/com/example/erp/common/response/Result.java:19 — docs/04 § 1.3 示例写 code:0，实际实现与 docs/05 一致为 200；docs/04 示例是历史遗留，可单独 docs commit 修正
+- backend/src/main/resources/mapper/UsrUserMapper.xml:29,43 — staffName/department equals 分支未加 IS NULL OR，因为 equals '部门名' 语义上不应匹配无职员用户，行为正确但可补注释说明
+- backend/src/test/java/com/example/erp/module/usr/UserControllerTest.java:109 — getUsers_withToken_returns200 未用 ArgumentCaptor 验证五个参数均正确转发给 service
+
+## 反例 / 测试覆盖缺口
+- 无 XML 动态查询路径（含/不含/等于、disabled 是否、lastLoginDate DATE 过滤、pageSize cap）的集成/切片测试；mapper 被 mock 后 XML 逻辑未被单元覆盖
+- UserControllerTest 未断言响应中不含 sPasswordHash / iLoginFailCount / tLockUntil
+- 前端测试未覆盖翻页 onChange 回调（load 以正确页码调用）
diff --git a/docs/superpowers/reviews/2026-05-08-REQ-USR-004.md b/docs/superpowers/reviews/2026-05-08-REQ-USR-004.md
new file mode 100644
index 0000000..896ca62
--- /dev/null
+++ b/docs/superpowers/reviews/2026-05-08-REQ-USR-004.md
@@ -0,0 +1,44 @@
+---
+req_id: REQ-USR-004
+date: 2026-05-08
+round: 2
+reviewer: superpower-code-reviewer
+verdict: approve
+---
+
+# Review: REQ-USR-004 — round 2
+
+## 结论
+approve
+
+## Round 1 Must-fix 修复确认
+
+- [x] **[high] uk_usr_user_username 多租户唯一索引** — 已新增 `sql/migrations/V2__fix_username_unique_per_tenant.sql`，DROP 旧索引，建立 `uk_usr_user_username_tenant (sUsername, sBrandsId)` 复合唯一索引；同步更新 `docs/03`；V2 已复制至 `backend/src/main/resources/db/migration/` Flyway 可应用路径。
+- [x] **[medium] UpdateWrapper → LambdaUpdateWrapper** — `AuthServiceImpl.java` 全部 `UpdateWrapper` 改为 `LambdaUpdateWrapper`，使用方法引用（`UsrUserEntity::getSId` 等），编译期类型安全，单元测试通过。
+- [x] **[medium] refresh() 锁定账号检查** — 追加 `tLockUntil` 检查分支；新增 `refresh_lockedUser_throws40103` 测试，验证锁定用户刷新 token 抛 40103。
+
+## 本轮新增 Nice-to-have（不阻塞通过）
+
+- `docs/05` 中 40400 行仍存在；属文档小偏差，不影响运行时行为，后续 docs 统一整理。
+- `JwtUtil.doParse()` access/refresh 共用 40103 错误码，低优先级语义优化。
+
+## 测试结果
+
+**后端**（`JAVA_HOME=openjdk@21 mvn verify`）：11 tests — 11 passed, 0 failed, 0 skipped
+**前端**（`npm run test -- --run`）：3 tests — 3 passed, 0 failed
+
+## 覆盖确认
+
+| 验收标准 | 覆盖 |
+|---|---|
+| 正确凭据返回 Access + Refresh Token | ✓ login_success_resetsCountAndReturnsTokens |
+| 错误密码返回 40100，不区分用户名/密码 | ✓ login_wrongPassword_firstTime_throws40100 |
+| 品牌不存在返回 40100 | ✓ login_brandNotFound_throws40100 |
+| 5 次失败锁定 30 分钟 | ✓ login_wrongPassword_5thTime_setsLockAndThrows40102 |
+| 锁定账号返回 40102 + 剩余分钟数 | ✓ login_accountLocked_throws40102WithRemainingMinutes |
+| 禁用账号返回 40101 | ✓ login_accountDisabled_throws40101 |
+| Refresh Token 正常换新 Access Token | ✓ refresh_validRefreshToken_returnsNewAccessToken |
+| 无效 Refresh Token 返回 40103 | ✓ refresh_invalidRefreshToken_throws40103 |
+| 锁定账号的 Refresh Token 失效 | ✓ refresh_lockedUser_throws40103 |
+| 前端渲染版本下拉 + 默认选"标准版" | ✓ LoginPage 渲染测试 |
+| 前端提交调用 login API | ✓ LoginPage 提交测试 |
diff --git a/docs/superpowers/specs/2026-05-08-REQ-USR-001.md b/docs/superpowers/specs/2026-05-08-REQ-USR-001.md
new file mode 100644
index 0000000..b016417
--- /dev/null
+++ b/docs/superpowers/specs/2026-05-08-REQ-USR-001.md
@@ -0,0 +1,113 @@
+---
+req_id: REQ-USR-001
+date: 2026-05-08
+module: module_usr
+---
+
+# Spec: REQ-USR-001 — 增加用户
+
+## 目标
+
+超级管理员在用户管理页新建用户账号，填写基本信息并分配权限组，账号保存后立即生效，可使用初始密码 666666 登录系统。
+
+## 输入 / 触发
+
+**触发**：超级管理员点击用户管理页「新增」按钮，弹出 Drawer，填写表单并提交。
+
+**POST /api/usr/users 请求体**：
+```json
+{
+  "userCode": "string（必填，用户号）",
+  "username": "string（必填，用户名，同一 brand 内唯一）",
+  "userType": "普通用户|超级管理员（必填）",
+  "language": "中文|英文|繁体（必填）",
+  "canEditDoc": false,
+  "employeeId": "string|null（可选，tStaff.sId）",
+  "permGroupIds": ["string"]
+}
+```
+
+**前端 Drawer 表单字段**：
+| 字段 | 组件 | 必填 | 来源/选项 |
+|---|---|---|---|
+| 用户号 | Input | 是 | 手工输入 |
+| 用户名 | Input | 是 | 手工输入 |
+| 类型 | Select | 是 | 普通用户 / 超级管理员 |
+| 语言 | Select | 是 | 中文 / 英文 / 繁体 |
+| 单据修改权限 | Checkbox | 否 | 默认不勾 |
+| 员工 | Select | 否 | GET /api/usr/staffs 返回列表，label=sStaffName, value=sId |
+| 权限组 | Table+Checkbox | 否 | GET /api/usr/permission-groups 返回列表，列：权限分类/权限名称 |
+
+## 输出 / 结果
+
+**成功响应**：
+```json
+{
+  "code": 200,
+  "message": "操作成功",
+  "data": {
+    "userId": "string",
+    "userCode": "string",
+    "username": "string"
+  }
+}
+```
+
+前端收到成功响应后：`message.success("新增用户成功")` → 关闭 Drawer。
+
+## 业务规则
+
+1. **权限控制**：请求者 JWT 中 `userType == 超级管理员`，否则抛 `BizException(40300, "权限不足")`。
+2. **唯一性检查（同 brand 内）**：
+   - `sUserCode` 全库唯一（索引 `uk_usr_user_usercode`）；重复抛 `BizException(40902, "用户号已存在")`。
+   - `sUsername` 在同一 `sBrandsId` 内唯一（索引 `uk_usr_user_username_tenant`）；重复抛 `BizException(40901, "用户名已存在")`。
+3. **密码初始化**：`sPasswordHash = BCryptPasswordEncoder.encode("666666")`，禁止存明文。
+4. **系统字段自动填充**（Controller 或 Service 层注入 `UserPrincipal`）：
+   - `sId` = `UUID.randomUUID().toString()`
+   - `sBrandsId` = JWT claim `brandId`
+   - `sCreatorUsername` = JWT claim `username`
+   - `tCreateDate` = `LocalDateTime.now()`
+   - `bIsDisabled` = 0
+   - `iLoginFailCount` = 0
+5. **employeeId 校验**：若不为 null，需验证 `tStaff.sId == employeeId && tStaff.sBrandsId == brandId`；不存在抛 `BizException(40001, "员工不存在")`。
+6. **权限组写入**：`permGroupIds` 非空时，批量插入 `usr_user_permission`（`sUserId=新用户 sId`, `sPermGroupId=item`）；`permGroupIds` 为空/null 时跳过。
+7. **事务**：`createUser()` 方法标注 `@Transactional`，usr_user 插入 + usr_user_permission 批量插入在同一事务中。
+
+## 边界与约束
+
+- 初始密码仅后端生成，不通过请求体传入，前端不展示。
+- `sUsername` 一旦创建不可修改（REQ-USR-002 约束）。
+- `userType` 枚举只有 `普通用户` 和 `超级管理员` 两种合法值；`language` 枚举只有 `中文`、`英文`、`繁体`；后端用 `@Pattern`/`@NotNull` + `@Valid` 校验，违规触发 `40001`。
+- 跨模块改动：需修改 `JwtAuthenticationFilter.java`（config 层），将 JWT claims 包装为 `UserPrincipal` 存入 SecurityContext，使 `UserController` 可通过 `@AuthenticationPrincipal UserPrincipal` 取到 `brandId` 和 `username`。此修改属必要基础设施扩展（CLAUDE.md S2）。
+
+## 依赖的 schema 表 / 字段
+
+**写入表**：
+- `usr_user`：`sId`、`sBrandsId`、`sCreatorUsername`、`tCreateDate`、`sUserCode`、`sUsername`、`sPasswordHash`、`sUserType`、`sLanguage`、`bCanEditDoc`、`bIsDisabled`、`sEmployeeId`、`iLoginFailCount`
+- `usr_user_permission`：`sId`（UUID）、`sBrandsId`、`tCreateDate`、`sUserId`、`sPermGroupId`
+
+**只读表**：
+- `tStaff`：`sId`、`sStaffName`（员工下拉列表及 employeeId 校验）
+- `usr_permission_group`：`sId`、`sGroupCode`、`sGroupName`、`sCategory`（权限组复选列表）
+
+## 依赖的接口
+
+- `POST /api/auth/login`（REQ-USR-004）— 前端登录获取 JWT，携带 Bearer Token 才可调用本接口
+- `GET /api/usr/staffs`（本 REQ 新增，不在 docs/05 原始清单）— 员工下拉数据源，鉴权接口
+  - 响应：`{ "data": [{ "sId": "...", "sStaffName": "..." }] }`
+- `GET /api/usr/permission-groups`（本 REQ 新增，不在 docs/05 原始清单）— 权限组复选数据源，鉴权接口
+  - 响应：`{ "data": [{ "sId": "...", "sGroupCode": "...", "sGroupName": "...", "sCategory": "..." }] }`
+- `POST /api/usr/users`（docs/05 已定义）— 本 REQ 核心创建接口
+
+## 验收标准
+
+1. 超级管理员提交合法数据 → HTTP 200，`data.userId` 非空，数据库 `usr_user` 表新增一条记录，密码字段为 BCrypt 哈希（不含 "666666" 明文）。
+2. 新建用户可立即用 POST /api/auth/login（brandNo + username + "666666"）登录成功。
+3. 重复用户名（同 brand）→ 返回 `code=40901`，用户名已存在。
+4. 重复用户号 → 返回 `code=40902`，用户号已存在。
+5. 普通用户调用本接口 → 返回 `code=40300`，权限不足。
+6. 缺必填字段（userCode / username / userType / language 为空）→ 返回 `code=40001`。
+7. 选中权限组后提交 → `usr_user_permission` 表有对应关联记录。
+8. 关联无效 employeeId → 返回 `code=40001`，员工不存在。
+9. 前端：新增 Drawer 表单加载时，员工下拉和权限组 Table 已从对应 API 拉取数据；提交成功后 Drawer 关闭并显示 `message.success`。
+10. 前端：普通用户登录后，用户管理页「新增」按钮不显示（`PermButton permission="usr:create"` 隐藏逻辑）。
diff --git a/docs/superpowers/specs/2026-05-08-REQ-USR-002.md b/docs/superpowers/specs/2026-05-08-REQ-USR-002.md
new file mode 100644
index 0000000..5a4b1ba
--- /dev/null
+++ b/docs/superpowers/specs/2026-05-08-REQ-USR-002.md
@@ -0,0 +1,126 @@
+---
+req_id: REQ-USR-002
+date: 2026-05-08
+module: usr
+---
+
+# Spec: REQ-USR-002 — 修改用户
+
+## 目标
+超级管理员可通过 userId 定位已有用户，更新其用户类型、语言、单据修改权限、启/停用状态、关联员工和权限组，修改立即生效；用户名不可修改，密码由单独接口重置。
+
+## 输入 / 触发
+
+HTTP 请求：`PUT /api/usr/users/{userId}`（需 Bearer Token 鉴权）
+
+Path 参数：`userId`（`usr_user.sId`，目标用户的业务 ID）
+
+Request Body（JSON）：
+
+| 字段 | 类型 | 必填 | 说明 |
+|---|---|---|---|
+| userType | String | 是 | `普通用户` 或 `超级管理员` |
+| language | String | 是 | `中文` / `英文` / `繁体` |
+| canEditDoc | boolean | 是 | 是否有单据修改权限 |
+| isDisabled | boolean | 是 | true = 禁用账号 |
+| employeeId | String\|null | 否 | 关联职员 sId，null = 取消关联 |
+| permGroupIds | String[] | 是 | 权限组 sId 列表（空数组 = 清空所有权限） |
+
+## 输出 / 结果
+
+HTTP 200，`Result<UserUpdateRespVO>`
+
+```json
+{
+  "code": 200,
+  "data": {
+    "userId": "string",
+    "username": "string",
+    "updatedAt": "2026-05-08T10:00:00"
+  }
+}
+```
+
+`updatedAt` 为服务端处理时的 `LocalDateTime.now()`，序列化为 ISO-8601。
+
+## 业务规则
+
+1. **权限校验**：`principal.userType() != "超级管理员"` → 抛 BizException(40300)，与 createUser 逻辑一致（来源：`UserServiceImpl.createUser`）
+2. **用户存在性**：按 `sId = userId AND sBrandsId = brandId` 查 `usr_user`；找不到 → 抛 BizException(40400)
+3. **自身角色保护**：`principal.userId().equals(userId)` 时，禁止将 `userType` 从 `超级管理员` 改为其他值 → 抛 BizException(40301)（防止唯一管理员自我降权导致系统锁死；即使目标 userType 已是普通用户也拦截，保持规则简单）
+4. **employeeId 校验**：若 `employeeId != null`，需确认 `tStaff.sId = employeeId AND sBrandsId = brandId` 存在；不存在 → 抛 BizException(40001)
+5. **更新字段**：仅更新 `sUserType / sLanguage / bCanEditDoc / bIsDisabled / sEmployeeId`；`sUsername / sUserCode / sPasswordHash / sCreatorUsername / tCreateDate` 不修改
+6. **权限组 replace 策略**：先 `DELETE FROM usr_user_permission WHERE sUserId = userId AND sBrandsId = brandId`，再批量 INSERT 新的关联记录（与 createUser 的 permGroupIds 处理方式一致）；permGroupIds 为空数组时仅删除，不插入
+7. **多租户隔离**：所有查询和写入均带 `sBrandsId = principal.brandId()`
+
+## 边界与约束
+
+- 接口为写操作，需加 `@Transactional`
+- 鉴权失败返回 401（SecurityConfig 已配置）
+- `userType` / `language` 仅接受指定枚举值；违反 → 由 `@Valid` + `@NotNull` 在 DTO 层拦截返回 40001
+- 密码不在此接口处理，`sPasswordHash` 保持原值不变
+- 响应 JSON 不返回 sPasswordHash / iLoginFailCount / tLockUntil
+
+## 依赖的 schema 表 / 字段
+
+- `usr_user (别名 u)`：sId, sUserType, sLanguage, bCanEditDoc, bIsDisabled, sEmployeeId, sBrandsId（查找 + 更新）
+- `tStaff`：sId, sBrandsId（校验 employeeId 存在性）
+- `usr_permission_group`：仅前端下拉，不涉及后端写操作
+- `usr_user_permission`：sUserId, sPermGroupId, sBrandsId, sId, tCreateDate（先删后插）
+
+## 依赖的接口
+
+- `POST /api/auth/login`（REQ-USR-004，获取 Bearer Token）
+- `GET /api/usr/users`（REQ-USR-003，获取列表后点击行触发修改抽屉）
+- `GET /api/usr/users/staffs`（REQ-USR-001，前端抽屉加载员工下拉）
+- `GET /api/usr/users/permission-groups`（REQ-USR-001，前端抽屉加载权限组列表）
+
+## 验收标准
+
+1. `PUT /api/usr/users/{validId}` Body 合法 → HTTP 200，返回 userId/username/updatedAt，数据库对应字段已更新
+2. `userId` 不存在（或属于其他 brand）→ 返回 40400
+3. 非超级管理员 Token 调用 → 返回 40300
+4. 超级管理员修改自己的 userType → 返回 40301
+5. `isDisabled=true` 修改后，目标用户再登录 → 返回 40101（账号已禁用）
+6. permGroupIds 为空数组 → 该用户权限组被清空，下次查询 permission-groups 对应关联为空
+7. permGroupIds 非空 → 权限组先删后插，关联记录与提交值一致
+8. 无 Token → 返回 401
+9. 前端：UserListPage 表格行有"修改"按钮，点击弹出预填修改抽屉；提交后关闭抽屉并刷新列表
+
+## 前端交互设计
+
+**UserFormDrawer 改造（复用已有组件）**：
+- 新增 props：`userId?: string`，`initialData?: { userType, language, canEditDoc, isDisabled, employeeId, permGroupIds: string[] }`
+- 当 `userId` 存在时（edit 模式）：
+  - 抽屉标题改为 "修改用户"
+  - 隐藏用户号和用户名 Form.Item（或显示为只读文本）
+  - `open` 时用 `initialData` 初始化 form 和 selectedPermIds
+  - 提交调 `updateUser(userId, req)` 而非 `createUser`
+- 当 `userId` 不存在时（create 模式）：行为与现有完全一致
+
+**UserListPage 改造**：
+- columns 末尾加"操作"列，包含"修改"按钮（PermButton，权限 `usr:edit`）
+- 点击"修改"按钮：将该行 `UserListItemVO` 转换为 `initialData`（permGroupIds 需额外从后端获取或在列表中推导——因列表不返回 permGroupIds，修改抽屉打开时无法预填权限组复选框，初始化为空数组即可，用户可重新勾选）
+- 新增状态：`editingUser: UserListItemVO | null`，控制修改抽屉开关
+
+**新增 API 函数**（`frontend/src/api/usr.ts`）：
+```ts
+export interface UserUpdateReq {
+  userType: string
+  language: string
+  canEditDoc: boolean
+  isDisabled: boolean
+  employeeId: string | null
+  permGroupIds: string[]
+}
+
+export interface UserUpdateResp {
+  userId: string
+  username: string
+  updatedAt: string
+}
+
+export function updateUser(userId: string, req: UserUpdateReq): Promise<UserUpdateResp> {
+  return request.put(`/usr/users/${userId}`, req)
+}
+```
diff --git a/docs/superpowers/specs/2026-05-08-REQ-USR-003.md b/docs/superpowers/specs/2026-05-08-REQ-USR-003.md
new file mode 100644
index 0000000..ea1d80c
--- /dev/null
+++ b/docs/superpowers/specs/2026-05-08-REQ-USR-003.md
@@ -0,0 +1,101 @@
+---
+req_id: REQ-USR-003
+date: 2026-05-08
+module: usr
+---
+
+# Spec: REQ-USR-003 — 查询用户
+
+## 目标
+超级管理员可按 8 种查询字段 + 3 种匹配方式组合筛选，分页浏览本品牌下的用户列表；列表同时展示关联职员的员工名与部门。
+
+## 输入 / 触发
+HTTP 请求：`GET /api/usr/users`（需 Bearer Token 鉴权）
+
+Query 参数：
+
+| 参数 | 类型 | 必填 | 默认值 | 说明 |
+|---|---|---|---|---|
+| queryField | String | 否 | `username` | 查询字段枚举，见下表 |
+| matchType | String | 否 | `contains` | 匹配方式枚举：`contains` / `notContains` / `equals` |
+| queryValue | String | 否 | — | 查询值；空字符串或不传 = 全部 |
+| page | int | 否 | 1 | 页码，从 1 开始 |
+| pageSize | int | 否 | 20 | 每页条数，最大 100 |
+
+queryField 枚举（前端显示名 → 参数值 → 后端列）：
+
+| 前端显示 | 参数值 | 后端列 |
+|---|---|---|
+| 用户名 | `username` | `u.sUsername` |
+| 员工名 | `staffName` | `s.sStaffName` |
+| 用户号 | `userCode` | `u.sUserCode` |
+| 部门 | `department` | `s.sDepartment` |
+| 用户类型 | `userType` | `u.sUserType` |
+| 作废 | `disabled` | `u.bIsDisabled` |
+| 登录日期 | `lastLoginDate` | `u.tLastLoginDate` |
+| 制单人 | `creator` | `u.sCreatorUsername` |
+
+## 输出 / 结果
+HTTP 200，`Result<PageVO<UserListItemVO>>`
+
+`PageVO<T>` 结构（通用分页包装）：
+```json
+{
+  "total": 25,
+  "page": 1,
+  "pageSize": 20,
+  "list": [ ...UserListItemVO... ]
+}
+```
+
+`UserListItemVO` 字段（禁止返回 sPasswordHash / iLoginFailCount / tLockUntil）：
+
+| JSON 字段 | 来源列 | 可 null |
+|---|---|---|
+| sId | usr_user.sId | 否 |
+| sUsername | usr_user.sUsername | 否 |
+| sUserCode | usr_user.sUserCode | 否 |
+| sUserType | usr_user.sUserType | 否 |
+| sLanguage | usr_user.sLanguage | 否 |
+| bIsDisabled | usr_user.bIsDisabled | 否 |
+| tLastLoginDate | usr_user.tLastLoginDate | 是 |
+| sCreatorUsername | usr_user.sCreatorUsername | 是 |
+| tCreateDate | usr_user.tCreateDate | 否 |
+| sStaffName | tStaff.sStaffName | 是（LEFT JOIN） |
+| sDepartment | tStaff.sDepartment | 是（LEFT JOIN） |
+
+## 业务规则
+
+1. **多租户隔离**：所有查询必须附加 `u.sBrandsId = principal.brandId()`
+2. **queryValue 为空**：忽略查询条件，返回该品牌全部用户
+3. **匹配方式映射**（文本字段：username / staffName / userCode / department / userType / creator）：
+   - `contains` → `LIKE '%value%'`
+   - `notContains` → `NOT LIKE '%value%'`
+   - `equals` → `= 'value'`
+4. **布尔字段（disabled）**：仅有意义的匹配是 equals；queryValue="是" → `bIsDisabled = 1`；"否" → `bIsDisabled = 0`；其他值（包括 contains/notContains 的非 "是"/"否"）忽略条件
+5. **日期字段（lastLoginDate）**：queryValue 格式 `YYYY-MM-DD`；无论 matchType 为何，均使用 `DATE(tLastLoginDate) = 'YYYY-MM-DD'`
+6. **pageSize 截断**：pageSize > 100 时强制截断为 100
+7. **分页越界**：page 超出总页数时返回最后一页（MyBatis-Plus `Page` 默认行为）
+8. **职员 JOIN**：`LEFT JOIN tStaff s ON u.sEmployeeId = s.sId AND s.sBrandsId = u.sBrandsId AND s.bDeleted = 0`；未关联职员时 sStaffName / sDepartment 为 null
+
+## 边界与约束
+- 接口为只读，无写副作用
+- 鉴权失败返回 401（SecurityConfig.authenticationEntryPoint 已配置）
+- 单次最多返回 100 条
+
+## 依赖的 schema 表 / 字段
+- `usr_user (别名 u)`：sId, sUsername, sUserCode, sUserType, sLanguage, bIsDisabled, sEmployeeId, sCreatorUsername, tLastLoginDate, tCreateDate, sBrandsId
+- `tStaff (别名 s)`：sId, sStaffName, sDepartment, sBrandsId, bDeleted
+
+## 依赖的接口
+- `POST /api/auth/login`（REQ-USR-004，获取 Bearer Token 供本接口鉴权使用）
+
+## 验收标准
+1. `GET /api/usr/users`（无参）HTTP 200，返回本品牌所有用户，不含密码字段
+2. `queryField=username&matchType=contains&queryValue=admin` 仅返回 sUsername 含 "admin" 的用户
+3. `queryField=disabled&matchType=equals&queryValue=是` 仅返回 bIsDisabled=1 的记录
+4. 无匹配条件时返回 `{ total: 0, list: [] }` 而非 4xx/5xx
+5. page=999（超出总页）返回最后一页而不报错
+6. Token 品牌 A 无法查到品牌 B 的用户（多租户隔离）
+7. 响应 JSON 中不含 sPasswordHash / iLoginFailCount / tLockUntil
+8. 无 Token 请求返回 401
diff --git a/docs/superpowers/specs/2026-05-08-REQ-USR-004.md b/docs/superpowers/specs/2026-05-08-REQ-USR-004.md
new file mode 100644
index 0000000..d85aeca
--- /dev/null
+++ b/docs/superpowers/specs/2026-05-08-REQ-USR-004.md
@@ -0,0 +1,142 @@
+---
+req_id: REQ-USR-004
+date: 2026-05-08
+module: module_usr
+---
+
+# Spec: REQ-USR-004 — 用户登录
+
+## 目标
+
+用户在登录页选择所属公司（brand）、输入用户名和密码，完成身份认证后获取 JWT Access Token 及 Refresh Token，用于后续所有接口鉴权。多租户隔离：每次登录的用户查询限定在所选 brand 的 sBrandsId 范围内。
+
+## 输入 / 触发
+
+**POST /api/auth/login**（公开接口，无需 Bearer Token）
+
+```json
+{
+  "brandNo": "string",   // brand.sNo，前端版本下拉选中项
+  "username": "string",  // usr_user.sUsername
+  "password": "string"   // 明文密码（HTTPS 传输），后端用 BCrypt 校验
+}
+```
+
+**辅助：版本下拉数据**  
+前端需预先调用 `GET /api/auth/brands` 获取 brand 列表（sNo / sName），填充版本下拉框。默认选中 `sName = "标准版"` 对应的项（若无则选第一项）。此接口亦无需鉴权。
+
+**POST /api/auth/refresh**（无需 Bearer Token，需 Refresh Token）
+
+```json
+{ "refreshToken": "string" }
+```
+
+## 输出 / 结果
+
+**登录成功（HTTP 200）**
+
+```json
+{
+  "code": 200,
+  "message": "登录成功",
+  "data": {
+    "accessToken": "<jwt>",
+    "refreshToken": "<jwt>",
+    "expiresIn": 86400,
+    "userInfo": {
+      "userId": "string",     // usr_user.sId
+      "username": "string",   // usr_user.sUsername
+      "userType": "string",   // 普通用户 | 超级管理员
+      "language": "string",   // 中文 | 英文 | 繁体
+      "brandId": "string"     // brand.sId，写入 token claims 用于后续多租户隔离
+    }
+  }
+}
+```
+
+**失败（业务错误，HTTP 200 + code ≠ 0）**
+
+| code | message | 场景 |
+|---|---|---|
+| 40100 | 用户名或密码错误 | 密码错误 / 用户不存在 / brand 不存在（统一文案，防枚举） |
+| 40101 | 账号已被禁用，请联系管理员 | bIsDisabled = 1 |
+| 40102 | 账号已被锁定，请 {N} 分钟后重试 | tLockUntil > NOW() |
+| 40103 | Refresh Token 已失效，请重新登录 | refresh 接口 token 过期或篡改 |
+
+## 业务规则
+
+1. **多租户查询**：先 `SELECT * FROM brand WHERE sNo = ?` 得 `brandId = brand.sId`；再 `SELECT * FROM usr_user WHERE sUsername = ? AND sBrandsId = ?`（brandId）。brand 不存在或用户不存在统一返回 40100（防枚举）。
+
+2. **密码校验**：`BCryptPasswordEncoder.matches(plainPassword, usr_user.sPasswordHash)`。
+
+3. **禁用检查**：`bIsDisabled = 1` → 返回 40101，不更新失败计数。
+
+4. **锁定检查**：`tLockUntil IS NOT NULL AND tLockUntil > NOW()` → 返回 40102，剩余分钟数 = `CEIL((tLockUntil - NOW()) / 60)`。
+
+5. **失败计数**：密码错误时 `iLoginFailCount += 1`；达到 5 次时设 `tLockUntil = NOW() + 30 分钟`，同时返回 40102。
+
+6. **登录成功**：
+   - 重置 `iLoginFailCount = 0`，`tLockUntil = NULL`
+   - 更新 `tLastLoginDate = NOW()`
+   - 签发 Access Token（24h）+ Refresh Token（7d），均为 JWT，签名密钥来自 `JWT_SECRET`（从 `.env.local` 注入，`application.yml` 中 `${JWT_SECRET}`）
+
+7. **JWT Claims**：
+   - Access Token：`sub = usr_user.sId`，`username`，`userType`，`brandId = brand.sId`，`exp = now + 24h`
+   - Refresh Token：`sub = usr_user.sId`，`brandId`，`type = refresh`，`exp = now + 7d`
+
+8. **Token 刷新**（POST /api/auth/refresh）：校验 Refresh Token 签名与 `type=refresh`；从 claims 读 `sub`（userId）和 `brandId` 重新查库确认用户仍有效；签发新 Access Token（24h）；Refresh Token **不续期**（滑动窗口留给后续迭代）。
+
+9. **版本下拉**（GET /api/auth/brands）：`SELECT sNo, sName FROM brand ORDER BY sName`；无需分页（品牌数量通常极少）。
+
+## 边界与约束
+
+- 所有接口均走 HTTPS（Nginx 层保障，后端不强制）
+- 登录日志（IP + 时间戳）通过 Spring Security 的 `AuthenticationSuccessHandler` / `AuthenticationFailureHandler` 写 Logback，不写业务表
+- Refresh Token 无服务端存储（无状态 JWT）；强制退出由后续迭代（引入 token 黑名单）实现；本期用 7 天过期控制
+- 密码明文绝不落库，`sPasswordHash` 仅存 BCrypt 60 字符哈希
+- Access Token 不含密码 hash，不含任何敏感字段
+- 防暴力破解：5 次失败锁 30 分钟（数据库层，不依赖内存，重启后有效）
+- `GET /api/auth/brands` 结果可加短缓存（30s），减少登录页加载压力
+
+## 依赖的 schema 表 / 字段
+
+**usr_user**（主要读写字段）
+
+| 字段 | 操作 | 说明 |
+|---|---|---|
+| `sUsername` | READ | 登录名匹配 |
+| `sBrandsId` | READ | 多租户范围限定 |
+| `sPasswordHash` | READ | BCrypt 校验 |
+| `bIsDisabled` | READ | 禁用检查 |
+| `tLockUntil` | READ / WRITE | 锁定截止时间 |
+| `iLoginFailCount` | READ / WRITE | 连续失败次数 |
+| `tLastLoginDate` | WRITE | 成功后更新 |
+| `sId` | READ | 写入 JWT sub |
+| `sUserType` | READ | 写入 JWT claims |
+| `sLanguage` | READ | 返回 userInfo |
+
+**brand**
+
+| 字段 | 操作 | 说明 |
+|---|---|---|
+| `sNo` | READ | 版本下拉匹配键 |
+| `sId` | READ | 写入 JWT brandId claim |
+| `sName` | READ | 版本下拉显示名 |
+
+## 依赖的接口
+
+- 自身即认证入口，无上游接口依赖
+- 对外暴露：`POST /api/auth/login`、`POST /api/auth/refresh`、`GET /api/auth/brands`（均无鉴权）
+
+## 验收标准
+
+1. 正确 brandNo + username + password → HTTP 200，返回有效 accessToken，`POST /api/usr/users` 携带该 token 鉴权通过
+2. 错误密码 → code=40100，且不暴露是用户名还是密码错了
+3. 连续 5 次错误密码 → 第 5 次返回 code=40102（含剩余分钟数），后续在锁定期内再请求仍返回 40102
+4. 锁定 30 分钟后自动解锁，正确凭据可再次登录
+5. `bIsDisabled = 1` 的账号登录 → code=40101
+6. brand.sNo 不存在 → code=40100（与密码错误同一文案）
+7. 用同一账号、不同 brandId 登录 → 互不干扰（多租户隔离）
+8. 有效 refreshToken → POST /api/auth/refresh 返回新 accessToken
+9. 过期 / 伪造 refreshToken → code=40103
+10. GET /api/auth/brands 返回所有 brand 列表（sNo + sName）
diff --git a/frontend/index.html b/frontend/index.html
new file mode 100644
index 0000000..53d85d2
--- /dev/null
+++ b/frontend/index.html
@@ -0,0 +1,13 @@
+<!doctype html>
+<html lang="zh-CN">
+  <head>
+    <meta charset="UTF-8" />
+    <link rel="icon" type="image/svg+xml" href="/vite.svg" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>小羚羊 ERP</title>
+  </head>
+  <body>
+    <div id="root"></div>
+    <script type="module" src="/src/main.tsx"></script>
+  </body>
+</html>
diff --git a/frontend/package-lock.json b/frontend/package-lock.json
new file mode 100644
index 0000000..1a50e34
--- /dev/null
+++ b/frontend/package-lock.json
@@ -0,0 +1,4820 @@
+{
+  "name": "erp-frontend",
+  "version": "0.0.1",
+  "lockfileVersion": 3,
+  "requires": true,
+  "packages": {
+    "": {
+      "name": "erp-frontend",
+      "version": "0.0.1",
+      "dependencies": {
+        "@ant-design/icons": "^5.3.7",
+        "@reduxjs/toolkit": "^2.2.5",
+        "antd": "^5.18.0",
+        "axios": "^1.7.2",
+        "dayjs": "^1.11.11",
+        "react": "^18.3.1",
+        "react-dom": "^18.3.1",
+        "react-redux": "^9.1.2",
+        "react-router-dom": "^6.23.1"
+      },
+      "devDependencies": {
+        "@testing-library/jest-dom": "^6.4.6",
+        "@testing-library/react": "^16.0.0",
+        "@testing-library/user-event": "^14.5.2",
+        "@types/react": "^18.3.3",
+        "@types/react-dom": "^18.3.0",
+        "@vitejs/plugin-react": "^4.3.1",
+        "jsdom": "^24.1.0",
+        "typescript": "^5.4.5",
+        "vite": "^5.3.1",
+        "vitest": "^1.6.0"
+      }
+    },
+    "node_modules/@adobe/css-tools": {
+      "version": "4.4.4",
+      "resolved": "https://registry.npmjs.org/@adobe/css-tools/-/css-tools-4.4.4.tgz",
+      "integrity": "sha512-Elp+iwUx5rN5+Y8xLt5/GRoG20WGoDCQ/1Fb+1LiGtvwbDavuSk0jhD/eZdckHAuzcDzccnkv+rEjyWfRx18gg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@ant-design/colors": {
+      "version": "7.2.1",
+      "resolved": "https://registry.npmjs.org/@ant-design/colors/-/colors-7.2.1.tgz",
+      "integrity": "sha512-lCHDcEzieu4GA3n8ELeZ5VQ8pKQAWcGGLRTQ50aQM2iqPpq2evTxER84jfdPvsPAtEcZ7m44NI45edFMo8oOYQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@ant-design/fast-color": "^2.0.6"
+      }
+    },
+    "node_modules/@ant-design/cssinjs": {
+      "version": "1.24.0",
+      "resolved": "https://registry.npmjs.org/@ant-design/cssinjs/-/cssinjs-1.24.0.tgz",
+      "integrity": "sha512-K4cYrJBsgvL+IoozUXYjbT6LHHNt+19a9zkvpBPxLjFHas1UpPM2A5MlhROb0BT8N8WoavM5VsP9MeSeNK/3mg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.1",
+        "@emotion/hash": "^0.8.0",
+        "@emotion/unitless": "^0.7.5",
+        "classnames": "^2.3.1",
+        "csstype": "^3.1.3",
+        "rc-util": "^5.35.0",
+        "stylis": "^4.3.4"
+      },
+      "peerDependencies": {
+        "react": ">=16.0.0",
+        "react-dom": ">=16.0.0"
+      }
+    },
+    "node_modules/@ant-design/cssinjs-utils": {
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/@ant-design/cssinjs-utils/-/cssinjs-utils-1.1.3.tgz",
+      "integrity": "sha512-nOoQMLW1l+xR1Co8NFVYiP8pZp3VjIIzqV6D6ShYF2ljtdwWJn5WSsH+7kvCktXL/yhEtWURKOfH5Xz/gzlwsg==",
+      "license": "MIT",
+      "dependencies": {
+        "@ant-design/cssinjs": "^1.21.0",
+        "@babel/runtime": "^7.23.2",
+        "rc-util": "^5.38.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@ant-design/fast-color": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@ant-design/fast-color/-/fast-color-2.0.6.tgz",
+      "integrity": "sha512-y2217gk4NqL35giHl72o6Zzqji9O7vHh9YmhUVkPtAOpoTCH4uWxo/pr4VE8t0+ChEPs0qo4eJRC5Q1eXWo3vA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.24.7"
+      },
+      "engines": {
+        "node": ">=8.x"
+      }
+    },
+    "node_modules/@ant-design/icons": {
+      "version": "5.6.1",
+      "resolved": "https://registry.npmjs.org/@ant-design/icons/-/icons-5.6.1.tgz",
+      "integrity": "sha512-0/xS39c91WjPAZOWsvi1//zjx6kAp4kxWwctR6kuU6p133w8RU0D2dSCvZC19uQyharg/sAvYxGYWl01BbZZfg==",
+      "license": "MIT",
+      "dependencies": {
+        "@ant-design/colors": "^7.0.0",
+        "@ant-design/icons-svg": "^4.4.0",
+        "@babel/runtime": "^7.24.8",
+        "classnames": "^2.2.6",
+        "rc-util": "^5.31.1"
+      },
+      "engines": {
+        "node": ">=8"
+      },
+      "peerDependencies": {
+        "react": ">=16.0.0",
+        "react-dom": ">=16.0.0"
+      }
+    },
+    "node_modules/@ant-design/icons-svg": {
+      "version": "4.4.2",
+      "resolved": "https://registry.npmjs.org/@ant-design/icons-svg/-/icons-svg-4.4.2.tgz",
+      "integrity": "sha512-vHbT+zJEVzllwP+CM+ul7reTEfBR0vgxFe7+lREAsAA7YGsYpboiq2sQNeQeRvh09GfQgs/GyFEvZpJ9cLXpXA==",
+      "license": "MIT"
+    },
+    "node_modules/@ant-design/react-slick": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/@ant-design/react-slick/-/react-slick-1.1.2.tgz",
+      "integrity": "sha512-EzlvzE6xQUBrZuuhSAFTdsr4P2bBBHGZwKFemEfq8gIGyIQCxalYfZW/T2ORbtQx5rU69o+WycP3exY/7T1hGA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.4",
+        "classnames": "^2.2.5",
+        "json2mq": "^0.2.0",
+        "resize-observer-polyfill": "^1.5.1",
+        "throttle-debounce": "^5.0.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0"
+      }
+    },
+    "node_modules/@asamuzakjp/css-color": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/@asamuzakjp/css-color/-/css-color-3.2.0.tgz",
+      "integrity": "sha512-K1A6z8tS3XsmCMM86xoWdn7Fkdn9m6RSVtocUrJYIwZnFVkng/PvkEoWtOWmP+Scc6saYWHWZYbndEEXxl24jw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@csstools/css-calc": "^2.1.3",
+        "@csstools/css-color-parser": "^3.0.9",
+        "@csstools/css-parser-algorithms": "^3.0.4",
+        "@csstools/css-tokenizer": "^3.0.3",
+        "lru-cache": "^10.4.3"
+      }
+    },
+    "node_modules/@asamuzakjp/css-color/node_modules/lru-cache": {
+      "version": "10.4.3",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-10.4.3.tgz",
+      "integrity": "sha512-JNAzZcXrCt42VGLuYz0zfAzDfAvJWW6AfYlDBQyDV5DClI2m5sAmK+OIO7s59XfsRsWHp02jAJrRadPRGTt6SQ==",
+      "dev": true,
+      "license": "ISC"
+    },
+    "node_modules/@babel/code-frame": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.29.0.tgz",
+      "integrity": "sha512-9NhCeYjq9+3uxgdtp20LSiJXJvN0FeCtNGpJxuMFZ1Kv3cWUNb6DOhJwUvcVCzKGR66cw4njwM6hrJLqgOwbcw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-validator-identifier": "^7.28.5",
+        "js-tokens": "^4.0.0",
+        "picocolors": "^1.1.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/compat-data": {
+      "version": "7.29.3",
+      "resolved": "https://registry.npmjs.org/@babel/compat-data/-/compat-data-7.29.3.tgz",
+      "integrity": "sha512-LIVqM46zQWZhj17qA8wb4nW/ixr2y1Nw+r1etiAWgRM6U1IqP+LNhL1yg440jYZR72jCWcWbLWzIosH+uP1fqg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/core": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/core/-/core-7.29.0.tgz",
+      "integrity": "sha512-CGOfOJqWjg2qW/Mb6zNsDm+u5vFQ8DxXfbM09z69p5Z6+mE1ikP2jUXw+j42Pf1XTYED2Rni5f95npYeuwMDQA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.29.0",
+        "@babel/generator": "^7.29.0",
+        "@babel/helper-compilation-targets": "^7.28.6",
+        "@babel/helper-module-transforms": "^7.28.6",
+        "@babel/helpers": "^7.28.6",
+        "@babel/parser": "^7.29.0",
+        "@babel/template": "^7.28.6",
+        "@babel/traverse": "^7.29.0",
+        "@babel/types": "^7.29.0",
+        "@jridgewell/remapping": "^2.3.5",
+        "convert-source-map": "^2.0.0",
+        "debug": "^4.1.0",
+        "gensync": "^1.0.0-beta.2",
+        "json5": "^2.2.3",
+        "semver": "^6.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/babel"
+      }
+    },
+    "node_modules/@babel/generator": {
+      "version": "7.29.1",
+      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.29.1.tgz",
+      "integrity": "sha512-qsaF+9Qcm2Qv8SRIMMscAvG4O3lJ0F1GuMo5HR/Bp02LopNgnZBC/EkbevHFeGs4ls/oPz9v+Bsmzbkbe+0dUw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.29.0",
+        "@babel/types": "^7.29.0",
+        "@jridgewell/gen-mapping": "^0.3.12",
+        "@jridgewell/trace-mapping": "^0.3.28",
+        "jsesc": "^3.0.2"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-compilation-targets": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-compilation-targets/-/helper-compilation-targets-7.28.6.tgz",
+      "integrity": "sha512-JYtls3hqi15fcx5GaSNL7SCTJ2MNmjrkHXg4FSpOA/grxK8KwyZ5bubHsCq8FXCkua6xhuaaBit+3b7+VZRfcA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/compat-data": "^7.28.6",
+        "@babel/helper-validator-option": "^7.27.1",
+        "browserslist": "^4.24.0",
+        "lru-cache": "^5.1.1",
+        "semver": "^6.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-globals": {
+      "version": "7.28.0",
+      "resolved": "https://registry.npmjs.org/@babel/helper-globals/-/helper-globals-7.28.0.tgz",
+      "integrity": "sha512-+W6cISkXFa1jXsDEdYA8HeevQT/FULhxzR99pxphltZcVaugps53THCeiWA8SguxxpSp3gKPiuYfSWopkLQ4hw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-module-imports": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-imports/-/helper-module-imports-7.28.6.tgz",
+      "integrity": "sha512-l5XkZK7r7wa9LucGw9LwZyyCUscb4x37JWTPz7swwFE/0FMQAGpiWUZn8u9DzkSBWEcK25jmvubfpw2dnAMdbw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/traverse": "^7.28.6",
+        "@babel/types": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-module-transforms": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-transforms/-/helper-module-transforms-7.28.6.tgz",
+      "integrity": "sha512-67oXFAYr2cDLDVGLXTEABjdBJZ6drElUSI7WKp70NrpyISso3plG9SAGEF6y7zbha/wOzUByWWTJvEDVNIUGcA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-module-imports": "^7.28.6",
+        "@babel/helper-validator-identifier": "^7.28.5",
+        "@babel/traverse": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0"
+      }
+    },
+    "node_modules/@babel/helper-plugin-utils": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-plugin-utils/-/helper-plugin-utils-7.28.6.tgz",
+      "integrity": "sha512-S9gzZ/bz83GRysI7gAD4wPT/AI3uCnY+9xn+Mx/KPs2JwHJIz1W8PZkg2cqyt3RNOBM8ejcXhV6y8Og7ly/Dug==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-string-parser": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/helper-string-parser/-/helper-string-parser-7.27.1.tgz",
+      "integrity": "sha512-qMlSxKbpRlAridDExk92nSobyDdpPijUq2DW6oDnUqd0iOGxmQjyqhMIihI9+zv4LPyZdRje2cavWPbCbWm3eA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-validator-identifier": {
+      "version": "7.28.5",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.28.5.tgz",
+      "integrity": "sha512-qSs4ifwzKJSV39ucNjsvc6WVHs6b7S03sOh2OcHF9UHfVPqWWALUsNUVzhSBiItjRZoLHx7nIarVjqKVusUZ1Q==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-validator-option": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-option/-/helper-validator-option-7.27.1.tgz",
+      "integrity": "sha512-YvjJow9FxbhFFKDSuFnVCe2WxXk1zWc22fFePVNEaWJEu8IrZVlda6N0uHwzZrUM1il7NC9Mlp4MaJYbYd9JSg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helpers": {
+      "version": "7.29.2",
+      "resolved": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.29.2.tgz",
+      "integrity": "sha512-HoGuUs4sCZNezVEKdVcwqmZN8GoHirLUcLaYVNBK2J0DadGtdcqgr3BCbvH8+XUo4NGjNl3VOtSjEKNzqfFgKw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/template": "^7.28.6",
+        "@babel/types": "^7.29.0"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/parser": {
+      "version": "7.29.3",
+      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.29.3.tgz",
+      "integrity": "sha512-b3ctpQwp+PROvU/cttc4OYl4MzfJUWy6FZg+PMXfzmt/+39iHVF0sDfqay8TQM3JA2EUOyKcFZt75jWriQijsA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/types": "^7.29.0"
+      },
+      "bin": {
+        "parser": "bin/babel-parser.js"
+      },
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@babel/plugin-transform-react-jsx-self": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-react-jsx-self/-/plugin-transform-react-jsx-self-7.27.1.tgz",
+      "integrity": "sha512-6UzkCs+ejGdZ5mFFC/OCUrv028ab2fp1znZmCZjAOBKiBK2jXD1O+BPSfX8X2qjJ75fZBMSnQn3Rq2mrBJK2mw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.27.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0-0"
+      }
+    },
+    "node_modules/@babel/plugin-transform-react-jsx-source": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-react-jsx-source/-/plugin-transform-react-jsx-source-7.27.1.tgz",
+      "integrity": "sha512-zbwoTsBruTeKB9hSq73ha66iFeJHuaFkUbwvqElnygoNbj/jHRsSeokowZFN3CZ64IvEqcmmkVe89OPXc7ldAw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.27.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0-0"
+      }
+    },
+    "node_modules/@babel/runtime": {
+      "version": "7.29.2",
+      "resolved": "https://registry.npmjs.org/@babel/runtime/-/runtime-7.29.2.tgz",
+      "integrity": "sha512-JiDShH45zKHWyGe4ZNVRrCjBz8Nh9TMmZG1kh4QTK8hCBTWBi8Da+i7s1fJw7/lYpM4ccepSNfqzZ/QvABBi5g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/template": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.28.6.tgz",
+      "integrity": "sha512-YA6Ma2KsCdGb+WC6UpBVFJGXL58MDA6oyONbjyF/+5sBgxY/dwkhLogbMT2GXXyU84/IhRw/2D1Os1B/giz+BQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.28.6",
+        "@babel/parser": "^7.28.6",
+        "@babel/types": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/traverse": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.29.0.tgz",
+      "integrity": "sha512-4HPiQr0X7+waHfyXPZpWPfWL/J7dcN1mx9gL6WdQVMbPnF3+ZhSMs8tCxN7oHddJE9fhNE7+lxdnlyemKfJRuA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.29.0",
+        "@babel/generator": "^7.29.0",
+        "@babel/helper-globals": "^7.28.0",
+        "@babel/parser": "^7.29.0",
+        "@babel/template": "^7.28.6",
+        "@babel/types": "^7.29.0",
+        "debug": "^4.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/types": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.29.0.tgz",
+      "integrity": "sha512-LwdZHpScM4Qz8Xw2iKSzS+cfglZzJGvofQICy7W7v4caru4EaAmyUuO6BGrbyQ2mYV11W0U8j5mBhd14dd3B0A==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-string-parser": "^7.27.1",
+        "@babel/helper-validator-identifier": "^7.28.5"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@csstools/color-helpers": {
+      "version": "5.1.0",
+      "resolved": "https://registry.npmjs.org/@csstools/color-helpers/-/color-helpers-5.1.0.tgz",
+      "integrity": "sha512-S11EXWJyy0Mz5SYvRmY8nJYTFFd1LCNV+7cXyAgQtOOuzb4EsgfqDufL+9esx72/eLhsRdGZwaldu/h+E4t4BA==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT-0",
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@csstools/css-calc": {
+      "version": "2.1.4",
+      "resolved": "https://registry.npmjs.org/@csstools/css-calc/-/css-calc-2.1.4.tgz",
+      "integrity": "sha512-3N8oaj+0juUw/1H3YwmDDJXCgTB1gKU6Hc/bB502u9zR0q2vd786XJH9QfrKIEgFlZmhZiq6epXl4rHqhzsIgQ==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "@csstools/css-parser-algorithms": "^3.0.5",
+        "@csstools/css-tokenizer": "^3.0.4"
+      }
+    },
+    "node_modules/@csstools/css-color-parser": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/@csstools/css-color-parser/-/css-color-parser-3.1.0.tgz",
+      "integrity": "sha512-nbtKwh3a6xNVIp/VRuXV64yTKnb1IjTAEEh3irzS+HkKjAOYLTGNb9pmVNntZ8iVBHcWDA2Dof0QtPgFI1BaTA==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "@csstools/color-helpers": "^5.1.0",
+        "@csstools/css-calc": "^2.1.4"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "@csstools/css-parser-algorithms": "^3.0.5",
+        "@csstools/css-tokenizer": "^3.0.4"
+      }
+    },
+    "node_modules/@csstools/css-parser-algorithms": {
+      "version": "3.0.5",
+      "resolved": "https://registry.npmjs.org/@csstools/css-parser-algorithms/-/css-parser-algorithms-3.0.5.tgz",
+      "integrity": "sha512-DaDeUkXZKjdGhgYaHNJTV9pV7Y9B3b644jCLs9Upc3VeNGg6LWARAT6O+Q+/COo+2gg/bM5rhpMAtf70WqfBdQ==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "@csstools/css-tokenizer": "^3.0.4"
+      }
+    },
+    "node_modules/@csstools/css-tokenizer": {
+      "version": "3.0.4",
+      "resolved": "https://registry.npmjs.org/@csstools/css-tokenizer/-/css-tokenizer-3.0.4.tgz",
+      "integrity": "sha512-Vd/9EVDiu6PPJt9yAh6roZP6El1xHrdvIVGjyBsHR0RYwNHgL7FJPyIIW4fANJNG6FtyZfvlRPpFI4ZM/lubvw==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@emotion/hash": {
+      "version": "0.8.0",
+      "resolved": "https://registry.npmjs.org/@emotion/hash/-/hash-0.8.0.tgz",
+      "integrity": "sha512-kBJtf7PH6aWwZ6fka3zQ0p6SBYzx4fl1LoZXE2RrnYST9Xljm7WfKJrU4g/Xr3Beg72MLrp1AWNUmuYJTL7Cow==",
+      "license": "MIT"
+    },
+    "node_modules/@emotion/unitless": {
+      "version": "0.7.5",
+      "resolved": "https://registry.npmjs.org/@emotion/unitless/-/unitless-0.7.5.tgz",
+      "integrity": "sha512-OWORNpfjMsSSUBVrRBVGECkhWcULOAJz9ZW8uK9qgxD+87M7jHRcvh/A96XXNhXTLmKcoYSQtBEX7lHMO7YRwg==",
+      "license": "MIT"
+    },
+    "node_modules/@esbuild/aix-ppc64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/aix-ppc64/-/aix-ppc64-0.21.5.tgz",
+      "integrity": "sha512-1SDgH6ZSPTlggy1yI6+Dbkiz8xzpHJEVAlF/AM1tHPLsf5STom9rwtjE4hKAF20FfXXNTFqEYXyJNWh1GiZedQ==",
+      "cpu": [
+        "ppc64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "aix"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/android-arm": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.21.5.tgz",
+      "integrity": "sha512-vCPvzSjpPHEi1siZdlvAlsPxXl7WbOVUBBAowWug4rJHb68Ox8KualB+1ocNvT5fjv6wpkX6o/iEpbDrf68zcg==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/android-arm64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm64/-/android-arm64-0.21.5.tgz",
+      "integrity": "sha512-c0uX9VAUBQ7dTDCjq+wdyGLowMdtR/GoC2U5IYk/7D1H1JYC0qseD7+11iMP2mRLN9RcCMRcjC4YMclCzGwS/A==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/android-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-x64/-/android-x64-0.21.5.tgz",
+      "integrity": "sha512-D7aPRUUNHRBwHxzxRvp856rjUHRFW1SdQATKXH2hqA0kAZb1hKmi02OpYRacl0TxIGz/ZmXWlbZgjwWYaCakTA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/darwin-arm64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-arm64/-/darwin-arm64-0.21.5.tgz",
+      "integrity": "sha512-DwqXqZyuk5AiWWf3UfLiRDJ5EDd49zg6O9wclZ7kUMv2WRFr4HKjXp/5t8JZ11QbQfUS6/cRCKGwYhtNAY88kQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/darwin-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-x64/-/darwin-x64-0.21.5.tgz",
+      "integrity": "sha512-se/JjF8NlmKVG4kNIuyWMV/22ZaerB+qaSi5MdrXtd6R08kvs2qCN4C09miupktDitvh8jRFflwGFBQcxZRjbw==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/freebsd-arm64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-arm64/-/freebsd-arm64-0.21.5.tgz",
+      "integrity": "sha512-5JcRxxRDUJLX8JXp/wcBCy3pENnCgBR9bN6JsY4OmhfUtIHe3ZW0mawA7+RDAcMLrMIZaf03NlQiX9DGyB8h4g==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/freebsd-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-x64/-/freebsd-x64-0.21.5.tgz",
+      "integrity": "sha512-J95kNBj1zkbMXtHVH29bBriQygMXqoVQOQYA+ISs0/2l3T9/kj42ow2mpqerRBxDJnmkUDCaQT/dfNXWX/ZZCQ==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-arm": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm/-/linux-arm-0.21.5.tgz",
+      "integrity": "sha512-bPb5AHZtbeNGjCKVZ9UGqGwo8EUu4cLq68E95A53KlxAPRmUyYv2D6F0uUI65XisGOL1hBP5mTronbgo+0bFcA==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-arm64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm64/-/linux-arm64-0.21.5.tgz",
+      "integrity": "sha512-ibKvmyYzKsBeX8d8I7MH/TMfWDXBF3db4qM6sy+7re0YXya+K1cem3on9XgdT2EQGMu4hQyZhan7TeQ8XkGp4Q==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-ia32": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ia32/-/linux-ia32-0.21.5.tgz",
+      "integrity": "sha512-YvjXDqLRqPDl2dvRODYmmhz4rPeVKYvppfGYKSNGdyZkA01046pLWyRKKI3ax8fbJoK5QbxblURkwK/MWY18Tg==",
+      "cpu": [
+        "ia32"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-loong64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-loong64/-/linux-loong64-0.21.5.tgz",
+      "integrity": "sha512-uHf1BmMG8qEvzdrzAqg2SIG/02+4/DHB6a9Kbya0XDvwDEKCoC8ZRWI5JJvNdUjtciBGFQ5PuBlpEOXQj+JQSg==",
+      "cpu": [
+        "loong64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-mips64el": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-mips64el/-/linux-mips64el-0.21.5.tgz",
+      "integrity": "sha512-IajOmO+KJK23bj52dFSNCMsz1QP1DqM6cwLUv3W1QwyxkyIWecfafnI555fvSGqEKwjMXVLokcV5ygHW5b3Jbg==",
+      "cpu": [
+        "mips64el"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-ppc64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ppc64/-/linux-ppc64-0.21.5.tgz",
+      "integrity": "sha512-1hHV/Z4OEfMwpLO8rp7CvlhBDnjsC3CttJXIhBi+5Aj5r+MBvy4egg7wCbe//hSsT+RvDAG7s81tAvpL2XAE4w==",
+      "cpu": [
+        "ppc64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-riscv64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-riscv64/-/linux-riscv64-0.21.5.tgz",
+      "integrity": "sha512-2HdXDMd9GMgTGrPWnJzP2ALSokE/0O5HhTUvWIbD3YdjME8JwvSCnNGBnTThKGEB91OZhzrJ4qIIxk/SBmyDDA==",
+      "cpu": [
+        "riscv64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-s390x": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-s390x/-/linux-s390x-0.21.5.tgz",
+      "integrity": "sha512-zus5sxzqBJD3eXxwvjN1yQkRepANgxE9lgOW2qLnmr8ikMTphkjgXu1HR01K4FJg8h1kEEDAqDcZQtbrRnB41A==",
+      "cpu": [
+        "s390x"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/linux-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-x64/-/linux-x64-0.21.5.tgz",
+      "integrity": "sha512-1rYdTpyv03iycF1+BhzrzQJCdOuAOtaqHTWJZCWvijKD2N5Xu0TtVC8/+1faWqcP9iBCWOmjmhoH94dH82BxPQ==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/netbsd-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-x64/-/netbsd-x64-0.21.5.tgz",
+      "integrity": "sha512-Woi2MXzXjMULccIwMnLciyZH4nCIMpWQAs049KEeMvOcNADVxo0UBIQPfSmxB3CWKedngg7sWZdLvLczpe0tLg==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/openbsd-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-x64/-/openbsd-x64-0.21.5.tgz",
+      "integrity": "sha512-HLNNw99xsvx12lFBUwoT8EVCsSvRNDVxNpjZ7bPn947b8gJPzeHWyNVhFsaerc0n3TsbOINvRP2byTZ5LKezow==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/sunos-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/sunos-x64/-/sunos-x64-0.21.5.tgz",
+      "integrity": "sha512-6+gjmFpfy0BHU5Tpptkuh8+uw3mnrvgs+dSPQXQOv3ekbordwnzTVEb4qnIvQcYXq6gzkyTnoZ9dZG+D4garKg==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "sunos"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/win32-arm64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-arm64/-/win32-arm64-0.21.5.tgz",
+      "integrity": "sha512-Z0gOTd75VvXqyq7nsl93zwahcTROgqvuAcYDUr+vOv8uHhNSKROyU961kgtCD1e95IqPKSQKH7tBTslnS3tA8A==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/win32-ia32": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-ia32/-/win32-ia32-0.21.5.tgz",
+      "integrity": "sha512-SWXFF1CL2RVNMaVs+BBClwtfZSvDgtL//G/smwAc5oVK/UPu2Gu9tIaRgFmYFFKrmg3SyAjSrElf0TiJ1v8fYA==",
+      "cpu": [
+        "ia32"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@esbuild/win32-x64": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-x64/-/win32-x64-0.21.5.tgz",
+      "integrity": "sha512-tQd/1efJuzPC6rCFwEvLtci/xNFcTZknmXs98FYDfGE4wP9ClFV98nyKrzJKVPMhdDnjzLhdUyMX4PsQAPjwIw==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/@jest/schemas": {
+      "version": "29.6.3",
+      "resolved": "https://registry.npmjs.org/@jest/schemas/-/schemas-29.6.3.tgz",
+      "integrity": "sha512-mo5j5X+jIZmJQveBKeS/clAueipV7KgiX1vMgCxam1RNYiqE1w62n0/tJJnHtjW8ZHcQco5gY85jA3mi0L+nSA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@sinclair/typebox": "^0.27.8"
+      },
+      "engines": {
+        "node": "^14.15.0 || ^16.10.0 || >=18.0.0"
+      }
+    },
+    "node_modules/@jridgewell/gen-mapping": {
+      "version": "0.3.13",
+      "resolved": "https://registry.npmjs.org/@jridgewell/gen-mapping/-/gen-mapping-0.3.13.tgz",
+      "integrity": "sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/sourcemap-codec": "^1.5.0",
+        "@jridgewell/trace-mapping": "^0.3.24"
+      }
+    },
+    "node_modules/@jridgewell/remapping": {
+      "version": "2.3.5",
+      "resolved": "https://registry.npmjs.org/@jridgewell/remapping/-/remapping-2.3.5.tgz",
+      "integrity": "sha512-LI9u/+laYG4Ds1TDKSJW2YPrIlcVYOwi2fUC6xB43lueCjgxV4lffOCZCtYFiH6TNOX+tQKXx97T4IKHbhyHEQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/gen-mapping": "^0.3.5",
+        "@jridgewell/trace-mapping": "^0.3.24"
+      }
+    },
+    "node_modules/@jridgewell/resolve-uri": {
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/@jridgewell/resolve-uri/-/resolve-uri-3.1.2.tgz",
+      "integrity": "sha512-bRISgCIjP20/tbWSPWMEi54QVPRZExkuD9lJL+UIxUKtwVJA8wW1Trb1jMs1RFXo1CBTNZ/5hpC9QvmKWdopKw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@jridgewell/sourcemap-codec": {
+      "version": "1.5.5",
+      "resolved": "https://registry.npmjs.org/@jridgewell/sourcemap-codec/-/sourcemap-codec-1.5.5.tgz",
+      "integrity": "sha512-cYQ9310grqxueWbl+WuIUIaiUaDcj7WOq5fVhEljNVgRfOUhY9fy2zTvfoqWsnebh8Sl70VScFbICvJnLKB0Og==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@jridgewell/trace-mapping": {
+      "version": "0.3.31",
+      "resolved": "https://registry.npmjs.org/@jridgewell/trace-mapping/-/trace-mapping-0.3.31.tgz",
+      "integrity": "sha512-zzNR+SdQSDJzc8joaeP8QQoCQr8NuYx2dIIytl1QeBEZHJ9uW6hebsrYgbz8hJwUQao3TWCMtmfV8Nu1twOLAw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/resolve-uri": "^3.1.0",
+        "@jridgewell/sourcemap-codec": "^1.4.14"
+      }
+    },
+    "node_modules/@rc-component/async-validator": {
+      "version": "5.1.0",
+      "resolved": "https://registry.npmjs.org/@rc-component/async-validator/-/async-validator-5.1.0.tgz",
+      "integrity": "sha512-n4HcR5siNUXRX23nDizbZBQPO0ZM/5oTtmKZ6/eqL0L2bo747cklFdZGRN2f+c9qWGICwDzrhW0H7tE9PptdcA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.24.4"
+      },
+      "engines": {
+        "node": ">=14.x"
+      }
+    },
+    "node_modules/@rc-component/color-picker": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/@rc-component/color-picker/-/color-picker-2.0.1.tgz",
+      "integrity": "sha512-WcZYwAThV/b2GISQ8F+7650r5ZZJ043E57aVBFkQ+kSY4C6wdofXgB0hBx+GPGpIU0Z81eETNoDUJMr7oy/P8Q==",
+      "license": "MIT",
+      "dependencies": {
+        "@ant-design/fast-color": "^2.0.6",
+        "@babel/runtime": "^7.23.6",
+        "classnames": "^2.2.6",
+        "rc-util": "^5.38.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@rc-component/context": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/@rc-component/context/-/context-1.4.0.tgz",
+      "integrity": "sha512-kFcNxg9oLRMoL3qki0OMxK+7g5mypjgaaJp/pkOis/6rVxma9nJBF/8kCIuTYHUQNr0ii7MxqE33wirPZLJQ2w==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "rc-util": "^5.27.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@rc-component/mini-decimal": {
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/@rc-component/mini-decimal/-/mini-decimal-1.1.3.tgz",
+      "integrity": "sha512-bk/FJ09fLf+NLODMAFll6CfYrHPBioTedhW6lxDBuuWucJEqFUd4l/D/5JgIi3dina6sYahB8iuPAZTNz2pMxw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.0"
+      },
+      "engines": {
+        "node": ">=8.x"
+      }
+    },
+    "node_modules/@rc-component/mutate-observer": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/@rc-component/mutate-observer/-/mutate-observer-1.1.0.tgz",
+      "integrity": "sha512-QjrOsDXQusNwGZPf4/qRQasg7UFEj06XiCJ8iuiq/Io7CrHrgVi6Uuetw60WAMG1799v+aM8kyc+1L/GBbHSlw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.0",
+        "classnames": "^2.3.2",
+        "rc-util": "^5.24.4"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@rc-component/portal": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/@rc-component/portal/-/portal-1.1.2.tgz",
+      "integrity": "sha512-6f813C0IsasTZms08kfA8kPAGxbbkYToa8ALaiDIGGECU4i9hj8Plgbx0sNJDrey3EtHO30hmdaxtT0138xZcg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.0",
+        "classnames": "^2.3.2",
+        "rc-util": "^5.24.4"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@rc-component/qrcode": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/@rc-component/qrcode/-/qrcode-1.1.1.tgz",
+      "integrity": "sha512-LfLGNymzKdUPjXUbRP+xOhIWY4jQ+YMj5MmWAcgcAq1Ij8XP7tRmAXqyuv96XvLUBE/5cA8hLFl9eO1JQMujrA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.24.7"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@rc-component/tour": {
+      "version": "1.15.1",
+      "resolved": "https://registry.npmjs.org/@rc-component/tour/-/tour-1.15.1.tgz",
+      "integrity": "sha512-Tr2t7J1DKZUpfJuDZWHxyxWpfmj8EZrqSgyMZ+BCdvKZ6r1UDsfU46M/iWAAFBy961Ssfom2kv5f3UcjIL2CmQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.0",
+        "@rc-component/portal": "^1.0.0-9",
+        "@rc-component/trigger": "^2.0.0",
+        "classnames": "^2.3.2",
+        "rc-util": "^5.24.4"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@rc-component/trigger": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/@rc-component/trigger/-/trigger-2.3.1.tgz",
+      "integrity": "sha512-ORENF39PeXTzM+gQEshuk460Z8N4+6DkjpxlpE7Q3gYy1iBpLrx0FOJz3h62ryrJZ/3zCAUIkT1Pb/8hHWpb3A==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.23.2",
+        "@rc-component/portal": "^1.1.0",
+        "classnames": "^2.3.2",
+        "rc-motion": "^2.0.0",
+        "rc-resize-observer": "^1.3.1",
+        "rc-util": "^5.44.0"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/@reduxjs/toolkit": {
+      "version": "2.11.2",
+      "resolved": "https://registry.npmjs.org/@reduxjs/toolkit/-/toolkit-2.11.2.tgz",
+      "integrity": "sha512-Kd6kAHTA6/nUpp8mySPqj3en3dm0tdMIgbttnQ1xFMVpufoj+ADi8pXLBsd4xzTRHQa7t/Jv8W5UnCuW4kuWMQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@standard-schema/spec": "^1.0.0",
+        "@standard-schema/utils": "^0.3.0",
+        "immer": "^11.0.0",
+        "redux": "^5.0.1",
+        "redux-thunk": "^3.1.0",
+        "reselect": "^5.1.0"
+      },
+      "peerDependencies": {
+        "react": "^16.9.0 || ^17.0.0 || ^18 || ^19",
+        "react-redux": "^7.2.1 || ^8.1.3 || ^9.0.0"
+      },
+      "peerDependenciesMeta": {
+        "react": {
+          "optional": true
+        },
+        "react-redux": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@remix-run/router": {
+      "version": "1.23.2",
+      "resolved": "https://registry.npmjs.org/@remix-run/router/-/router-1.23.2.tgz",
+      "integrity": "sha512-Ic6m2U/rMjTkhERIa/0ZtXJP17QUi2CbWE7cqx4J58M8aA3QTfW+2UlQ4psvTX9IO1RfNVhK3pcpdjej7L+t2w==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@rolldown/pluginutils": {
+      "version": "1.0.0-beta.27",
+      "resolved": "https://registry.npmjs.org/@rolldown/pluginutils/-/pluginutils-1.0.0-beta.27.tgz",
+      "integrity": "sha512-+d0F4MKMCbeVUJwG96uQ4SgAznZNSq93I3V+9NHA4OpvqG8mRCpGdKmK8l/dl02h2CCDHwW2FqilnTyDcAnqjA==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@rollup/rollup-android-arm-eabi": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm-eabi/-/rollup-android-arm-eabi-4.60.3.tgz",
+      "integrity": "sha512-x35CNW/ANXG3hE/EZpRU8MXX1JDN86hBb2wMGAtltkz7pc6cxgjpy1OMMfDosOQ+2hWqIkag/fGok1Yady9nGw==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ]
+    },
+    "node_modules/@rollup/rollup-android-arm64": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm64/-/rollup-android-arm64-4.60.3.tgz",
+      "integrity": "sha512-xw3xtkDApIOGayehp2+Rz4zimfkaX65r4t47iy+ymQB2G4iJCBBfj0ogVg5jpvjpn8UWn/+q9tprxleYeNp3Hw==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ]
+    },
+    "node_modules/@rollup/rollup-darwin-arm64": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-arm64/-/rollup-darwin-arm64-4.60.3.tgz",
+      "integrity": "sha512-vo6Y5Qfpx7/5EaamIwi0WqW2+zfiusVihKatLvtN1VFVy3D13uERk/6gZLU1UiHRL6fDXqj/ELIeVRGnvcTE1g==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ]
+    },
+    "node_modules/@rollup/rollup-darwin-x64": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-x64/-/rollup-darwin-x64-4.60.3.tgz",
+      "integrity": "sha512-D+0QGcZhBzTN82weOnsSlY7V7+RMmPuF1CkbxyMAGE8+ZHeUjyb76ZiWmBlCu//AQQONvxcqRbwZTajZKqjuOw==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ]
+    },
+    "node_modules/@rollup/rollup-freebsd-arm64": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-freebsd-arm64/-/rollup-freebsd-arm64-4.60.3.tgz",
+      "integrity": "sha512-6HnvHCT7fDyj6R0Ph7A6x8dQS/S38MClRWeDLqc0MdfWkxjiu1HSDYrdPhqSILzjTIC/pnXbbJbo+ft+gy/9hQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ]
+    },
+    "node_modules/@rollup/rollup-freebsd-x64": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-freebsd-x64/-/rollup-freebsd-x64-4.60.3.tgz",
+      "integrity": "sha512-KHLgC3WKlUYW3ShFKnnosZDOJ0xjg9zp7au3sIm2bs/tGBeC2ipmvRh/N7JKi0t9Ue20C0dpEshi8WUubg+cnA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm-gnueabihf": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-gnueabihf/-/rollup-linux-arm-gnueabihf-4.60.3.tgz",
+      "integrity": "sha512-DV6fJoxEYWJOvaZIsok7KrYl0tPvga5OZ2yvKHNNYyk/2roMLqQAbGhr78EQ5YhHpnhLKJD3S1WFusAkmUuV5g==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "libc": [
+        "glibc"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm-musleabihf": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-musleabihf/-/rollup-linux-arm-musleabihf-4.60.3.tgz",
+      "integrity": "sha512-mQKoJAzvuOs6F+TZybQO4GOTSMUu7v0WdxEk24krQ/uUxXoPTtHjuaUuPmFhtBcM4K0ons8nrE3JyhTuCFtT/w==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "libc": [
+        "musl"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm64-gnu": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-gnu/-/rollup-linux-arm64-gnu-4.60.3.tgz",
+      "integrity": "sha512-Whjj2qoiJ6+OOJMGptTYazaJvjOJm+iKHpXQM1P3LzGjt7Ff++Tp7nH4N8J/BUA7R9IHfDyx4DJIflifwnbmIA==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "libc": [
+        "glibc"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm64-musl": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-musl/-/rollup-linux-arm64-musl-4.60.3.tgz",
+      "integrity": "sha512-4YTNHKqGng5+yiZt3mg77nmyuCfmNfX4fPmyUapBcIk+BdwSwmCWGXOUxhXbBEkFHtoN5boLj/5NON+u5QC9tg==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "libc": [
+        "musl"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-loong64-gnu": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-loong64-gnu/-/rollup-linux-loong64-gnu-4.60.3.tgz",
+      "integrity": "sha512-SU3kNlhkpI4UqlUc2VXPGK9o886ZsSeGfMAX2ba2b8DKmMXq4AL7KUrkSWVbb7koVqx41Yczx6dx5PNargIrEA==",
+      "cpu": [
+        "loong64"
+      ],
+      "dev": true,
+      "libc": [
+        "glibc"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-loong64-musl": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-loong64-musl/-/rollup-linux-loong64-musl-4.60.3.tgz",
+      "integrity": "sha512-6lDLl5h4TXpB1mTf2rQWnAk/LcXrx9vBfu/DT5TIPhvMhRWaZ5MxkIc8u4lJAmBo6klTe1ywXIUHFjylW505sg==",
+      "cpu": [
+        "loong64"
+      ],
+      "dev": true,
+      "libc": [
+        "musl"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-ppc64-gnu": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-ppc64-gnu/-/rollup-linux-ppc64-gnu-4.60.3.tgz",
+      "integrity": "sha512-BMo8bOw8evlup/8G+cj5xWtPyp93xPdyoSN16Zy90Q2QZ0ZYRhCt6ZJSwbrRzG9HApFabjwj2p25TUPDWrhzqQ==",
+      "cpu": [
+        "ppc64"
+      ],
+      "dev": true,
+      "libc": [
+        "glibc"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-ppc64-musl": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-ppc64-musl/-/rollup-linux-ppc64-musl-4.60.3.tgz",
+      "integrity": "sha512-E0L8X1dZN1/Rph+5VPF6Xj2G7JJvMACVXtamTJIDrVI44Y3K+G8gQaMEAavbqCGTa16InptiVrX6eM6pmJ+7qA==",
+      "cpu": [
+        "ppc64"
+      ],
+      "dev": true,
+      "libc": [
+        "musl"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-riscv64-gnu": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-riscv64-gnu/-/rollup-linux-riscv64-gnu-4.60.3.tgz",
+      "integrity": "sha512-oZJ/WHaVfHUiRAtmTAeo3DcevNsVvH8mbvodjZy7D5QKvCefO371SiKRpxoDcCxB3PTRTLayWBkvmDQKTcX/sw==",
+      "cpu": [
+        "riscv64"
+      ],
+      "dev": true,
+      "libc": [
+        "glibc"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-riscv64-musl": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-riscv64-musl/-/rollup-linux-riscv64-musl-4.60.3.tgz",
+      "integrity": "sha512-Dhbyh7j9FybM3YaTgaHmVALwA8AkUwTPccyCQ79TG9AJUsMQqgN1DDEZNr4+QUfwiWvLDumW5vdwzoeUF+TNxQ==",
+      "cpu": [
+        "riscv64"
+      ],
+      "dev": true,
+      "libc": [
+        "musl"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-s390x-gnu": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-s390x-gnu/-/rollup-linux-s390x-gnu-4.60.3.tgz",
+      "integrity": "sha512-cJd1X5XhHHlltkaypz1UcWLA8AcoIi1aWhsvaWDskD1oz2eKCypnqvTQ8ykMNI0RSmm7NkTdSqSSD7zM0xa6Ig==",
+      "cpu": [
+        "s390x"
+      ],
+      "dev": true,
+      "libc": [
+        "glibc"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-x64-gnu": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-gnu/-/rollup-linux-x64-gnu-4.60.3.tgz",
+      "integrity": "sha512-DAZDBHQfG2oQuhY7mc6I3/qB4LU2fQCjRvxbDwd/Jdvb9fypP4IJ4qmtu6lNjes6B531AI8cg1aKC2di97bUxA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "libc": [
+        "glibc"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-x64-musl": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-musl/-/rollup-linux-x64-musl-4.60.3.tgz",
+      "integrity": "sha512-cRxsE8c13mZOh3vP+wLDxpQBRrOHDIGOWyDL93Sy0Ga8y515fBcC2pjUfFwUe5T7tqvTvWbCpg1URM/AXdWIXA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "libc": [
+        "musl"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-openbsd-x64": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-openbsd-x64/-/rollup-openbsd-x64-4.60.3.tgz",
+      "integrity": "sha512-QaWcIgRxqEdQdhJqW4DJctsH6HCmo5vHxY0krHSX4jMtOqfzC+dqDGuHM87bu4H8JBeibWx7jFz+h6/4C8wA5Q==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openbsd"
+      ]
+    },
+    "node_modules/@rollup/rollup-openharmony-arm64": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-openharmony-arm64/-/rollup-openharmony-arm64-4.60.3.tgz",
+      "integrity": "sha512-AaXwSvUi3QIPtroAUw1t5yHGIyqKEXwH54WUocFolZhpGDruJcs8c+xPNDRn4XiQsS7MEwnYsHW2l0MBLDMkWg==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openharmony"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-arm64-msvc": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-arm64-msvc/-/rollup-win32-arm64-msvc-4.60.3.tgz",
+      "integrity": "sha512-65LAKM/bAWDqKNEelHlcHvm2V+Vfb8C6INFxQXRHCvaVN1rJfwr4NvdP4FyzUaLqWfaCGaadf6UbTm8xJeYfEg==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-ia32-msvc": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-ia32-msvc/-/rollup-win32-ia32-msvc-4.60.3.tgz",
+      "integrity": "sha512-EEM2gyhBF5MFnI6vMKdX1LAosE627RGBzIoGMdLloPZkXrUN0Ckqgr2Qi8+J3zip/8NVVro3/FjB+tjhZUgUHA==",
+      "cpu": [
+        "ia32"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-x64-gnu": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-x64-gnu/-/rollup-win32-x64-gnu-4.60.3.tgz",
+      "integrity": "sha512-E5Eb5H/DpxaoXH++Qkv28RcUJboMopmdDUALBczvHMf7hNIxaDZqwY5lK12UK1BHacSmvupoEWGu+n993Z0y1A==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-x64-msvc": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-x64-msvc/-/rollup-win32-x64-msvc-4.60.3.tgz",
+      "integrity": "sha512-hPt/bgL5cE+Qp+/TPHBqptcAgPzgj46mPcg/16zNUmbQk0j+mOEQV/+Lqu8QRtDV3Ek95Q6FeFITpuhl6OTsAA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@sinclair/typebox": {
+      "version": "0.27.10",
+      "resolved": "https://registry.npmjs.org/@sinclair/typebox/-/typebox-0.27.10.tgz",
+      "integrity": "sha512-MTBk/3jGLNB2tVxv6uLlFh1iu64iYOQ2PbdOSK3NW8JZsmlaOh2q6sdtKowBhfw8QFLmYNzTW4/oK4uATIi6ZA==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@standard-schema/spec": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/@standard-schema/spec/-/spec-1.1.0.tgz",
+      "integrity": "sha512-l2aFy5jALhniG5HgqrD6jXLi/rUWrKvqN/qJx6yoJsgKhblVd+iqqU4RCXavm/jPityDo5TCvKMnpjKnOriy0w==",
+      "license": "MIT"
+    },
+    "node_modules/@standard-schema/utils": {
+      "version": "0.3.0",
+      "resolved": "https://registry.npmjs.org/@standard-schema/utils/-/utils-0.3.0.tgz",
+      "integrity": "sha512-e7Mew686owMaPJVNNLs55PUvgz371nKgwsc4vxE49zsODpJEnxgxRo2y/OKrqueavXgZNMDVj3DdHFlaSAeU8g==",
+      "license": "MIT"
+    },
+    "node_modules/@testing-library/dom": {
+      "version": "10.4.1",
+      "resolved": "https://registry.npmjs.org/@testing-library/dom/-/dom-10.4.1.tgz",
+      "integrity": "sha512-o4PXJQidqJl82ckFaXUeoAW+XysPLauYI43Abki5hABd853iMhitooc6znOnczgbTYmEP6U6/y1ZyKAIsvMKGg==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "dependencies": {
+        "@babel/code-frame": "^7.10.4",
+        "@babel/runtime": "^7.12.5",
+        "@types/aria-query": "^5.0.1",
+        "aria-query": "5.3.0",
+        "dom-accessibility-api": "^0.5.9",
+        "lz-string": "^1.5.0",
+        "picocolors": "1.1.1",
+        "pretty-format": "^27.0.2"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@testing-library/jest-dom": {
+      "version": "6.9.1",
+      "resolved": "https://registry.npmjs.org/@testing-library/jest-dom/-/jest-dom-6.9.1.tgz",
+      "integrity": "sha512-zIcONa+hVtVSSep9UT3jZ5rizo2BsxgyDYU7WFD5eICBE7no3881HGeb/QkGfsJs6JTkY1aQhT7rIPC7e+0nnA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@adobe/css-tools": "^4.4.0",
+        "aria-query": "^5.0.0",
+        "css.escape": "^1.5.1",
+        "dom-accessibility-api": "^0.6.3",
+        "picocolors": "^1.1.1",
+        "redent": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=14",
+        "npm": ">=6",
+        "yarn": ">=1"
+      }
+    },
+    "node_modules/@testing-library/jest-dom/node_modules/dom-accessibility-api": {
+      "version": "0.6.3",
+      "resolved": "https://registry.npmjs.org/dom-accessibility-api/-/dom-accessibility-api-0.6.3.tgz",
+      "integrity": "sha512-7ZgogeTnjuHbo+ct10G9Ffp0mif17idi0IyWNVA/wcwcm7NPOD/WEHVP3n7n3MhXqxoIYm8d6MuZohYWIZ4T3w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@testing-library/react": {
+      "version": "16.3.2",
+      "resolved": "https://registry.npmjs.org/@testing-library/react/-/react-16.3.2.tgz",
+      "integrity": "sha512-XU5/SytQM+ykqMnAnvB2umaJNIOsLF3PVv//1Ew4CTcpz0/BRyy/af40qqrt7SjKpDdT1saBMc42CUok5gaw+g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.12.5"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "@testing-library/dom": "^10.0.0",
+        "@types/react": "^18.0.0 || ^19.0.0",
+        "@types/react-dom": "^18.0.0 || ^19.0.0",
+        "react": "^18.0.0 || ^19.0.0",
+        "react-dom": "^18.0.0 || ^19.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        },
+        "@types/react-dom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@testing-library/user-event": {
+      "version": "14.6.1",
+      "resolved": "https://registry.npmjs.org/@testing-library/user-event/-/user-event-14.6.1.tgz",
+      "integrity": "sha512-vq7fv0rnt+QTXgPxr5Hjc210p6YKq2kmdziLgnsZGgLJ9e6VAShx1pACLuRjd/AS/sr7phAR58OIIpf0LlmQNw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=12",
+        "npm": ">=6"
+      },
+      "peerDependencies": {
+        "@testing-library/dom": ">=7.21.4"
+      }
+    },
+    "node_modules/@types/aria-query": {
+      "version": "5.0.4",
+      "resolved": "https://registry.npmjs.org/@types/aria-query/-/aria-query-5.0.4.tgz",
+      "integrity": "sha512-rfT93uj5s0PRL7EzccGMs3brplhcrghnDoV26NqKhCAS1hVo+WdNsPvE/yb6ilfr5hi2MEk6d5EWJTKdxg8jVw==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/@types/babel__core": {
+      "version": "7.20.5",
+      "resolved": "https://registry.npmjs.org/@types/babel__core/-/babel__core-7.20.5.tgz",
+      "integrity": "sha512-qoQprZvz5wQFJwMDqeseRXWv3rqMvhgpbXFfVyWhbx9X47POIA6i/+dXefEmZKoAgOaTdaIgNSMqMIU61yRyzA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.20.7",
+        "@babel/types": "^7.20.7",
+        "@types/babel__generator": "*",
+        "@types/babel__template": "*",
+        "@types/babel__traverse": "*"
+      }
+    },
+    "node_modules/@types/babel__generator": {
+      "version": "7.27.0",
+      "resolved": "https://registry.npmjs.org/@types/babel__generator/-/babel__generator-7.27.0.tgz",
+      "integrity": "sha512-ufFd2Xi92OAVPYsy+P4n7/U7e68fex0+Ee8gSG9KX7eo084CWiQ4sdxktvdl0bOPupXtVJPY19zk6EwWqUQ8lg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/types": "^7.0.0"
+      }
+    },
+    "node_modules/@types/babel__template": {
+      "version": "7.4.4",
+      "resolved": "https://registry.npmjs.org/@types/babel__template/-/babel__template-7.4.4.tgz",
+      "integrity": "sha512-h/NUaSyG5EyxBIp8YRxo4RMe2/qQgvyowRwVMzhYhBCONbW8PUsg4lkFMrhgZhUe5z3L3MiLDuvyJ/CaPa2A8A==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.1.0",
+        "@babel/types": "^7.0.0"
+      }
+    },
+    "node_modules/@types/babel__traverse": {
+      "version": "7.28.0",
+      "resolved": "https://registry.npmjs.org/@types/babel__traverse/-/babel__traverse-7.28.0.tgz",
+      "integrity": "sha512-8PvcXf70gTDZBgt9ptxJ8elBeBjcLOAcOtoO/mPJjtji1+CdGbHgm77om1GrsPxsiE+uXIpNSK64UYaIwQXd4Q==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/types": "^7.28.2"
+      }
+    },
+    "node_modules/@types/estree": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.8.tgz",
+      "integrity": "sha512-dWHzHa2WqEXI/O1E9OjrocMTKJl2mSrEolh1Iomrv6U+JuNwaHXsXx9bLu5gG7BUWFIN0skIQJQ/L1rIex4X6w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/prop-types": {
+      "version": "15.7.15",
+      "resolved": "https://registry.npmjs.org/@types/prop-types/-/prop-types-15.7.15.tgz",
+      "integrity": "sha512-F6bEyamV9jKGAFBEmlQnesRPGOQqS2+Uwi0Em15xenOxHaf2hv6L8YCVn3rPdPJOiJfPiCnLIRyvwVaqMY3MIw==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/react": {
+      "version": "18.3.28",
+      "resolved": "https://registry.npmjs.org/@types/react/-/react-18.3.28.tgz",
+      "integrity": "sha512-z9VXpC7MWrhfWipitjNdgCauoMLRdIILQsAEV+ZesIzBq/oUlxk0m3ApZuMFCXdnS4U7KrI+l3WRUEGQ8K1QKw==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/prop-types": "*",
+        "csstype": "^3.2.2"
+      }
+    },
+    "node_modules/@types/react-dom": {
+      "version": "18.3.7",
+      "resolved": "https://registry.npmjs.org/@types/react-dom/-/react-dom-18.3.7.tgz",
+      "integrity": "sha512-MEe3UeoENYVFXzoXEWsvcpg6ZvlrFNlOQ7EOsvhI3CfAXwzPfO8Qwuxd40nepsYKqyyVQnTdEfv68q91yLcKrQ==",
+      "dev": true,
+      "license": "MIT",
+      "peerDependencies": {
+        "@types/react": "^18.0.0"
+      }
+    },
+    "node_modules/@types/use-sync-external-store": {
+      "version": "0.0.6",
+      "resolved": "https://registry.npmjs.org/@types/use-sync-external-store/-/use-sync-external-store-0.0.6.tgz",
+      "integrity": "sha512-zFDAD+tlpf2r4asuHEj0XH6pY6i0g5NeAHPn+15wk3BV6JA69eERFXC1gyGThDkVa1zCyKr5jox1+2LbV/AMLg==",
+      "license": "MIT"
+    },
+    "node_modules/@vitejs/plugin-react": {
+      "version": "4.7.0",
+      "resolved": "https://registry.npmjs.org/@vitejs/plugin-react/-/plugin-react-4.7.0.tgz",
+      "integrity": "sha512-gUu9hwfWvvEDBBmgtAowQCojwZmJ5mcLn3aufeCsitijs3+f2NsrPtlAWIR6OPiqljl96GVCUbLe0HyqIpVaoA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/core": "^7.28.0",
+        "@babel/plugin-transform-react-jsx-self": "^7.27.1",
+        "@babel/plugin-transform-react-jsx-source": "^7.27.1",
+        "@rolldown/pluginutils": "1.0.0-beta.27",
+        "@types/babel__core": "^7.20.5",
+        "react-refresh": "^0.17.0"
+      },
+      "engines": {
+        "node": "^14.18.0 || >=16.0.0"
+      },
+      "peerDependencies": {
+        "vite": "^4.2.0 || ^5.0.0 || ^6.0.0 || ^7.0.0"
+      }
+    },
+    "node_modules/@vitest/expect": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/@vitest/expect/-/expect-1.6.1.tgz",
+      "integrity": "sha512-jXL+9+ZNIJKruofqXuuTClf44eSpcHlgj3CiuNihUF3Ioujtmc0zIa3UJOW5RjDK1YLBJZnWBlPuqhYycLioog==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/spy": "1.6.1",
+        "@vitest/utils": "1.6.1",
+        "chai": "^4.3.10"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/runner": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/@vitest/runner/-/runner-1.6.1.tgz",
+      "integrity": "sha512-3nSnYXkVkf3mXFfE7vVyPmi3Sazhb/2cfZGGs0JRzFsPFvAMBEcrweV1V1GsrstdXeKCTXlJbvnQwGWgEIHmOA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/utils": "1.6.1",
+        "p-limit": "^5.0.0",
+        "pathe": "^1.1.1"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/snapshot": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/@vitest/snapshot/-/snapshot-1.6.1.tgz",
+      "integrity": "sha512-WvidQuWAzU2p95u8GAKlRMqMyN1yOJkGHnx3M1PL9Raf7AQ1kwLKg04ADlCa3+OXUZE7BceOhVZiuWAbzCKcUQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "magic-string": "^0.30.5",
+        "pathe": "^1.1.1",
+        "pretty-format": "^29.7.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/snapshot/node_modules/pretty-format": {
+      "version": "29.7.0",
+      "resolved": "https://registry.npmjs.org/pretty-format/-/pretty-format-29.7.0.tgz",
+      "integrity": "sha512-Pdlw/oPxN+aXdmM9R00JVC9WVFoCLTKJvDVLgmJ+qAffBMxsV85l/Lu7sNx4zSzPyoL2euImuEwHhOXdEgNFZQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@jest/schemas": "^29.6.3",
+        "ansi-styles": "^5.0.0",
+        "react-is": "^18.0.0"
+      },
+      "engines": {
+        "node": "^14.15.0 || ^16.10.0 || >=18.0.0"
+      }
+    },
+    "node_modules/@vitest/snapshot/node_modules/react-is": {
+      "version": "18.3.1",
+      "resolved": "https://registry.npmjs.org/react-is/-/react-is-18.3.1.tgz",
+      "integrity": "sha512-/LLMVyas0ljjAtoYiPqYiL8VWXzUUdThrmU5+n20DZv+a+ClRoevUzw5JxU+Ieh5/c87ytoTBV9G1FiKfNJdmg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@vitest/spy": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/@vitest/spy/-/spy-1.6.1.tgz",
+      "integrity": "sha512-MGcMmpGkZebsMZhbQKkAf9CX5zGvjkBTqf8Zx3ApYWXr3wG+QvEu2eXWfnIIWYSJExIp4V9FCKDEeygzkYrXMw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "tinyspy": "^2.2.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/utils": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/@vitest/utils/-/utils-1.6.1.tgz",
+      "integrity": "sha512-jOrrUvXM4Av9ZWiG1EajNto0u96kWAhJ1LmPmJhXXQx/32MecEKd10pOLYgS2BQx1TgkGhloPU1ArDW2vvaY6g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "diff-sequences": "^29.6.3",
+        "estree-walker": "^3.0.3",
+        "loupe": "^2.3.7",
+        "pretty-format": "^29.7.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/utils/node_modules/pretty-format": {
+      "version": "29.7.0",
+      "resolved": "https://registry.npmjs.org/pretty-format/-/pretty-format-29.7.0.tgz",
+      "integrity": "sha512-Pdlw/oPxN+aXdmM9R00JVC9WVFoCLTKJvDVLgmJ+qAffBMxsV85l/Lu7sNx4zSzPyoL2euImuEwHhOXdEgNFZQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@jest/schemas": "^29.6.3",
+        "ansi-styles": "^5.0.0",
+        "react-is": "^18.0.0"
+      },
+      "engines": {
+        "node": "^14.15.0 || ^16.10.0 || >=18.0.0"
+      }
+    },
+    "node_modules/@vitest/utils/node_modules/react-is": {
+      "version": "18.3.1",
+      "resolved": "https://registry.npmjs.org/react-is/-/react-is-18.3.1.tgz",
+      "integrity": "sha512-/LLMVyas0ljjAtoYiPqYiL8VWXzUUdThrmU5+n20DZv+a+ClRoevUzw5JxU+Ieh5/c87ytoTBV9G1FiKfNJdmg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/acorn": {
+      "version": "8.16.0",
+      "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.16.0.tgz",
+      "integrity": "sha512-UVJyE9MttOsBQIDKw1skb9nAwQuR5wuGD3+82K6JgJlm/Y+KI92oNsMNGZCYdDsVtRHSak0pcV5Dno5+4jh9sw==",
+      "dev": true,
+      "license": "MIT",
+      "bin": {
+        "acorn": "bin/acorn"
+      },
+      "engines": {
+        "node": ">=0.4.0"
+      }
+    },
+    "node_modules/acorn-walk": {
+      "version": "8.3.5",
+      "resolved": "https://registry.npmjs.org/acorn-walk/-/acorn-walk-8.3.5.tgz",
+      "integrity": "sha512-HEHNfbars9v4pgpW6SO1KSPkfoS0xVOM/9UzkJltjlsHZmJasxg8aXkuZa7SMf8vKGIBhpUsPluQSqhJFCqebw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "acorn": "^8.11.0"
+      },
+      "engines": {
+        "node": ">=0.4.0"
+      }
+    },
+    "node_modules/agent-base": {
+      "version": "7.1.4",
+      "resolved": "https://registry.npmjs.org/agent-base/-/agent-base-7.1.4.tgz",
+      "integrity": "sha512-MnA+YT8fwfJPgBx3m60MNqakm30XOkyIoH1y6huTQvC0PwZG7ki8NacLBcrPbNoo8vEZy7Jpuk7+jMO+CUovTQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/ansi-regex": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
+      "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/ansi-styles": {
+      "version": "5.2.0",
+      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-5.2.0.tgz",
+      "integrity": "sha512-Cxwpt2SfTzTtXcfOlzGEee8O+c+MmUgGrNiBcXnuWxuFJHe6a5Hz7qwhwe5OgaSYI0IJvkLqWX1ASG+cJOkEiA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
+      }
+    },
+    "node_modules/antd": {
+      "version": "5.29.3",
+      "resolved": "https://registry.npmjs.org/antd/-/antd-5.29.3.tgz",
+      "integrity": "sha512-3DdbGCa9tWAJGcCJ6rzR8EJFsv2CtyEbkVabZE14pfgUHfCicWCj0/QzQVLDYg8CPfQk9BH7fHCoTXHTy7MP/A==",
+      "license": "MIT",
+      "dependencies": {
+        "@ant-design/colors": "^7.2.1",
+        "@ant-design/cssinjs": "^1.23.0",
+        "@ant-design/cssinjs-utils": "^1.1.3",
+        "@ant-design/fast-color": "^2.0.6",
+        "@ant-design/icons": "^5.6.1",
+        "@ant-design/react-slick": "~1.1.2",
+        "@babel/runtime": "^7.26.0",
+        "@rc-component/color-picker": "~2.0.1",
+        "@rc-component/mutate-observer": "^1.1.0",
+        "@rc-component/qrcode": "~1.1.0",
+        "@rc-component/tour": "~1.15.1",
+        "@rc-component/trigger": "^2.3.0",
+        "classnames": "^2.5.1",
+        "copy-to-clipboard": "^3.3.3",
+        "dayjs": "^1.11.11",
+        "rc-cascader": "~3.34.0",
+        "rc-checkbox": "~3.5.0",
+        "rc-collapse": "~3.9.0",
+        "rc-dialog": "~9.6.0",
+        "rc-drawer": "~7.3.0",
+        "rc-dropdown": "~4.2.1",
+        "rc-field-form": "~2.7.1",
+        "rc-image": "~7.12.0",
+        "rc-input": "~1.8.0",
+        "rc-input-number": "~9.5.0",
+        "rc-mentions": "~2.20.0",
+        "rc-menu": "~9.16.1",
+        "rc-motion": "^2.9.5",
+        "rc-notification": "~5.6.4",
+        "rc-pagination": "~5.1.0",
+        "rc-picker": "~4.11.3",
+        "rc-progress": "~4.0.0",
+        "rc-rate": "~2.13.1",
+        "rc-resize-observer": "^1.4.3",
+        "rc-segmented": "~2.7.0",
+        "rc-select": "~14.16.8",
+        "rc-slider": "~11.1.9",
+        "rc-steps": "~6.0.1",
+        "rc-switch": "~4.1.0",
+        "rc-table": "~7.54.0",
+        "rc-tabs": "~15.7.0",
+        "rc-textarea": "~1.10.2",
+        "rc-tooltip": "~6.4.0",
+        "rc-tree": "~5.13.1",
+        "rc-tree-select": "~5.27.0",
+        "rc-upload": "~4.11.0",
+        "rc-util": "^5.44.4",
+        "scroll-into-view-if-needed": "^3.1.0",
+        "throttle-debounce": "^5.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/ant-design"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/aria-query": {
+      "version": "5.3.0",
+      "resolved": "https://registry.npmjs.org/aria-query/-/aria-query-5.3.0.tgz",
+      "integrity": "sha512-b0P0sZPKtyu8HkeRAfCq0IfURZK+SuwMjY1UXGBU27wpAiTwQAIlq56IbIO+ytk/JjS1fMR14ee5WBBfKi5J6A==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "dequal": "^2.0.3"
+      }
+    },
+    "node_modules/assertion-error": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/assertion-error/-/assertion-error-1.1.0.tgz",
+      "integrity": "sha512-jgsaNduz+ndvGyFt3uSuWqvy4lCnIJiovtouQN5JZHOKCS2QuhEdbcQHFhVksz2N2U9hXJo8odG7ETyWlEeuDw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "*"
+      }
+    },
+    "node_modules/asynckit": {
+      "version": "0.4.0",
+      "resolved": "https://registry.npmjs.org/asynckit/-/asynckit-0.4.0.tgz",
+      "integrity": "sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q==",
+      "license": "MIT"
+    },
+    "node_modules/axios": {
+      "version": "1.16.0",
+      "resolved": "https://registry.npmjs.org/axios/-/axios-1.16.0.tgz",
+      "integrity": "sha512-6hp5CwvTPlN2A31g5dxnwAX0orzM7pmCRDLnZSX772mv8WDqICwFjowHuPs04Mc8deIld1+ejhtaMn5vp6b+1w==",
+      "license": "MIT",
+      "dependencies": {
+        "follow-redirects": "^1.16.0",
+        "form-data": "^4.0.5",
+        "proxy-from-env": "^2.1.0"
+      }
+    },
+    "node_modules/baseline-browser-mapping": {
+      "version": "2.10.27",
+      "resolved": "https://registry.npmjs.org/baseline-browser-mapping/-/baseline-browser-mapping-2.10.27.tgz",
+      "integrity": "sha512-zEs/ufmZoUd7WftKpKyXaT6RFxpQ5Qm9xytKRHvJfxFV9DFJkZph9RvJ1LcOUi0Z1ZVijMte65JbILeV+8QQEA==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "bin": {
+        "baseline-browser-mapping": "dist/cli.cjs"
+      },
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/browserslist": {
+      "version": "4.28.2",
+      "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.28.2.tgz",
+      "integrity": "sha512-48xSriZYYg+8qXna9kwqjIVzuQxi+KYWp2+5nCYnYKPTr0LvD89Jqk2Or5ogxz0NUMfIjhh2lIUX/LyX9B4oIg==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/browserslist"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "baseline-browser-mapping": "^2.10.12",
+        "caniuse-lite": "^1.0.30001782",
+        "electron-to-chromium": "^1.5.328",
+        "node-releases": "^2.0.36",
+        "update-browserslist-db": "^1.2.3"
+      },
+      "bin": {
+        "browserslist": "cli.js"
+      },
+      "engines": {
+        "node": "^6 || ^7 || ^8 || ^9 || ^10 || ^11 || ^12 || >=13.7"
+      }
+    },
+    "node_modules/cac": {
+      "version": "6.7.14",
+      "resolved": "https://registry.npmjs.org/cac/-/cac-6.7.14.tgz",
+      "integrity": "sha512-b6Ilus+c3RrdDk+JhLKUAQfzzgLEPy6wcXqS7f/xe1EETvsDP6GORG7SFuOs6cID5YkqchW/LXZbX5bc8j7ZcQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/call-bind-apply-helpers": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/call-bind-apply-helpers/-/call-bind-apply-helpers-1.0.2.tgz",
+      "integrity": "sha512-Sp1ablJ0ivDkSzjcaJdxEunN5/XvksFJ2sMBFfq6x0ryhQV/2b/KwFe21cMpmHtPOSij8K99/wSfoEuTObmuMQ==",
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "function-bind": "^1.1.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/caniuse-lite": {
+      "version": "1.0.30001792",
+      "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001792.tgz",
+      "integrity": "sha512-hVLMUZFgR4JJ6ACt1uEESvQN1/dBVqPAKY0hgrV70eN3391K6juAfTjKZLKvOMsx8PxA7gsY1/tLMMTcfFLLpw==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/caniuse-lite"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "CC-BY-4.0"
+    },
+    "node_modules/chai": {
+      "version": "4.5.0",
+      "resolved": "https://registry.npmjs.org/chai/-/chai-4.5.0.tgz",
+      "integrity": "sha512-RITGBfijLkBddZvnn8jdqoTypxvqbOLYQkGGxXzeFjVHvudaPw0HNFD9x928/eUwYWd2dPCugVqspGALTZZQKw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "assertion-error": "^1.1.0",
+        "check-error": "^1.0.3",
+        "deep-eql": "^4.1.3",
+        "get-func-name": "^2.0.2",
+        "loupe": "^2.3.6",
+        "pathval": "^1.1.1",
+        "type-detect": "^4.1.0"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/check-error": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/check-error/-/check-error-1.0.3.tgz",
+      "integrity": "sha512-iKEoDYaRmd1mxM90a2OEfWhjsjPpYPuQ+lMYsoxB126+t8fw7ySEO48nmDg5COTjxDI65/Y2OWpeEHk3ZOe8zg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "get-func-name": "^2.0.2"
+      },
+      "engines": {
+        "node": "*"
+      }
+    },
+    "node_modules/classnames": {
+      "version": "2.5.1",
+      "resolved": "https://registry.npmjs.org/classnames/-/classnames-2.5.1.tgz",
+      "integrity": "sha512-saHYOzhIQs6wy2sVxTM6bUDsQO4F50V9RQ22qBpEdCW+I+/Wmke2HOl6lS6dTpdxVhb88/I6+Hs+438c3lfUow==",
+      "license": "MIT"
+    },
+    "node_modules/combined-stream": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/combined-stream/-/combined-stream-1.0.8.tgz",
+      "integrity": "sha512-FQN4MRfuJeHf7cBbBMJFXhKSDq+2kAArBlmRBvcvFE5BB1HZKXtSFASDhdlz9zOYwxh8lDdnvmMOe/+5cdoEdg==",
+      "license": "MIT",
+      "dependencies": {
+        "delayed-stream": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/compute-scroll-into-view": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/compute-scroll-into-view/-/compute-scroll-into-view-3.1.1.tgz",
+      "integrity": "sha512-VRhuHOLoKYOy4UbilLbUzbYg93XLjv2PncJC50EuTWPA3gaja1UjBsUP/D/9/juV3vQFr6XBEzn9KCAHdUvOHw==",
+      "license": "MIT"
+    },
+    "node_modules/confbox": {
+      "version": "0.1.8",
+      "resolved": "https://registry.npmjs.org/confbox/-/confbox-0.1.8.tgz",
+      "integrity": "sha512-RMtmw0iFkeR4YV+fUOSucriAQNb9g8zFR52MWCtl+cCZOFRNL6zeB395vPzFhEjjn4fMxXudmELnl/KF/WrK6w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/convert-source-map": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/convert-source-map/-/convert-source-map-2.0.0.tgz",
+      "integrity": "sha512-Kvp459HrV2FEJ1CAsi1Ku+MY3kasH19TFykTz2xWmMeq6bk2NU3XXvfJ+Q61m0xktWwt+1HSYf3JZsTms3aRJg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/copy-to-clipboard": {
+      "version": "3.3.3",
+      "resolved": "https://registry.npmjs.org/copy-to-clipboard/-/copy-to-clipboard-3.3.3.tgz",
+      "integrity": "sha512-2KV8NhB5JqC3ky0r9PMCAZKbUHSwtEo4CwCs0KXgruG43gX5PMqDEBbVU4OUzw2MuAWUfsuFmWvEKG5QRfSnJA==",
+      "license": "MIT",
+      "dependencies": {
+        "toggle-selection": "^1.0.6"
+      }
+    },
+    "node_modules/cross-spawn": {
+      "version": "7.0.6",
+      "resolved": "https://registry.npmjs.org/cross-spawn/-/cross-spawn-7.0.6.tgz",
+      "integrity": "sha512-uV2QOWP2nWzsy2aMp8aRibhi9dlzF5Hgh5SHaB9OiTGEyDTiJJyx0uy51QXdyWbtAHNua4XJzUKca3OzKUd3vA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "path-key": "^3.1.0",
+        "shebang-command": "^2.0.0",
+        "which": "^2.0.1"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/css.escape": {
+      "version": "1.5.1",
+      "resolved": "https://registry.npmjs.org/css.escape/-/css.escape-1.5.1.tgz",
+      "integrity": "sha512-YUifsXXuknHlUsmlgyY0PKzgPOr7/FjCePfHNt0jxm83wHZi44VDMQ7/fGNkjY3/jV1MC+1CmZbaHzugyeRtpg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/cssstyle": {
+      "version": "4.6.0",
+      "resolved": "https://registry.npmjs.org/cssstyle/-/cssstyle-4.6.0.tgz",
+      "integrity": "sha512-2z+rWdzbbSZv6/rhtvzvqeZQHrBaqgogqt85sqFNbabZOuFbCVFb8kPeEtZjiKkbrm395irpNKiYeFeLiQnFPg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@asamuzakjp/css-color": "^3.2.0",
+        "rrweb-cssom": "^0.8.0"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/cssstyle/node_modules/rrweb-cssom": {
+      "version": "0.8.0",
+      "resolved": "https://registry.npmjs.org/rrweb-cssom/-/rrweb-cssom-0.8.0.tgz",
+      "integrity": "sha512-guoltQEx+9aMf2gDZ0s62EcV8lsXR+0w8915TC3ITdn2YueuNjdAYh/levpU9nFaoChh9RUS5ZdQMrKfVEN9tw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/csstype": {
+      "version": "3.2.3",
+      "resolved": "https://registry.npmjs.org/csstype/-/csstype-3.2.3.tgz",
+      "integrity": "sha512-z1HGKcYy2xA8AGQfwrn0PAy+PB7X/GSj3UVJW9qKyn43xWa+gl5nXmU4qqLMRzWVLFC8KusUX8T/0kCiOYpAIQ==",
+      "license": "MIT"
+    },
+    "node_modules/data-urls": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/data-urls/-/data-urls-5.0.0.tgz",
+      "integrity": "sha512-ZYP5VBHshaDAiVZxjbRVcFJpc+4xGgT0bK3vzy1HLN8jTO975HEbuYzZJcHoQEY5K1a0z8YayJkyVETa08eNTg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "whatwg-mimetype": "^4.0.0",
+        "whatwg-url": "^14.0.0"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/dayjs": {
+      "version": "1.11.20",
+      "resolved": "https://registry.npmjs.org/dayjs/-/dayjs-1.11.20.tgz",
+      "integrity": "sha512-YbwwqR/uYpeoP4pu043q+LTDLFBLApUP6VxRihdfNTqu4ubqMlGDLd6ErXhEgsyvY0K6nCs7nggYumAN+9uEuQ==",
+      "license": "MIT"
+    },
+    "node_modules/debug": {
+      "version": "4.4.3",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-4.4.3.tgz",
+      "integrity": "sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ms": "^2.1.3"
+      },
+      "engines": {
+        "node": ">=6.0"
+      },
+      "peerDependenciesMeta": {
+        "supports-color": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/decimal.js": {
+      "version": "10.6.0",
+      "resolved": "https://registry.npmjs.org/decimal.js/-/decimal.js-10.6.0.tgz",
+      "integrity": "sha512-YpgQiITW3JXGntzdUmyUR1V812Hn8T1YVXhCu+wO3OpS4eU9l4YdD3qjyiKdV6mvV29zapkMeD390UVEf2lkUg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/deep-eql": {
+      "version": "4.1.4",
+      "resolved": "https://registry.npmjs.org/deep-eql/-/deep-eql-4.1.4.tgz",
+      "integrity": "sha512-SUwdGfqdKOwxCPeVYjwSyRpJ7Z+fhpwIAtmCUdZIWZ/YP5R9WAsyuSgpLVDi9bjWoN2LXHNss/dk3urXtdQxGg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "type-detect": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/delayed-stream": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/delayed-stream/-/delayed-stream-1.0.0.tgz",
+      "integrity": "sha512-ZySD7Nf91aLB0RxL4KGrKHBXl7Eds1DAmEdcoVawXnLD7SDhpNgtuII2aAkg7a7QS41jxPSZ17p4VdGnMHk3MQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.4.0"
+      }
+    },
+    "node_modules/dequal": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/dequal/-/dequal-2.0.3.tgz",
+      "integrity": "sha512-0je+qPKHEMohvfRTCEo3CrPG6cAzAYgmzKyxRiYSSDkS6eGJdyVJm7WaYA5ECaAD9wLB2T4EEeymA5aFVcYXCA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/diff-sequences": {
+      "version": "29.6.3",
+      "resolved": "https://registry.npmjs.org/diff-sequences/-/diff-sequences-29.6.3.tgz",
+      "integrity": "sha512-EjePK1srD3P08o2j4f0ExnylqRs5B9tJjcp9t1krH2qRi8CCdsYfwe9JgSLurFBWwq4uOlipzfk5fHNvwFKr8Q==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "^14.15.0 || ^16.10.0 || >=18.0.0"
+      }
+    },
+    "node_modules/dom-accessibility-api": {
+      "version": "0.5.16",
+      "resolved": "https://registry.npmjs.org/dom-accessibility-api/-/dom-accessibility-api-0.5.16.tgz",
+      "integrity": "sha512-X7BJ2yElsnOJ30pZF4uIIDfBEVgF4XEBxL9Bxhy6dnrm5hkzqmsWHGTiHqRiITNhMyFLyAiWndIJP7Z1NTteDg==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/dunder-proto": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/dunder-proto/-/dunder-proto-1.0.1.tgz",
+      "integrity": "sha512-KIN/nDJBQRcXw0MLVhZE9iQHmG68qAVIBg9CqmUYjmQIhgij9U5MFvrqkUL5FbtyyzZuOeOt0zdeRe4UY7ct+A==",
+      "license": "MIT",
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "gopd": "^1.2.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/electron-to-chromium": {
+      "version": "1.5.352",
+      "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.5.352.tgz",
+      "integrity": "sha512-9wHk8x6dyuimoe18EdiDPWKExNdxYqo4fn4FwOVVper6RxT3cmpBwBkWWfSOCYJjQdIco/nPhJhNLmn4Ufg1Yg==",
+      "dev": true,
+      "license": "ISC"
+    },
+    "node_modules/entities": {
+      "version": "6.0.1",
+      "resolved": "https://registry.npmjs.org/entities/-/entities-6.0.1.tgz",
+      "integrity": "sha512-aN97NXWF6AWBTahfVOIrB/NShkzi5H7F9r1s9mD3cDj4Ko5f2qhhVoYMibXF7GlLveb/D2ioWay8lxI97Ven3g==",
+      "dev": true,
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=0.12"
+      },
+      "funding": {
+        "url": "https://github.com/fb55/entities?sponsor=1"
+      }
+    },
+    "node_modules/es-define-property": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/es-define-property/-/es-define-property-1.0.1.tgz",
+      "integrity": "sha512-e3nRfgfUZ4rNGL232gUgX06QNyyez04KdjFrF+LTRoOXmrOgFKDg4BCdsjW8EnT69eqdYGmRpJwiPVYNrCaW3g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-errors": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/es-errors/-/es-errors-1.3.0.tgz",
+      "integrity": "sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-object-atoms": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/es-object-atoms/-/es-object-atoms-1.1.1.tgz",
+      "integrity": "sha512-FGgH2h8zKNim9ljj7dankFPcICIK9Cp5bm+c2gQSYePhpaG5+esrLODihIorn+Pe6FGJzWhXQotPv73jTaldXA==",
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-set-tostringtag": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/es-set-tostringtag/-/es-set-tostringtag-2.1.0.tgz",
+      "integrity": "sha512-j6vWzfrGVfyXxge+O0x5sh6cvxAog0a/4Rdd2K36zCMV5eJ+/+tOAngRO8cODMNWbVRdVlmGZQL2YS3yR8bIUA==",
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.6",
+        "has-tostringtag": "^1.0.2",
+        "hasown": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/esbuild": {
+      "version": "0.21.5",
+      "resolved": "https://registry.npmjs.org/esbuild/-/esbuild-0.21.5.tgz",
+      "integrity": "sha512-mg3OPMV4hXywwpoDxu3Qda5xCKQi+vCTZq8S9J/EpkhB2HzKXq4SNFZE3+NK93JYxc8VMSep+lOUSC/RVKaBqw==",
+      "dev": true,
+      "hasInstallScript": true,
+      "license": "MIT",
+      "bin": {
+        "esbuild": "bin/esbuild"
+      },
+      "engines": {
+        "node": ">=12"
+      },
+      "optionalDependencies": {
+        "@esbuild/aix-ppc64": "0.21.5",
+        "@esbuild/android-arm": "0.21.5",
+        "@esbuild/android-arm64": "0.21.5",
+        "@esbuild/android-x64": "0.21.5",
+        "@esbuild/darwin-arm64": "0.21.5",
+        "@esbuild/darwin-x64": "0.21.5",
+        "@esbuild/freebsd-arm64": "0.21.5",
+        "@esbuild/freebsd-x64": "0.21.5",
+        "@esbuild/linux-arm": "0.21.5",
+        "@esbuild/linux-arm64": "0.21.5",
+        "@esbuild/linux-ia32": "0.21.5",
+        "@esbuild/linux-loong64": "0.21.5",
+        "@esbuild/linux-mips64el": "0.21.5",
+        "@esbuild/linux-ppc64": "0.21.5",
+        "@esbuild/linux-riscv64": "0.21.5",
+        "@esbuild/linux-s390x": "0.21.5",
+        "@esbuild/linux-x64": "0.21.5",
+        "@esbuild/netbsd-x64": "0.21.5",
+        "@esbuild/openbsd-x64": "0.21.5",
+        "@esbuild/sunos-x64": "0.21.5",
+        "@esbuild/win32-arm64": "0.21.5",
+        "@esbuild/win32-ia32": "0.21.5",
+        "@esbuild/win32-x64": "0.21.5"
+      }
+    },
+    "node_modules/escalade": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/escalade/-/escalade-3.2.0.tgz",
+      "integrity": "sha512-WUj2qlxaQtO4g6Pq5c29GTcWGDyd8itL8zTlipgECz3JesAiiOKotd8JU6otB3PACgG6xkJUyVhboMS+bje/jA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/estree-walker": {
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/estree-walker/-/estree-walker-3.0.3.tgz",
+      "integrity": "sha512-7RUKfXgSMMkzt6ZuXmqapOurLGPPfgj6l9uRZ7lRGolvk0y2yocc35LdcxKC5PQZdn2DMqioAQ2NoWcrTKmm6g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/estree": "^1.0.0"
+      }
+    },
+    "node_modules/execa": {
+      "version": "8.0.1",
+      "resolved": "https://registry.npmjs.org/execa/-/execa-8.0.1.tgz",
+      "integrity": "sha512-VyhnebXciFV2DESc+p6B+y0LjSm0krU4OgJN44qFAhBY0TJ+1V61tYD2+wHusZ6F9n5K+vl8k0sTy7PEfV4qpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "cross-spawn": "^7.0.3",
+        "get-stream": "^8.0.1",
+        "human-signals": "^5.0.0",
+        "is-stream": "^3.0.0",
+        "merge-stream": "^2.0.0",
+        "npm-run-path": "^5.1.0",
+        "onetime": "^6.0.0",
+        "signal-exit": "^4.1.0",
+        "strip-final-newline": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=16.17"
+      },
+      "funding": {
+        "url": "https://github.com/sindresorhus/execa?sponsor=1"
+      }
+    },
+    "node_modules/follow-redirects": {
+      "version": "1.16.0",
+      "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.16.0.tgz",
+      "integrity": "sha512-y5rN/uOsadFT/JfYwhxRS5R7Qce+g3zG97+JrtFZlC9klX/W5hD7iiLzScI4nZqUS7DNUdhPgw4xI8W2LuXlUw==",
+      "funding": [
+        {
+          "type": "individual",
+          "url": "https://github.com/sponsors/RubenVerborgh"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=4.0"
+      },
+      "peerDependenciesMeta": {
+        "debug": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/form-data": {
+      "version": "4.0.5",
+      "resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.5.tgz",
+      "integrity": "sha512-8RipRLol37bNs2bhoV67fiTEvdTrbMUYcFTiy3+wuuOnUog2QBHCZWXDRijWQfAkhBj2Uf5UnVaiWwA5vdd82w==",
+      "license": "MIT",
+      "dependencies": {
+        "asynckit": "^0.4.0",
+        "combined-stream": "^1.0.8",
+        "es-set-tostringtag": "^2.1.0",
+        "hasown": "^2.0.2",
+        "mime-types": "^2.1.12"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/fsevents": {
+      "version": "2.3.3",
+      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.3.tgz",
+      "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==",
+      "dev": true,
+      "hasInstallScript": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
+      }
+    },
+    "node_modules/function-bind": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/function-bind/-/function-bind-1.1.2.tgz",
+      "integrity": "sha512-7XHNxH7qX9xG5mIwxkhumTox/MIRNcOgDrxWsMt2pAr23WHp6MrRlN7FBSFpCpr+oVO0F744iUgR82nJMfG2SA==",
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/gensync": {
+      "version": "1.0.0-beta.2",
+      "resolved": "https://registry.npmjs.org/gensync/-/gensync-1.0.0-beta.2.tgz",
+      "integrity": "sha512-3hN7NaskYvMDLQY55gnW3NQ+mesEAepTqlg+VEbj7zzqEMBVNhzcGYYeqFo/TlYz6eQiFcp1HcsCZO+nGgS8zg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/get-func-name": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/get-func-name/-/get-func-name-2.0.2.tgz",
+      "integrity": "sha512-8vXOvuE167CtIc3OyItco7N/dpRtBbYOsPsXCz7X/PMnlGjYjSGuZJgM1Y7mmew7BKf9BqvLX2tnOVy1BBUsxQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "*"
+      }
+    },
+    "node_modules/get-intrinsic": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/get-intrinsic/-/get-intrinsic-1.3.0.tgz",
+      "integrity": "sha512-9fSjSaos/fRIVIp+xSJlE6lfwhES7LNtKaCBIamHsjr2na1BiABJPo0mOjjz8GJDURarmCPGqaiVg5mfjb98CQ==",
+      "license": "MIT",
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.2",
+        "es-define-property": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.1.1",
+        "function-bind": "^1.1.2",
+        "get-proto": "^1.0.1",
+        "gopd": "^1.2.0",
+        "has-symbols": "^1.1.0",
+        "hasown": "^2.0.2",
+        "math-intrinsics": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/get-proto": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/get-proto/-/get-proto-1.0.1.tgz",
+      "integrity": "sha512-sTSfBjoXBp89JvIKIefqw7U2CCebsc74kiY6awiGogKtoSGbgjYE/G/+l9sF3MWFPNc9IcoOC4ODfKHfxFmp0g==",
+      "license": "MIT",
+      "dependencies": {
+        "dunder-proto": "^1.0.1",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/get-stream": {
+      "version": "8.0.1",
+      "resolved": "https://registry.npmjs.org/get-stream/-/get-stream-8.0.1.tgz",
+      "integrity": "sha512-VaUJspBffn/LMCJVoMvSAdmscJyS1auj5Zulnn5UoYcY531UWmdwhRWkcGKnGU93m5HSXP9LP2usOryrBtQowA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=16"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/gopd": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/gopd/-/gopd-1.2.0.tgz",
+      "integrity": "sha512-ZUKRh6/kUFoAiTAtTYPZJ3hw9wNxx+BIBOijnlG9PnrJsCcSjs1wyyD6vJpaYtgnzDrKYRSqf3OO6Rfa93xsRg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-symbols": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/has-symbols/-/has-symbols-1.1.0.tgz",
+      "integrity": "sha512-1cDNdwJ2Jaohmb3sg4OmKaMBwuC48sYni5HUw2DvsC8LjGTLK9h+eb1X6RyuOHe4hT0ULCW68iomhjUoKUqlPQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-tostringtag": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/has-tostringtag/-/has-tostringtag-1.0.2.tgz",
+      "integrity": "sha512-NqADB8VjPFLM2V0VvHUewwwsw0ZWBaIdgo+ieHtK3hasLz4qeCRjYcqfB6AQrBggRKppKF8L52/VqdVsO47Dlw==",
+      "license": "MIT",
+      "dependencies": {
+        "has-symbols": "^1.0.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/hasown": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/hasown/-/hasown-2.0.3.tgz",
+      "integrity": "sha512-ej4AhfhfL2Q2zpMmLo7U1Uv9+PyhIZpgQLGT1F9miIGmiCJIoCgSmczFdrc97mWT4kVY72KA+WnnhJ5pghSvSg==",
+      "license": "MIT",
+      "dependencies": {
+        "function-bind": "^1.1.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/html-encoding-sniffer": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/html-encoding-sniffer/-/html-encoding-sniffer-4.0.0.tgz",
+      "integrity": "sha512-Y22oTqIU4uuPgEemfz7NDJz6OeKf12Lsu+QC+s3BVpda64lTiMYCyGwg5ki4vFxkMwQdeZDl2adZoqUgdFuTgQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "whatwg-encoding": "^3.1.1"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/http-proxy-agent": {
+      "version": "7.0.2",
+      "resolved": "https://registry.npmjs.org/http-proxy-agent/-/http-proxy-agent-7.0.2.tgz",
+      "integrity": "sha512-T1gkAiYYDWYx3V5Bmyu7HcfcvL7mUrTWiM6yOfa3PIphViJ/gFPbvidQ+veqSOHci/PxBcDabeUNCzpOODJZig==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "agent-base": "^7.1.0",
+        "debug": "^4.3.4"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/https-proxy-agent": {
+      "version": "7.0.6",
+      "resolved": "https://registry.npmjs.org/https-proxy-agent/-/https-proxy-agent-7.0.6.tgz",
+      "integrity": "sha512-vK9P5/iUfdl95AI+JVyUuIcVtd4ofvtrOr3HNtM2yxC9bnMbEdp3x01OhQNnjb8IJYi38VlTE3mBXwcfvywuSw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "agent-base": "^7.1.2",
+        "debug": "4"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/human-signals": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/human-signals/-/human-signals-5.0.0.tgz",
+      "integrity": "sha512-AXcZb6vzzrFAUE61HnN4mpLqd/cSIwNQjtNWR0euPm6y0iqx3G4gOXaIDdtdDwZmhwe82LA6+zinmW4UBWVePQ==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=16.17.0"
+      }
+    },
+    "node_modules/iconv-lite": {
+      "version": "0.6.3",
+      "resolved": "https://registry.npmjs.org/iconv-lite/-/iconv-lite-0.6.3.tgz",
+      "integrity": "sha512-4fCk79wshMdzMp2rH06qWrJE4iolqLhCUH+OiuIgU++RB0+94NlDL81atO7GX55uUKueo0txHNtvEyI6D7WdMw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "safer-buffer": ">= 2.1.2 < 3.0.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/immer": {
+      "version": "11.1.7",
+      "resolved": "https://registry.npmjs.org/immer/-/immer-11.1.7.tgz",
+      "integrity": "sha512-LFVFtAROHcDy1er5UI6nodRFnZ2SgdCXhfNSI+DpObO8N7Pur/muBGsjzH5wpnFHCYhYVQxZskCkV4koQ//3/Q==",
+      "license": "MIT",
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/immer"
+      }
+    },
+    "node_modules/indent-string": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/indent-string/-/indent-string-4.0.0.tgz",
+      "integrity": "sha512-EdDDZu4A2OyIK7Lr/2zG+w5jmbuk1DVBnEwREQvBzspBJkCEbRa8GxU1lghYcaGJCnRWibjDXlq779X1/y5xwg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/is-potential-custom-element-name": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/is-potential-custom-element-name/-/is-potential-custom-element-name-1.0.1.tgz",
+      "integrity": "sha512-bCYeRA2rVibKZd+s2625gGnGF/t7DSqDs4dP7CrLA1m7jKWz6pps0LpYLJN8Q64HtmPKJ1hrN3nzPNKFEKOUiQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/is-stream": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/is-stream/-/is-stream-3.0.0.tgz",
+      "integrity": "sha512-LnQR4bZ9IADDRSkvpqMGvt/tEJWclzklNgSw48V5EAaAeDd6qGvN8ei6k5p0tvxSR171VmGyHuTiAOfxAbr8kA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "^12.20.0 || ^14.13.1 || >=16.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/isexe": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/isexe/-/isexe-2.0.0.tgz",
+      "integrity": "sha512-RHxMLp9lnKHGHRng9QFhRCMbYAcVpn69smSGcq3f36xjgVVWThj4qqLbTLlq7Ssj8B+fIQ1EuCEGI2lKsyQeIw==",
+      "dev": true,
+      "license": "ISC"
+    },
+    "node_modules/js-tokens": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/js-tokens/-/js-tokens-4.0.0.tgz",
+      "integrity": "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ==",
+      "license": "MIT"
+    },
+    "node_modules/jsdom": {
+      "version": "24.1.3",
+      "resolved": "https://registry.npmjs.org/jsdom/-/jsdom-24.1.3.tgz",
+      "integrity": "sha512-MyL55p3Ut3cXbeBEG7Hcv0mVM8pp8PBNWxRqchZnSfAiES1v1mRnMeFfaHWIPULpwsYfvO+ZmMZz5tGCnjzDUQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "cssstyle": "^4.0.1",
+        "data-urls": "^5.0.0",
+        "decimal.js": "^10.4.3",
+        "form-data": "^4.0.0",
+        "html-encoding-sniffer": "^4.0.0",
+        "http-proxy-agent": "^7.0.2",
+        "https-proxy-agent": "^7.0.5",
+        "is-potential-custom-element-name": "^1.0.1",
+        "nwsapi": "^2.2.12",
+        "parse5": "^7.1.2",
+        "rrweb-cssom": "^0.7.1",
+        "saxes": "^6.0.0",
+        "symbol-tree": "^3.2.4",
+        "tough-cookie": "^4.1.4",
+        "w3c-xmlserializer": "^5.0.0",
+        "webidl-conversions": "^7.0.0",
+        "whatwg-encoding": "^3.1.1",
+        "whatwg-mimetype": "^4.0.0",
+        "whatwg-url": "^14.0.0",
+        "ws": "^8.18.0",
+        "xml-name-validator": "^5.0.0"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "canvas": "^2.11.2"
+      },
+      "peerDependenciesMeta": {
+        "canvas": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/jsesc": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/jsesc/-/jsesc-3.1.0.tgz",
+      "integrity": "sha512-/sM3dO2FOzXjKQhJuo0Q173wf2KOo8t4I8vHy6lF9poUp7bKT0/NHE8fPX23PwfhnykfqnC2xRxOnVw5XuGIaA==",
+      "dev": true,
+      "license": "MIT",
+      "bin": {
+        "jsesc": "bin/jsesc"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/json2mq": {
+      "version": "0.2.0",
+      "resolved": "https://registry.npmjs.org/json2mq/-/json2mq-0.2.0.tgz",
+      "integrity": "sha512-SzoRg7ux5DWTII9J2qkrZrqV1gt+rTaoufMxEzXbS26Uid0NwaJd123HcoB80TgubEppxxIGdNxCx50fEoEWQA==",
+      "license": "MIT",
+      "dependencies": {
+        "string-convert": "^0.2.0"
+      }
+    },
+    "node_modules/json5": {
+      "version": "2.2.3",
+      "resolved": "https://registry.npmjs.org/json5/-/json5-2.2.3.tgz",
+      "integrity": "sha512-XmOWe7eyHYH14cLdVPoyg+GOH3rYX++KpzrylJwSW98t3Nk+U8XOl8FWKOgwtzdb8lXGf6zYwDUzeHMWfxasyg==",
+      "dev": true,
+      "license": "MIT",
+      "bin": {
+        "json5": "lib/cli.js"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/local-pkg": {
+      "version": "0.5.1",
+      "resolved": "https://registry.npmjs.org/local-pkg/-/local-pkg-0.5.1.tgz",
+      "integrity": "sha512-9rrA30MRRP3gBD3HTGnC6cDFpaE1kVDWxWgqWJUN0RvDNAo+Nz/9GxB+nHOH0ifbVFy0hSA1V6vFDvnx54lTEQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "mlly": "^1.7.3",
+        "pkg-types": "^1.2.1"
+      },
+      "engines": {
+        "node": ">=14"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/antfu"
+      }
+    },
+    "node_modules/loose-envify": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/loose-envify/-/loose-envify-1.4.0.tgz",
+      "integrity": "sha512-lyuxPGr/Wfhrlem2CL/UcnUc1zcqKAImBDzukY7Y5F/yQiNdko6+fRLevlw1HgMySw7f611UIY408EtxRSoK3Q==",
+      "license": "MIT",
+      "dependencies": {
+        "js-tokens": "^3.0.0 || ^4.0.0"
+      },
+      "bin": {
+        "loose-envify": "cli.js"
+      }
+    },
+    "node_modules/loupe": {
+      "version": "2.3.7",
+      "resolved": "https://registry.npmjs.org/loupe/-/loupe-2.3.7.tgz",
+      "integrity": "sha512-zSMINGVYkdpYSOBmLi0D1Uo7JU9nVdQKrHxC8eYlV+9YKK9WePqAlL7lSlorG/U2Fw1w0hTBmaa/jrQ3UbPHtA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "get-func-name": "^2.0.1"
+      }
+    },
+    "node_modules/lru-cache": {
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-5.1.1.tgz",
+      "integrity": "sha512-KpNARQA3Iwv+jTA0utUVVbrh+Jlrr1Fv0e56GGzAFOXN7dk/FviaDW8LHmK52DlcH4WP2n6gI8vN1aesBFgo9w==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "yallist": "^3.0.2"
+      }
+    },
+    "node_modules/lz-string": {
+      "version": "1.5.0",
+      "resolved": "https://registry.npmjs.org/lz-string/-/lz-string-1.5.0.tgz",
+      "integrity": "sha512-h5bgJWpxJNswbU7qCrV0tIKQCaS3blPDrqKWx+QxzuzL1zGUzij9XCWLrSLsJPu5t+eWA/ycetzYAO5IOMcWAQ==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "bin": {
+        "lz-string": "bin/bin.js"
+      }
+    },
+    "node_modules/magic-string": {
+      "version": "0.30.21",
+      "resolved": "https://registry.npmjs.org/magic-string/-/magic-string-0.30.21.tgz",
+      "integrity": "sha512-vd2F4YUyEXKGcLHoq+TEyCjxueSeHnFxyyjNp80yg0XV4vUhnDer/lvvlqM/arB5bXQN5K2/3oinyCRyx8T2CQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/sourcemap-codec": "^1.5.5"
+      }
+    },
+    "node_modules/math-intrinsics": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
+      "integrity": "sha512-/IXtbwEk5HTPyEwyKX6hGkYXxM9nbj64B+ilVJnC/R6B0pH5G4V3b0pVbL7DBj4tkhBAppbQUlf6F6Xl9LHu1g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/merge-stream": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/merge-stream/-/merge-stream-2.0.0.tgz",
+      "integrity": "sha512-abv/qOcuPfk3URPfDzmZU1LKmuw8kT+0nIHvKrKgFrwifol/doWcdA4ZqsWQ8ENrFKkd67Mfpo/LovbIUsbt3w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/mime-db": {
+      "version": "1.52.0",
+      "resolved": "https://registry.npmjs.org/mime-db/-/mime-db-1.52.0.tgz",
+      "integrity": "sha512-sPU4uV7dYlvtWJxwwxHD0PuihVNiE7TyAbQ5SWxDCB9mUYvOgroQOwYQQOKPJ8CIbE+1ETVlOoK1UC2nU3gYvg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/mime-types": {
+      "version": "2.1.35",
+      "resolved": "https://registry.npmjs.org/mime-types/-/mime-types-2.1.35.tgz",
+      "integrity": "sha512-ZDY+bPm5zTTF+YpCrAU9nK0UgICYPT0QtT1NZWFv4s++TNkcgVaT0g6+4R2uI4MjQjzysHB1zxuWL50hzaeXiw==",
+      "license": "MIT",
+      "dependencies": {
+        "mime-db": "1.52.0"
+      },
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/mimic-fn": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/mimic-fn/-/mimic-fn-4.0.0.tgz",
+      "integrity": "sha512-vqiC06CuhBTUdZH+RYl8sFrL096vA45Ok5ISO6sE/Mr1jRbGH4Csnhi8f3wKVl7x8mO4Au7Ir9D3Oyv1VYMFJw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/min-indent": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/min-indent/-/min-indent-1.0.1.tgz",
+      "integrity": "sha512-I9jwMn07Sy/IwOj3zVkVik2JTvgpaykDZEigL6Rx6N9LbMywwUSMtxET+7lVoDLLd3O3IXwJwvuuns8UB/HeAg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/mlly": {
+      "version": "1.8.2",
+      "resolved": "https://registry.npmjs.org/mlly/-/mlly-1.8.2.tgz",
+      "integrity": "sha512-d+ObxMQFmbt10sretNDytwt85VrbkhhUA/JBGm1MPaWJ65Cl4wOgLaB1NYvJSZ0Ef03MMEU/0xpPMXUIQ29UfA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "acorn": "^8.16.0",
+        "pathe": "^2.0.3",
+        "pkg-types": "^1.3.1",
+        "ufo": "^1.6.3"
+      }
+    },
+    "node_modules/mlly/node_modules/pathe": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/pathe/-/pathe-2.0.3.tgz",
+      "integrity": "sha512-WUjGcAqP1gQacoQe+OBJsFA7Ld4DyXuUIjZ5cc75cLHvJ7dtNsTugphxIADwspS+AraAUePCKrSVtPLFj/F88w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/ms": {
+      "version": "2.1.3",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz",
+      "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/nanoid": {
+      "version": "3.3.12",
+      "resolved": "https://registry.npmjs.org/nanoid/-/nanoid-3.3.12.tgz",
+      "integrity": "sha512-ZB9RH/39qpq5Vu6Y+NmUaFhQR6pp+M2Xt76XBnEwDaGcVAqhlvxrl3B2bKS5D3NH3QR76v3aSrKaF/Kiy7lEtQ==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "bin": {
+        "nanoid": "bin/nanoid.cjs"
+      },
+      "engines": {
+        "node": "^10 || ^12 || ^13.7 || ^14 || >=15.0.1"
+      }
+    },
+    "node_modules/node-releases": {
+      "version": "2.0.38",
+      "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.38.tgz",
+      "integrity": "sha512-3qT/88Y3FbH/Kx4szpQQ4HzUbVrHPKTLVpVocKiLfoYvw9XSGOX2FmD2d6DrXbVYyAQTF2HeF6My8jmzx7/CRw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/npm-run-path": {
+      "version": "5.3.0",
+      "resolved": "https://registry.npmjs.org/npm-run-path/-/npm-run-path-5.3.0.tgz",
+      "integrity": "sha512-ppwTtiJZq0O/ai0z7yfudtBpWIoxM8yE6nHi1X47eFR2EWORqfbu6CnPlNsjeN683eT0qG6H/Pyf9fCcvjnnnQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "path-key": "^4.0.0"
+      },
+      "engines": {
+        "node": "^12.20.0 || ^14.13.1 || >=16.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/npm-run-path/node_modules/path-key": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/path-key/-/path-key-4.0.0.tgz",
+      "integrity": "sha512-haREypq7xkM7ErfgIyA0z+Bj4AGKlMSdlQE2jvJo6huWD1EdkKYV+G/T4nq0YEF2vgTT8kqMFKo1uHn950r4SQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/nwsapi": {
+      "version": "2.2.23",
+      "resolved": "https://registry.npmjs.org/nwsapi/-/nwsapi-2.2.23.tgz",
+      "integrity": "sha512-7wfH4sLbt4M0gCDzGE6vzQBo0bfTKjU7Sfpqy/7gs1qBfYz2vEJH6vXcBKpO3+6Yu1telwd0t9HpyOoLEQQbIQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/onetime": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/onetime/-/onetime-6.0.0.tgz",
+      "integrity": "sha512-1FlR+gjXK7X+AsAHso35MnyN5KqGwJRi/31ft6x0M194ht7S+rWAvd7PHss9xSKMzE0asv1pyIHaJYq+BbacAQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "mimic-fn": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/p-limit": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/p-limit/-/p-limit-5.0.0.tgz",
+      "integrity": "sha512-/Eaoq+QyLSiXQ4lyYV23f14mZRQcXnxfHrN0vCai+ak9G0pp9iEQukIIZq5NccEvwRB8PUnZT0KsOoDCINS1qQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "yocto-queue": "^1.0.0"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/parse5": {
+      "version": "7.3.0",
+      "resolved": "https://registry.npmjs.org/parse5/-/parse5-7.3.0.tgz",
+      "integrity": "sha512-IInvU7fabl34qmi9gY8XOVxhYyMyuH2xUNpb2q8/Y+7552KlejkRvqvD19nMoUW/uQGGbqNpA6Tufu5FL5BZgw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "entities": "^6.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/inikulin/parse5?sponsor=1"
+      }
+    },
+    "node_modules/path-key": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/path-key/-/path-key-3.1.1.tgz",
+      "integrity": "sha512-ojmeN0qd+y0jszEtoY48r0Peq5dwMEkIlCOu6Q5f41lfkswXuKtYrhgoTpLnyIcHm24Uhqx+5Tqm2InSwLhE6Q==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/pathe": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/pathe/-/pathe-1.1.2.tgz",
+      "integrity": "sha512-whLdWMYL2TwI08hn8/ZqAbrVemu0LNaNNJZX73O6qaIdCTfXutsLhMkjdENX0qhsQ9uIimo4/aQOmXkoon2nDQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/pathval": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/pathval/-/pathval-1.1.1.tgz",
+      "integrity": "sha512-Dp6zGqpTdETdR63lehJYPeIOqpiNBNtc7BpWSLrOje7UaIsE5aY92r/AunQA7rsXvet3lrJ3JnZX29UPTKXyKQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "*"
+      }
+    },
+    "node_modules/picocolors": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/picocolors/-/picocolors-1.1.1.tgz",
+      "integrity": "sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA==",
+      "dev": true,
+      "license": "ISC"
+    },
+    "node_modules/pkg-types": {
+      "version": "1.3.1",
+      "resolved": "https://registry.npmjs.org/pkg-types/-/pkg-types-1.3.1.tgz",
+      "integrity": "sha512-/Jm5M4RvtBFVkKWRu2BLUTNP8/M2a+UwuAX+ae4770q1qVGtfjG+WTCupoZixokjmHiry8uI+dlY8KXYV5HVVQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "confbox": "^0.1.8",
+        "mlly": "^1.7.4",
+        "pathe": "^2.0.1"
+      }
+    },
+    "node_modules/pkg-types/node_modules/pathe": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/pathe/-/pathe-2.0.3.tgz",
+      "integrity": "sha512-WUjGcAqP1gQacoQe+OBJsFA7Ld4DyXuUIjZ5cc75cLHvJ7dtNsTugphxIADwspS+AraAUePCKrSVtPLFj/F88w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/postcss": {
+      "version": "8.5.14",
+      "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.5.14.tgz",
+      "integrity": "sha512-SoSL4+OSEtR99LHFZQiJLkT59C5B1amGO1NzTwj7TT1qCUgUO6hxOvzkOYxD+vMrXBM3XJIKzokoERdqQq/Zmg==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/postcss"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "nanoid": "^3.3.11",
+        "picocolors": "^1.1.1",
+        "source-map-js": "^1.2.1"
+      },
+      "engines": {
+        "node": "^10 || ^12 || >=14"
+      }
+    },
+    "node_modules/pretty-format": {
+      "version": "27.5.1",
+      "resolved": "https://registry.npmjs.org/pretty-format/-/pretty-format-27.5.1.tgz",
+      "integrity": "sha512-Qb1gy5OrP5+zDf2Bvnzdl3jsTf1qXVMazbvCoKhtKqVs4/YK4ozX4gKQJJVyNe+cajNPn0KoC0MC3FUmaHWEmQ==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "dependencies": {
+        "ansi-regex": "^5.0.1",
+        "ansi-styles": "^5.0.0",
+        "react-is": "^17.0.1"
+      },
+      "engines": {
+        "node": "^10.13.0 || ^12.13.0 || ^14.15.0 || >=15.0.0"
+      }
+    },
+    "node_modules/proxy-from-env": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/proxy-from-env/-/proxy-from-env-2.1.0.tgz",
+      "integrity": "sha512-cJ+oHTW1VAEa8cJslgmUZrc+sjRKgAKl3Zyse6+PV38hZe/V6Z14TbCuXcan9F9ghlz4QrFr2c92TNF82UkYHA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/psl": {
+      "version": "1.15.0",
+      "resolved": "https://registry.npmjs.org/psl/-/psl-1.15.0.tgz",
+      "integrity": "sha512-JZd3gMVBAVQkSs6HdNZo9Sdo0LNcQeMNP3CozBJb3JYC/QUYZTnKxP+f8oWRX4rHP5EurWxqAHTSwUCjlNKa1w==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "punycode": "^2.3.1"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/lupomontero"
+      }
+    },
+    "node_modules/punycode": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/punycode/-/punycode-2.3.1.tgz",
+      "integrity": "sha512-vYt7UD1U9Wg6138shLtLOvdAu+8DsC/ilFtEVHcH+wydcSpNE20AfSOduf6MkRFahL5FY7X1oU7nKVZFtfq8Fg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/querystringify": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/querystringify/-/querystringify-2.2.0.tgz",
+      "integrity": "sha512-FIqgj2EUvTa7R50u0rGsyTftzjYmv/a3hO345bZNrqabNqjtgiDMgmo4mkUjd+nzU5oF3dClKqFIPUKybUyqoQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/rc-cascader": {
+      "version": "3.34.0",
+      "resolved": "https://registry.npmjs.org/rc-cascader/-/rc-cascader-3.34.0.tgz",
+      "integrity": "sha512-KpXypcvju9ptjW9FaN2NFcA2QH9E9LHKq169Y0eWtH4e/wHQ5Wh5qZakAgvb8EKZ736WZ3B0zLLOBsrsja5Dag==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.25.7",
+        "classnames": "^2.3.1",
+        "rc-select": "~14.16.2",
+        "rc-tree": "~5.13.0",
+        "rc-util": "^5.43.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-checkbox": {
+      "version": "3.5.0",
+      "resolved": "https://registry.npmjs.org/rc-checkbox/-/rc-checkbox-3.5.0.tgz",
+      "integrity": "sha512-aOAQc3E98HteIIsSqm6Xk2FPKIER6+5vyEFMZfo73TqM+VVAIqOkHoPjgKLqSNtVLWScoaM7vY2ZrGEheI79yg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "^2.3.2",
+        "rc-util": "^5.25.2"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-collapse": {
+      "version": "3.9.0",
+      "resolved": "https://registry.npmjs.org/rc-collapse/-/rc-collapse-3.9.0.tgz",
+      "integrity": "sha512-swDdz4QZ4dFTo4RAUMLL50qP0EY62N2kvmk2We5xYdRwcRn8WcYtuetCJpwpaCbUfUt5+huLpVxhvmnK+PHrkA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "2.x",
+        "rc-motion": "^2.3.4",
+        "rc-util": "^5.27.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-dialog": {
+      "version": "9.6.0",
+      "resolved": "https://registry.npmjs.org/rc-dialog/-/rc-dialog-9.6.0.tgz",
+      "integrity": "sha512-ApoVi9Z8PaCQg6FsUzS8yvBEQy0ZL2PkuvAgrmohPkN3okps5WZ5WQWPc1RNuiOKaAYv8B97ACdsFU5LizzCqg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "@rc-component/portal": "^1.0.0-8",
+        "classnames": "^2.2.6",
+        "rc-motion": "^2.3.0",
+        "rc-util": "^5.21.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-drawer": {
+      "version": "7.3.0",
+      "resolved": "https://registry.npmjs.org/rc-drawer/-/rc-drawer-7.3.0.tgz",
+      "integrity": "sha512-DX6CIgiBWNpJIMGFO8BAISFkxiuKitoizooj4BDyee8/SnBn0zwO2FHrNDpqqepj0E/TFTDpmEBCyFuTgC7MOg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.23.9",
+        "@rc-component/portal": "^1.1.1",
+        "classnames": "^2.2.6",
+        "rc-motion": "^2.6.1",
+        "rc-util": "^5.38.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-dropdown": {
+      "version": "4.2.1",
+      "resolved": "https://registry.npmjs.org/rc-dropdown/-/rc-dropdown-4.2.1.tgz",
+      "integrity": "sha512-YDAlXsPv3I1n42dv1JpdM7wJ+gSUBfeyPK59ZpBD9jQhK9jVuxpjj3NmWQHOBceA1zEPVX84T2wbdb2SD0UjmA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.3",
+        "@rc-component/trigger": "^2.0.0",
+        "classnames": "^2.2.6",
+        "rc-util": "^5.44.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.11.0",
+        "react-dom": ">=16.11.0"
+      }
+    },
+    "node_modules/rc-field-form": {
+      "version": "2.7.1",
+      "resolved": "https://registry.npmjs.org/rc-field-form/-/rc-field-form-2.7.1.tgz",
+      "integrity": "sha512-vKeSifSJ6HoLaAB+B8aq/Qgm8a3dyxROzCtKNCsBQgiverpc4kWDQihoUwzUj+zNWJOykwSY4dNX3QrGwtVb9A==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.0",
+        "@rc-component/async-validator": "^5.0.3",
+        "rc-util": "^5.32.2"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-image": {
+      "version": "7.12.0",
+      "resolved": "https://registry.npmjs.org/rc-image/-/rc-image-7.12.0.tgz",
+      "integrity": "sha512-cZ3HTyyckPnNnUb9/DRqduqzLfrQRyi+CdHjdqgsyDpI3Ln5UX1kXnAhPBSJj9pVRzwRFgqkN7p9b6HBDjmu/Q==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.2",
+        "@rc-component/portal": "^1.0.2",
+        "classnames": "^2.2.6",
+        "rc-dialog": "~9.6.0",
+        "rc-motion": "^2.6.2",
+        "rc-util": "^5.34.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-input": {
+      "version": "1.8.0",
+      "resolved": "https://registry.npmjs.org/rc-input/-/rc-input-1.8.0.tgz",
+      "integrity": "sha512-KXvaTbX+7ha8a/k+eg6SYRVERK0NddX8QX7a7AnRvUa/rEH0CNMlpcBzBkhI0wp2C8C4HlMoYl8TImSN+fuHKA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.1",
+        "classnames": "^2.2.1",
+        "rc-util": "^5.18.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.0.0",
+        "react-dom": ">=16.0.0"
+      }
+    },
+    "node_modules/rc-input-number": {
+      "version": "9.5.0",
+      "resolved": "https://registry.npmjs.org/rc-input-number/-/rc-input-number-9.5.0.tgz",
+      "integrity": "sha512-bKaEvB5tHebUURAEXw35LDcnRZLq3x1k7GxfAqBMzmpHkDGzjAtnUL8y4y5N15rIFIg5IJgwr211jInl3cipag==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "@rc-component/mini-decimal": "^1.0.1",
+        "classnames": "^2.2.5",
+        "rc-input": "~1.8.0",
+        "rc-util": "^5.40.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-mentions": {
+      "version": "2.20.0",
+      "resolved": "https://registry.npmjs.org/rc-mentions/-/rc-mentions-2.20.0.tgz",
+      "integrity": "sha512-w8HCMZEh3f0nR8ZEd466ATqmXFCMGMN5UFCzEUL0bM/nGw/wOS2GgRzKBcm19K++jDyuWCOJOdgcKGXU3fXfbQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.22.5",
+        "@rc-component/trigger": "^2.0.0",
+        "classnames": "^2.2.6",
+        "rc-input": "~1.8.0",
+        "rc-menu": "~9.16.0",
+        "rc-textarea": "~1.10.0",
+        "rc-util": "^5.34.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-menu": {
+      "version": "9.16.1",
+      "resolved": "https://registry.npmjs.org/rc-menu/-/rc-menu-9.16.1.tgz",
+      "integrity": "sha512-ghHx6/6Dvp+fw8CJhDUHFHDJ84hJE3BXNCzSgLdmNiFErWSOaZNsihDAsKq9ByTALo/xkNIwtDFGIl6r+RPXBg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "@rc-component/trigger": "^2.0.0",
+        "classnames": "2.x",
+        "rc-motion": "^2.4.3",
+        "rc-overflow": "^1.3.1",
+        "rc-util": "^5.27.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-motion": {
+      "version": "2.9.5",
+      "resolved": "https://registry.npmjs.org/rc-motion/-/rc-motion-2.9.5.tgz",
+      "integrity": "sha512-w+XTUrfh7ArbYEd2582uDrEhmBHwK1ZENJiSJVb7uRxdE7qJSYjbO2eksRXmndqyKqKoYPc9ClpPh5242mV1vA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.1",
+        "classnames": "^2.2.1",
+        "rc-util": "^5.44.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-notification": {
+      "version": "5.6.4",
+      "resolved": "https://registry.npmjs.org/rc-notification/-/rc-notification-5.6.4.tgz",
+      "integrity": "sha512-KcS4O6B4qzM3KH7lkwOB7ooLPZ4b6J+VMmQgT51VZCeEcmghdeR4IrMcFq0LG+RPdnbe/ArT086tGM8Snimgiw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "2.x",
+        "rc-motion": "^2.9.0",
+        "rc-util": "^5.20.1"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-overflow": {
+      "version": "1.5.0",
+      "resolved": "https://registry.npmjs.org/rc-overflow/-/rc-overflow-1.5.0.tgz",
+      "integrity": "sha512-Lm/v9h0LymeUYJf0x39OveU52InkdRXqnn2aYXfWmo8WdOonIKB2kfau+GF0fWq6jPgtdO9yMqveGcK6aIhJmg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.1",
+        "classnames": "^2.2.1",
+        "rc-resize-observer": "^1.0.0",
+        "rc-util": "^5.37.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-pagination": {
+      "version": "5.1.0",
+      "resolved": "https://registry.npmjs.org/rc-pagination/-/rc-pagination-5.1.0.tgz",
+      "integrity": "sha512-8416Yip/+eclTFdHXLKTxZvn70duYVGTvUUWbckCCZoIl3jagqke3GLsFrMs0bsQBikiYpZLD9206Ej4SOdOXQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "^2.3.2",
+        "rc-util": "^5.38.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-picker": {
+      "version": "4.11.3",
+      "resolved": "https://registry.npmjs.org/rc-picker/-/rc-picker-4.11.3.tgz",
+      "integrity": "sha512-MJ5teb7FlNE0NFHTncxXQ62Y5lytq6sh5nUw0iH8OkHL/TjARSEvSHpr940pWgjGANpjCwyMdvsEV55l5tYNSg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.24.7",
+        "@rc-component/trigger": "^2.0.0",
+        "classnames": "^2.2.1",
+        "rc-overflow": "^1.3.2",
+        "rc-resize-observer": "^1.4.0",
+        "rc-util": "^5.43.0"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "date-fns": ">= 2.x",
+        "dayjs": ">= 1.x",
+        "luxon": ">= 3.x",
+        "moment": ">= 2.x",
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      },
+      "peerDependenciesMeta": {
+        "date-fns": {
+          "optional": true
+        },
+        "dayjs": {
+          "optional": true
+        },
+        "luxon": {
+          "optional": true
+        },
+        "moment": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/rc-progress": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/rc-progress/-/rc-progress-4.0.0.tgz",
+      "integrity": "sha512-oofVMMafOCokIUIBnZLNcOZFsABaUw8PPrf1/y0ZBvKZNpOiu5h4AO9vv11Sw0p4Hb3D0yGWuEattcQGtNJ/aw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "^2.2.6",
+        "rc-util": "^5.16.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-rate": {
+      "version": "2.13.1",
+      "resolved": "https://registry.npmjs.org/rc-rate/-/rc-rate-2.13.1.tgz",
+      "integrity": "sha512-QUhQ9ivQ8Gy7mtMZPAjLbxBt5y9GRp65VcUyGUMF3N3fhiftivPHdpuDIaWIMOTEprAjZPC08bls1dQB+I1F2Q==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "^2.2.5",
+        "rc-util": "^5.0.1"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-resize-observer": {
+      "version": "1.4.3",
+      "resolved": "https://registry.npmjs.org/rc-resize-observer/-/rc-resize-observer-1.4.3.tgz",
+      "integrity": "sha512-YZLjUbyIWox8E9i9C3Tm7ia+W7euPItNWSPX5sCcQTYbnwDb5uNpnLHQCG1f22oZWUhLw4Mv2tFmeWe68CDQRQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.20.7",
+        "classnames": "^2.2.1",
+        "rc-util": "^5.44.1",
+        "resize-observer-polyfill": "^1.5.1"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-segmented": {
+      "version": "2.7.1",
+      "resolved": "https://registry.npmjs.org/rc-segmented/-/rc-segmented-2.7.1.tgz",
+      "integrity": "sha512-izj1Nw/Dw2Vb7EVr+D/E9lUTkBe+kKC+SAFSU9zqr7WV2W5Ktaa9Gc7cB2jTqgk8GROJayltaec+DBlYKc6d+g==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.1",
+        "classnames": "^2.2.1",
+        "rc-motion": "^2.4.4",
+        "rc-util": "^5.17.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.0.0",
+        "react-dom": ">=16.0.0"
+      }
+    },
+    "node_modules/rc-select": {
+      "version": "14.16.8",
+      "resolved": "https://registry.npmjs.org/rc-select/-/rc-select-14.16.8.tgz",
+      "integrity": "sha512-NOV5BZa1wZrsdkKaiK7LHRuo5ZjZYMDxPP6/1+09+FB4KoNi8jcG1ZqLE3AVCxEsYMBe65OBx71wFoHRTP3LRg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "@rc-component/trigger": "^2.1.1",
+        "classnames": "2.x",
+        "rc-motion": "^2.0.1",
+        "rc-overflow": "^1.3.1",
+        "rc-util": "^5.16.1",
+        "rc-virtual-list": "^3.5.2"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": "*",
+        "react-dom": "*"
+      }
+    },
+    "node_modules/rc-slider": {
+      "version": "11.1.9",
+      "resolved": "https://registry.npmjs.org/rc-slider/-/rc-slider-11.1.9.tgz",
+      "integrity": "sha512-h8IknhzSh3FEM9u8ivkskh+Ef4Yo4JRIY2nj7MrH6GQmrwV6mcpJf5/4KgH5JaVI1H3E52yCdpOlVyGZIeph5A==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "^2.2.5",
+        "rc-util": "^5.36.0"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-steps": {
+      "version": "6.0.1",
+      "resolved": "https://registry.npmjs.org/rc-steps/-/rc-steps-6.0.1.tgz",
+      "integrity": "sha512-lKHL+Sny0SeHkQKKDJlAjV5oZ8DwCdS2hFhAkIjuQt1/pB81M0cA0ErVFdHq9+jmPmFw1vJB2F5NBzFXLJxV+g==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.16.7",
+        "classnames": "^2.2.3",
+        "rc-util": "^5.16.1"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-switch": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/rc-switch/-/rc-switch-4.1.0.tgz",
+      "integrity": "sha512-TI8ufP2Az9oEbvyCeVE4+90PDSljGyuwix3fV58p7HV2o4wBnVToEyomJRVyTaZeqNPAp+vqeo4Wnj5u0ZZQBg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.21.0",
+        "classnames": "^2.2.1",
+        "rc-util": "^5.30.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-table": {
+      "version": "7.54.0",
+      "resolved": "https://registry.npmjs.org/rc-table/-/rc-table-7.54.0.tgz",
+      "integrity": "sha512-/wDTkki6wBTjwylwAGjpLKYklKo9YgjZwAU77+7ME5mBoS32Q4nAwoqhA2lSge6fobLW3Tap6uc5xfwaL2p0Sw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "@rc-component/context": "^1.4.0",
+        "classnames": "^2.2.5",
+        "rc-resize-observer": "^1.1.0",
+        "rc-util": "^5.44.3",
+        "rc-virtual-list": "^3.14.2"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-tabs": {
+      "version": "15.7.0",
+      "resolved": "https://registry.npmjs.org/rc-tabs/-/rc-tabs-15.7.0.tgz",
+      "integrity": "sha512-ZepiE+6fmozYdWf/9gVp7k56PKHB1YYoDsKeQA1CBlJ/POIhjkcYiv0AGP0w2Jhzftd3AVvZP/K+V+Lpi2ankA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.2",
+        "classnames": "2.x",
+        "rc-dropdown": "~4.2.0",
+        "rc-menu": "~9.16.0",
+        "rc-motion": "^2.6.2",
+        "rc-resize-observer": "^1.0.0",
+        "rc-util": "^5.34.1"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-textarea": {
+      "version": "1.10.2",
+      "resolved": "https://registry.npmjs.org/rc-textarea/-/rc-textarea-1.10.2.tgz",
+      "integrity": "sha512-HfaeXiaSlpiSp0I/pvWpecFEHpVysZ9tpDLNkxQbMvMz6gsr7aVZ7FpWP9kt4t7DB+jJXesYS0us1uPZnlRnwQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "^2.2.1",
+        "rc-input": "~1.8.0",
+        "rc-resize-observer": "^1.0.0",
+        "rc-util": "^5.27.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-tooltip": {
+      "version": "6.4.0",
+      "resolved": "https://registry.npmjs.org/rc-tooltip/-/rc-tooltip-6.4.0.tgz",
+      "integrity": "sha512-kqyivim5cp8I5RkHmpsp1Nn/Wk+1oeloMv9c7LXNgDxUpGm+RbXJGL+OPvDlcRnx9DBeOe4wyOIl4OKUERyH1g==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.11.2",
+        "@rc-component/trigger": "^2.0.0",
+        "classnames": "^2.3.1",
+        "rc-util": "^5.44.3"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-tree": {
+      "version": "5.13.1",
+      "resolved": "https://registry.npmjs.org/rc-tree/-/rc-tree-5.13.1.tgz",
+      "integrity": "sha512-FNhIefhftobCdUJshO7M8uZTA9F4OPGVXqGfZkkD/5soDeOhwO06T/aKTrg0WD8gRg/pyfq+ql3aMymLHCTC4A==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.10.1",
+        "classnames": "2.x",
+        "rc-motion": "^2.0.1",
+        "rc-util": "^5.16.1",
+        "rc-virtual-list": "^3.5.1"
+      },
+      "engines": {
+        "node": ">=10.x"
+      },
+      "peerDependencies": {
+        "react": "*",
+        "react-dom": "*"
+      }
+    },
+    "node_modules/rc-tree-select": {
+      "version": "5.27.0",
+      "resolved": "https://registry.npmjs.org/rc-tree-select/-/rc-tree-select-5.27.0.tgz",
+      "integrity": "sha512-2qTBTzwIT7LRI1o7zLyrCzmo5tQanmyGbSaGTIf7sYimCklAToVVfpMC6OAldSKolcnjorBYPNSKQqJmN3TCww==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.25.7",
+        "classnames": "2.x",
+        "rc-select": "~14.16.2",
+        "rc-tree": "~5.13.0",
+        "rc-util": "^5.43.0"
+      },
+      "peerDependencies": {
+        "react": "*",
+        "react-dom": "*"
+      }
+    },
+    "node_modules/rc-upload": {
+      "version": "4.11.0",
+      "resolved": "https://registry.npmjs.org/rc-upload/-/rc-upload-4.11.0.tgz",
+      "integrity": "sha512-ZUyT//2JAehfHzjWowqROcwYJKnZkIUGWaTE/VogVrepSl7AFNbQf4+zGfX4zl9Vrj/Jm8scLO0R6UlPDKK4wA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.3",
+        "classnames": "^2.2.5",
+        "rc-util": "^5.2.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-util": {
+      "version": "5.44.4",
+      "resolved": "https://registry.npmjs.org/rc-util/-/rc-util-5.44.4.tgz",
+      "integrity": "sha512-resueRJzmHG9Q6rI/DfK6Kdv9/Lfls05vzMs1Sk3M2P+3cJa+MakaZyWY8IPfehVuhPJFKrIY1IK4GqbiaiY5w==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.18.3",
+        "react-is": "^18.2.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/rc-util/node_modules/react-is": {
+      "version": "18.3.1",
+      "resolved": "https://registry.npmjs.org/react-is/-/react-is-18.3.1.tgz",
+      "integrity": "sha512-/LLMVyas0ljjAtoYiPqYiL8VWXzUUdThrmU5+n20DZv+a+ClRoevUzw5JxU+Ieh5/c87ytoTBV9G1FiKfNJdmg==",
+      "license": "MIT"
+    },
+    "node_modules/rc-virtual-list": {
+      "version": "3.19.2",
+      "resolved": "https://registry.npmjs.org/rc-virtual-list/-/rc-virtual-list-3.19.2.tgz",
+      "integrity": "sha512-Ys6NcjwGkuwkeaWBDqfI3xWuZ7rDiQXlH1o2zLfFzATfEgXcqpk8CkgMfbJD81McqjcJVez25a3kPxCR807evA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.20.0",
+        "classnames": "^2.2.6",
+        "rc-resize-observer": "^1.0.0",
+        "rc-util": "^5.36.0"
+      },
+      "engines": {
+        "node": ">=8.x"
+      },
+      "peerDependencies": {
+        "react": ">=16.9.0",
+        "react-dom": ">=16.9.0"
+      }
+    },
+    "node_modules/react": {
+      "version": "18.3.1",
+      "resolved": "https://registry.npmjs.org/react/-/react-18.3.1.tgz",
+      "integrity": "sha512-wS+hAgJShR0KhEvPJArfuPVN1+Hz1t0Y6n5jLrGQbkb4urgPE/0Rve+1kMB1v/oWgHgm4WIcV+i7F2pTVj+2iQ==",
+      "license": "MIT",
+      "dependencies": {
+        "loose-envify": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/react-dom": {
+      "version": "18.3.1",
+      "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-18.3.1.tgz",
+      "integrity": "sha512-5m4nQKp+rZRb09LNH59GM4BxTh9251/ylbKIbpe7TpGxfJ+9kv6BLkLBXIjjspbgbnIBNqlI23tRnTWT0snUIw==",
+      "license": "MIT",
+      "dependencies": {
+        "loose-envify": "^1.1.0",
+        "scheduler": "^0.23.2"
+      },
+      "peerDependencies": {
+        "react": "^18.3.1"
+      }
+    },
+    "node_modules/react-is": {
+      "version": "17.0.2",
+      "resolved": "https://registry.npmjs.org/react-is/-/react-is-17.0.2.tgz",
+      "integrity": "sha512-w2GsyukL62IJnlaff/nRegPQR94C/XXamvMWmSHRJ4y7Ts/4ocGRmTHvOs8PSE6pB3dWOrD/nueuU5sduBsQ4w==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/react-redux": {
+      "version": "9.2.0",
+      "resolved": "https://registry.npmjs.org/react-redux/-/react-redux-9.2.0.tgz",
+      "integrity": "sha512-ROY9fvHhwOD9ySfrF0wmvu//bKCQ6AeZZq1nJNtbDC+kk5DuSuNX/n6YWYF/SYy7bSba4D4FSz8DJeKY/S/r+g==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/use-sync-external-store": "^0.0.6",
+        "use-sync-external-store": "^1.4.0"
+      },
+      "peerDependencies": {
+        "@types/react": "^18.2.25 || ^19",
+        "react": "^18.0 || ^19",
+        "redux": "^5.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        },
+        "redux": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/react-refresh": {
+      "version": "0.17.0",
+      "resolved": "https://registry.npmjs.org/react-refresh/-/react-refresh-0.17.0.tgz",
+      "integrity": "sha512-z6F7K9bV85EfseRCp2bzrpyQ0Gkw1uLoCel9XBVWPg/TjRj94SkJzUTGfOa4bs7iJvBWtQG0Wq7wnI0syw3EBQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/react-router": {
+      "version": "6.30.3",
+      "resolved": "https://registry.npmjs.org/react-router/-/react-router-6.30.3.tgz",
+      "integrity": "sha512-XRnlbKMTmktBkjCLE8/XcZFlnHvr2Ltdr1eJX4idL55/9BbORzyZEaIkBFDhFGCEWBBItsVrDxwx3gnisMitdw==",
+      "license": "MIT",
+      "dependencies": {
+        "@remix-run/router": "1.23.2"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.8"
+      }
+    },
+    "node_modules/react-router-dom": {
+      "version": "6.30.3",
+      "resolved": "https://registry.npmjs.org/react-router-dom/-/react-router-dom-6.30.3.tgz",
+      "integrity": "sha512-pxPcv1AczD4vso7G4Z3TKcvlxK7g7TNt3/FNGMhfqyntocvYKj+GCatfigGDjbLozC4baguJ0ReCigoDJXb0ag==",
+      "license": "MIT",
+      "dependencies": {
+        "@remix-run/router": "1.23.2",
+        "react-router": "6.30.3"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      },
+      "peerDependencies": {
+        "react": ">=16.8",
+        "react-dom": ">=16.8"
+      }
+    },
+    "node_modules/redent": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/redent/-/redent-3.0.0.tgz",
+      "integrity": "sha512-6tDA8g98We0zd0GvVeMT9arEOnTw9qM03L9cJXaCjrip1OO764RDBLBfrB4cwzNGDj5OA5ioymC9GkizgWJDUg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "indent-string": "^4.0.0",
+        "strip-indent": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/redux": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/redux/-/redux-5.0.1.tgz",
+      "integrity": "sha512-M9/ELqF6fy8FwmkpnF0S3YKOqMyoWJ4+CS5Efg2ct3oY9daQvd/Pc71FpGZsVsbl3Cpb+IIcjBDUnnyBdQbq4w==",
+      "license": "MIT"
+    },
+    "node_modules/redux-thunk": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/redux-thunk/-/redux-thunk-3.1.0.tgz",
+      "integrity": "sha512-NW2r5T6ksUKXCabzhL9z+h206HQw/NJkcLm1GPImRQ8IzfXwRGqjVhKJGauHirT0DAuyy6hjdnMZaRoAcy0Klw==",
+      "license": "MIT",
+      "peerDependencies": {
+        "redux": "^5.0.0"
+      }
+    },
+    "node_modules/requires-port": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/requires-port/-/requires-port-1.0.0.tgz",
+      "integrity": "sha512-KigOCHcocU3XODJxsu8i/j8T9tzT4adHiecwORRQ0ZZFcp7ahwXuRU1m+yuO90C5ZUyGeGfocHDI14M3L3yDAQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/reselect": {
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/reselect/-/reselect-5.1.1.tgz",
+      "integrity": "sha512-K/BG6eIky/SBpzfHZv/dd+9JBFiS4SWV7FIujVyJRux6e45+73RaUHXLmIR1f7WOMaQ0U1km6qwklRQxpJJY0w==",
+      "license": "MIT"
+    },
+    "node_modules/resize-observer-polyfill": {
+      "version": "1.5.1",
+      "resolved": "https://registry.npmjs.org/resize-observer-polyfill/-/resize-observer-polyfill-1.5.1.tgz",
+      "integrity": "sha512-LwZrotdHOo12nQuZlHEmtuXdqGoOD0OhaxopaNFxWzInpEgaLWoVuAMbTzixuosCx2nEG58ngzW3vxdWoxIgdg==",
+      "license": "MIT"
+    },
+    "node_modules/rollup": {
+      "version": "4.60.3",
+      "resolved": "https://registry.npmjs.org/rollup/-/rollup-4.60.3.tgz",
+      "integrity": "sha512-pAQK9HalE84QSm4Po3EmWIZPd3FnjkShVkiMlz1iligWYkWQ7wHYd1PF/T7QZ5TVSD6uSTon5gBVMSM4JfBV+A==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/estree": "1.0.8"
+      },
+      "bin": {
+        "rollup": "dist/bin/rollup"
+      },
+      "engines": {
+        "node": ">=18.0.0",
+        "npm": ">=8.0.0"
+      },
+      "optionalDependencies": {
+        "@rollup/rollup-android-arm-eabi": "4.60.3",
+        "@rollup/rollup-android-arm64": "4.60.3",
+        "@rollup/rollup-darwin-arm64": "4.60.3",
+        "@rollup/rollup-darwin-x64": "4.60.3",
+        "@rollup/rollup-freebsd-arm64": "4.60.3",
+        "@rollup/rollup-freebsd-x64": "4.60.3",
+        "@rollup/rollup-linux-arm-gnueabihf": "4.60.3",
+        "@rollup/rollup-linux-arm-musleabihf": "4.60.3",
+        "@rollup/rollup-linux-arm64-gnu": "4.60.3",
+        "@rollup/rollup-linux-arm64-musl": "4.60.3",
+        "@rollup/rollup-linux-loong64-gnu": "4.60.3",
+        "@rollup/rollup-linux-loong64-musl": "4.60.3",
+        "@rollup/rollup-linux-ppc64-gnu": "4.60.3",
+        "@rollup/rollup-linux-ppc64-musl": "4.60.3",
+        "@rollup/rollup-linux-riscv64-gnu": "4.60.3",
+        "@rollup/rollup-linux-riscv64-musl": "4.60.3",
+        "@rollup/rollup-linux-s390x-gnu": "4.60.3",
+        "@rollup/rollup-linux-x64-gnu": "4.60.3",
+        "@rollup/rollup-linux-x64-musl": "4.60.3",
+        "@rollup/rollup-openbsd-x64": "4.60.3",
+        "@rollup/rollup-openharmony-arm64": "4.60.3",
+        "@rollup/rollup-win32-arm64-msvc": "4.60.3",
+        "@rollup/rollup-win32-ia32-msvc": "4.60.3",
+        "@rollup/rollup-win32-x64-gnu": "4.60.3",
+        "@rollup/rollup-win32-x64-msvc": "4.60.3",
+        "fsevents": "~2.3.2"
+      }
+    },
+    "node_modules/rrweb-cssom": {
+      "version": "0.7.1",
+      "resolved": "https://registry.npmjs.org/rrweb-cssom/-/rrweb-cssom-0.7.1.tgz",
+      "integrity": "sha512-TrEMa7JGdVm0UThDJSx7ddw5nVm3UJS9o9CCIZ72B1vSyEZoziDqBYP3XIoi/12lKrJR8rE3jeFHMok2F/Mnsg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/safer-buffer": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/safer-buffer/-/safer-buffer-2.1.2.tgz",
+      "integrity": "sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/saxes": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/saxes/-/saxes-6.0.0.tgz",
+      "integrity": "sha512-xAg7SOnEhrm5zI3puOOKyy1OMcMlIJZYNJY7xLBwSze0UjhPLnWfj2GF2EpT0jmzaJKIWKHLsaSSajf35bcYnA==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "xmlchars": "^2.2.0"
+      },
+      "engines": {
+        "node": ">=v12.22.7"
+      }
+    },
+    "node_modules/scheduler": {
+      "version": "0.23.2",
+      "resolved": "https://registry.npmjs.org/scheduler/-/scheduler-0.23.2.tgz",
+      "integrity": "sha512-UOShsPwz7NrMUqhR6t0hWjFduvOzbtv7toDH1/hIrfRNIDBnnBWd0CwJTGvTpngVlmwGCdP9/Zl/tVrDqcuYzQ==",
+      "license": "MIT",
+      "dependencies": {
+        "loose-envify": "^1.1.0"
+      }
+    },
+    "node_modules/scroll-into-view-if-needed": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/scroll-into-view-if-needed/-/scroll-into-view-if-needed-3.1.0.tgz",
+      "integrity": "sha512-49oNpRjWRvnU8NyGVmUaYG4jtTkNonFZI86MmGRDqBphEK2EXT9gdEUoQPZhuBM8yWHxCWbobltqYO5M4XrUvQ==",
+      "license": "MIT",
+      "dependencies": {
+        "compute-scroll-into-view": "^3.0.2"
+      }
+    },
+    "node_modules/semver": {
+      "version": "6.3.1",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "dev": true,
+      "license": "ISC",
+      "bin": {
+        "semver": "bin/semver.js"
+      }
+    },
+    "node_modules/shebang-command": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/shebang-command/-/shebang-command-2.0.0.tgz",
+      "integrity": "sha512-kHxr2zZpYtdmrN1qDjrrX/Z1rR1kG8Dx+gkpK1G4eXmvXswmcE1hTWBWYUzlraYw1/yZp6YuDY77YtvbN0dmDA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "shebang-regex": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/shebang-regex": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/shebang-regex/-/shebang-regex-3.0.0.tgz",
+      "integrity": "sha512-7++dFhtcx3353uBaq8DDR4NuxBetBzC7ZQOhmTQInHEd6bSrXdiEyzCvG07Z44UYdLShWUyXt5M/yhz8ekcb1A==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/siginfo": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/siginfo/-/siginfo-2.0.0.tgz",
+      "integrity": "sha512-ybx0WO1/8bSBLEWXZvEd7gMW3Sn3JFlW3TvX1nREbDLRNQNaeNN8WK0meBwPdAaOI7TtRRRJn/Es1zhrrCHu7g==",
+      "dev": true,
+      "license": "ISC"
+    },
+    "node_modules/signal-exit": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/signal-exit/-/signal-exit-4.1.0.tgz",
+      "integrity": "sha512-bzyZ1e88w9O1iNJbKnOlvYTrWPDl46O1bG0D3XInv+9tkPrxrN8jUUTiFlDkkmKWgn1M6CfIA13SuGqOa9Korw==",
+      "dev": true,
+      "license": "ISC",
+      "engines": {
+        "node": ">=14"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/source-map-js": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/source-map-js/-/source-map-js-1.2.1.tgz",
+      "integrity": "sha512-UXWMKhLOwVKb728IUtQPXxfYU+usdybtUrK/8uGE8CQMvrhOpwvzDBwj0QhSL7MQc7vIsISBG8VQ8+IDQxpfQA==",
+      "dev": true,
+      "license": "BSD-3-Clause",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/stackback": {
+      "version": "0.0.2",
+      "resolved": "https://registry.npmjs.org/stackback/-/stackback-0.0.2.tgz",
+      "integrity": "sha512-1XMJE5fQo1jGH6Y/7ebnwPOBEkIEnT4QF32d5R1+VXdXveM0IBMJt8zfaxX1P3QhVwrYe+576+jkANtSS2mBbw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/std-env": {
+      "version": "3.10.0",
+      "resolved": "https://registry.npmjs.org/std-env/-/std-env-3.10.0.tgz",
+      "integrity": "sha512-5GS12FdOZNliM5mAOxFRg7Ir0pWz8MdpYm6AY6VPkGpbA7ZzmbzNcBJQ0GPvvyWgcY7QAhCgf9Uy89I03faLkg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/string-convert": {
+      "version": "0.2.1",
+      "resolved": "https://registry.npmjs.org/string-convert/-/string-convert-0.2.1.tgz",
+      "integrity": "sha512-u/1tdPl4yQnPBjnVrmdLo9gtuLvELKsAoRapekWggdiQNvvvum+jYF329d84NAa660KQw7pB2n36KrIKVoXa3A==",
+      "license": "MIT"
+    },
+    "node_modules/strip-final-newline": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/strip-final-newline/-/strip-final-newline-3.0.0.tgz",
+      "integrity": "sha512-dOESqjYr96iWYylGObzd39EuNTa5VJxyvVAEm5Jnh7KGo75V43Hk1odPQkNDyXNmUR6k+gEiDVXnjB8HJ3crXw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/strip-indent": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/strip-indent/-/strip-indent-3.0.0.tgz",
+      "integrity": "sha512-laJTa3Jb+VQpaC6DseHhF7dXVqHTfJPCRDaEbid/drOhgitgYku/letMUqOXFoWV0zIIUbjpdH2t+tYj4bQMRQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "min-indent": "^1.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/strip-literal": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/strip-literal/-/strip-literal-2.1.1.tgz",
+      "integrity": "sha512-631UJ6O00eNGfMiWG78ck80dfBab8X6IVFB51jZK5Icd7XAs60Z5y7QdSd/wGIklnWvRbUNloVzhOKKmutxQ6Q==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "js-tokens": "^9.0.1"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/antfu"
+      }
+    },
+    "node_modules/strip-literal/node_modules/js-tokens": {
+      "version": "9.0.1",
+      "resolved": "https://registry.npmjs.org/js-tokens/-/js-tokens-9.0.1.tgz",
+      "integrity": "sha512-mxa9E9ITFOt0ban3j6L5MpjwegGz6lBQmM1IJkWeBZGcMxto50+eWdjC/52xDbS2vy0k7vIMK0Fe2wfL9OQSpQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/stylis": {
+      "version": "4.4.0",
+      "resolved": "https://registry.npmjs.org/stylis/-/stylis-4.4.0.tgz",
+      "integrity": "sha512-5Z9ZpRzfuH6l/UAvCPAPUo3665Nk2wLaZU3x+TLHKVzIz33+sbJqbtrYoC3KD4/uVOr2Zp+L0LySezP9OHV9yA==",
+      "license": "MIT"
+    },
+    "node_modules/symbol-tree": {
+      "version": "3.2.4",
+      "resolved": "https://registry.npmjs.org/symbol-tree/-/symbol-tree-3.2.4.tgz",
+      "integrity": "sha512-9QNk5KwDF+Bvz+PyObkmSYjI5ksVUYtjW7AU22r2NKcfLJcXp96hkDWU3+XndOsUb+AQ9QhfzfCT2O+CNWT5Tw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/throttle-debounce": {
+      "version": "5.0.2",
+      "resolved": "https://registry.npmjs.org/throttle-debounce/-/throttle-debounce-5.0.2.tgz",
+      "integrity": "sha512-B71/4oyj61iNH0KeCamLuE2rmKuTO5byTOSVwECM5FA7TiAiAW+UqTKZ9ERueC4qvgSttUhdmq1mXC3kJqGX7A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=12.22"
+      }
+    },
+    "node_modules/tinybench": {
+      "version": "2.9.0",
+      "resolved": "https://registry.npmjs.org/tinybench/-/tinybench-2.9.0.tgz",
+      "integrity": "sha512-0+DUvqWMValLmha6lr4kD8iAMK1HzV0/aKnCtWb9v9641TnP/MFb7Pc2bxoxQjTXAErryXVgUOfv2YqNllqGeg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/tinypool": {
+      "version": "0.8.4",
+      "resolved": "https://registry.npmjs.org/tinypool/-/tinypool-0.8.4.tgz",
+      "integrity": "sha512-i11VH5gS6IFeLY3gMBQ00/MmLncVP7JLXOw1vlgkytLmJK7QnEr7NXf0LBdxfmNPAeyetukOk0bOYrJrFGjYJQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/tinyspy": {
+      "version": "2.2.1",
+      "resolved": "https://registry.npmjs.org/tinyspy/-/tinyspy-2.2.1.tgz",
+      "integrity": "sha512-KYad6Vy5VDWV4GH3fjpseMQ/XU2BhIYP7Vzd0LG44qRWm/Yt2WCOTicFdvmgo6gWaqooMQCawTtILVQJupKu7A==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/toggle-selection": {
+      "version": "1.0.6",
+      "resolved": "https://registry.npmjs.org/toggle-selection/-/toggle-selection-1.0.6.tgz",
+      "integrity": "sha512-BiZS+C1OS8g/q2RRbJmy59xpyghNBqrr6k5L/uKBGRsTfxmu3ffiRnd8mlGPUVayg8pvfi5urfnu8TU7DVOkLQ==",
+      "license": "MIT"
+    },
+    "node_modules/tough-cookie": {
+      "version": "4.1.4",
+      "resolved": "https://registry.npmjs.org/tough-cookie/-/tough-cookie-4.1.4.tgz",
+      "integrity": "sha512-Loo5UUvLD9ScZ6jh8beX1T6sO1w2/MpCRpEP7V280GKMVUQ0Jzar2U3UJPsrdbziLEMMhu3Ujnq//rhiFuIeag==",
+      "dev": true,
+      "license": "BSD-3-Clause",
+      "dependencies": {
+        "psl": "^1.1.33",
+        "punycode": "^2.1.1",
+        "universalify": "^0.2.0",
+        "url-parse": "^1.5.3"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/tr46": {
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/tr46/-/tr46-5.1.1.tgz",
+      "integrity": "sha512-hdF5ZgjTqgAntKkklYw0R03MG2x/bSzTtkxmIRw/sTNV8YXsCJ1tfLAX23lhxhHJlEf3CRCOCGGWw3vI3GaSPw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "punycode": "^2.3.1"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/type-detect": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/type-detect/-/type-detect-4.1.0.tgz",
+      "integrity": "sha512-Acylog8/luQ8L7il+geoSxhEkazvkslg7PSNKOX59mbB9cOveP5aq9h74Y7YU8yDpJwetzQQrfIwtf4Wp4LKcw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/typescript": {
+      "version": "5.9.3",
+      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.9.3.tgz",
+      "integrity": "sha512-jl1vZzPDinLr9eUt3J/t7V6FgNEw9QjvBPdysz9KfQDD41fQrC2Y4vKQdiaUpFT4bXlb1RHhLpp8wtm6M5TgSw==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "bin": {
+        "tsc": "bin/tsc",
+        "tsserver": "bin/tsserver"
+      },
+      "engines": {
+        "node": ">=14.17"
+      }
+    },
+    "node_modules/ufo": {
+      "version": "1.6.4",
+      "resolved": "https://registry.npmjs.org/ufo/-/ufo-1.6.4.tgz",
+      "integrity": "sha512-JFNbkD1Svwe0KvGi8GOeLcP4kAWQ609twvCdcHxq1oSL8svv39ZuSvajcD8B+5D0eL4+s1Is2D/O6KN3qcTeRA==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/universalify": {
+      "version": "0.2.0",
+      "resolved": "https://registry.npmjs.org/universalify/-/universalify-0.2.0.tgz",
+      "integrity": "sha512-CJ1QgKmNg3CwvAv/kOFmtnEN05f0D/cn9QntgNOQlQF9dgvVTHj3t+8JPdjqawCHk7V/KA+fbUqzZ9XWhcqPUg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">= 4.0.0"
+      }
+    },
+    "node_modules/update-browserslist-db": {
+      "version": "1.2.3",
+      "resolved": "https://registry.npmjs.org/update-browserslist-db/-/update-browserslist-db-1.2.3.tgz",
+      "integrity": "sha512-Js0m9cx+qOgDxo0eMiFGEueWztz+d4+M3rGlmKPT+T4IS/jP4ylw3Nwpu6cpTTP8R1MAC1kF4VbdLt3ARf209w==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/browserslist"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "escalade": "^3.2.0",
+        "picocolors": "^1.1.1"
+      },
+      "bin": {
+        "update-browserslist-db": "cli.js"
+      },
+      "peerDependencies": {
+        "browserslist": ">= 4.21.0"
+      }
+    },
+    "node_modules/url-parse": {
+      "version": "1.5.10",
+      "resolved": "https://registry.npmjs.org/url-parse/-/url-parse-1.5.10.tgz",
+      "integrity": "sha512-WypcfiRhfeUP9vvF0j6rw0J3hrWrw6iZv3+22h6iRMJ/8z1Tj6XfLP4DsUix5MhMPnXpiHDoKyoZ/bdCkwBCiQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "querystringify": "^2.1.1",
+        "requires-port": "^1.0.0"
+      }
+    },
+    "node_modules/use-sync-external-store": {
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/use-sync-external-store/-/use-sync-external-store-1.6.0.tgz",
+      "integrity": "sha512-Pp6GSwGP/NrPIrxVFAIkOQeyw8lFenOHijQWkUTrDvrF4ALqylP2C/KCkeS9dpUM3KvYRQhna5vt7IL95+ZQ9w==",
+      "license": "MIT",
+      "peerDependencies": {
+        "react": "^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0"
+      }
+    },
+    "node_modules/vite": {
+      "version": "5.4.21",
+      "resolved": "https://registry.npmjs.org/vite/-/vite-5.4.21.tgz",
+      "integrity": "sha512-o5a9xKjbtuhY6Bi5S3+HvbRERmouabWbyUcpXXUA1u+GNUKoROi9byOJ8M0nHbHYHkYICiMlqxkg1KkYmm25Sw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "esbuild": "^0.21.3",
+        "postcss": "^8.4.43",
+        "rollup": "^4.20.0"
+      },
+      "bin": {
+        "vite": "bin/vite.js"
+      },
+      "engines": {
+        "node": "^18.0.0 || >=20.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/vitejs/vite?sponsor=1"
+      },
+      "optionalDependencies": {
+        "fsevents": "~2.3.3"
+      },
+      "peerDependencies": {
+        "@types/node": "^18.0.0 || >=20.0.0",
+        "less": "*",
+        "lightningcss": "^1.21.0",
+        "sass": "*",
+        "sass-embedded": "*",
+        "stylus": "*",
+        "sugarss": "*",
+        "terser": "^5.4.0"
+      },
+      "peerDependenciesMeta": {
+        "@types/node": {
+          "optional": true
+        },
+        "less": {
+          "optional": true
+        },
+        "lightningcss": {
+          "optional": true
+        },
+        "sass": {
+          "optional": true
+        },
+        "sass-embedded": {
+          "optional": true
+        },
+        "stylus": {
+          "optional": true
+        },
+        "sugarss": {
+          "optional": true
+        },
+        "terser": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/vite-node": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/vite-node/-/vite-node-1.6.1.tgz",
+      "integrity": "sha512-YAXkfvGtuTzwWbDSACdJSg4A4DZiAqckWe90Zapc/sEX3XvHcw1NdurM/6od8J207tSDqNbSsgdCacBgvJKFuA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "cac": "^6.7.14",
+        "debug": "^4.3.4",
+        "pathe": "^1.1.1",
+        "picocolors": "^1.0.0",
+        "vite": "^5.0.0"
+      },
+      "bin": {
+        "vite-node": "vite-node.mjs"
+      },
+      "engines": {
+        "node": "^18.0.0 || >=20.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/vitest": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/vitest/-/vitest-1.6.1.tgz",
+      "integrity": "sha512-Ljb1cnSJSivGN0LqXd/zmDbWEM0RNNg2t1QW/XUhYl/qPqyu7CsqeWtqQXHVaJsecLPuDoak2oJcZN2QoRIOag==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/expect": "1.6.1",
+        "@vitest/runner": "1.6.1",
+        "@vitest/snapshot": "1.6.1",
+        "@vitest/spy": "1.6.1",
+        "@vitest/utils": "1.6.1",
+        "acorn-walk": "^8.3.2",
+        "chai": "^4.3.10",
+        "debug": "^4.3.4",
+        "execa": "^8.0.1",
+        "local-pkg": "^0.5.0",
+        "magic-string": "^0.30.5",
+        "pathe": "^1.1.1",
+        "picocolors": "^1.0.0",
+        "std-env": "^3.5.0",
+        "strip-literal": "^2.0.0",
+        "tinybench": "^2.5.1",
+        "tinypool": "^0.8.3",
+        "vite": "^5.0.0",
+        "vite-node": "1.6.1",
+        "why-is-node-running": "^2.2.2"
+      },
+      "bin": {
+        "vitest": "vitest.mjs"
+      },
+      "engines": {
+        "node": "^18.0.0 || >=20.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      },
+      "peerDependencies": {
+        "@edge-runtime/vm": "*",
+        "@types/node": "^18.0.0 || >=20.0.0",
+        "@vitest/browser": "1.6.1",
+        "@vitest/ui": "1.6.1",
+        "happy-dom": "*",
+        "jsdom": "*"
+      },
+      "peerDependenciesMeta": {
+        "@edge-runtime/vm": {
+          "optional": true
+        },
+        "@types/node": {
+          "optional": true
+        },
+        "@vitest/browser": {
+          "optional": true
+        },
+        "@vitest/ui": {
+          "optional": true
+        },
+        "happy-dom": {
+          "optional": true
+        },
+        "jsdom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/w3c-xmlserializer": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/w3c-xmlserializer/-/w3c-xmlserializer-5.0.0.tgz",
+      "integrity": "sha512-o8qghlI8NZHU1lLPrpi2+Uq7abh4GGPpYANlalzWxyWteJOCsr/P+oPBA49TOLu5FTZO4d3F9MnWJfiMo4BkmA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "xml-name-validator": "^5.0.0"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/webidl-conversions": {
+      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/webidl-conversions/-/webidl-conversions-7.0.0.tgz",
+      "integrity": "sha512-VwddBukDzu71offAQR975unBIGqfKZpM+8ZX6ySk8nYhVoo5CYaZyzt3YBvYtRtO+aoGlqxPg/B87NGVZ/fu6g==",
+      "dev": true,
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/whatwg-encoding": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/whatwg-encoding/-/whatwg-encoding-3.1.1.tgz",
+      "integrity": "sha512-6qN4hJdMwfYBtE3YBTTHhoeuUrDBPZmbQaxWAqSALV/MeEnR5z1xd8UKud2RAkFoPkmB+hli1TZSnyi84xz1vQ==",
+      "deprecated": "Use @exodus/bytes instead for a more spec-conformant and faster implementation",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "iconv-lite": "0.6.3"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/whatwg-mimetype": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/whatwg-mimetype/-/whatwg-mimetype-4.0.0.tgz",
+      "integrity": "sha512-QaKxh0eNIi2mE9p2vEdzfagOKHCcj1pJ56EEHGQOVxp8r9/iszLUUV7v89x9O1p/T+NlTM5W7jW6+cz4Fq1YVg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/whatwg-url": {
+      "version": "14.2.0",
+      "resolved": "https://registry.npmjs.org/whatwg-url/-/whatwg-url-14.2.0.tgz",
+      "integrity": "sha512-De72GdQZzNTUBBChsXueQUnPKDkg/5A5zp7pFDuQAj5UFoENpiACU0wlCvzpAGnTkj++ihpKwKyYewn/XNUbKw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "tr46": "^5.1.0",
+        "webidl-conversions": "^7.0.0"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/which": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/which/-/which-2.0.2.tgz",
+      "integrity": "sha512-BLI3Tl1TW3Pvl70l3yq3Y64i+awpwXqsGBYWkkqMtnbXgrMD+yj7rhW0kuEDxzJaYXGjEW5ogapKNMEKNMjibA==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "isexe": "^2.0.0"
+      },
+      "bin": {
+        "node-which": "bin/node-which"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/why-is-node-running": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/why-is-node-running/-/why-is-node-running-2.3.0.tgz",
+      "integrity": "sha512-hUrmaWBdVDcxvYqnyh09zunKzROWjbZTiNy8dBEjkS7ehEDQibXJ7XvlmtbwuTclUiIyN+CyXQD4Vmko8fNm8w==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "siginfo": "^2.0.0",
+        "stackback": "0.0.2"
+      },
+      "bin": {
+        "why-is-node-running": "cli.js"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/ws": {
+      "version": "8.20.0",
+      "resolved": "https://registry.npmjs.org/ws/-/ws-8.20.0.tgz",
+      "integrity": "sha512-sAt8BhgNbzCtgGbt2OxmpuryO63ZoDk/sqaB/znQm94T4fCEsy/yV+7CdC1kJhOU9lboAEU7R3kquuycDoibVA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=10.0.0"
+      },
+      "peerDependencies": {
+        "bufferutil": "^4.0.1",
+        "utf-8-validate": ">=5.0.2"
+      },
+      "peerDependenciesMeta": {
+        "bufferutil": {
+          "optional": true
+        },
+        "utf-8-validate": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/xml-name-validator": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/xml-name-validator/-/xml-name-validator-5.0.0.tgz",
+      "integrity": "sha512-EvGK8EJ3DhaHfbRlETOWAS5pO9MZITeauHKJyb8wyajUfQUenkIg2MvLDTZ4T/TgIcm3HU0TFBgWWboAZ30UHg==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/xmlchars": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/xmlchars/-/xmlchars-2.2.0.tgz",
+      "integrity": "sha512-JZnDKK8B0RCDw84FNdDAIpZK+JuJw+s7Lz8nksI7SIuU3UXJJslUthsi+uWBUYOwPFwW7W7PRLRfUKpxjtjFCw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/yallist": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/yallist/-/yallist-3.1.1.tgz",
+      "integrity": "sha512-a4UGQaWPH59mOXUYnAG2ewncQS4i4F43Tv3JoAM+s2VDAmS9NsK8GpDMLrCHPksFT7h3K6TOoUNn2pb7RoXx4g==",
+      "dev": true,
+      "license": "ISC"
+    },
+    "node_modules/yocto-queue": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/yocto-queue/-/yocto-queue-1.2.2.tgz",
+      "integrity": "sha512-4LCcse/U2MHZ63HAJVE+v71o7yOdIe4cZ70Wpf8D/IyjDKYQLV5GD46B+hSTjJsvV5PztjvHoU580EftxjDZFQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=12.20"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    }
+  }
+}
diff --git a/frontend/package.json b/frontend/package.json
new file mode 100644
index 0000000..bd1ff01
--- /dev/null
+++ b/frontend/package.json
@@ -0,0 +1,36 @@
+{
+  "name": "erp-frontend",
+  "private": true,
+  "version": "0.0.1",
+  "type": "module",
+  "scripts": {
+    "dev": "vite",
+    "build": "tsc && vite build",
+    "lint": "tsc --noEmit",
+    "preview": "vite preview",
+    "test": "vitest"
+  },
+  "dependencies": {
+    "@ant-design/icons": "^5.3.7",
+    "@reduxjs/toolkit": "^2.2.5",
+    "antd": "^5.18.0",
+    "axios": "^1.7.2",
+    "dayjs": "^1.11.11",
+    "react": "^18.3.1",
+    "react-dom": "^18.3.1",
+    "react-redux": "^9.1.2",
+    "react-router-dom": "^6.23.1"
+  },
+  "devDependencies": {
+    "@testing-library/jest-dom": "^6.4.6",
+    "@testing-library/react": "^16.0.0",
+    "@testing-library/user-event": "^14.5.2",
+    "@types/react": "^18.3.3",
+    "@types/react-dom": "^18.3.0",
+    "@vitejs/plugin-react": "^4.3.1",
+    "jsdom": "^24.1.0",
+    "typescript": "^5.4.5",
+    "vite": "^5.3.1",
+    "vitest": "^1.6.0"
+  }
+}
diff --git a/frontend/src/App.tsx b/frontend/src/App.tsx
new file mode 100644
index 0000000..e91309e
--- /dev/null
+++ b/frontend/src/App.tsx
@@ -0,0 +1,20 @@
+import { Navigate, Route, Routes } from 'react-router-dom'
+import { useAppSelector } from './store/hooks'
+import LoginPage from './pages/usr/LoginPage'
+import UserListPage from './pages/usr/UserListPage'
+
+function PrivateRoute({ children }: { children: React.ReactNode }) {
+  const accessToken = useAppSelector(s => s.auth.accessToken)
+  return accessToken ? <>{children}</> : <Navigate to="/login" replace />
+}
+
+export default function App() {
+  return (
+    <Routes>
+      <Route path="/login" element={<LoginPage />} />
+      <Route path="/" element={<PrivateRoute><div>主页（待实现）</div></PrivateRoute>} />
+      <Route path="/usr/users" element={<PrivateRoute><UserListPage /></PrivateRoute>} />
+      <Route path="*" element={<Navigate to="/" replace />} />
+    </Routes>
+  )
+}
diff --git a/frontend/src/api/auth.ts b/frontend/src/api/auth.ts
new file mode 100644
index 0000000..df0fb63
--- /dev/null
+++ b/frontend/src/api/auth.ts
@@ -0,0 +1,26 @@
+import { UserInfoVO } from '../store/slices/authSlice'
+import request from './request'
+
+export interface BrandVO {
+  sNo: string
+  sName: string
+}
+
+export interface LoginVO {
+  accessToken: string
+  refreshToken: string
+  expiresIn: number
+  userInfo: UserInfoVO
+}
+
+export function login(params: { brandNo: string; username: string; password: string }): Promise<LoginVO> {
+  return request.post('/auth/login', params)
+}
+
+export function refresh(refreshToken: string): Promise<{ accessToken: string }> {
+  return request.post('/auth/refresh', { refreshToken })
+}
+
+export function getBrands(): Promise<BrandVO[]> {
+  return request.get('/auth/brands')
+}
diff --git a/frontend/src/api/request.ts b/frontend/src/api/request.ts
new file mode 100644
index 0000000..4129ab1
--- /dev/null
+++ b/frontend/src/api/request.ts
@@ -0,0 +1,72 @@
+import axios, { AxiosInstance, AxiosResponse } from 'axios'
+import { store } from '../store'
+import { clearCredentials, setCredentials } from '../store/slices/authSlice'
+
+let isRefreshing = false
+let pendingQueue: Array<(token: string) => void> = []
+
+const instance: AxiosInstance = axios.create({
+  baseURL: '/api',
+  timeout: 10000
+})
+
+instance.interceptors.request.use(config => {
+  const token = store.getState().auth.accessToken
+  if (token) {
+    config.headers.Authorization = `Bearer ${token}`
+  }
+  return config
+})
+
+instance.interceptors.response.use(
+  (response: AxiosResponse) => {
+    const data = response.data
+    if (data.code !== undefined && data.code !== 200) {
+      return Promise.reject(new Error(data.message || '请求失败'))
+    }
+    return data.data
+  },
+  async error => {
+    const originalRequest = error.config
+    if (error.response?.status === 401 && !originalRequest._retry) {
+      originalRequest._retry = true
+      const refreshToken = store.getState().auth.refreshToken
+      if (!refreshToken) {
+        store.dispatch(clearCredentials())
+        window.location.href = '/login'
+        return Promise.reject(error)
+      }
+      if (isRefreshing) {
+        return new Promise(resolve => {
+          pendingQueue.push((token: string) => {
+            originalRequest.headers.Authorization = `Bearer ${token}`
+            resolve(instance(originalRequest))
+          })
+        })
+      }
+      isRefreshing = true
+      try {
+        const res = await axios.post('/api/auth/refresh', { refreshToken })
+        const newToken = res.data.data.accessToken
+        store.dispatch(setCredentials({
+          accessToken: newToken,
+          refreshToken,
+          userInfo: store.getState().auth.userInfo!
+        }))
+        pendingQueue.forEach(cb => cb(newToken))
+        pendingQueue = []
+        originalRequest.headers.Authorization = `Bearer ${newToken}`
+        return instance(originalRequest)
+      } catch {
+        store.dispatch(clearCredentials())
+        window.location.href = '/login'
+        return Promise.reject(error)
+      } finally {
+        isRefreshing = false
+      }
+    }
+    return Promise.reject(error)
+  }
+)
+
+export default instance
diff --git a/frontend/src/api/usr.ts b/frontend/src/api/usr.ts
new file mode 100644
index 0000000..3e28945
--- /dev/null
+++ b/frontend/src/api/usr.ts
@@ -0,0 +1,94 @@
+import request from './request'
+
+export interface StaffVO {
+  sId: string
+  sStaffName: string
+}
+
+export interface PermissionGroupVO {
+  sId: string
+  sGroupCode: string
+  sGroupName: string
+  sCategory: string | null
+}
+
+export interface UserCreateReq {
+  userCode: string
+  username: string
+  userType: '普通用户' | '超级管理员'
+  language: '中文' | '英文' | '繁体'
+  canEditDoc?: boolean
+  employeeId?: string | null
+  permGroupIds?: string[]
+}
+
+export interface UserCreateResp {
+  userId: string
+  userCode: string
+  username: string
+}
+
+export function getStaffs(): Promise<StaffVO[]> {
+  return request.get('/usr/users/staffs')
+}
+
+export function getPermissionGroups(): Promise<PermissionGroupVO[]> {
+  return request.get('/usr/users/permission-groups')
+}
+
+export function createUser(req: UserCreateReq): Promise<UserCreateResp> {
+  return request.post('/usr/users', req)
+}
+
+export interface UserListQueryReq {
+  queryField?: string
+  matchType?: string
+  queryValue?: string
+  page?: number
+  pageSize?: number
+}
+
+export interface UserListItemVO {
+  sId: string
+  sUsername: string
+  sUserCode: string
+  sUserType: string
+  sLanguage: string
+  bCanEditDoc: number
+  bIsDisabled: number
+  tLastLoginDate: string | null
+  sCreatorUsername: string | null
+  tCreateDate: string
+  sStaffName: string | null
+  sDepartment: string | null
+}
+
+export interface PageVO<T> {
+  total: number
+  page: number
+  pageSize: number
+  list: T[]
+}
+
+export function getUserList(params?: UserListQueryReq): Promise<PageVO<UserListItemVO>> {
+  return request.get('/usr/users', { params })
+}
+
+export interface UserUpdateReq {
+  userType: string
+  language: string
+  canEditDoc: boolean
+  isDisabled: boolean
+  employeeId: string | null
+  permGroupIds: string[]
+}
+
+export interface UserUpdateResp {
+  userId: string
+  username: string
+  updatedAt: string
+}
+
+export function updateUser(userId: string, req: UserUpdateReq): Promise<UserUpdateResp> {
+  return request.put(`/usr/users/${userId}`, req)
+}
diff --git a/frontend/src/components/PermButton.tsx b/frontend/src/components/PermButton.tsx
new file mode 100644
index 0000000..f6e4e8a
--- /dev/null
+++ b/frontend/src/components/PermButton.tsx
@@ -0,0 +1,12 @@
+import { Button, ButtonProps } from 'antd'
+import { useAppSelector } from '../store/hooks'
+
+interface PermButtonProps extends ButtonProps {
+  permission: string
+}
+
+export function PermButton({ permission: _permission, children, ...props }: PermButtonProps) {
+  const userType = useAppSelector(s => s.auth.userInfo?.userType)
+  if (userType !== '超级管理员') return null
+  return <Button {...props}>{children}</Button>
+}
diff --git a/frontend/src/main.tsx b/frontend/src/main.tsx
new file mode 100644
index 0000000..b9bfe2c
--- /dev/null
+++ b/frontend/src/main.tsx
@@ -0,0 +1,17 @@
+import React from 'react'
+import ReactDOM from 'react-dom/client'
+import { Provider } from 'react-redux'
+import { BrowserRouter } from 'react-router-dom'
+import App from './App'
+import { store } from './store'
+import './styles/tokens.css'
+
+ReactDOM.createRoot(document.getElementById('root')!).render(
+  <React.StrictMode>
+    <Provider store={store}>
+      <BrowserRouter>
+        <App />
+      </BrowserRouter>
+    </Provider>
+  </React.StrictMode>
+)
diff --git a/frontend/src/pages/usr/LoginPage.tsx b/frontend/src/pages/usr/LoginPage.tsx
new file mode 100644
index 0000000..6e4bab4
--- /dev/null
+++ b/frontend/src/pages/usr/LoginPage.tsx
@@ -0,0 +1,67 @@
+import { useEffect, useState } from 'react'
+import { useNavigate } from 'react-router-dom'
+import { Button, Form, Input, message, Select } from 'antd'
+import { getBrands, login, BrandVO } from '../../api/auth'
+import { setCredentials } from '../../store/slices/authSlice'
+import { useAppDispatch } from '../../store/hooks'
+
+export default function LoginPage() {
+  const [brandOptions, setBrandOptions] = useState<BrandVO[]>([])
+  const [loading, setLoading] = useState(false)
+  const [form] = Form.useForm()
+  const dispatch = useAppDispatch()
+  const navigate = useNavigate()
+
+  useEffect(() => {
+    getBrands().then(brands => {
+      setBrandOptions(brands)
+      const std = brands.find(b => b.sName === '标准版')
+      const defaultNo = std ? std.sNo : brands[0]?.sNo
+      if (defaultNo) form.setFieldValue('brandNo', defaultNo)
+    }).catch(() => {})
+  }, [])
+
+  const onFinish = async (values: { brandNo: string; username: string; password: string }) => {
+    setLoading(true)
+    try {
+      const result = await login(values)
+      dispatch(setCredentials({
+        accessToken: result.accessToken,
+        refreshToken: result.refreshToken,
+        userInfo: result.userInfo
+      }))
+      navigate('/')
+    } catch (e: unknown) {
+      message.error(e instanceof Error ? e.message : '登录失败')
+    } finally {
+      setLoading(false)
+    }
+  }
+
+  return (
+    <div style={{ display: 'flex', justifyContent: 'center', alignItems: 'center', minHeight: '100vh' }}>
+      <div style={{ width: 360 }}>
+        <h2 style={{ textAlign: 'center', marginBottom: 24 }}>小羚羊 ERP</h2>
+        <Form form={form} layout="vertical" onFinish={onFinish}>
+          <Form.Item label="公司/版本" name="brandNo" rules={[{ required: true, message: '请选择公司/版本' }]}>
+            <Select
+              options={brandOptions.map(b => ({ value: b.sNo, label: b.sName }))}
+              placeholder="请选择公司/版本"
+            />
+          </Form.Item>
+          <Form.Item label="用户名" name="username" rules={[{ required: true, message: '请输入用户名' }]}>
+            <Input placeholder="请输入用户名" />
+          </Form.Item>
+          <Form.Item label="密码" name="password" rules={[{ required: true, message: '请输入密码' }]}>
+            <Input.Password placeholder="请输入密码" />
+          </Form.Item>
+          <Form.Item>
+            <Button type="primary" htmlType="submit" loading={loading} block>
+              登录
+            </Button>
+          </Form.Item>
+        </Form>
+      </div>
+    </div>
+  )
+}
diff --git a/frontend/src/pages/usr/UserFormDrawer.tsx b/frontend/src/pages/usr/UserFormDrawer.tsx
new file mode 100644
index 0000000..872eb0c
--- /dev/null
+++ b/frontend/src/pages/usr/UserFormDrawer.tsx
@@ -0,0 +1,171 @@
+import { useEffect, useState } from 'react'
+import {
+  Drawer, Form, Input, Select, Checkbox, Button, message, Table
+} from 'antd'
+import type { ColumnsType } from 'antd/es/table'
+import { getStaffs, getPermissionGroups, createUser, updateUser, StaffVO, PermissionGroupVO, UserCreateReq, UserUpdateReq } from '../../api/usr'
+
+interface InitialData {
+  userType: string
+  language: string
+  canEditDoc: boolean
+  isDisabled: boolean
+  employeeId?: string | null
+  permGroupIds?: string[]
+}
+
+interface Props {
+  open: boolean
+  onClose: () => void
+  onSuccess: () => void
+  userId?: string
+  initialData?: InitialData
+}
+
+export default function UserFormDrawer({ open, onClose, onSuccess, userId, initialData }: Props) {
+  const [form] = Form.useForm()
+  const [staffs, setStaffs] = useState<StaffVO[]>([])
+  const [permGroups, setPermGroups] = useState<PermissionGroupVO[]>([])
+  const [selectedPermIds, setSelectedPermIds] = useState<string[]>([])
+  const [submitting, setSubmitting] = useState(false)
+
+  const isEditMode = !!userId
+
+  useEffect(() => {
+    if (open) {
+      getStaffs().then(setStaffs).catch(() => {})
+      getPermissionGroups().then(setPermGroups).catch(() => {})
+      if (isEditMode && initialData) {
+        form.setFieldsValue({
+          userType: initialData.userType,
+          language: initialData.language,
+          canEditDoc: initialData.canEditDoc,
+          isDisabled: initialData.isDisabled,
+          employeeId: initialData.employeeId ?? null,
+        })
+        setSelectedPermIds(initialData.permGroupIds ?? [])
+      } else {
+        form.resetFields()
+        setSelectedPermIds([])
+      }
+    }
+  }, [open])
+
+  const permColumns: ColumnsType<PermissionGroupVO> = [
+    {
+      title: '',
+      key: 'select',
+      width: 40,
+      render: (_, record) => (
+        <Checkbox
+          checked={selectedPermIds.includes(record.sId)}
+          onChange={e => {
+            setSelectedPermIds(prev =>
+              e.target.checked ? [...prev, record.sId] : prev.filter(id => id !== record.sId)
+            )
+          }}
+        />
+      )
+    },
+    { title: '权限组', dataIndex: 'sGroupName' },
+    { title: '分类', dataIndex: 'sCategory' }
+  ]
+
+  async function handleSubmit() {
+    try {
+      const values = await form.validateFields()
+      setSubmitting(true)
+      if (isEditMode) {
+        const req: UserUpdateReq = {
+          userType: values.userType,
+          language: values.language,
+          canEditDoc: values.canEditDoc ?? false,
+          isDisabled: values.isDisabled ?? false,
+          employeeId: values.employeeId ?? null,
+          permGroupIds: selectedPermIds
+        }
+        await updateUser(userId, req)
+        message.success('修改用户成功')
+      } else {
+        const req: UserCreateReq = {
+          userCode: values.userCode,
+          username: values.username,
+          userType: values.userType,
+          language: values.language,
+          canEditDoc: values.canEditDoc ?? false,
+          employeeId: values.employeeId ?? null,
+          permGroupIds: selectedPermIds
+        }
+        await createUser(req)
+        message.success('新增用户成功')
+      }
+      form.resetFields()
+      setSelectedPermIds([])
+      onSuccess()
+    } catch (e: unknown) {
+      if (e instanceof Error) {
+        message.error(e.message)
+      }
+    } finally {
+      setSubmitting(false)
+    }
+  }
+
+  return (
+    <Drawer
+      title={isEditMode ? '修改用户' : '新增用户'}
+      open={open}
+      onClose={onClose}
+      width={520}
+      footer={
+        <div style={{ textAlign: 'right' }}>
+          <Button onClick={onClose} style={{ marginRight: 8 }}>取消</Button>
+          <Button type="primary" onClick={handleSubmit} loading={submitting}>确认</Button>
+        </div>
+      }
+    >
+      <Form form={form} layout="vertical">
+        {!isEditMode && (
+          <>
+            <Form.Item name="userCode" label="用户号" rules={[{ required: true, message: '请输入用户号' }]}>
+              <Input placeholder="请输入用户号" />
+            </Form.Item>
+            <Form.Item name="username" label="用户名" rules={[{ required: true, message: '请输入用户名' }]}>
+              <Input placeholder="请输入用户名" />
+            </Form.Item>
+          </>
+        )}
+        <Form.Item name="userType" label="用户类型" rules={[{ required: true }]} initialValue="普通用户">
+          <Select options={[{ value: '普通用户', label: '普通用户' }, { value: '超级管理员', label: '超级管理员' }]} />
+        </Form.Item>
+        <Form.Item name="language" label="语言" rules={[{ required: true }]} initialValue="中文">
+          <Select options={[{ value: '中文', label: '中文' }, { value: '英文', label: 'English' }, { value: '繁体', label: '繁體' }]} />
+        </Form.Item>
+        <Form.Item name="canEditDoc" valuePropName="checked">
+          <Checkbox>可编辑文档</Checkbox>
+        </Form.Item>
+        {isEditMode && (
+          <Form.Item name="isDisabled" valuePropName="checked">
+            <Checkbox>作废</Checkbox>
+          </Form.Item>
+        )}
+        <Form.Item name="employeeId" label="关联员工">
+          <Select
+            allowClear
+            placeholder="选择员工（可选）"
+            options={staffs.map(s => ({ value: s.sId, label: s.sStaffName }))}
+          />
+        </Form.Item>
+        <Form.Item label="权限组">
+          <Table
+            size="small"
+            columns={permColumns}
+            dataSource={permGroups}
+            rowKey="sId"
+            pagination={false}
+          />
+        </Form.Item>
+      </Form>
+    </Drawer>
+  )
+}
diff --git a/frontend/src/pages/usr/UserListPage.tsx b/frontend/src/pages/usr/UserListPage.tsx
new file mode 100644
index 0000000..1444727
--- /dev/null
+++ b/frontend/src/pages/usr/UserListPage.tsx
@@ -0,0 +1,133 @@
+import { useState, useEffect } from 'react'
+import { Table, Select, Input, Button, Space } from 'antd'
+import type { ColumnsType } from 'antd/es/table'
+import { PermButton } from '../../components/PermButton'
+import UserFormDrawer from './UserFormDrawer'
+import { getUserList } from '../../api/usr'
+import type { PageVO, UserListItemVO } from '../../api/usr'
+
+const QUERY_FIELDS = [
+  { value: 'username', label: '用户名' },
+  { value: 'staffName', label: '员工名' },
+  { value: 'userCode', label: '用户号' },
+  { value: 'department', label: '部门' },
+  { value: 'userType', label: '用户类型' },
+  { value: 'disabled', label: '作废' },
+  { value: 'lastLoginDate', label: '登录日期' },
+  { value: 'creator', label: '制单人' },
+]
+
+const MATCH_TYPES = [
+  { value: 'contains', label: '包含' },
+  { value: 'notContains', label: '不包含' },
+  { value: 'equals', label: '等于' },
+]
+
+// REQ-USR-003: 查询用户
+// REQ-USR-002: 修改用户
+export default function UserListPage() {
+  const [drawerOpen, setDrawerOpen] = useState(false)
+  const [editingUser, setEditingUser] = useState<UserListItemVO | null>(null)
+  const [data, setData] = useState<PageVO<UserListItemVO> | null>(null)
+  const [queryField, setQueryField] = useState('username')
+  const [matchType, setMatchType] = useState('contains')
+  const [queryValue, setQueryValue] = useState('')
+  const [currentPage, setCurrentPage] = useState(1)
+
+  const load = (pg = 1) => {
+    setCurrentPage(pg)
+    getUserList({ queryField, matchType, queryValue, page: pg, pageSize: 20 }).then(setData)
+  }
+
+  useEffect(() => {
+    load()
+  }, [])
+
+  const columns: ColumnsType<UserListItemVO> = [
+    { title: '用户名', dataIndex: 'sUsername' },
+    { title: '员工名', dataIndex: 'sStaffName' },
+    { title: '用户号', dataIndex: 'sUserCode' },
+    { title: '部门', dataIndex: 'sDepartment' },
+    { title: '用户类型', dataIndex: 'sUserType' },
+    { title: '语言', dataIndex: 'sLanguage' },
+    { title: '作废', dataIndex: 'bIsDisabled', render: (v: number) => v ? '是' : '否' },
+    { title: '登录日期', dataIndex: 'tLastLoginDate' },
+    { title: '制单人', dataIndex: 'sCreatorUsername' },
+    { title: '制单日期', dataIndex: 'tCreateDate' },
+    {
+      title: '操作',
+      key: 'action',
+      render: (_, record) => (
+        <PermButton
+          permission="usr:edit"
+          type="link"
+          onClick={() => setEditingUser(record)}
+        >
+          修改
+        </PermButton>
+      )
+    },
+  ]
+
+  return (
+    <div>
+      <Space style={{ marginBottom: 16 }} wrap>
+        <Select
+          value={queryField}
+          onChange={setQueryField}
+          options={QUERY_FIELDS}
+          style={{ width: 120 }}
+        />
+        <Select
+          value={matchType}
+          onChange={setMatchType}
+          options={MATCH_TYPES}
+          style={{ width: 100 }}
+        />
+        <Input
+          value={queryValue}
+          onChange={e => setQueryValue(e.target.value)}
+          placeholder="查询值"
+          style={{ width: 160 }}
+        />
+        <Button type="primary" onClick={() => load(1)}>搜索</Button>
+        <PermButton
+          permission="usr:create"
+          type="primary"
+          onClick={() => setDrawerOpen(true)}
+        >
+          新增
+        </PermButton>
+      </Space>
+      <Table
+        dataSource={data?.list ?? []}
+        columns={columns}
+        rowKey="sId"
+        pagination={{
+          total: data?.total ?? 0,
+          pageSize: 20,
+          current: currentPage,
+          onChange: load,
+        }}
+      />
+      <UserFormDrawer
+        open={drawerOpen}
+        onClose={() => setDrawerOpen(false)}
+        onSuccess={() => { setDrawerOpen(false); load(1) }}
+      />
+      <UserFormDrawer
+        open={editingUser !== null}
+        userId={editingUser?.sId}
+        initialData={editingUser ? {
+          userType: editingUser.sUserType,
+          language: editingUser.sLanguage,
+          canEditDoc: editingUser.bCanEditDoc === 1,
+          isDisabled: editingUser.bIsDisabled === 1,
+          employeeId: null,
+        } : undefined}
+        onClose={() => setEditingUser(null)}
+        onSuccess={() => { setEditingUser(null); load(1) }}
+      />
+    </div>
+  )
+}
diff --git a/frontend/src/store/hooks.ts b/frontend/src/store/hooks.ts
new file mode 100644
index 0000000..0987c24
--- /dev/null
+++ b/frontend/src/store/hooks.ts
@@ -0,0 +1,5 @@
+import { TypedUseSelectorHook, useDispatch, useSelector } from 'react-redux'
+import type { RootState, AppDispatch } from './index'
+
+export const useAppDispatch = () => useDispatch<AppDispatch>()
+export const useAppSelector: TypedUseSelectorHook<RootState> = useSelector
diff --git a/frontend/src/store/index.ts b/frontend/src/store/index.ts
new file mode 100644
index 0000000..736b402
--- /dev/null
+++ b/frontend/src/store/index.ts
@@ -0,0 +1,11 @@
+import { configureStore } from '@reduxjs/toolkit'
+import authReducer from './slices/authSlice'
+
+export const store = configureStore({
+  reducer: {
+    auth: authReducer
+  }
+})
+
+export type RootState = ReturnType<typeof store.getState>
+export type AppDispatch = typeof store.dispatch
diff --git a/frontend/src/store/slices/authSlice.ts b/frontend/src/store/slices/authSlice.ts
new file mode 100644
index 0000000..59e1503
--- /dev/null
+++ b/frontend/src/store/slices/authSlice.ts
@@ -0,0 +1,41 @@
+import { createSlice, PayloadAction } from '@reduxjs/toolkit'
+
+export interface UserInfoVO {
+  userId: string
+  username: string
+  userType: string
+  language: string
+  brandId: string
+}
+
+interface AuthState {
+  accessToken: string | null
+  refreshToken: string | null
+  userInfo: UserInfoVO | null
+}
+
+const initialState: AuthState = {
+  accessToken: null,
+  refreshToken: null,
+  userInfo: null
+}
+
+const authSlice = createSlice({
+  name: 'auth',
+  initialState,
+  reducers: {
+    setCredentials(state, action: PayloadAction<{ accessToken: string; refreshToken: string; userInfo: UserInfoVO }>) {
+      state.accessToken = action.payload.accessToken
+      state.refreshToken = action.payload.refreshToken
+      state.userInfo = action.payload.userInfo
+    },
+    clearCredentials(state) {
+      state.accessToken = null
+      state.refreshToken = null
+      state.userInfo = null
+    }
+  }
+})
+
+export const { setCredentials, clearCredentials } = authSlice.actions
+export default authSlice.reducer
diff --git a/frontend/src/styles/tokens.css b/frontend/src/styles/tokens.css
new file mode 100644
index 0000000..bc8a542
--- /dev/null
+++ b/frontend/src/styles/tokens.css
@@ -0,0 +1,43 @@
+/*
+ * src/styles/tokens.css — Design Tokens
+ * 命名规范见 docs/04-技术规范.md § 2.5
+ * 色值锁定见 docs/06-UI交互规范.md § 四
+ *
+ * 命名格式：--color-<scope>-<role>-<state>
+ *   <scope> 组件域：form / table-row / table-header / ...
+ *   <role>  作用：bg（背景）/ fg（前景/字体）/ border
+ *   <state> 状态：edit / readonly / hover / selected（无状态时省略）
+ *
+ * 约束：
+ *   - 组件样式中只用 var(--color-xxx)，禁止硬编码 hex / rgba
+ *   - 修改色值只改本文件，不允许在组件级覆盖
+ *   - 新增 token 须先登记到 docs/06 § 4.1 / 4.2，再补到此处
+ */
+
+:root {
+  /* === 1. 全局调色板（与 Ant Design 主题对齐） === */
+  --color-primary: #1890ff;
+  --color-success: #52c41a;
+  --color-warning: #faad14;
+  --color-error: #ff4d4f;
+  --color-text: rgba(0, 0, 0, 0.85);
+  --color-text-secondary: rgba(0, 0, 0, 0.45);
+  --color-border: #d9d9d9;
+  --color-bg-base: #f0f2f5;
+
+  /* === 2. 组件级状态色（与 docs/06 § 4.2 一一对应） === */
+
+  /* form：输入框 / 备注框 / 时间框 / 下拉框共用 */
+  --color-form-bg-edit: #ffffff;
+  --color-form-bg-readonly: #f1f2f8;
+  --color-form-bg-hover: #f5f5f5;          /* 仅下拉框使用 */
+  --color-form-fg: #000000;
+
+  /* table */
+  --color-table-row-bg-selected: #86d5fb;
+  --color-table-row-bg-hover: #fff7e6;
+  --color-table-row-bg-readonly: #f1f2f8;  /* = rgb(241, 242, 248) */
+  --color-table-row-fg: #000000;
+  --color-table-header-bg: #f5f5f5;
+  --color-table-header-fg: rgba(0, 0, 0, 0.85);  /* = #000000D9 */
+}
diff --git a/frontend/src/test/LoginPage.test.tsx b/frontend/src/test/LoginPage.test.tsx
new file mode 100644
index 0000000..d5ca26f
--- /dev/null
+++ b/frontend/src/test/LoginPage.test.tsx
@@ -0,0 +1,74 @@
+import { describe, it, expect, vi, beforeEach } from 'vitest'
+import { render, screen, waitFor, act } from '@testing-library/react'
+import userEvent from '@testing-library/user-event'
+import { Provider } from 'react-redux'
+import { MemoryRouter } from 'react-router-dom'
+import { configureStore } from '@reduxjs/toolkit'
+import authReducer, { UserInfoVO } from '../store/slices/authSlice'
+import LoginPage from '../pages/usr/LoginPage'
+import * as authApi from '../api/auth'
+
+vi.mock('../api/auth', () => ({
+  getBrands: vi.fn(),
+  login: vi.fn()
+}))
+
+vi.mock('../api/request', () => ({
+  default: { get: vi.fn(), post: vi.fn() }
+}))
+
+function makeStore() {
+  return configureStore({ reducer: { auth: authReducer } })
+}
+
+function renderLoginPage(store = makeStore()) {
+  return {
+    store,
+    ...render(
+      <Provider store={store}>
+        <MemoryRouter>
+          <LoginPage />
+        </MemoryRouter>
+      </Provider>
+    )
+  }
+}
+
+describe('LoginPage', () => {
+  beforeEach(() => {
+    vi.mocked(authApi.getBrands).mockResolvedValue([
+      { sNo: 'STD', sName: '标准版' }
+    ])
+  })
+
+  it('renders_brandSelect_username_and_password_fields', async () => {
+    renderLoginPage()
+    await waitFor(() => expect(screen.getByText('公司/版本')).toBeInTheDocument())
+    expect(screen.getByText('用户名')).toBeInTheDocument()
+    expect(screen.getByText('密码')).toBeInTheDocument()
+    expect(screen.getByRole('button', { name: /登\s*录/ })).toBeInTheDocument()
+  })
+
+  it('submit_withValidCredentials_dispatchesSetCredentials', async () => {
+    const mockUserInfo: UserInfoVO = {
+      userId: 'u1', username: 'admin', userType: '超级管理员', language: '中文', brandId: 'b1'
+    }
+    vi.mocked(authApi.login).mockResolvedValue({
+      accessToken: 'at',
+      refreshToken: 'rt',
+      expiresIn: 86400,
+      userInfo: mockUserInfo
+    })
+
+    const { store } = renderLoginPage()
+    // Flush getBrands().then() callback so form.setFieldValue('brandNo') runs before submit
+    await act(async () => { await Promise.resolve() })
+
+    await userEvent.type(screen.getByPlaceholderText('请输入用户名'), 'admin')
+    await userEvent.type(screen.getByPlaceholderText('请输入密码'), '666666')
+    await userEvent.click(screen.getByRole('button', { name: /登\s*录/ }))
+
+    await waitFor(() => expect(store.getState().auth.accessToken).toBe('at'))
+    expect(store.getState().auth.userInfo?.userId).toBe('u1')
+  })
+})
diff --git a/frontend/src/test/UserListPage.test.tsx b/frontend/src/test/UserListPage.test.tsx
new file mode 100644
index 0000000..75b502d
--- /dev/null
+++ b/frontend/src/test/UserListPage.test.tsx
@@ -0,0 +1,108 @@
+import { describe, it, expect, vi, beforeEach } from 'vitest'
+import { render, screen, waitFor } from '@testing-library/react'
+import userEvent from '@testing-library/user-event'
+import { Provider } from 'react-redux'
+import { MemoryRouter } from 'react-router-dom'
+import { configureStore } from '@reduxjs/toolkit'
+import authReducer from '../store/slices/authSlice'
+import UserListPage from '../pages/usr/UserListPage'
+
+vi.mock('../api/usr', () => ({
+  getStaffs: vi.fn().mockResolvedValue([]),
+  getPermissionGroups: vi.fn().mockResolvedValue([]),
+  createUser: vi.fn(),
+  getUserList: vi.fn().mockResolvedValue({ total: 0, page: 1, pageSize: 20, list: [] }),
+  updateUser: vi.fn().mockResolvedValue({ userId: 'u1', username: 'alice', updatedAt: '2026-05-08T10:00:00' })
+}))
+
+vi.mock('../api/request', () => ({
+  default: { get: vi.fn(), post: vi.fn() }
+}))
+
+function makeStore(userType: string) {
+  const store = configureStore({ reducer: { auth: authReducer } })
+  store.dispatch({
+    type: 'auth/setCredentials',
+    payload: {
+      accessToken: 'test-token',
+      refreshToken: 'test-refresh',
+      userInfo: { userId: 'u1', username: 'admin', userType, language: '中文', brandId: 'b1' }
+    }
+  })
+  return store
+}
+
+function renderPage(userType: string) {
+  const store = makeStore(userType)
+  return render(
+    <Provider store={store}>
+      <MemoryRouter>
+        <UserListPage />
+      </MemoryRouter>
+    </Provider>
+  )
+}
+
+describe('UserListPage', () => {
+  beforeEach(() => {
+    vi.clearAllMocks()
+  })
+
+  it('superAdmin_seesNewButton', () => {
+    renderPage('超级管理员')
+    expect(screen.getByRole('button', { name: /新\s*增/ })).toBeInTheDocument()
+  })
+
+  it('normalUser_doesNotSeeNewButton', () => {
+    renderPage('普通用户')
+    expect(screen.queryByRole('button', { name: /新\s*增/ })).not.toBeInTheDocument()
+  })
+
+  it('clickNewButton_opensDrawer', async () => {
+    renderPage('超级管理员')
+    await userEvent.click(screen.getByRole('button', { name: /新\s*增/ }))
+    await waitFor(() => expect(screen.getByText('新增用户')).toBeInTheDocument())
+  })
+
+  it('initialLoad_rendersTableRows', async () => {
+    const { getUserList } = await import('../api/usr')
+    vi.mocked(getUserList).mockResolvedValueOnce({
+      total: 1, page: 1, pageSize: 20,
+      list: [{
+        sId: 'u1', sUsername: 'alice', sUserCode: 'UC001', sUserType: '普通用户',
+        sLanguage: '中文', bCanEditDoc: 0, bIsDisabled: 0, tLastLoginDate: null,
+        sCreatorUsername: 'admin', tCreateDate: '2026-01-01T00:00:00',
+        sStaffName: '张三', sDepartment: '研发部'
+      }]
+    })
+    renderPage('超级管理员')
+    await waitFor(() => expect(screen.getByText('alice')).toBeInTheDocument())
+    expect(screen.getByText('张三')).toBeInTheDocument()
+  })
+
+  it('searchButton_callsGetUserList', async () => {
+    const { getUserList } = await import('../api/usr')
+    renderPage('超级管理员')
+    await userEvent.click(screen.getByRole('button', { name: /搜\s*索|搜索/ }))
+    await waitFor(() => expect(vi.mocked(getUserList)).toHaveBeenCalledTimes(2))
+  })
+
+  it('editMode_submit_callsUpdateUser', async () => {
+    const { getUserList, updateUser } = await import('../api/usr')
+    vi.mocked(getUserList).mockResolvedValue({
+      total: 1, page: 1, pageSize: 20,
+      list: [{
+        sId: 'u1', sUsername: 'alice', sUserCode: 'UC001', sUserType: '普通用户',
+        sLanguage: '中文', bCanEditDoc: 0, bIsDisabled: 0, tLastLoginDate: null,
+        sCreatorUsername: 'admin', tCreateDate: '2026-01-01T00:00:00',
+        sStaffName: null, sDepartment: null
+      }]
+    })
+    renderPage('超级管理员')
+    await waitFor(() => expect(screen.getByText('alice')).toBeInTheDocument())
+    await userEvent.click(screen.getByRole('button', { name: /修改/ }))
+    await waitFor(() => expect(screen.getByText('修改用户')).toBeInTheDocument())
+    await userEvent.click(screen.getByRole('button', { name: /确\s*认/ }))
+    await waitFor(() => expect(vi.mocked(updateUser)).toHaveBeenCalledTimes(1))
+  })
+})
diff --git a/frontend/src/test/authSlice.test.ts b/frontend/src/test/authSlice.test.ts
new file mode 100644
index 0000000..a01df36
--- /dev/null
+++ b/frontend/src/test/authSlice.test.ts
@@ -0,0 +1,36 @@
+import { describe, it, expect } from 'vitest'
+import { configureStore } from '@reduxjs/toolkit'
+import authReducer, { setCredentials, clearCredentials, UserInfoVO } from '../store/slices/authSlice'
+
+function makeStore() {
+  return configureStore({ reducer: { auth: authReducer } })
+}
+
+const sampleUserInfo: UserInfoVO = {
+  userId: 'u1',
+  username: 'admin',
+  userType: '普通用户',
+  language: '中文',
+  brandId: 'b1'
+}
+
+describe('authSlice', () => {
+  it('setCredentials_updatesAllStateFields', () => {
+    const store = makeStore()
+    store.dispatch(setCredentials({ accessToken: 't1', refreshToken: 'r1', userInfo: sampleUserInfo }))
+    const state = store.getState().auth
+    expect(state.accessToken).toBe('t1')
+    expect(state.refreshToken).toBe('r1')
+    expect(state.userInfo?.userId).toBe('u1')
+  })
+
+  it('clearCredentials_resetsToNull', () => {
+    const store = makeStore()
+    store.dispatch(setCredentials({ accessToken: 't1', refreshToken: 'r1', userInfo: sampleUserInfo }))
+    store.dispatch(clearCredentials())
+    const state = store.getState().auth
+    expect(state.accessToken).toBeNull()
+    expect(state.refreshToken).toBeNull()
+    expect(state.userInfo).toBeNull()
+  })
+})
diff --git a/frontend/src/test/setup.ts b/frontend/src/test/setup.ts
new file mode 100644
index 0000000..2da0b09
--- /dev/null
+++ b/frontend/src/test/setup.ts
@@ -0,0 +1,16 @@
+import '@testing-library/jest-dom'
+import { vi } from 'vitest'
+
+Object.defineProperty(window, 'matchMedia', {
+  writable: true,
+  value: vi.fn().mockImplementation(query => ({
+    matches: false,
+    media: query,
+    onchange: null,
+    addListener: vi.fn(),
+    removeListener: vi.fn(),
+    addEventListener: vi.fn(),
+    removeEventListener: vi.fn(),
+    dispatchEvent: vi.fn()
+  }))
+})
diff --git a/frontend/tsconfig.json b/frontend/tsconfig.json
new file mode 100644
index 0000000..17f43b1
--- /dev/null
+++ b/frontend/tsconfig.json
@@ -0,0 +1,21 @@
+{
+  "compilerOptions": {
+    "target": "ES2020",
+    "useDefineForClassFields": true,
+    "lib": ["ES2020", "DOM", "DOM.Iterable"],
+    "module": "ESNext",
+    "skipLibCheck": true,
+    "moduleResolution": "bundler",
+    "allowImportingTsExtensions": true,
+    "resolveJsonModule": true,
+    "isolatedModules": true,
+    "noEmit": true,
+    "jsx": "react-jsx",
+    "strict": true,
+    "noUnusedLocals": false,
+    "noUnusedParameters": false,
+    "noFallthroughCasesInSwitch": true
+  },
+  "include": ["src"],
+  "references": [{ "path": "./tsconfig.node.json" }]
+}
diff --git a/frontend/tsconfig.node.json b/frontend/tsconfig.node.json
new file mode 100644
index 0000000..42872c5
--- /dev/null
+++ b/frontend/tsconfig.node.json
@@ -0,0 +1,10 @@
+{
+  "compilerOptions": {
+    "composite": true,
+    "skipLibCheck": true,
+    "module": "ESNext",
+    "moduleResolution": "bundler",
+    "allowSyntheticDefaultImports": true
+  },
+  "include": ["vite.config.ts"]
+}
diff --git a/frontend/vite.config.ts b/frontend/vite.config.ts
new file mode 100644
index 0000000..79c1017
--- /dev/null
+++ b/frontend/vite.config.ts
@@ -0,0 +1,19 @@
+import { defineConfig } from 'vite'
+import react from '@vitejs/plugin-react'
+
+export default defineConfig({
+  plugins: [react()],
+  server: {
+    proxy: {
+      '/api': {
+        target: 'http://localhost:8080',
+        changeOrigin: true
+      }
+    }
+  },
+  test: {
+    environment: 'jsdom',
+    globals: true,
+    setupFiles: './src/test/setup.ts'
+  }
+})
diff --git a/scripts/test.sh b/scripts/test.sh
index d91a597..fd854a0 100755
--- a/scripts/test.sh
+++ b/scripts/test.sh
@@ -8,6 +8,14 @@ set -euo pipefail
 PROJECT_ROOT="$(cd "$(dirname "$0")/.." && pwd)"
 cd "$PROJECT_ROOT"
 
+# Use Java 21 for Lombok compatibility (system default may be Java 25+)
+if [ -d "/opt/homebrew/Cellar/openjdk@21" ]; then
+  JAVA21="$(ls -d /opt/homebrew/Cellar/openjdk@21/*/bin/java 2>/dev/null | tail -1)"
+  if [ -n "$JAVA21" ]; then
+    export JAVA_HOME="$(dirname "$(dirname "$JAVA21")")"
+  fi
+fi
+
 # Stack detection (runtime, mode-agnostic)
 HAS_BACKEND=0; [ -d backend ] && HAS_BACKEND=1
 HAS_FRONTEND=0; [ -d frontend ] && HAS_FRONTEND=1
diff --git a/sql/migrations/V2__fix_username_unique_per_tenant.sql b/sql/migrations/V2__fix_username_unique_per_tenant.sql
new file mode 100644
index 0000000..e207bbf
--- /dev/null
+++ b/sql/migrations/V2__fix_username_unique_per_tenant.sql
@@ -0,0 +1,7 @@
+-- Flyway migration V2 — fix usr_user username uniqueness to per-tenant scope
+-- Generated: 2026-05-08
+-- Reason: uk_usr_user_username was globally unique; same username must be allowed across different brands (sBrandsId)
+-- New unique constraint: (sUsername, sBrandsId) composite
+
+ALTER TABLE usr_user DROP INDEX uk_usr_user_username;
+CREATE UNIQUE INDEX uk_usr_user_username_tenant ON usr_user (sUsername, sBrandsId);