diff --git a/.env.example b/.env.example
index e767fa25..4ffd8499 100644
--- a/.env.example
+++ b/.env.example
@@ -33,6 +33,59 @@ CLAUDE_API_URL=https://api.anthropic.com/v1/messages
 CLAUDE_API_VERSION=2023-06-01
 CLAUDE_BETA_HEADER=claude-code-20250219,oauth-2025-04-20,interleaved-thinking-2025-05-14,fine-grained-tool-streaming-2025-05-14
 
+# 🤖 Gemini OAuth / Antigravity 配置（可选）
+# 不配置时使用内置默认值；如需自定义或避免在代码中出现 client secret，可在此覆盖
+# GEMINI_OAUTH_CLIENT_ID=
+# GEMINI_OAUTH_CLIENT_SECRET=
+# Gemini CLI OAuth redirect_uri（可选，默认 https://codeassist.google.com/authcode）
+# GEMINI_OAUTH_REDIRECT_URI=
+# ANTIGRAVITY_OAUTH_CLIENT_ID=
+# ANTIGRAVITY_OAUTH_CLIENT_SECRET=
+# Antigravity OAuth redirect_uri（可选，默认 http://localhost:45462；用于避免 redirect_uri_mismatch）
+# ANTIGRAVITY_OAUTH_REDIRECT_URI=http://localhost:45462
+# Antigravity 上游地址（可选，默认 sandbox）
+# ANTIGRAVITY_API_URL=https://daily-cloudcode-pa.sandbox.googleapis.com
+# Antigravity User-Agent（可选）
+# ANTIGRAVITY_USER_AGENT=antigravity/1.11.3 windows/amd64
+
+# Claude Code（Anthropic Messages API）路由分流（无需额外环境变量）：
+# - /api             -> Claude 账号池（默认）
+# - /antigravity/api  -> Antigravity OAuth
+# - /gemini-cli/api   -> Gemini CLI OAuth
+
+# ============================================================================
+# 🐛 调试 Dump 配置（可选）
+# ============================================================================
+# 以下开启后会在项目根目录写入 .jsonl 调试文件，便于排查问题。
+# ⚠️ 生产环境建议关闭，避免磁盘占用。
+#
+# 📄 输出文件列表：
+#   - anthropic-requests-dump.jsonl      (客户端请求)
+#   - anthropic-responses-dump.jsonl     (返回给客户端的响应)
+#   - anthropic-tools-dump.jsonl         (工具定义快照)
+#   - antigravity-upstream-requests-dump.jsonl   (发往上游的请求)
+#   - antigravity-upstream-responses-dump.jsonl  (上游 SSE 响应)
+#
+# 📌 开关配置：
+# ANTHROPIC_DEBUG_REQUEST_DUMP=true
+# ANTHROPIC_DEBUG_RESPONSE_DUMP=true
+# ANTHROPIC_DEBUG_TOOLS_DUMP=true
+# ANTIGRAVITY_DEBUG_UPSTREAM_REQUEST_DUMP=true
+# ANTIGRAVITY_DEBUG_UPSTREAM_RESPONSE_DUMP=true
+#
+# 📏 单条记录大小上限（字节），默认 2MB：
+# ANTHROPIC_DEBUG_REQUEST_DUMP_MAX_BYTES=2097152
+# ANTHROPIC_DEBUG_RESPONSE_DUMP_MAX_BYTES=2097152
+# ANTIGRAVITY_DEBUG_UPSTREAM_REQUEST_DUMP_MAX_BYTES=2097152
+#
+# 📦 整个 Dump 文件大小上限（字节），超过后自动轮转为 .bak 文件，默认 10MB：
+# DUMP_MAX_FILE_SIZE_BYTES=10485760
+#
+# 🔧 工具失败继续：当 tool_result 标记 is_error=true 时，提示模型不要中断任务
+# （仅 /antigravity/api 分流生效）
+# ANTHROPIC_TOOL_ERROR_CONTINUE=true
+
+
 # 🚫 529错误处理配置
 # 启用529错误处理，0表示禁用，>0表示过载状态持续时间（分钟）
 CLAUDE_OVERLOAD_HANDLING_MINUTES=0
diff --git a/README.md b/README.md
index 9e358474..a7ba59a3 100644
--- a/README.md
+++ b/README.md
@@ -394,6 +394,9 @@ docker-compose.yml 已包含：
 
 **Claude Code 设置环境变量：**
 
+
+**使用标准 Claude 账号池**
+
 默认使用标准 Claude 账号池：
 
 ```bash
@@ -401,6 +404,24 @@ export ANTHROPIC_BASE_URL="http://127.0.0.1:3000/api/" # 根据实际填写你
 export ANTHROPIC_AUTH_TOKEN="后台创建的API密钥"
 ```
 
+**使用 Antigravity 账户池**
+
+适用于通过 Antigravity 渠道使用 Claude 模型（如 `claude-opus-4-5` 等）。
+
+```bash
+# 1. 设置 Base URL 为 Antigravity 专用路径
+export ANTHROPIC_BASE_URL="http://127.0.0.1:3000/antigravity/api/"
+
+# 2. 设置 API Key（在后台创建，权限需包含 'all' 或 'gemini'）
+export ANTHROPIC_AUTH_TOKEN="后台创建的API密钥"
+
+# 3. 指定模型名称（直接使用短名，无需前缀！）
+export ANTHROPIC_MODEL="claude-opus-4-5"
+
+# 4. 启动
+claude
+```
+
 **VSCode Claude 插件配置：**
 
 如果使用 VSCode 的 Claude 插件，需要在 `~/.claude/config.json` 文件中配置：
@@ -604,8 +625,9 @@ gpt-5                      # Codex使用固定模型ID
 - 所有账号类型都使用相同的API密钥（在后台统一创建）
 - 根据不同的路由前缀自动识别账号类型
 - `/claude/` - 使用Claude账号池
+- `/antigravity/api/` - 使用Antigravity账号池（推荐用于Claude Code）
 - `/droid/claude/` - 使用Droid类型Claude账号池（只建议api调用或Droid Cli中使用）
-- `/gemini/` - 使用Gemini账号池  
+- `/gemini/` - 使用Gemini账号池
 - `/openai/` - 使用Codex账号（只支持Openai-Response格式）
 - `/droid/openai/` - 使用Droid类型OpenAI兼容账号池（只建议api调用或Droid Cli中使用）
 - 支持所有标准API端点（messages、models等）
diff --git a/VERSION b/VERSION
index 548ae3b2..02fbc144 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-1.1.251
+1.1.259
diff --git a/config/config.example.js b/config/config.example.js
index 780e8360..eb6e4494 100644
--- a/config/config.example.js
+++ b/config/config.example.js
@@ -206,6 +206,14 @@ const config = {
     hotReload: process.env.HOT_RELOAD === 'true'
   },
 
+  // 💰 账户余额相关配置
+  accountBalance: {
+    // 是否允许执行自定义余额脚本（安全开关）
+    // 说明：脚本能力可发起任意 HTTP 请求并在服务端执行 extractor 逻辑，建议仅在受控环境开启
+    // 默认保持开启；如需禁用请显式设置：BALANCE_SCRIPT_ENABLED=false
+    enableBalanceScript: process.env.BALANCE_SCRIPT_ENABLED !== 'false'
+  },
+
   // 📬 用户消息队列配置
   // 优化说明：锁在请求发送成功后立即释放（而非请求完成后），因为 Claude API 限流基于请求发送时刻计算
   userMessageQueue: {
@@ -213,6 +221,13 @@ const config = {
     delayMs: parseInt(process.env.USER_MESSAGE_QUEUE_DELAY_MS) || 200, // 请求间隔（毫秒）
     timeoutMs: parseInt(process.env.USER_MESSAGE_QUEUE_TIMEOUT_MS) || 5000, // 队列等待超时（毫秒），锁持有时间短，无需长等待
     lockTtlMs: parseInt(process.env.USER_MESSAGE_QUEUE_LOCK_TTL_MS) || 5000 // 锁TTL（毫秒），5秒足以覆盖请求发送
+  },
+
+  // 🎫 额度卡兑换上限配置（防盗刷）
+  quotaCardLimits: {
+    enabled: process.env.QUOTA_CARD_LIMITS_ENABLED !== 'false', // 默认启用
+    maxExpiryDays: parseInt(process.env.QUOTA_CARD_MAX_EXPIRY_DAYS) || 90, // 最大有效期距今天数
+    maxTotalCostLimit: parseFloat(process.env.QUOTA_CARD_MAX_TOTAL_COST_LIMIT) || 1000 // 最大总额度（美元）
   }
 }
 
diff --git a/package-lock.json b/package-lock.json
index 2164fb09..e6898fe4 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -20,6 +20,7 @@
         "dotenv": "^16.3.1",
         "express": "^4.18.2",
         "google-auth-library": "^10.1.0",
+        "heapdump": "^0.3.15",
         "helmet": "^7.1.0",
         "https-proxy-agent": "^7.0.2",
         "inquirer": "^8.2.6",
@@ -892,7 +893,6 @@
       "integrity": "sha512-2BCOP7TN8M+gVDj7/ht3hsaO/B/n5oDbiAyyvnRlNOs+u1o+JWNYTQrmpuNp1/Wq2gcFrI01JAW+paEKDMx/CA==",
       "dev": true,
       "license": "MIT",
-      "peer": true,
       "dependencies": {
         "@babel/code-frame": "^7.27.1",
         "@babel/generator": "^7.28.3",
@@ -3001,7 +3001,6 @@
       "integrity": "sha512-yCAeZl7a0DxgNVteXFHt9+uyFbqXGy/ShC4BlcHkoE0AfGXYv/BUiplV72DjMYXHDBXFjhvr6DD1NiRVfB4j8g==",
       "devOptional": true,
       "license": "MIT",
-      "peer": true,
       "dependencies": {
         "undici-types": "~6.21.0"
       }
@@ -3083,7 +3082,6 @@
       "integrity": "sha512-NZyJarBfL7nWwIq+FDL6Zp/yHEhePMNnnJ0y3qfieCrmNvYct8uvtiV41UvlSe6apAfk0fY1FbWx+NwfmpvtTg==",
       "dev": true,
       "license": "MIT",
-      "peer": true,
       "bin": {
         "acorn": "bin/acorn"
       },
@@ -3539,7 +3537,6 @@
         }
       ],
       "license": "MIT",
-      "peer": true,
       "dependencies": {
         "caniuse-lite": "^1.0.30001737",
         "electron-to-chromium": "^1.5.211",
@@ -4427,7 +4424,6 @@
       "deprecated": "This version is no longer supported. Please see https://eslint.org/version-support for other options.",
       "dev": true,
       "license": "MIT",
-      "peer": true,
       "dependencies": {
         "@eslint-community/eslint-utils": "^4.2.0",
         "@eslint-community/regexpp": "^4.6.1",
@@ -4484,7 +4480,6 @@
       "integrity": "sha512-82GZUjRS0p/jganf6q1rEO25VSoHH0hKPCTrgillPjdI/3bgBhAE1QzHrHTizjpRvy6pGAvKjDJtk2pF9NDq8w==",
       "dev": true,
       "license": "MIT",
-      "peer": true,
       "bin": {
         "eslint-config-prettier": "bin/cli.js"
       },
@@ -5404,6 +5399,19 @@
         "node": ">= 0.4"
       }
     },
+    "node_modules/heapdump": {
+      "version": "0.3.15",
+      "resolved": "https://registry.npmjs.org/heapdump/-/heapdump-0.3.15.tgz",
+      "integrity": "sha512-n8aSFscI9r3gfhOcAECAtXFaQ1uy4QSke6bnaL+iymYZ/dWs9cqDqHM+rALfsHUwukUbxsdlECZ0pKmJdQ/4OA==",
+      "hasInstallScript": true,
+      "license": "ISC",
+      "dependencies": {
+        "nan": "^2.13.2"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
     "node_modules/helmet": {
       "version": "7.2.0",
       "resolved": "https://registry.npmmirror.com/helmet/-/helmet-7.2.0.tgz",
@@ -7019,6 +7027,12 @@
       "integrity": "sha512-nnbWWOkoWyUsTjKrhgD0dcz22mdkSnpYqbEjIm2nhwhuxlSkpywJmBo8h0ZqJdkp73mb90SssHkN4rsRaBAfAA==",
       "license": "ISC"
     },
+    "node_modules/nan": {
+      "version": "2.24.0",
+      "resolved": "https://registry.npmjs.org/nan/-/nan-2.24.0.tgz",
+      "integrity": "sha512-Vpf9qnVW1RaDkoNKFUvfxqAbtI8ncb8OJlqZ9wwpXzWPEsvsB1nvdUi6oYrHIkQ1Y/tMDnr1h4nczS0VB9Xykg==",
+      "license": "MIT"
+    },
     "node_modules/natural-compare": {
       "version": "1.4.0",
       "resolved": "https://registry.npmmirror.com/natural-compare/-/natural-compare-1.4.0.tgz",
@@ -7592,7 +7606,6 @@
       "integrity": "sha512-I7AIg5boAr5R0FFtJ6rCfD+LFsWHp81dolrFD8S79U9tb8Az2nGrJncnMSnys+bpQJfRUzqs9hnA81OAA3hCuQ==",
       "dev": true,
       "license": "MIT",
-      "peer": true,
       "bin": {
         "prettier": "bin/prettier.cjs"
       },
@@ -9111,7 +9124,6 @@
       "resolved": "https://registry.npmmirror.com/winston/-/winston-3.17.0.tgz",
       "integrity": "sha512-DLiFIXYC5fMPxaRg832S6F5mJYvePtmO5G9v9IgUFPhXm9/GkXarH/TUrBAVzhTCzAj9anE/+GjrgXp/54nOgw==",
       "license": "MIT",
-      "peer": true,
       "dependencies": {
         "@colors/colors": "^1.6.0",
         "@dabh/diagnostics": "^2.0.2",
diff --git a/scripts/data-transfer-enhanced.js b/scripts/data-transfer-enhanced.js
index 09416fb4..52d1929f 100644
--- a/scripts/data-transfer-enhanced.js
+++ b/scripts/data-transfer-enhanced.js
@@ -152,62 +152,110 @@ async function exportUsageStats(keyId) {
       daily: {},
       monthly: {},
       hourly: {},
-      models: {}
+      models: {},
+      // 费用统计（String 类型）
+      costTotal: null,
+      costDaily: {},
+      costMonthly: {},
+      costHourly: {},
+      opusTotal: null,
+      opusWeekly: {}
     }
 
-    // 导出总统计
-    const totalKey = `usage:${keyId}`
-    const totalData = await redis.client.hgetall(totalKey)
+    // 导出总统计（Hash）
+    const totalData = await redis.client.hgetall(`usage:${keyId}`)
     if (totalData && Object.keys(totalData).length > 0) {
       stats.total = totalData
     }
 
-    // 导出每日统计（最近30天）
-    const today = new Date()
-    for (let i = 0; i < 30; i++) {
-      const date = new Date(today)
-      date.setDate(date.getDate() - i)
-      const dateStr = date.toISOString().split('T')[0]
-      const dailyKey = `usage:daily:${keyId}:${dateStr}`
+    // 导出费用总统计（String）
+    const costTotal = await redis.client.get(`usage:cost:total:${keyId}`)
+    if (costTotal) {
+      stats.costTotal = costTotal
+    }
 
-      const dailyData = await redis.client.hgetall(dailyKey)
-      if (dailyData && Object.keys(dailyData).length > 0) {
-        stats.daily[dateStr] = dailyData
+    // 导出 Opus 费用总统计（String）
+    const opusTotal = await redis.client.get(`usage:opus:total:${keyId}`)
+    if (opusTotal) {
+      stats.opusTotal = opusTotal
+    }
+
+    // 导出每日统计（扫描现有 key，避免时区问题）
+    const dailyKeys = await redis.client.keys(`usage:daily:${keyId}:*`)
+    for (const key of dailyKeys) {
+      const date = key.split(':').pop()
+      const data = await redis.client.hgetall(key)
+      if (data && Object.keys(data).length > 0) {
+        stats.daily[date] = data
       }
     }
 
-    // 导出每月统计（最近12个月）
-    for (let i = 0; i < 12; i++) {
-      const date = new Date(today)
-      date.setMonth(date.getMonth() - i)
-      const monthStr = `${date.getFullYear()}-${String(date.getMonth() + 1).padStart(2, '0')}`
-      const monthlyKey = `usage:monthly:${keyId}:${monthStr}`
-
-      const monthlyData = await redis.client.hgetall(monthlyKey)
-      if (monthlyData && Object.keys(monthlyData).length > 0) {
-        stats.monthly[monthStr] = monthlyData
+    // 导出每日费用（扫描现有 key）
+    const costDailyKeys = await redis.client.keys(`usage:cost:daily:${keyId}:*`)
+    for (const key of costDailyKeys) {
+      const date = key.split(':').pop()
+      const value = await redis.client.get(key)
+      if (value) {
+        stats.costDaily[date] = value
       }
     }
 
-    // 导出小时统计（最近24小时）
-    for (let i = 0; i < 24; i++) {
-      const date = new Date(today)
-      date.setHours(date.getHours() - i)
-      const dateStr = date.toISOString().split('T')[0]
-      const hour = String(date.getHours()).padStart(2, '0')
-      const hourKey = `${dateStr}:${hour}`
-      const hourlyKey = `usage:hourly:${keyId}:${hourKey}`
-
-      const hourlyData = await redis.client.hgetall(hourlyKey)
-      if (hourlyData && Object.keys(hourlyData).length > 0) {
-        stats.hourly[hourKey] = hourlyData
+    // 导出每月统计（扫描现有 key）
+    const monthlyKeys = await redis.client.keys(`usage:monthly:${keyId}:*`)
+    for (const key of monthlyKeys) {
+      const month = key.split(':').pop()
+      const data = await redis.client.hgetall(key)
+      if (data && Object.keys(data).length > 0) {
+        stats.monthly[month] = data
       }
     }
 
-    // 导出模型统计
-    // 每日模型统计
-    const modelDailyPattern = `usage:${keyId}:model:daily:*`
-    const modelDailyKeys = await redis.client.keys(modelDailyPattern)
+    // 导出每月费用（扫描现有 key）
+    const costMonthlyKeys = await redis.client.keys(`usage:cost:monthly:${keyId}:*`)
+    for (const key of costMonthlyKeys) {
+      const month = key.split(':').pop()
+      const value = await redis.client.get(key)
+      if (value) {
+        stats.costMonthly[month] = value
+      }
+    }
+
+    // 导出 Opus 周费用（扫描现有 key）
+    const opusWeeklyKeys = await redis.client.keys(`usage:opus:weekly:${keyId}:*`)
+    for (const key of opusWeeklyKeys) {
+      const week = key.split(':').pop()
+      const value = await redis.client.get(key)
+      if (value) {
+        stats.opusWeekly[week] = value
+      }
+    }
+
+    // 导出小时统计（扫描现有 key）
+    // key 格式: usage:hourly:{keyId}:{YYYY-MM-DD}:{HH}
+    const hourlyKeys = await redis.client.keys(`usage:hourly:${keyId}:*`)
+    for (const key of hourlyKeys) {
+      const parts = key.split(':')
+      const hourKey = `${parts[parts.length - 2]}:${parts[parts.length - 1]}` // YYYY-MM-DD:HH
+      const data = await redis.client.hgetall(key)
+      if (data && Object.keys(data).length > 0) {
+        stats.hourly[hourKey] = data
+      }
+    }
+
+    // 导出小时费用（扫描现有 key）
+    // key 格式: usage:cost:hourly:{keyId}:{YYYY-MM-DD}:{HH}
+    const costHourlyKeys = await redis.client.keys(`usage:cost:hourly:${keyId}:*`)
+    for (const key of costHourlyKeys) {
+      const parts = key.split(':')
+      const hourKey = `${parts[parts.length - 2]}:${parts[parts.length - 1]}` // YYYY-MM-DD:HH
+      const value = await redis.client.get(key)
+      if (value) {
+        stats.costHourly[hourKey] = value
+      }
+    }
+
+    // 导出模型统计（每日）
+    const modelDailyKeys = await redis.client.keys(`usage:${keyId}:model:daily:*`)
     for (const key of modelDailyKeys) {
       const match = key.match(/usage:.+:model:daily:(.+):(\d{4}-\d{2}-\d{2})$/)
       if (match) {
@@ -223,9 +271,8 @@ async function exportUsageStats(keyId) {
       }
     }
 
-    // 每月模型统计
-    const modelMonthlyPattern = `usage:${keyId}:model:monthly:*`
-    const modelMonthlyKeys = await redis.client.keys(modelMonthlyPattern)
+    // 导出模型统计（每月）
+    const modelMonthlyKeys = await redis.client.keys(`usage:${keyId}:model:monthly:*`)
     for (const key of modelMonthlyKeys) {
       const match = key.match(/usage:.+:model:monthly:(.+):(\d{4}-\d{2})$/)
       if (match) {
@@ -258,7 +305,7 @@ async function importUsageStats(keyId, stats) {
     const pipeline = redis.client.pipeline()
     let importCount = 0
 
-    // 导入总统计
+    // 导入总统计（Hash）
     if (stats.total && Object.keys(stats.total).length > 0) {
       for (const [field, value] of Object.entries(stats.total)) {
         pipeline.hset(`usage:${keyId}`, field, value)
@@ -266,7 +313,19 @@ async function importUsageStats(keyId, stats) {
       importCount++
     }
 
-    // 导入每日统计
+    // 导入费用总统计（String）
+    if (stats.costTotal) {
+      pipeline.set(`usage:cost:total:${keyId}`, stats.costTotal)
+      importCount++
+    }
+
+    // 导入 Opus 费用总统计（String）
+    if (stats.opusTotal) {
+      pipeline.set(`usage:opus:total:${keyId}`, stats.opusTotal)
+      importCount++
+    }
+
+    // 导入每日统计（Hash）
     if (stats.daily) {
       for (const [date, data] of Object.entries(stats.daily)) {
         for (const [field, value] of Object.entries(data)) {
@@ -276,7 +335,15 @@ async function importUsageStats(keyId, stats) {
       }
     }
 
-    // 导入每月统计
+    // 导入每日费用（String）
+    if (stats.costDaily) {
+      for (const [date, value] of Object.entries(stats.costDaily)) {
+        pipeline.set(`usage:cost:daily:${keyId}:${date}`, value)
+        importCount++
+      }
+    }
+
+    // 导入每月统计（Hash）
     if (stats.monthly) {
       for (const [month, data] of Object.entries(stats.monthly)) {
         for (const [field, value] of Object.entries(data)) {
@@ -286,7 +353,23 @@ async function importUsageStats(keyId, stats) {
       }
     }
 
-    // 导入小时统计
+    // 导入每月费用（String）
+    if (stats.costMonthly) {
+      for (const [month, value] of Object.entries(stats.costMonthly)) {
+        pipeline.set(`usage:cost:monthly:${keyId}:${month}`, value)
+        importCount++
+      }
+    }
+
+    // 导入 Opus 周费用（String，不加 TTL 保留历史全量）
+    if (stats.opusWeekly) {
+      for (const [week, value] of Object.entries(stats.opusWeekly)) {
+        pipeline.set(`usage:opus:weekly:${keyId}:${week}`, value)
+        importCount++
+      }
+    }
+
+    // 导入小时统计（Hash）
     if (stats.hourly) {
       for (const [hour, data] of Object.entries(stats.hourly)) {
         for (const [field, value] of Object.entries(data)) {
@@ -296,10 +379,17 @@ async function importUsageStats(keyId, stats) {
       }
     }
 
-    // 导入模型统计
+    // 导入小时费用（String）
+    if (stats.costHourly) {
+      for (const [hour, value] of Object.entries(stats.costHourly)) {
+        pipeline.set(`usage:cost:hourly:${keyId}:${hour}`, value)
+        importCount++
+      }
+    }
+
+    // 导入模型统计（Hash）
     if (stats.models) {
       for (const [model, modelStats] of Object.entries(stats.models)) {
-        // 每日模型统计
         if (modelStats.daily) {
           for (const [date, data] of Object.entries(modelStats.daily)) {
             for (const [field, value] of Object.entries(data)) {
@@ -309,7 +399,6 @@ async function importUsageStats(keyId, stats) {
           }
         }
 
-        // 每月模型统计
         if (modelStats.monthly) {
           for (const [month, data] of Object.entries(modelStats.monthly)) {
             for (const [field, value] of Object.entries(data)) {
@@ -547,13 +636,54 @@ async function exportData() {
       const globalStats = {
         daily: {},
         monthly: {},
-        hourly: {}
+        hourly: {},
+        // 新增：索引和全局统计
+        monthlyMonths: [], // usage:model:monthly:months Set
+        globalTotal: null, // usage:global:total Hash
+        globalDaily: {}, // usage:global:daily:* Hash
+        globalMonthly: {} // usage:global:monthly:* Hash
       }
 
-      // 导出全局每日模型统计
-      const globalDailyPattern = 'usage:model:daily:*'
-      const globalDailyKeys = await redis.client.keys(globalDailyPattern)
+      // 导出月份索引
+      const monthlyMonths = await redis.client.smembers('usage:model:monthly:months')
+      if (monthlyMonths && monthlyMonths.length > 0) {
+        globalStats.monthlyMonths = monthlyMonths
+        logger.info(`📤 Found ${monthlyMonths.length} months in index`)
+      }
+
+      // 导出全局统计
+      const globalTotal = await redis.client.hgetall('usage:global:total')
+      if (globalTotal && Object.keys(globalTotal).length > 0) {
+        globalStats.globalTotal = globalTotal
+        logger.info('📤 Found global total stats')
+      }
+
+      // 导出全局每日统计
+      const globalDailyKeys = await redis.client.keys('usage:global:daily:*')
       for (const key of globalDailyKeys) {
+        const date = key.replace('usage:global:daily:', '')
+        const data = await redis.client.hgetall(key)
+        if (data && Object.keys(data).length > 0) {
+          globalStats.globalDaily[date] = data
+        }
+      }
+      logger.info(`📤 Found ${Object.keys(globalStats.globalDaily).length} global daily stats`)
+
+      // 导出全局每月统计
+      const globalMonthlyKeys = await redis.client.keys('usage:global:monthly:*')
+      for (const key of globalMonthlyKeys) {
+        const month = key.replace('usage:global:monthly:', '')
+        const data = await redis.client.hgetall(key)
+        if (data && Object.keys(data).length > 0) {
+          globalStats.globalMonthly[month] = data
+        }
+      }
+      logger.info(`📤 Found ${Object.keys(globalStats.globalMonthly).length} global monthly stats`)
+
+      // 导出全局每日模型统计
+      const modelDailyPattern = 'usage:model:daily:*'
+      const modelDailyKeys = await redis.client.keys(modelDailyPattern)
+      for (const key of modelDailyKeys) {
         const match = key.match(/usage:model:daily:(.+):(\d{4}-\d{2}-\d{2})$/)
         if (match) {
           const model = match[1]
@@ -569,9 +699,9 @@ async function exportData() {
       }
 
       // 导出全局每月模型统计
-      const globalMonthlyPattern = 'usage:model:monthly:*'
-      const globalMonthlyKeys = await redis.client.keys(globalMonthlyPattern)
-      for (const key of globalMonthlyKeys) {
+      const modelMonthlyPattern = 'usage:model:monthly:*'
+      const modelMonthlyKeys = await redis.client.keys(modelMonthlyPattern)
+      for (const key of modelMonthlyKeys) {
         const match = key.match(/usage:model:monthly:(.+):(\d{4}-\d{2})$/)
         if (match) {
           const model = match[1]
@@ -1040,6 +1170,42 @@ async function importData() {
         const pipeline = redis.client.pipeline()
         let globalStatCount = 0
 
+        // 导入月份索引
+        if (globalStats.monthlyMonths && globalStats.monthlyMonths.length > 0) {
+          for (const month of globalStats.monthlyMonths) {
+            pipeline.sadd('usage:model:monthly:months', month)
+          }
+          logger.info(`📥 Importing ${globalStats.monthlyMonths.length} months to index`)
+        }
+
+        // 导入全局统计
+        if (globalStats.globalTotal) {
+          for (const [field, value] of Object.entries(globalStats.globalTotal)) {
+            pipeline.hset('usage:global:total', field, value)
+          }
+          logger.info('📥 Importing global total stats')
+        }
+
+        // 导入全局每日统计
+        if (globalStats.globalDaily) {
+          for (const [date, data] of Object.entries(globalStats.globalDaily)) {
+            for (const [field, value] of Object.entries(data)) {
+              pipeline.hset(`usage:global:daily:${date}`, field, value)
+            }
+          }
+          logger.info(`📥 Importing ${Object.keys(globalStats.globalDaily).length} global daily stats`)
+        }
+
+        // 导入全局每月统计
+        if (globalStats.globalMonthly) {
+          for (const [month, data] of Object.entries(globalStats.globalMonthly)) {
+            for (const [field, value] of Object.entries(data)) {
+              pipeline.hset(`usage:global:monthly:${month}`, field, value)
+            }
+          }
+          logger.info(`📥 Importing ${Object.keys(globalStats.globalMonthly).length} global monthly stats`)
+        }
+
         // 导入每日统计
         if (globalStats.daily) {
           for (const [date, models] of Object.entries(globalStats.daily)) {
@@ -1061,6 +1227,8 @@ async function importData() {
               }
               globalStatCount++
             }
+            // 同时更新月份索引（兼容旧格式导出文件）
+            pipeline.sadd('usage:model:monthly:months', month)
           }
         }
 
diff --git a/src/app.js b/src/app.js
index d94f344c..5687cff7 100644
--- a/src/app.js
+++ b/src/app.js
@@ -11,6 +11,7 @@ const logger = require('./utils/logger')
 const redis = require('./models/redis')
 const pricingService = require('./services/pricingService')
 const cacheMonitor = require('./utils/cacheMonitor')
+const { getSafeMessage } = require('./utils/errorSanitizer')
 
 // Import routes
 const apiRoutes = require('./routes/api')
@@ -70,6 +71,11 @@ class Application {
         logger.success(`✅ 数据迁移完成，版本: ${currentVersion}`)
       }
 
+      // 📅 后台检查月份索引完整性（不阻塞启动）
+      redis.ensureMonthlyMonthsIndex().catch((err) => {
+        logger.error('📅 月份索引检查失败:', err.message)
+      })
+
       // 📊 后台异步迁移 usage 索引（不阻塞启动）
       redis.migrateUsageIndex().catch((err) => {
         logger.error('📊 Background usage index migration failed:', err)
@@ -78,6 +84,16 @@ class Application {
       // 📊 迁移 alltime 模型统计（阻塞式，确保数据完整）
       await redis.migrateAlltimeModelStats()
 
+      // 💳 初始化账户余额查询服务（Provider 注册）
+      try {
+        const accountBalanceService = require('./services/accountBalanceService')
+        const { registerAllProviders } = require('./services/balanceProviders')
+        registerAllProviders(accountBalanceService)
+        logger.info('✅ 账户余额查询服务已初始化')
+      } catch (error) {
+        logger.warn('⚠️ 账户余额查询服务初始化失败:', error.message)
+      }
+
       // 💰 初始化价格服务
       logger.info('🔄 Initializing pricing service...')
       await pricingService.initialize()
@@ -207,7 +223,7 @@ class Application {
       // 🔧 基础中间件
       this.app.use(
         express.json({
-          limit: '10mb',
+          limit: '100mb',
           verify: (req, res, buf, encoding) => {
             // 验证JSON格式
             if (buf && buf.length && !buf.toString(encoding || 'utf8').trim()) {
@@ -216,7 +232,7 @@ class Application {
           }
         })
       )
-      this.app.use(express.urlencoded({ extended: true, limit: '10mb' }))
+      this.app.use(express.urlencoded({ extended: true, limit: '100mb' }))
       this.app.use(securityMiddleware)
 
       // 🎯 信任代理
@@ -306,6 +322,25 @@ class Application {
       this.app.use('/api', apiRoutes)
       this.app.use('/api', unifiedRoutes) // 统一智能路由（支持 /v1/chat/completions 等）
       this.app.use('/claude', apiRoutes) // /claude 路由别名，与 /api 功能相同
+      // Anthropic (Claude Code) 路由：按路径强制分流到 Gemini OAuth 账户
+      // - /antigravity/api/v1/messages -> Antigravity OAuth
+      // - /gemini-cli/api/v1/messages -> Gemini CLI OAuth
+      this.app.use(
+        '/antigravity/api',
+        (req, res, next) => {
+          req._anthropicVendor = 'antigravity'
+          next()
+        },
+        apiRoutes
+      )
+      this.app.use(
+        '/gemini-cli/api',
+        (req, res, next) => {
+          req._anthropicVendor = 'gemini-cli'
+          next()
+        },
+        apiRoutes
+      )
       this.app.use('/admin', adminRoutes)
       this.app.use('/users', userRoutes)
       // 使用 web 路由（包含 auth 和页面重定向）
@@ -386,7 +421,7 @@ class Application {
           logger.error('❌ Health check failed:', { error: error.message, stack: error.stack })
           res.status(503).json({
             status: 'unhealthy',
-            error: error.message,
+            error: getSafeMessage(error),
             timestamp: new Date().toISOString()
           })
         }
diff --git a/src/handlers/geminiHandlers.js b/src/handlers/geminiHandlers.js
index ccf0035d..d12f2f1c 100644
--- a/src/handlers/geminiHandlers.js
+++ b/src/handlers/geminiHandlers.js
@@ -9,6 +9,7 @@ const logger = require('../utils/logger')
 const geminiAccountService = require('../services/geminiAccountService')
 const geminiApiAccountService = require('../services/geminiApiAccountService')
 const { sendGeminiRequest, getAvailableModels } = require('../services/geminiRelayService')
+const { sendAntigravityRequest } = require('../services/antigravityRelayService')
 const crypto = require('crypto')
 const sessionHelper = require('../utils/sessionHelper')
 const unifiedGeminiScheduler = require('../services/unifiedGeminiScheduler')
@@ -17,6 +18,7 @@ const redis = require('../models/redis')
 const { updateRateLimitCounters } = require('../utils/rateLimitHelper')
 const { parseSSELine } = require('../utils/sseParser')
 const axios = require('axios')
+const { getSafeMessage } = require('../utils/errorSanitizer')
 const ProxyHelper = require('../utils/proxyHelper')
 
 // ============================================================================
@@ -87,8 +89,7 @@ function generateSessionHash(req) {
  * 检查 API Key 权限
  */
 function checkPermissions(apiKeyData, requiredPermission = 'gemini') {
-  const permissions = apiKeyData?.permissions || 'all'
-  return permissions === 'all' || permissions === requiredPermission
+  return apiKeyService.hasPermission(apiKeyData?.permissions, requiredPermission)
 }
 
 /**
@@ -137,7 +138,9 @@ async function applyRateLimitTracking(req, usageSummary, model, context = '') {
     const { totalTokens, totalCost } = await updateRateLimitCounters(
       req.rateLimitInfo,
       usageSummary,
-      model
+      model,
+      req.apiKey?.id,
+      'gemini'
     )
 
     if (totalTokens > 0) {
@@ -354,7 +357,7 @@ async function handleMessages(req, res) {
       logger.error('Failed to select Gemini account:', error)
       return res.status(503).json({
         error: {
-          message: error.message || 'No available Gemini accounts',
+          message: getSafeMessage(error) || 'No available Gemini accounts',
           type: 'service_unavailable'
         }
       })
@@ -493,7 +496,8 @@ async function handleMessages(req, res) {
               0,
               0,
               model,
-              accountId
+              accountId,
+              'gemini'
             )
           }
         }
@@ -509,20 +513,37 @@ async function handleMessages(req, res) {
       // OAuth 账户：使用现有的 sendGeminiRequest
       // 智能处理项目ID：优先使用配置的 projectId，降级到临时 tempProjectId
       const effectiveProjectId = account.projectId || account.tempProjectId || null
+      const oauthProvider = account.oauthProvider || 'gemini-cli'
 
-      geminiResponse = await sendGeminiRequest({
-        messages,
-        model,
-        temperature,
-        maxTokens: max_tokens,
-        stream,
-        accessToken: account.accessToken,
-        proxy: account.proxy,
-        apiKeyId: apiKeyData.id,
-        signal: abortController.signal,
-        projectId: effectiveProjectId,
-        accountId: account.id
-      })
+      if (oauthProvider === 'antigravity') {
+        geminiResponse = await sendAntigravityRequest({
+          messages,
+          model,
+          temperature,
+          maxTokens: max_tokens,
+          stream,
+          accessToken: account.accessToken,
+          proxy: account.proxy,
+          apiKeyId: apiKeyData.id,
+          signal: abortController.signal,
+          projectId: effectiveProjectId,
+          accountId: account.id
+        })
+      } else {
+        geminiResponse = await sendGeminiRequest({
+          messages,
+          model,
+          temperature,
+          maxTokens: max_tokens,
+          stream,
+          accessToken: account.accessToken,
+          proxy: account.proxy,
+          apiKeyId: apiKeyData.id,
+          signal: abortController.signal,
+          projectId: effectiveProjectId,
+          accountId: account.id
+        })
+      }
     }
 
     if (stream) {
@@ -580,7 +601,8 @@ async function handleMessages(req, res) {
                 0,
                 0,
                 model,
-                accountId
+                accountId,
+                'gemini'
               )
               .then(() => {
                 logger.info(
@@ -598,7 +620,7 @@ async function handleMessages(req, res) {
           if (!res.headersSent) {
             res.status(500).json({
               error: {
-                message: error.message || 'Stream error',
+                message: getSafeMessage(error) || 'Stream error',
                 type: 'api_error'
               }
             })
@@ -646,7 +668,7 @@ async function handleMessages(req, res) {
     const status = errorStatus || 500
     const errorResponse = {
       error: error.error || {
-        message: error.message || 'Internal server error',
+        message: getSafeMessage(error) || 'Internal server error',
         type: 'api_error'
       }
     }
@@ -755,8 +777,16 @@ async function handleModels(req, res) {
         ]
       }
     } else {
-      // OAuth 账户：使用 OAuth token 获取模型列表
-      models = await getAvailableModels(account.accessToken, account.proxy)
+      // OAuth 账户：根据 OAuth provider 选择上游
+      const oauthProvider = account.oauthProvider || 'gemini-cli'
+      models =
+        oauthProvider === 'antigravity'
+          ? await geminiAccountService.fetchAvailableModelsAntigravity(
+              account.accessToken,
+              account.proxy,
+              account.refreshToken
+            )
+          : await getAvailableModels(account.accessToken, account.proxy)
     }
 
     res.json({
@@ -843,7 +873,7 @@ async function handleKeyInfo(req, res) {
     res.json({
       id: keyData.id,
       name: keyData.name,
-      permissions: keyData.permissions || 'all',
+      permissions: keyData.permissions,
       token_limit: keyData.tokenLimit,
       tokens_used: tokensUsed,
       tokens_remaining:
@@ -931,7 +961,8 @@ function handleSimpleEndpoint(apiMethod) {
       const client = await geminiAccountService.getOauthClient(
         accessToken,
         refreshToken,
-        proxyConfig
+        proxyConfig,
+        account.oauthProvider
       )
 
       // 直接转发请求体，不做特殊处理
@@ -1010,7 +1041,12 @@ async function handleLoadCodeAssist(req, res) {
     // 解析账户的代理配置
     const proxyConfig = parseProxyConfig(account)
 
-    const client = await geminiAccountService.getOauthClient(accessToken, refreshToken, proxyConfig)
+    const client = await geminiAccountService.getOauthClient(
+      accessToken,
+      refreshToken,
+      proxyConfig,
+      account.oauthProvider
+    )
 
     // 智能处理项目ID
     const effectiveProjectId = projectId || cloudaicompanionProject || null
@@ -1108,7 +1144,12 @@ async function handleOnboardUser(req, res) {
     // 解析账户的代理配置
     const proxyConfig = parseProxyConfig(account)
 
-    const client = await geminiAccountService.getOauthClient(accessToken, refreshToken, proxyConfig)
+    const client = await geminiAccountService.getOauthClient(
+      accessToken,
+      refreshToken,
+      proxyConfig,
+      account.oauthProvider
+    )
 
     // 智能处理项目ID
     const effectiveProjectId = projectId || cloudaicompanionProject || null
@@ -1156,6 +1197,110 @@ async function handleOnboardUser(req, res) {
   }
 }
 
+/**
+ * 处理 retrieveUserQuota 请求
+ * POST /v1internal:retrieveUserQuota
+ *
+ * 功能：查询用户在各个Gemini模型上的配额使用情况
+ * 请求体：{ "project": "项目ID" }
+ * 响应：{ "buckets": [...] }
+ */
+async function handleRetrieveUserQuota(req, res) {
+  try {
+    // 1. 权限检查
+    if (!ensureGeminiPermission(req, res)) {
+      return undefined
+    }
+
+    // 2. 会话哈希
+    const sessionHash = sessionHelper.generateSessionHash(req.body)
+
+    // 3. 账户选择
+    const requestedModel = req.body.model || req.params.modelName || 'gemini-2.5-flash'
+    const schedulerResult = await unifiedGeminiScheduler.selectAccountForApiKey(
+      req.apiKey,
+      sessionHash,
+      requestedModel
+    )
+    const { accountId, accountType } = schedulerResult
+
+    // 4. 账户类型验证 - v1internal 路由只支持 OAuth 账户
+    if (accountType === 'gemini-api') {
+      logger.error(`❌ v1internal routes do not support Gemini API accounts. Account: ${accountId}`)
+      return res.status(400).json({
+        error: {
+          message:
+            'This endpoint only supports Gemini OAuth accounts. Gemini API Key accounts are not compatible with v1internal format.',
+          type: 'invalid_account_type'
+        }
+      })
+    }
+
+    // 5. 获取账户
+    const account = await geminiAccountService.getAccount(accountId)
+    if (!account) {
+      return res.status(404).json({
+        error: {
+          message: 'Gemini account not found',
+          type: 'account_not_found'
+        }
+      })
+    }
+    const { accessToken, refreshToken, projectId } = account
+
+    // 6. 从请求体提取项目字段（注意：字段名是 "project"，不是 "cloudaicompanionProject"）
+    const requestProject = req.body.project
+
+    const version = req.path.includes('v1beta') ? 'v1beta' : 'v1internal'
+    logger.info(`RetrieveUserQuota request (${version})`, {
+      requestedProject: requestProject || null,
+      accountProject: projectId || null,
+      apiKeyId: req.apiKey?.id || 'unknown'
+    })
+
+    // 7. 解析账户的代理配置
+    const proxyConfig = parseProxyConfig(account)
+
+    // 8. 获取OAuth客户端
+    const client = await geminiAccountService.getOauthClient(accessToken, refreshToken, proxyConfig)
+
+    // 9. 智能处理项目ID（与其他 v1internal 接口保持一致）
+    const effectiveProject = projectId || requestProject || null
+
+    logger.info('📋 retrieveUserQuota项目ID处理逻辑', {
+      accountProjectId: projectId,
+      requestProject,
+      effectiveProject,
+      decision: projectId ? '使用账户配置' : requestProject ? '使用请求参数' : '不使用项目ID'
+    })
+
+    // 10. 构建请求体（注入 effectiveProject）
+    const requestBody = { ...req.body }
+    if (effectiveProject) {
+      requestBody.project = effectiveProject
+    }
+
+    // 11. 调用底层服务转发请求
+    const response = await geminiAccountService.forwardToCodeAssist(
+      client,
+      'retrieveUserQuota',
+      requestBody,
+      proxyConfig
+    )
+
+    res.json(response)
+  } catch (error) {
+    const version = req.path.includes('v1beta') ? 'v1beta' : 'v1internal'
+    logger.error(`Error in retrieveUserQuota endpoint (${version})`, {
+      error: error.message
+    })
+    res.status(500).json({
+      error: 'Internal server error',
+      message: error.message
+    })
+  }
+}
+
 /**
  * 处理 countTokens 请求
  */
@@ -1260,7 +1405,8 @@ async function handleCountTokens(req, res) {
       const client = await geminiAccountService.getOauthClient(
         accessToken,
         refreshToken,
-        proxyConfig
+        proxyConfig,
+        account.oauthProvider
       )
       response = await geminiAccountService.countTokens(client, contents, model, proxyConfig)
     }
@@ -1271,7 +1417,7 @@ async function handleCountTokens(req, res) {
     logger.error(`Error in countTokens endpoint (${version})`, { error: error.message })
     res.status(500).json({
       error: {
-        message: error.message || 'Internal server error',
+        message: getSafeMessage(error) || 'Internal server error',
         type: 'api_error'
       }
     })
@@ -1370,13 +1516,20 @@ async function handleGenerateContent(req, res) {
     // 解析账户的代理配置
     const proxyConfig = parseProxyConfig(account)
 
-    const client = await geminiAccountService.getOauthClient(accessToken, refreshToken, proxyConfig)
+    const client = await geminiAccountService.getOauthClient(
+      accessToken,
+      refreshToken,
+      proxyConfig,
+      account.oauthProvider
+    )
 
     // 智能处理项目ID：优先使用配置的 projectId，降级到临时 tempProjectId
     let effectiveProjectId = account.projectId || account.tempProjectId || null
 
+    const oauthProvider = account.oauthProvider || 'gemini-cli'
+
     // 如果没有任何项目ID，尝试调用 loadCodeAssist 获取
-    if (!effectiveProjectId) {
+    if (!effectiveProjectId && oauthProvider !== 'antigravity') {
       try {
         logger.info('📋 No projectId available, attempting to fetch from loadCodeAssist...')
         const loadResponse = await geminiAccountService.loadCodeAssist(client, null, proxyConfig)
@@ -1392,6 +1545,12 @@ async function handleGenerateContent(req, res) {
       }
     }
 
+    if (!effectiveProjectId && oauthProvider === 'antigravity') {
+      // Antigravity 账号允许没有 projectId：生成一个稳定的临时 projectId 并缓存
+      effectiveProjectId = `ag-${crypto.randomUUID().replace(/-/g, '').slice(0, 16)}`
+      await geminiAccountService.updateTempProjectId(accountId, effectiveProjectId)
+    }
+
     // 如果还是没有项目ID，返回错误
     if (!effectiveProjectId) {
       return res.status(403).json({
@@ -1414,14 +1573,24 @@ async function handleGenerateContent(req, res) {
           : '从loadCodeAssist获取'
     })
 
-    const response = await geminiAccountService.generateContent(
-      client,
-      { model, request: actualRequestData },
-      user_prompt_id,
-      effectiveProjectId,
-      req.apiKey?.id,
-      proxyConfig
-    )
+    const response =
+      oauthProvider === 'antigravity'
+        ? await geminiAccountService.generateContentAntigravity(
+            client,
+            { model, request: actualRequestData },
+            user_prompt_id,
+            effectiveProjectId,
+            req.apiKey?.id,
+            proxyConfig
+          )
+        : await geminiAccountService.generateContent(
+            client,
+            { model, request: actualRequestData },
+            user_prompt_id,
+            effectiveProjectId,
+            req.apiKey?.id,
+            proxyConfig
+          )
 
     // 记录使用统计
     if (response?.response?.usageMetadata) {
@@ -1434,7 +1603,8 @@ async function handleGenerateContent(req, res) {
           0,
           0,
           model,
-          account.id
+          account.id,
+          'gemini'
         )
         logger.info(
           `📊 Recorded Gemini usage - Input: ${usage.promptTokenCount}, Output: ${usage.candidatesTokenCount}, Total: ${usage.totalTokenCount}`
@@ -1470,7 +1640,7 @@ async function handleGenerateContent(req, res) {
     })
     res.status(500).json({
       error: {
-        message: error.message || 'Internal server error',
+        message: getSafeMessage(error) || 'Internal server error',
         type: 'api_error'
       }
     })
@@ -1582,13 +1752,20 @@ async function handleStreamGenerateContent(req, res) {
     // 解析账户的代理配置
     const proxyConfig = parseProxyConfig(account)
 
-    const client = await geminiAccountService.getOauthClient(accessToken, refreshToken, proxyConfig)
+    const client = await geminiAccountService.getOauthClient(
+      accessToken,
+      refreshToken,
+      proxyConfig,
+      account.oauthProvider
+    )
 
     // 智能处理项目ID：优先使用配置的 projectId，降级到临时 tempProjectId
     let effectiveProjectId = account.projectId || account.tempProjectId || null
 
+    const oauthProvider = account.oauthProvider || 'gemini-cli'
+
     // 如果没有任何项目ID，尝试调用 loadCodeAssist 获取
-    if (!effectiveProjectId) {
+    if (!effectiveProjectId && oauthProvider !== 'antigravity') {
       try {
         logger.info('📋 No projectId available, attempting to fetch from loadCodeAssist...')
         const loadResponse = await geminiAccountService.loadCodeAssist(client, null, proxyConfig)
@@ -1604,6 +1781,11 @@ async function handleStreamGenerateContent(req, res) {
       }
     }
 
+    if (!effectiveProjectId && oauthProvider === 'antigravity') {
+      effectiveProjectId = `ag-${crypto.randomUUID().replace(/-/g, '').slice(0, 16)}`
+      await geminiAccountService.updateTempProjectId(accountId, effectiveProjectId)
+    }
+
     // 如果还是没有项目ID，返回错误
     if (!effectiveProjectId) {
       return res.status(403).json({
@@ -1626,15 +1808,26 @@ async function handleStreamGenerateContent(req, res) {
           : '从loadCodeAssist获取'
     })
 
-    const streamResponse = await geminiAccountService.generateContentStream(
-      client,
-      { model, request: actualRequestData },
-      user_prompt_id,
-      effectiveProjectId,
-      req.apiKey?.id,
-      abortController.signal,
-      proxyConfig
-    )
+    const streamResponse =
+      oauthProvider === 'antigravity'
+        ? await geminiAccountService.generateContentStreamAntigravity(
+            client,
+            { model, request: actualRequestData },
+            user_prompt_id,
+            effectiveProjectId,
+            req.apiKey?.id,
+            abortController.signal,
+            proxyConfig
+          )
+        : await geminiAccountService.generateContentStream(
+            client,
+            { model, request: actualRequestData },
+            user_prompt_id,
+            effectiveProjectId,
+            req.apiKey?.id,
+            abortController.signal,
+            proxyConfig
+          )
 
     // 设置 SSE 响应头
     res.setHeader('Content-Type', 'text/event-stream')
@@ -1731,7 +1924,8 @@ async function handleStreamGenerateContent(req, res) {
             0,
             0,
             model,
-            account.id
+            account.id,
+            'gemini'
           ),
           applyRateLimitTracking(
             req,
@@ -1768,7 +1962,7 @@ async function handleStreamGenerateContent(req, res) {
       if (!res.headersSent) {
         res.status(500).json({
           error: {
-            message: error.message || 'Stream error',
+            message: getSafeMessage(error) || 'Stream error',
             type: 'api_error'
           }
         })
@@ -1778,7 +1972,7 @@ async function handleStreamGenerateContent(req, res) {
             res.write(
               `data: ${JSON.stringify({
                 error: {
-                  message: error.message || 'Stream error',
+                  message: getSafeMessage(error) || 'Stream error',
                   type: 'stream_error',
                   code: error.code
                 }
@@ -1807,7 +2001,7 @@ async function handleStreamGenerateContent(req, res) {
     if (!res.headersSent) {
       res.status(500).json({
         error: {
-          message: error.message || 'Internal server error',
+          message: getSafeMessage(error) || 'Internal server error',
           type: 'api_error'
         }
       })
@@ -1982,15 +2176,23 @@ async function handleStandardGenerateContent(req, res) {
     } else {
       // OAuth 账户
       const { accessToken, refreshToken } = account
+      const oauthProvider = account.oauthProvider || 'gemini-cli'
       const client = await geminiAccountService.getOauthClient(
         accessToken,
         refreshToken,
-        proxyConfig
+        proxyConfig,
+        oauthProvider
       )
 
       let effectiveProjectId = account.projectId || account.tempProjectId || null
 
-      if (!effectiveProjectId) {
+      if (oauthProvider === 'antigravity') {
+        if (!effectiveProjectId) {
+          // Antigravity 账号允许没有 projectId：生成一个稳定的临时 projectId 并缓存
+          effectiveProjectId = `ag-${crypto.randomUUID().replace(/-/g, '').slice(0, 16)}`
+          await geminiAccountService.updateTempProjectId(actualAccountId, effectiveProjectId)
+        }
+      } else if (!effectiveProjectId) {
         try {
           logger.info('📋 No projectId available, attempting to fetch from loadCodeAssist...')
           const loadResponse = await geminiAccountService.loadCodeAssist(client, null, proxyConfig)
@@ -2028,14 +2230,25 @@ async function handleStandardGenerateContent(req, res) {
 
       const userPromptId = `${crypto.randomUUID()}########0`
 
-      response = await geminiAccountService.generateContent(
-        client,
-        { model, request: actualRequestData },
-        userPromptId,
-        effectiveProjectId,
-        req.apiKey?.id,
-        proxyConfig
-      )
+      if (oauthProvider === 'antigravity') {
+        response = await geminiAccountService.generateContentAntigravity(
+          client,
+          { model, request: actualRequestData },
+          userPromptId,
+          effectiveProjectId,
+          req.apiKey?.id,
+          proxyConfig
+        )
+      } else {
+        response = await geminiAccountService.generateContent(
+          client,
+          { model, request: actualRequestData },
+          userPromptId,
+          effectiveProjectId,
+          req.apiKey?.id,
+          proxyConfig
+        )
+      }
     }
 
     // 记录使用统计
@@ -2049,7 +2262,8 @@ async function handleStandardGenerateContent(req, res) {
           0,
           0,
           model,
-          accountId
+          accountId,
+          'gemini'
         )
         logger.info(
           `📊 Recorded Gemini usage - Input: ${usage.promptTokenCount}, Output: ${usage.candidatesTokenCount}, Total: ${usage.totalTokenCount}`
@@ -2071,7 +2285,7 @@ async function handleStandardGenerateContent(req, res) {
 
     res.status(500).json({
       error: {
-        message: error.message || 'Internal server error',
+        message: getSafeMessage(error) || 'Internal server error',
         type: 'api_error'
       }
     })
@@ -2267,12 +2481,20 @@ async function handleStandardStreamGenerateContent(req, res) {
       const client = await geminiAccountService.getOauthClient(
         accessToken,
         refreshToken,
-        proxyConfig
+        proxyConfig,
+        account.oauthProvider
       )
 
       let effectiveProjectId = account.projectId || account.tempProjectId || null
 
-      if (!effectiveProjectId) {
+      const oauthProvider = account.oauthProvider || 'gemini-cli'
+
+      if (oauthProvider === 'antigravity') {
+        if (!effectiveProjectId) {
+          effectiveProjectId = `ag-${crypto.randomUUID().replace(/-/g, '').slice(0, 16)}`
+          await geminiAccountService.updateTempProjectId(actualAccountId, effectiveProjectId)
+        }
+      } else if (!effectiveProjectId) {
         try {
           logger.info('📋 No projectId available, attempting to fetch from loadCodeAssist...')
           const loadResponse = await geminiAccountService.loadCodeAssist(client, null, proxyConfig)
@@ -2310,15 +2532,27 @@ async function handleStandardStreamGenerateContent(req, res) {
 
       const userPromptId = `${crypto.randomUUID()}########0`
 
-      streamResponse = await geminiAccountService.generateContentStream(
-        client,
-        { model, request: actualRequestData },
-        userPromptId,
-        effectiveProjectId,
-        req.apiKey?.id,
-        abortController.signal,
-        proxyConfig
-      )
+      if (oauthProvider === 'antigravity') {
+        streamResponse = await geminiAccountService.generateContentStreamAntigravity(
+          client,
+          { model, request: actualRequestData },
+          userPromptId,
+          effectiveProjectId,
+          req.apiKey?.id,
+          abortController.signal,
+          proxyConfig
+        )
+      } else {
+        streamResponse = await geminiAccountService.generateContentStream(
+          client,
+          { model, request: actualRequestData },
+          userPromptId,
+          effectiveProjectId,
+          req.apiKey?.id,
+          abortController.signal,
+          proxyConfig
+        )
+      }
     }
 
     // 设置 SSE 响应头
@@ -2458,7 +2692,8 @@ async function handleStandardStreamGenerateContent(req, res) {
             0,
             0,
             model,
-            accountId
+            accountId,
+            'gemini'
           )
           .then(() => {
             logger.info(
@@ -2486,7 +2721,7 @@ async function handleStandardStreamGenerateContent(req, res) {
       if (!res.headersSent) {
         res.status(500).json({
           error: {
-            message: error.message || 'Stream error',
+            message: getSafeMessage(error) || 'Stream error',
             type: 'api_error'
           }
         })
@@ -2496,7 +2731,7 @@ async function handleStandardStreamGenerateContent(req, res) {
             res.write(
               `data: ${JSON.stringify({
                 error: {
-                  message: error.message || 'Stream error',
+                  message: getSafeMessage(error) || 'Stream error',
                   type: 'stream_error',
                   code: error.code
                 }
@@ -2580,6 +2815,7 @@ module.exports = {
   handleSimpleEndpoint,
   handleLoadCodeAssist,
   handleOnboardUser,
+  handleRetrieveUserQuota,
   handleCountTokens,
   handleGenerateContent,
   handleStreamGenerateContent,
diff --git a/src/middleware/auth.js b/src/middleware/auth.js
index f7997431..3a275faf 100644
--- a/src/middleware/auth.js
+++ b/src/middleware/auth.js
@@ -2048,7 +2048,7 @@ const globalRateLimit = async (req, res, next) =>
 
 // 📊 请求大小限制中间件
 const requestSizeLimit = (req, res, next) => {
-  const MAX_SIZE_MB = parseInt(process.env.REQUEST_MAX_SIZE_MB || '60', 10)
+  const MAX_SIZE_MB = parseInt(process.env.REQUEST_MAX_SIZE_MB || '100', 10)
   const maxSize = MAX_SIZE_MB * 1024 * 1024
   const contentLength = parseInt(req.headers['content-length'] || '0')
 
@@ -2057,7 +2057,7 @@ const requestSizeLimit = (req, res, next) => {
     return res.status(413).json({
       error: 'Payload Too Large',
       message: 'Request body size exceeds limit',
-      limit: '10MB'
+      limit: `${MAX_SIZE_MB}MB`
     })
   }
 
diff --git a/src/models/redis.js b/src/models/redis.js
index 0ec47a23..e841ba56 100644
--- a/src/models/redis.js
+++ b/src/models/redis.js
@@ -502,6 +502,21 @@ class RedisClient {
     return [...keyIds]
   }
 
+  // 添加标签到全局标签集合
+  async addTag(tagName) {
+    await this.client.sadd('apikey:tags:all', tagName)
+  }
+
+  // 从全局标签集合删除标签
+  async removeTag(tagName) {
+    await this.client.srem('apikey:tags:all', tagName)
+  }
+
+  // 获取全局标签集合
+  async getGlobalTags() {
+    return await this.client.smembers('apikey:tags:all')
+  }
+
   /**
    * 使用索引获取所有 API Key 的标签（优化版本）
    * 优先级：索引就绪时用 apikey:tags:all > apikey:idx:all + pipeline > SCAN
@@ -1567,8 +1582,10 @@ class RedisClient {
     return result
   }
 
-  // 💰 增加当日费用
-  async incrementDailyCost(keyId, amount) {
+  // 💰 增加当日费用（支持倍率成本和真实成本分开记录）
+  // amount: 倍率后的成本（用于限额校验）
+  // realAmount: 真实成本（用于对账），如果不传则等于 amount
+  async incrementDailyCost(keyId, amount, realAmount = null) {
     const today = getDateStringInTimezone()
     const tzDate = getDateInTimezone()
     const currentMonth = `${tzDate.getUTCFullYear()}-${String(tzDate.getUTCMonth() + 1).padStart(
@@ -1582,25 +1599,33 @@ class RedisClient {
     const hourlyKey = `usage:cost:hourly:${keyId}:${currentHour}`
     const totalKey = `usage:cost:total:${keyId}` // 总费用键 - 永不过期，持续累加
 
+    // 真实成本键（用于对账）
+    const realTotalKey = `usage:cost:real:total:${keyId}`
+    const realDailyKey = `usage:cost:real:daily:${keyId}:${today}`
+    const actualRealAmount = realAmount !== null ? realAmount : amount
+
     logger.debug(
-      `💰 Incrementing cost for ${keyId}, amount: $${amount}, date: ${today}, dailyKey: ${dailyKey}`
+      `💰 Incrementing cost for ${keyId}, rated: $${amount}, real: $${actualRealAmount}, date: ${today}`
     )
 
     const results = await Promise.all([
       this.client.incrbyfloat(dailyKey, amount),
       this.client.incrbyfloat(monthlyKey, amount),
       this.client.incrbyfloat(hourlyKey, amount),
-      this.client.incrbyfloat(totalKey, amount), // ✅ 累加到总费用（永不过期）
-      // 设置过期时间（注意：totalKey 不设置过期时间，保持永久累计）
+      this.client.incrbyfloat(totalKey, amount), // 倍率后总费用（用于限额）
+      this.client.incrbyfloat(realTotalKey, actualRealAmount), // 真实总费用（用于对账）
+      this.client.incrbyfloat(realDailyKey, actualRealAmount), // 真实每日费用
+      // 设置过期时间（注意：totalKey 和 realTotalKey 不设置过期时间，保持永久累计）
       this.client.expire(dailyKey, 86400 * 30), // 30天
       this.client.expire(monthlyKey, 86400 * 90), // 90天
-      this.client.expire(hourlyKey, 86400 * 7) // 7天
+      this.client.expire(hourlyKey, 86400 * 7), // 7天
+      this.client.expire(realDailyKey, 86400 * 30) // 30天
     ])
 
     logger.debug(`💰 Cost incremented successfully, new daily total: $${results[0]}`)
   }
 
-  // 💰 获取费用统计
+  // 💰 获取费用统计（包含倍率成本和真实成本）
   async getCostStats(keyId) {
     const today = getDateStringInTimezone()
     const tzDate = getDateInTimezone()
@@ -1610,18 +1635,22 @@ class RedisClient {
     )}`
     const currentHour = `${today}:${String(getHourInTimezone(new Date())).padStart(2, '0')}`
 
-    const [daily, monthly, hourly, total] = await Promise.all([
+    const [daily, monthly, hourly, total, realTotal, realDaily] = await Promise.all([
       this.client.get(`usage:cost:daily:${keyId}:${today}`),
       this.client.get(`usage:cost:monthly:${keyId}:${currentMonth}`),
       this.client.get(`usage:cost:hourly:${keyId}:${currentHour}`),
-      this.client.get(`usage:cost:total:${keyId}`)
+      this.client.get(`usage:cost:total:${keyId}`),
+      this.client.get(`usage:cost:real:total:${keyId}`),
+      this.client.get(`usage:cost:real:daily:${keyId}:${today}`)
     ])
 
     return {
       daily: parseFloat(daily || 0),
       monthly: parseFloat(monthly || 0),
       hourly: parseFloat(hourly || 0),
-      total: parseFloat(total || 0)
+      total: parseFloat(total || 0),
+      realTotal: parseFloat(realTotal || 0),
+      realDaily: parseFloat(realDaily || 0)
     }
   }
 
@@ -1637,22 +1666,30 @@ class RedisClient {
     return result
   }
 
-  // 💰 增加本周 Opus 费用
-  async incrementWeeklyOpusCost(keyId, amount) {
+  // 💰 增加本周 Opus 费用（支持倍率成本和真实成本）
+  // amount: 倍率后的成本（用于限额校验）
+  // realAmount: 真实成本（用于对账），如果不传则等于 amount
+  async incrementWeeklyOpusCost(keyId, amount, realAmount = null) {
     const currentWeek = getWeekStringInTimezone()
     const weeklyKey = `usage:opus:weekly:${keyId}:${currentWeek}`
     const totalKey = `usage:opus:total:${keyId}`
+    const realWeeklyKey = `usage:opus:real:weekly:${keyId}:${currentWeek}`
+    const realTotalKey = `usage:opus:real:total:${keyId}`
+    const actualRealAmount = realAmount !== null ? realAmount : amount
 
     logger.debug(
-      `💰 Incrementing weekly Opus cost for ${keyId}, week: ${currentWeek}, amount: $${amount}`
+      `💰 Incrementing weekly Opus cost for ${keyId}, week: ${currentWeek}, rated: $${amount}, real: $${actualRealAmount}`
     )
 
     // 使用 pipeline 批量执行，提高性能
     const pipeline = this.client.pipeline()
     pipeline.incrbyfloat(weeklyKey, amount)
     pipeline.incrbyfloat(totalKey, amount)
+    pipeline.incrbyfloat(realWeeklyKey, actualRealAmount)
+    pipeline.incrbyfloat(realTotalKey, actualRealAmount)
     // 设置周费用键的过期时间为 2 周
     pipeline.expire(weeklyKey, 14 * 24 * 3600)
+    pipeline.expire(realWeeklyKey, 14 * 24 * 3600)
 
     const results = await pipeline.exec()
     logger.debug(`💰 Opus cost incremented successfully, new weekly total: $${results[0][1]}`)
@@ -2252,6 +2289,123 @@ class RedisClient {
     return await this.client.del(key)
   }
 
+  // 💰 账户余额缓存（API 查询结果）
+  async setAccountBalance(platform, accountId, balanceData, ttl = 3600) {
+    const key = `account_balance:${platform}:${accountId}`
+
+    const payload = {
+      balance:
+        balanceData && balanceData.balance !== null && balanceData.balance !== undefined
+          ? String(balanceData.balance)
+          : '',
+      currency: balanceData?.currency || 'USD',
+      lastRefreshAt: balanceData?.lastRefreshAt || new Date().toISOString(),
+      queryMethod: balanceData?.queryMethod || 'api',
+      status: balanceData?.status || 'success',
+      errorMessage: balanceData?.errorMessage || balanceData?.error || '',
+      rawData: balanceData?.rawData ? JSON.stringify(balanceData.rawData) : '',
+      quota: balanceData?.quota ? JSON.stringify(balanceData.quota) : ''
+    }
+
+    await this.client.hset(key, payload)
+    await this.client.expire(key, ttl)
+  }
+
+  async getAccountBalance(platform, accountId) {
+    const key = `account_balance:${platform}:${accountId}`
+    const [data, ttlSeconds] = await Promise.all([this.client.hgetall(key), this.client.ttl(key)])
+
+    if (!data || Object.keys(data).length === 0) {
+      return null
+    }
+
+    let rawData = null
+    if (data.rawData) {
+      try {
+        rawData = JSON.parse(data.rawData)
+      } catch (error) {
+        rawData = null
+      }
+    }
+
+    let quota = null
+    if (data.quota) {
+      try {
+        quota = JSON.parse(data.quota)
+      } catch (error) {
+        quota = null
+      }
+    }
+
+    return {
+      balance: data.balance ? parseFloat(data.balance) : null,
+      currency: data.currency || 'USD',
+      lastRefreshAt: data.lastRefreshAt || null,
+      queryMethod: data.queryMethod || null,
+      status: data.status || null,
+      errorMessage: data.errorMessage || '',
+      rawData,
+      quota,
+      ttlSeconds: Number.isFinite(ttlSeconds) ? ttlSeconds : null
+    }
+  }
+
+  // 📊 账户余额缓存（本地统计）
+  async setLocalBalance(platform, accountId, statisticsData, ttl = 300) {
+    const key = `account_balance_local:${platform}:${accountId}`
+
+    await this.client.hset(key, {
+      estimatedBalance: JSON.stringify(statisticsData || {}),
+      lastCalculated: new Date().toISOString()
+    })
+    await this.client.expire(key, ttl)
+  }
+
+  async getLocalBalance(platform, accountId) {
+    const key = `account_balance_local:${platform}:${accountId}`
+    const data = await this.client.hgetall(key)
+
+    if (!data || !data.estimatedBalance) {
+      return null
+    }
+
+    try {
+      return JSON.parse(data.estimatedBalance)
+    } catch (error) {
+      return null
+    }
+  }
+
+  async deleteAccountBalance(platform, accountId) {
+    const key = `account_balance:${platform}:${accountId}`
+    const localKey = `account_balance_local:${platform}:${accountId}`
+    await this.client.del(key, localKey)
+  }
+
+  // 🧩 账户余额脚本配置
+  async setBalanceScriptConfig(platform, accountId, scriptConfig) {
+    const key = `account_balance_script:${platform}:${accountId}`
+    await this.client.set(key, JSON.stringify(scriptConfig || {}))
+  }
+
+  async getBalanceScriptConfig(platform, accountId) {
+    const key = `account_balance_script:${platform}:${accountId}`
+    const raw = await this.client.get(key)
+    if (!raw) {
+      return null
+    }
+    try {
+      return JSON.parse(raw)
+    } catch (error) {
+      return null
+    }
+  }
+
+  async deleteBalanceScriptConfig(platform, accountId) {
+    const key = `account_balance_script:${platform}:${accountId}`
+    return await this.client.del(key)
+  }
+
   // 📈 系统统计
   async getSystemStats() {
     const keys = await Promise.all([
@@ -4688,12 +4842,58 @@ redisClient.migrateGlobalStats = async function () {
 
   // 写入全局统计
   await this.client.hset('usage:global:total', total)
+
+  // 迁移月份索引（从现有的 usage:model:monthly:* key 中提取月份）
+  const monthlyKeys = await this.client.keys('usage:model:monthly:*')
+  const months = new Set()
+  for (const key of monthlyKeys) {
+    const match = key.match(/:(\d{4}-\d{2})$/)
+    if (match) {
+      months.add(match[1])
+    }
+  }
+  if (months.size > 0) {
+    await this.client.sadd('usage:model:monthly:months', ...months)
+    logger.info(`📅 迁移月份索引: ${months.size} 个月份 (${[...months].sort().join(', ')})`)
+  }
+
   logger.success(
     `✅ 迁移完成: ${keyIds.length} 个 API Key, ${total.requests} 请求, ${total.allTokens} tokens`
   )
   return { success: true, migrated: keyIds.length, total }
 }
 
+// 确保月份索引完整（后台检查，补充缺失的月份）
+redisClient.ensureMonthlyMonthsIndex = async function () {
+  const logger = require('../utils/logger')
+
+  // 扫描所有月份 key
+  const monthlyKeys = await this.client.keys('usage:model:monthly:*')
+  const allMonths = new Set()
+  for (const key of monthlyKeys) {
+    const match = key.match(/:(\d{4}-\d{2})$/)
+    if (match) {
+      allMonths.add(match[1])
+    }
+  }
+
+  if (allMonths.size === 0) {
+    return // 没有月份数据
+  }
+
+  // 获取索引中已有的月份
+  const existingMonths = await this.client.smembers('usage:model:monthly:months')
+  const existingSet = new Set(existingMonths)
+
+  // 找出缺失的月份
+  const missingMonths = [...allMonths].filter((m) => !existingSet.has(m))
+
+  if (missingMonths.length > 0) {
+    await this.client.sadd('usage:model:monthly:months', ...missingMonths)
+    logger.info(`📅 补充月份索引: ${missingMonths.length} 个月份 (${missingMonths.sort().join(', ')})`)
+  }
+}
+
 // 检查是否需要迁移
 redisClient.needsGlobalStatsMigration = async function () {
   const exists = await this.client.exists('usage:global:total')
diff --git a/src/routes/admin/accountBalance.js b/src/routes/admin/accountBalance.js
new file mode 100644
index 00000000..7f1d18db
--- /dev/null
+++ b/src/routes/admin/accountBalance.js
@@ -0,0 +1,214 @@
+const express = require('express')
+const { authenticateAdmin } = require('../../middleware/auth')
+const logger = require('../../utils/logger')
+const accountBalanceService = require('../../services/accountBalanceService')
+const balanceScriptService = require('../../services/balanceScriptService')
+const { isBalanceScriptEnabled } = require('../../utils/featureFlags')
+
+const router = express.Router()
+
+const ensureValidPlatform = (rawPlatform) => {
+  const normalized = accountBalanceService.normalizePlatform(rawPlatform)
+  if (!normalized) {
+    return { ok: false, status: 400, error: '缺少 platform 参数' }
+  }
+
+  const supported = accountBalanceService.getSupportedPlatforms()
+  if (!supported.includes(normalized)) {
+    return { ok: false, status: 400, error: `不支持的平台: ${normalized}` }
+  }
+
+  return { ok: true, platform: normalized }
+}
+
+// 1) 获取账户余额（默认本地统计优先，可选触发 Provider）
+// GET /admin/accounts/:accountId/balance?platform=xxx&queryApi=false
+router.get('/accounts/:accountId/balance', authenticateAdmin, async (req, res) => {
+  try {
+    const { accountId } = req.params
+    const { platform, queryApi } = req.query
+
+    const valid = ensureValidPlatform(platform)
+    if (!valid.ok) {
+      return res.status(valid.status).json({ success: false, error: valid.error })
+    }
+
+    const balance = await accountBalanceService.getAccountBalance(accountId, valid.platform, {
+      queryApi
+    })
+
+    if (!balance) {
+      return res.status(404).json({ success: false, error: 'Account not found' })
+    }
+
+    return res.json(balance)
+  } catch (error) {
+    logger.error('获取账户余额失败', error)
+    return res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+// 2) 强制刷新账户余额（强制触发查询：优先脚本；Provider 仅为降级）
+// POST /admin/accounts/:accountId/balance/refresh
+// Body: { platform: 'xxx' }
+router.post('/accounts/:accountId/balance/refresh', authenticateAdmin, async (req, res) => {
+  try {
+    const { accountId } = req.params
+    const { platform } = req.body || {}
+
+    const valid = ensureValidPlatform(platform)
+    if (!valid.ok) {
+      return res.status(valid.status).json({ success: false, error: valid.error })
+    }
+
+    logger.info(`手动刷新余额: ${valid.platform}:${accountId}`)
+
+    const balance = await accountBalanceService.refreshAccountBalance(accountId, valid.platform)
+    if (!balance) {
+      return res.status(404).json({ success: false, error: 'Account not found' })
+    }
+
+    return res.json(balance)
+  } catch (error) {
+    logger.error('刷新账户余额失败', error)
+    return res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+// 3) 批量获取平台所有账户余额
+// GET /admin/accounts/balance/platform/:platform?queryApi=false
+router.get('/accounts/balance/platform/:platform', authenticateAdmin, async (req, res) => {
+  try {
+    const { platform } = req.params
+    const { queryApi } = req.query
+
+    const valid = ensureValidPlatform(platform)
+    if (!valid.ok) {
+      return res.status(valid.status).json({ success: false, error: valid.error })
+    }
+
+    const balances = await accountBalanceService.getAllAccountsBalance(valid.platform, { queryApi })
+
+    return res.json({ success: true, data: balances })
+  } catch (error) {
+    logger.error('批量获取余额失败', error)
+    return res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+// 4) 获取余额汇总（Dashboard 用）
+// GET /admin/accounts/balance/summary
+router.get('/accounts/balance/summary', authenticateAdmin, async (req, res) => {
+  try {
+    const summary = await accountBalanceService.getBalanceSummary()
+    return res.json({ success: true, data: summary })
+  } catch (error) {
+    logger.error('获取余额汇总失败', error)
+    return res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+// 5) 清除缓存
+// DELETE /admin/accounts/:accountId/balance/cache?platform=xxx
+router.delete('/accounts/:accountId/balance/cache', authenticateAdmin, async (req, res) => {
+  try {
+    const { accountId } = req.params
+    const { platform } = req.query
+
+    const valid = ensureValidPlatform(platform)
+    if (!valid.ok) {
+      return res.status(valid.status).json({ success: false, error: valid.error })
+    }
+
+    await accountBalanceService.clearCache(accountId, valid.platform)
+
+    return res.json({ success: true, message: '缓存已清除' })
+  } catch (error) {
+    logger.error('清除缓存失败', error)
+    return res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+// 6) 获取/保存/测试余额脚本配置（单账户）
+router.get('/accounts/:accountId/balance/script', authenticateAdmin, async (req, res) => {
+  try {
+    const { accountId } = req.params
+    const { platform } = req.query
+
+    const valid = ensureValidPlatform(platform)
+    if (!valid.ok) {
+      return res.status(valid.status).json({ success: false, error: valid.error })
+    }
+
+    const config = await accountBalanceService.redis.getBalanceScriptConfig(
+      valid.platform,
+      accountId
+    )
+    return res.json({ success: true, data: config || null })
+  } catch (error) {
+    logger.error('获取余额脚本配置失败', error)
+    return res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+router.put('/accounts/:accountId/balance/script', authenticateAdmin, async (req, res) => {
+  try {
+    const { accountId } = req.params
+    const { platform } = req.query
+    const valid = ensureValidPlatform(platform)
+    if (!valid.ok) {
+      return res.status(valid.status).json({ success: false, error: valid.error })
+    }
+
+    const payload = req.body || {}
+    await accountBalanceService.redis.setBalanceScriptConfig(valid.platform, accountId, payload)
+    return res.json({ success: true, data: payload })
+  } catch (error) {
+    logger.error('保存余额脚本配置失败', error)
+    return res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+router.post('/accounts/:accountId/balance/script/test', authenticateAdmin, async (req, res) => {
+  try {
+    const { accountId } = req.params
+    const { platform } = req.query
+    const valid = ensureValidPlatform(platform)
+    if (!valid.ok) {
+      return res.status(valid.status).json({ success: false, error: valid.error })
+    }
+
+    if (!isBalanceScriptEnabled()) {
+      return res.status(403).json({
+        success: false,
+        error: '余额脚本功能已禁用（可通过 BALANCE_SCRIPT_ENABLED=true 启用）'
+      })
+    }
+
+    const payload = req.body || {}
+    const { scriptBody } = payload
+    if (!scriptBody) {
+      return res.status(400).json({ success: false, error: '脚本内容不能为空' })
+    }
+
+    const result = await balanceScriptService.execute({
+      scriptBody,
+      timeoutSeconds: payload.timeoutSeconds || 10,
+      variables: {
+        baseUrl: payload.baseUrl || '',
+        apiKey: payload.apiKey || '',
+        token: payload.token || '',
+        accountId,
+        platform: valid.platform,
+        extra: payload.extra || ''
+      }
+    })
+
+    return res.json({ success: true, data: result })
+  } catch (error) {
+    logger.error('测试余额脚本失败', error)
+    return res.status(400).json({ success: false, error: error.message })
+  }
+})
+
+module.exports = router
diff --git a/src/routes/admin/apiKeys.js b/src/routes/admin/apiKeys.js
index 86484332..5b3df468 100644
--- a/src/routes/admin/apiKeys.js
+++ b/src/routes/admin/apiKeys.js
@@ -8,15 +8,41 @@ const config = require('../../../config/config')
 
 const router = express.Router()
 
-// 有效的服务权限值
-const VALID_SERVICES = ['claude', 'gemini', 'openai', 'droid']
+// 有效的权限值列表
+const VALID_PERMISSIONS = ['claude', 'gemini', 'openai', 'droid']
 
-// 验证 permissions 值（支持单选和多选）
-const isValidPermissions = (permissions) => {
-  if (!permissions || permissions === 'all') return true
-  // 支持逗号分隔的多选格式
-  const services = permissions.split(',')
-  return services.every((s) => VALID_SERVICES.includes(s.trim()))
+/**
+ * 验证权限数组格式
+ * @param {any} permissions - 权限值（可以是数组或其他）
+ * @returns {string|null} - 返回错误消息，null 表示验证通过
+ */
+function validatePermissions(permissions) {
+  // 空值或未定义表示全部服务
+  if (permissions === undefined || permissions === null || permissions === '') {
+    return null
+  }
+  // 兼容旧格式字符串
+  if (typeof permissions === 'string') {
+    if (permissions === 'all' || VALID_PERMISSIONS.includes(permissions)) {
+      return null
+    }
+    return `Invalid permissions value. Must be an array of: ${VALID_PERMISSIONS.join(', ')}`
+  }
+  // 新格式数组
+  if (Array.isArray(permissions)) {
+    // 空数组表示全部服务
+    if (permissions.length === 0) {
+      return null
+    }
+    // 验证数组中的每个值
+    for (const perm of permissions) {
+      if (!VALID_PERMISSIONS.includes(perm)) {
+        return `Invalid permission value "${perm}". Valid values are: ${VALID_PERMISSIONS.join(', ')}`
+      }
+    }
+    return null
+  }
+  return `Permissions must be an array. Valid values are: ${VALID_PERMISSIONS.join(', ')}`
 }
 
 // 👥 用户管理 (用于API Key分配)
@@ -715,6 +741,91 @@ router.get('/api-keys/tags', authenticateAdmin, async (req, res) => {
   }
 })
 
+// 获取标签详情（含使用数量）
+router.get('/api-keys/tags/details', authenticateAdmin, async (req, res) => {
+  try {
+    const tagDetails = await apiKeyService.getTagsWithCount()
+    logger.info(`📋 Retrieved ${tagDetails.length} tags with usage counts`)
+    return res.json({ success: true, data: tagDetails })
+  } catch (error) {
+    logger.error('❌ Failed to get tag details:', error)
+    return res.status(500).json({ error: 'Failed to get tag details', message: error.message })
+  }
+})
+
+// 创建新标签
+router.post('/api-keys/tags', authenticateAdmin, async (req, res) => {
+  try {
+    const { name } = req.body
+    if (!name || !name.trim()) {
+      return res.status(400).json({ error: '标签名称不能为空' })
+    }
+
+    const result = await apiKeyService.createTag(name.trim())
+    if (!result.success) {
+      return res.status(400).json({ error: result.error })
+    }
+
+    logger.info(`🏷️ Created new tag: ${name}`)
+    return res.json({ success: true, message: '标签创建成功' })
+  } catch (error) {
+    logger.error('❌ Failed to create tag:', error)
+    return res.status(500).json({ error: 'Failed to create tag', message: error.message })
+  }
+})
+
+// 删除标签（从所有 API Key 中移除）
+router.delete('/api-keys/tags/:tagName', authenticateAdmin, async (req, res) => {
+  try {
+    const { tagName } = req.params
+    if (!tagName) {
+      return res.status(400).json({ error: 'Tag name is required' })
+    }
+
+    const decodedTagName = decodeURIComponent(tagName)
+    const result = await apiKeyService.removeTagFromAllKeys(decodedTagName)
+
+    logger.info(`🏷️ Removed tag "${decodedTagName}" from ${result.affectedCount} API keys`)
+    return res.json({
+      success: true,
+      message: `Tag "${decodedTagName}" removed from ${result.affectedCount} API keys`,
+      affectedCount: result.affectedCount
+    })
+  } catch (error) {
+    logger.error('❌ Failed to delete tag:', error)
+    return res.status(500).json({ error: 'Failed to delete tag', message: error.message })
+  }
+})
+
+// 重命名标签
+router.put('/api-keys/tags/:tagName', authenticateAdmin, async (req, res) => {
+  try {
+    const { tagName } = req.params
+    const { newName } = req.body
+    if (!tagName || !newName || !newName.trim()) {
+      return res.status(400).json({ error: 'Tag name and new name are required' })
+    }
+
+    const decodedTagName = decodeURIComponent(tagName)
+    const trimmedNewName = newName.trim()
+    const result = await apiKeyService.renameTag(decodedTagName, trimmedNewName)
+
+    if (result.error) {
+      return res.status(400).json({ error: result.error })
+    }
+
+    logger.info(`🏷️ Renamed tag "${decodedTagName}" to "${trimmedNewName}" in ${result.affectedCount} API keys`)
+    return res.json({
+      success: true,
+      message: `Tag renamed in ${result.affectedCount} API keys`,
+      affectedCount: result.affectedCount
+    })
+  } catch (error) {
+    logger.error('❌ Failed to rename tag:', error)
+    return res.status(500).json({ error: 'Failed to rename tag', message: error.message })
+  }
+})
+
 /**
  * 获取账户绑定的 API Key 数量统计
  * GET /admin/accounts/binding-counts
@@ -1436,16 +1547,10 @@ router.post('/api-keys', authenticateAdmin, async (req, res) => {
       }
     }
 
-    // 验证服务权限字段
-    if (
-      permissions !== undefined &&
-      permissions !== null &&
-      permissions !== '' &&
-      !isValidPermissions(permissions)
-    ) {
-      return res.status(400).json({
-        error: 'Invalid permissions value. Must be claude, gemini, openai, droid, all, or comma-separated combination'
-      })
+    // 验证服务权限字段（支持数组格式）
+    const permissionsError = validatePermissions(permissions)
+    if (permissionsError) {
+      return res.status(400).json({ error: permissionsError })
     }
 
     const newKey = await apiKeyService.generateApiKey({
@@ -1535,15 +1640,10 @@ router.post('/api-keys/batch', authenticateAdmin, async (req, res) => {
         .json({ error: 'Base name must be less than 90 characters to allow for numbering' })
     }
 
-    if (
-      permissions !== undefined &&
-      permissions !== null &&
-      permissions !== '' &&
-      !isValidPermissions(permissions)
-    ) {
-      return res.status(400).json({
-        error: 'Invalid permissions value. Must be claude, gemini, openai, droid, all, or comma-separated combination'
-      })
+    // 验证服务权限字段（支持数组格式）
+    const batchPermissionsError = validatePermissions(permissions)
+    if (batchPermissionsError) {
+      return res.status(400).json({ error: batchPermissionsError })
     }
 
     // 生成批量API Keys
@@ -1646,13 +1746,12 @@ router.put('/api-keys/batch', authenticateAdmin, async (req, res) => {
       })
     }
 
-    if (
-      updates.permissions !== undefined &&
-      !isValidPermissions(updates.permissions)
-    ) {
-      return res.status(400).json({
-        error: 'Invalid permissions value. Must be claude, gemini, openai, droid, all, or comma-separated combination'
-      })
+    // 验证服务权限字段（支持数组格式）
+    if (updates.permissions !== undefined) {
+      const updatePermissionsError = validatePermissions(updates.permissions)
+      if (updatePermissionsError) {
+        return res.status(400).json({ error: updatePermissionsError })
+      }
     }
 
     logger.info(
@@ -1927,11 +2026,10 @@ router.put('/api-keys/:keyId', authenticateAdmin, async (req, res) => {
     }
 
     if (permissions !== undefined) {
-      // 验证权限值
-      if (!isValidPermissions(permissions)) {
-        return res.status(400).json({
-          error: 'Invalid permissions value. Must be claude, gemini, openai, droid, all, or comma-separated combination'
-        })
+      // 验证服务权限字段（支持数组格式）
+      const singlePermissionsError = validatePermissions(permissions)
+      if (singlePermissionsError) {
+        return res.status(400).json({ error: singlePermissionsError })
       }
       updates.permissions = permissions
     }
diff --git a/src/routes/admin/balanceScripts.js b/src/routes/admin/balanceScripts.js
new file mode 100644
index 00000000..ef7ffa01
--- /dev/null
+++ b/src/routes/admin/balanceScripts.js
@@ -0,0 +1,41 @@
+const express = require('express')
+const { authenticateAdmin } = require('../../middleware/auth')
+const balanceScriptService = require('../../services/balanceScriptService')
+const router = express.Router()
+
+// 获取全部脚本配置列表
+router.get('/balance-scripts', authenticateAdmin, (req, res) => {
+  const items = balanceScriptService.listConfigs()
+  return res.json({ success: true, data: items })
+})
+
+// 获取单个脚本配置
+router.get('/balance-scripts/:name', authenticateAdmin, (req, res) => {
+  const { name } = req.params
+  const config = balanceScriptService.getConfig(name || 'default')
+  return res.json({ success: true, data: config })
+})
+
+// 保存脚本配置
+router.put('/balance-scripts/:name', authenticateAdmin, (req, res) => {
+  try {
+    const { name } = req.params
+    const saved = balanceScriptService.saveConfig(name || 'default', req.body || {})
+    return res.json({ success: true, data: saved })
+  } catch (error) {
+    return res.status(400).json({ success: false, error: error.message })
+  }
+})
+
+// 测试脚本（不落库）
+router.post('/balance-scripts/:name/test', authenticateAdmin, async (req, res) => {
+  try {
+    const { name } = req.params
+    const result = await balanceScriptService.testScript(name || 'default', req.body || {})
+    return res.json({ success: true, data: result })
+  } catch (error) {
+    return res.status(400).json({ success: false, error: error.message })
+  }
+})
+
+module.exports = router
diff --git a/src/routes/admin/bedrockAccounts.js b/src/routes/admin/bedrockAccounts.js
index c9d3a17c..4b6a365b 100644
--- a/src/routes/admin/bedrockAccounts.js
+++ b/src/routes/admin/bedrockAccounts.js
@@ -122,6 +122,7 @@ router.post('/', authenticateAdmin, async (req, res) => {
       description,
       region,
       awsCredentials,
+      bearerToken,
       defaultModel,
       priority,
       accountType,
@@ -145,9 +146,9 @@ router.post('/', authenticateAdmin, async (req, res) => {
     }
 
     // 验证credentialType的有效性
-    if (credentialType && !['default', 'access_key', 'bearer_token'].includes(credentialType)) {
+    if (credentialType && !['access_key', 'bearer_token'].includes(credentialType)) {
       return res.status(400).json({
-        error: 'Invalid credential type. Must be "default", "access_key", or "bearer_token"'
+        error: 'Invalid credential type. Must be "access_key" or "bearer_token"'
       })
     }
 
@@ -156,10 +157,11 @@ router.post('/', authenticateAdmin, async (req, res) => {
       description: description || '',
       region: region || 'us-east-1',
       awsCredentials,
+      bearerToken,
       defaultModel,
       priority: priority || 50,
       accountType: accountType || 'shared',
-      credentialType: credentialType || 'default'
+      credentialType: credentialType || 'access_key'
     })
 
     if (!result.success) {
@@ -206,10 +208,10 @@ router.put('/:accountId', authenticateAdmin, async (req, res) => {
     // 验证credentialType的有效性
     if (
       mappedUpdates.credentialType &&
-      !['default', 'access_key', 'bearer_token'].includes(mappedUpdates.credentialType)
+      !['access_key', 'bearer_token'].includes(mappedUpdates.credentialType)
     ) {
       return res.status(400).json({
-        error: 'Invalid credential type. Must be "default", "access_key", or "bearer_token"'
+        error: 'Invalid credential type. Must be "access_key" or "bearer_token"'
       })
     }
 
@@ -349,22 +351,15 @@ router.put('/:accountId/toggle-schedulable', authenticateAdmin, async (req, res)
   }
 })
 
-// 测试Bedrock账户连接
+// 测试Bedrock账户连接（SSE 流式）
 router.post('/:accountId/test', authenticateAdmin, async (req, res) => {
   try {
     const { accountId } = req.params
 
-    const result = await bedrockAccountService.testAccount(accountId)
-
-    if (!result.success) {
-      return res.status(500).json({ error: 'Account test failed', message: result.error })
-    }
-
-    logger.success(`🧪 Admin tested Bedrock account: ${accountId} - ${result.data.status}`)
-    return res.json({ success: true, data: result.data })
+    await bedrockAccountService.testAccountConnection(accountId, res)
   } catch (error) {
     logger.error('❌ Failed to test Bedrock account:', error)
-    return res.status(500).json({ error: 'Failed to test Bedrock account', message: error.message })
+    // 错误已在服务层处理，这里仅做日志记录
   }
 })
 
diff --git a/src/routes/admin/geminiAccounts.js b/src/routes/admin/geminiAccounts.js
index 3d9c4abf..e3eb57d2 100644
--- a/src/routes/admin/geminiAccounts.js
+++ b/src/routes/admin/geminiAccounts.js
@@ -11,14 +11,19 @@ const { formatAccountExpiry, mapExpiryField } = require('./utils')
 const router = express.Router()
 
 // 🤖 Gemini OAuth 账户管理
+function getDefaultRedirectUri(oauthProvider) {
+  if (oauthProvider === 'antigravity') {
+    return process.env.ANTIGRAVITY_OAUTH_REDIRECT_URI || 'http://localhost:45462'
+  }
+  return process.env.GEMINI_OAUTH_REDIRECT_URI || 'https://codeassist.google.com/authcode'
+}
 
 // 生成 Gemini OAuth 授权 URL
 router.post('/generate-auth-url', authenticateAdmin, async (req, res) => {
   try {
-    const { state, proxy } = req.body // 接收代理配置
+    const { state, proxy, oauthProvider } = req.body // 接收代理配置与OAuth Provider
 
-    // 使用新的 codeassist.google.com 回调地址
-    const redirectUri = 'https://codeassist.google.com/authcode'
+    const redirectUri = getDefaultRedirectUri(oauthProvider)
 
     logger.info(`Generating Gemini OAuth URL with redirect_uri: ${redirectUri}`)
 
@@ -26,8 +31,9 @@ router.post('/generate-auth-url', authenticateAdmin, async (req, res) => {
       authUrl,
       state: authState,
       codeVerifier,
-      redirectUri: finalRedirectUri
-    } = await geminiAccountService.generateAuthUrl(state, redirectUri, proxy)
+      redirectUri: finalRedirectUri,
+      oauthProvider: resolvedOauthProvider
+    } = await geminiAccountService.generateAuthUrl(state, redirectUri, proxy, oauthProvider)
 
     // 创建 OAuth 会话，包含 codeVerifier 和代理配置
     const sessionId = authState
@@ -37,6 +43,7 @@ router.post('/generate-auth-url', authenticateAdmin, async (req, res) => {
       redirectUri: finalRedirectUri,
       codeVerifier, // 保存 PKCE code verifier
       proxy: proxy || null, // 保存代理配置
+      oauthProvider: resolvedOauthProvider,
       createdAt: new Date().toISOString()
     })
 
@@ -45,7 +52,8 @@ router.post('/generate-auth-url', authenticateAdmin, async (req, res) => {
       success: true,
       data: {
         authUrl,
-        sessionId
+        sessionId,
+        oauthProvider: resolvedOauthProvider
       }
     })
   } catch (error) {
@@ -80,13 +88,14 @@ router.post('/poll-auth-status', authenticateAdmin, async (req, res) => {
 // 交换 Gemini 授权码
 router.post('/exchange-code', authenticateAdmin, async (req, res) => {
   try {
-    const { code, sessionId, proxy: requestProxy } = req.body
+    const { code, sessionId, proxy: requestProxy, oauthProvider } = req.body
+    let resolvedOauthProvider = oauthProvider
 
     if (!code) {
       return res.status(400).json({ error: 'Authorization code is required' })
     }
 
-    let redirectUri = 'https://codeassist.google.com/authcode'
+    let redirectUri = getDefaultRedirectUri(resolvedOauthProvider)
     let codeVerifier = null
     let proxyConfig = null
 
@@ -97,11 +106,16 @@ router.post('/exchange-code', authenticateAdmin, async (req, res) => {
         const {
           redirectUri: sessionRedirectUri,
           codeVerifier: sessionCodeVerifier,
-          proxy
+          proxy,
+          oauthProvider: sessionOauthProvider
         } = sessionData
         redirectUri = sessionRedirectUri || redirectUri
         codeVerifier = sessionCodeVerifier
         proxyConfig = proxy // 获取代理配置
+        if (!resolvedOauthProvider && sessionOauthProvider) {
+          // 会话里保存的 provider 仅作为兜底
+          resolvedOauthProvider = sessionOauthProvider
+        }
         logger.info(
           `Using session redirect_uri: ${redirectUri}, has codeVerifier: ${!!codeVerifier}, has proxy from session: ${!!proxyConfig}`
         )
@@ -120,7 +134,8 @@ router.post('/exchange-code', authenticateAdmin, async (req, res) => {
       code,
       redirectUri,
       codeVerifier,
-      proxyConfig // 传递代理配置
+      proxyConfig, // 传递代理配置
+      resolvedOauthProvider
     )
 
     // 清理 OAuth 会话
@@ -129,7 +144,7 @@ router.post('/exchange-code', authenticateAdmin, async (req, res) => {
     }
 
     logger.success('Successfully exchanged Gemini authorization code')
-    return res.json({ success: true, data: { tokens } })
+    return res.json({ success: true, data: { tokens, oauthProvider: resolvedOauthProvider } })
   } catch (error) {
     logger.error('❌ Failed to exchange Gemini authorization code:', error)
     return res.status(500).json({ error: 'Failed to exchange code', message: error.message })
diff --git a/src/routes/admin/index.js b/src/routes/admin/index.js
index bb607e9d..01380a9c 100644
--- a/src/routes/admin/index.js
+++ b/src/routes/admin/index.js
@@ -21,6 +21,7 @@ const openaiResponsesAccountsRoutes = require('./openaiResponsesAccounts')
 const droidAccountsRoutes = require('./droidAccounts')
 const dashboardRoutes = require('./dashboard')
 const usageStatsRoutes = require('./usageStats')
+const accountBalanceRoutes = require('./accountBalance')
 const systemRoutes = require('./system')
 const concurrencyRoutes = require('./concurrency')
 const claudeRelayConfigRoutes = require('./claudeRelayConfig')
@@ -39,6 +40,7 @@ router.use('/', openaiResponsesAccountsRoutes)
 router.use('/', droidAccountsRoutes)
 router.use('/', dashboardRoutes)
 router.use('/', usageStatsRoutes)
+router.use('/', accountBalanceRoutes)
 router.use('/', systemRoutes)
 router.use('/', concurrencyRoutes)
 router.use('/', claudeRelayConfigRoutes)
diff --git a/src/routes/admin/quotaCards.js b/src/routes/admin/quotaCards.js
index ab69420a..67fc1a68 100644
--- a/src/routes/admin/quotaCards.js
+++ b/src/routes/admin/quotaCards.js
@@ -12,6 +12,33 @@ const { authenticateAdmin } = require('../../middleware/auth')
 // 额度卡管理
 // ═══════════════════════════════════════════════════════════════════════════
 
+// 获取额度卡上限配置
+router.get('/quota-cards/limits', authenticateAdmin, async (req, res) => {
+  try {
+    const config = await quotaCardService.getLimitsConfig()
+    res.json({ success: true, data: config })
+  } catch (error) {
+    logger.error('❌ Failed to get quota card limits:', error)
+    res.status(500).json({ success: false, error: error.message })
+  }
+})
+
+// 更新额度卡上限配置
+router.put('/quota-cards/limits', authenticateAdmin, async (req, res) => {
+  try {
+    const { enabled, maxExpiryDays, maxTotalCostLimit } = req.body
+    const config = await quotaCardService.saveLimitsConfig({
+      enabled,
+      maxExpiryDays,
+      maxTotalCostLimit
+    })
+    res.json({ success: true, data: config })
+  } catch (error) {
+    logger.error('❌ Failed to save quota card limits:', error)
+    res.status(500).json({ success: false, error: error.message })
+  }
+})
+
 // 获取额度卡列表
 router.get('/quota-cards', authenticateAdmin, async (req, res) => {
   try {
@@ -185,120 +212,6 @@ router.post('/redemptions/:id/revoke', authenticateAdmin, async (req, res) => {
   }
 })
 
-// ═══════════════════════════════════════════════════════════════════════════
-// API Key 聚合类型转换
-// ═══════════════════════════════════════════════════════════════════════════
-
-// 获取转换预览
-router.get('/api-keys/:id/convert-preview', authenticateAdmin, async (req, res) => {
-  try {
-    const preview = await apiKeyService.getConvertToAggregatedPreview(req.params.id)
-    res.json({
-      success: true,
-      data: preview
-    })
-  } catch (error) {
-    logger.error('❌ Failed to get convert preview:', error)
-    res.status(500).json({
-      success: false,
-      error: error.message
-    })
-  }
-})
-
-// 执行转换
-router.post('/api-keys/:id/convert-to-aggregated', authenticateAdmin, async (req, res) => {
-  try {
-    const { quotaLimit, permissions, serviceQuotaLimits, quotaUsed } = req.body
-
-    if (quotaLimit === undefined || quotaLimit === null) {
-      return res.status(400).json({
-        success: false,
-        error: 'quotaLimit is required'
-      })
-    }
-
-    if (!permissions || !Array.isArray(permissions) || permissions.length === 0) {
-      return res.status(400).json({
-        success: false,
-        error: 'permissions must be a non-empty array'
-      })
-    }
-
-    const result = await apiKeyService.convertToAggregated(req.params.id, {
-      quotaLimit: parseFloat(quotaLimit),
-      permissions,
-      serviceQuotaLimits: serviceQuotaLimits || {},
-      quotaUsed: quotaUsed !== undefined ? parseFloat(quotaUsed) : null
-    })
-
-    res.json({
-      success: true,
-      data: result
-    })
-  } catch (error) {
-    logger.error('❌ Failed to convert to aggregated:', error)
-    res.status(500).json({
-      success: false,
-      error: error.message
-    })
-  }
-})
-
-// 手动增加额度
-router.post('/api-keys/:id/add-quota', authenticateAdmin, async (req, res) => {
-  try {
-    const { quotaAmount } = req.body
-
-    if (!quotaAmount || quotaAmount <= 0) {
-      return res.status(400).json({
-        success: false,
-        error: 'quotaAmount must be a positive number'
-      })
-    }
-
-    const result = await apiKeyService.addQuota(req.params.id, parseFloat(quotaAmount))
-
-    res.json({
-      success: true,
-      data: result
-    })
-  } catch (error) {
-    logger.error('❌ Failed to add quota:', error)
-    res.status(500).json({
-      success: false,
-      error: error.message
-    })
-  }
-})
-
-// 手动减少额度
-router.post('/api-keys/:id/deduct-quota', authenticateAdmin, async (req, res) => {
-  try {
-    const { quotaAmount } = req.body
-
-    if (!quotaAmount || quotaAmount <= 0) {
-      return res.status(400).json({
-        success: false,
-        error: 'quotaAmount must be a positive number'
-      })
-    }
-
-    const result = await apiKeyService.deductQuotaLimit(req.params.id, parseFloat(quotaAmount))
-
-    res.json({
-      success: true,
-      data: result
-    })
-  } catch (error) {
-    logger.error('❌ Failed to deduct quota:', error)
-    res.status(500).json({
-      success: false,
-      error: error.message
-    })
-  }
-})
-
 // 延长有效期
 router.post('/api-keys/:id/extend-expiry', authenticateAdmin, async (req, res) => {
   try {
diff --git a/src/routes/admin/usageStats.js b/src/routes/admin/usageStats.js
index 69145d93..8351a738 100644
--- a/src/routes/admin/usageStats.js
+++ b/src/routes/admin/usageStats.js
@@ -8,6 +8,7 @@ const geminiApiAccountService = require('../../services/geminiApiAccountService'
 const openaiAccountService = require('../../services/openaiAccountService')
 const openaiResponsesAccountService = require('../../services/openaiResponsesAccountService')
 const droidAccountService = require('../../services/droidAccountService')
+const bedrockAccountService = require('../../services/bedrockAccountService')
 const redis = require('../../models/redis')
 const { authenticateAdmin } = require('../../middleware/auth')
 const logger = require('../../utils/logger')
@@ -104,6 +105,7 @@ async function getUsageDataByIndex(indexKey, keyPattern, scanPattern) {
 
 const accountTypeNames = {
   claude: 'Claude官方',
+  'claude-official': 'Claude官方',
   'claude-console': 'Claude Console',
   ccr: 'Claude Console Relay',
   openai: 'OpenAI',
@@ -111,6 +113,7 @@ const accountTypeNames = {
   gemini: 'Gemini',
   'gemini-api': 'Gemini API',
   droid: 'Droid',
+  bedrock: 'AWS Bedrock',
   unknown: '未知渠道'
 }
 
@@ -123,7 +126,8 @@ const resolveAccountByPlatform = async (accountId, platform) => {
     openai: openaiAccountService,
     'openai-responses': openaiResponsesAccountService,
     droid: droidAccountService,
-    ccr: ccrAccountService
+    ccr: ccrAccountService,
+    bedrock: bedrockAccountService
   }
 
   if (platform && serviceMap[platform]) {
@@ -247,7 +251,8 @@ router.get('/accounts/:accountId/usage-history', authenticateAdmin, async (req,
       'openai-responses',
       'gemini',
       'gemini-api',
-      'droid'
+      'droid',
+      'bedrock'
     ]
     if (!allowedPlatforms.includes(platform)) {
       return res.status(400).json({
@@ -260,7 +265,8 @@ router.get('/accounts/:accountId/usage-history', authenticateAdmin, async (req,
       openai: 'openai',
       'openai-responses': 'openai-responses',
       'gemini-api': 'gemini-api',
-      droid: 'droid'
+      droid: 'droid',
+      bedrock: 'bedrock'
     }
 
     const fallbackModelMap = {
@@ -270,7 +276,8 @@ router.get('/accounts/:accountId/usage-history', authenticateAdmin, async (req,
       'openai-responses': 'gpt-4o-mini-2024-07-18',
       gemini: 'gemini-1.5-flash',
       'gemini-api': 'gemini-2.0-flash',
-      droid: 'unknown'
+      droid: 'unknown',
+      bedrock: 'us.anthropic.claude-3-5-sonnet-20241022-v2:0'
     }
 
     // 获取账户信息以获取创建时间
@@ -301,6 +308,11 @@ router.get('/accounts/:accountId/usage-history', authenticateAdmin, async (req,
         case 'droid':
           accountData = await droidAccountService.getAccount(accountId)
           break
+        case 'bedrock': {
+          const result = await bedrockAccountService.getAccount(accountId)
+          accountData = result?.success ? result.data : null
+          break
+        }
       }
 
       if (accountData && accountData.createdAt) {
@@ -1107,7 +1119,7 @@ router.get('/account-usage-trend', authenticateAdmin, async (req, res) => {
   try {
     const { granularity = 'day', group = 'claude', days = 7, startDate, endDate } = req.query
 
-    const allowedGroups = ['claude', 'openai', 'gemini', 'droid']
+    const allowedGroups = ['claude', 'openai', 'gemini', 'droid', 'bedrock']
     if (!allowedGroups.includes(group)) {
       return res.status(400).json({
         success: false,
@@ -1119,7 +1131,8 @@ router.get('/account-usage-trend', authenticateAdmin, async (req, res) => {
       claude: 'Claude账户',
       openai: 'OpenAI账户',
       gemini: 'Gemini账户',
-      droid: 'Droid账户'
+      droid: 'Droid账户',
+      bedrock: 'Bedrock账户'
     }
 
     // 拉取各平台账号列表
@@ -1213,6 +1226,18 @@ router.get('/account-usage-trend', authenticateAdmin, async (req, res) => {
           platform: 'droid'
         }
       })
+    } else if (group === 'bedrock') {
+      const result = await bedrockAccountService.getAllAccounts()
+      const bedrockAccounts = result?.success ? result.data : []
+      accounts = bedrockAccounts.map((account) => {
+        const id = String(account.id || '')
+        const shortId = id ? id.slice(0, 8) : '未知'
+        return {
+          id,
+          name: account.name || `Bedrock账号 ${shortId}`,
+          platform: 'bedrock'
+        }
+      })
     }
 
     if (!accounts || accounts.length === 0) {
@@ -2616,6 +2641,8 @@ router.get('/api-keys/:keyId/usage-records', authenticateAdmin, async (req, res)
       const costData = CostCalculator.calculateCost(usage, record.model || 'unknown')
       const computedCost =
         typeof record.cost === 'number' ? record.cost : costData?.costs?.total || 0
+      const realCost =
+        typeof record.realCost === 'number' ? record.realCost : costData?.costs?.total || 0
       const totalTokens =
         record.totalTokens ||
         usage.input_tokens +
@@ -2643,11 +2670,10 @@ router.get('/api-keys/:keyId/usage-records', authenticateAdmin, async (req, res)
         totalTokens,
         isLongContextRequest: record.isLongContext || record.isLongContextRequest || false,
         cost: Number(computedCost.toFixed(6)),
-        costFormatted:
-          record.costFormatted ||
-          costData?.formatted?.total ||
-          CostCalculator.formatCost(computedCost),
-        costBreakdown: record.costBreakdown || {
+        costFormatted: CostCalculator.formatCost(computedCost),
+        realCost: Number(realCost.toFixed(6)),
+        realCostFormatted: CostCalculator.formatCost(realCost),
+        costBreakdown: record.realCostBreakdown || record.costBreakdown || {
           input: costData?.costs?.input || 0,
           output: costData?.costs?.output || 0,
           cacheCreate: costData?.costs?.cacheWrite || 0,
@@ -2930,6 +2956,8 @@ router.get('/accounts/:accountId/usage-records', authenticateAdmin, async (req,
       const costData = CostCalculator.calculateCost(usage, record.model || 'unknown')
       const computedCost =
         typeof record.cost === 'number' ? record.cost : costData?.costs?.total || 0
+      const realCost =
+        typeof record.realCost === 'number' ? record.realCost : costData?.costs?.total || 0
       const totalTokens =
         record.totalTokens ||
         usage.input_tokens +
@@ -2955,11 +2983,10 @@ router.get('/accounts/:accountId/usage-records', authenticateAdmin, async (req,
         totalTokens,
         isLongContextRequest: record.isLongContext || record.isLongContextRequest || false,
         cost: Number(computedCost.toFixed(6)),
-        costFormatted:
-          record.costFormatted ||
-          costData?.formatted?.total ||
-          CostCalculator.formatCost(computedCost),
-        costBreakdown: record.costBreakdown || {
+        costFormatted: CostCalculator.formatCost(computedCost),
+        realCost: Number(realCost.toFixed(6)),
+        realCostFormatted: CostCalculator.formatCost(realCost),
+        costBreakdown: record.realCostBreakdown || record.costBreakdown || {
           input: costData?.costs?.input || 0,
           output: costData?.costs?.output || 0,
           cacheCreate: costData?.costs?.cacheWrite || 0,
diff --git a/src/routes/api.js b/src/routes/api.js
index c38c4d6f..cf17c484 100644
--- a/src/routes/api.js
+++ b/src/routes/api.js
@@ -20,16 +20,21 @@ const {
   sendMockWarmupStream
 } = require('../utils/warmupInterceptor')
 const { sanitizeUpstreamError } = require('../utils/errorSanitizer')
+const { dumpAnthropicMessagesRequest } = require('../utils/anthropicRequestDump')
+const {
+  handleAnthropicMessagesToGemini,
+  handleAnthropicCountTokensToGemini
+} = require('../services/anthropicGeminiBridgeService')
 const router = express.Router()
 
-function queueRateLimitUpdate(rateLimitInfo, usageSummary, model, context = '') {
+function queueRateLimitUpdate(rateLimitInfo, usageSummary, model, context = '', keyId = null, accountType = null) {
   if (!rateLimitInfo) {
     return Promise.resolve({ totalTokens: 0, totalCost: 0 })
   }
 
   const label = context ? ` (${context})` : ''
 
-  return updateRateLimitCounters(rateLimitInfo, usageSummary, model)
+  return updateRateLimitCounters(rateLimitInfo, usageSummary, model, keyId, accountType)
     .then(({ totalTokens, totalCost }) => {
       if (totalTokens > 0) {
         logger.api(`📊 Updated rate limit token count${label}: +${totalTokens} tokens`)
@@ -117,16 +122,18 @@ async function handleMessagesRequest(req, res) {
   try {
     const startTime = Date.now()
 
-    // Claude 服务权限校验，阻止未授权的 Key
-    if (
-      req.apiKey.permissions &&
-      req.apiKey.permissions !== 'all' &&
-      req.apiKey.permissions !== 'claude'
-    ) {
+    const forcedVendor = req._anthropicVendor || null
+    const requiredService =
+      forcedVendor === 'gemini-cli' || forcedVendor === 'antigravity' ? 'gemini' : 'claude'
+
+    if (!apiKeyService.hasPermission(req.apiKey?.permissions, requiredService)) {
       return res.status(403).json({
         error: {
           type: 'permission_error',
-          message: '此 API Key 无权访问 Claude 服务'
+          message:
+            requiredService === 'gemini'
+              ? '此 API Key 无权访问 Gemini 服务'
+              : '此 API Key 无权访问 Claude 服务'
         }
       })
     }
@@ -175,6 +182,25 @@ async function handleMessagesRequest(req, res) {
       }
     }
 
+    logger.api('📥 /v1/messages request received', {
+      model: req.body.model || null,
+      forcedVendor,
+      stream: req.body.stream === true
+    })
+
+    dumpAnthropicMessagesRequest(req, {
+      route: '/v1/messages',
+      forcedVendor,
+      model: req.body?.model || null,
+      stream: req.body?.stream === true
+    })
+
+    // /v1/messages 的扩展：按路径强制分流到 Gemini OAuth 账户（避免 model 前缀混乱）
+    if (forcedVendor === 'gemini-cli' || forcedVendor === 'antigravity') {
+      const baseModel = (req.body.model || '').trim()
+      return await handleAnthropicMessagesToGemini(req, res, { vendor: forcedVendor, baseModel })
+    }
+
     // 检查是否为流式请求
     const isStream = req.body.stream === true
 
@@ -390,11 +416,18 @@ async function handleMessagesRequest(req, res) {
       // 根据账号类型选择对应的转发服务并调用
       if (accountType === 'claude-official') {
         // 官方Claude账号使用原有的转发服务（会自己选择账号）
+        // 🧹 内存优化：提取需要的值，避免闭包捕获整个 req 对象
+        const _apiKeyId = req.apiKey.id
+        const _rateLimitInfo = req.rateLimitInfo
+        const _requestBody = req.body // 传递后清除引用
+        const _apiKey = req.apiKey
+        const _headers = req.headers
+
         await claudeRelayService.relayStreamRequestWithUsageCapture(
-          req.body,
-          req.apiKey,
+          _requestBody,
+          _apiKey,
           res,
-          req.headers,
+          _headers,
           (usageData) => {
             // 回调函数：当检测到完整usage数据时记录真实token使用量
             logger.info(
@@ -444,13 +477,13 @@ async function handleMessagesRequest(req, res) {
               }
 
               apiKeyService
-                .recordUsageWithDetails(req.apiKey.id, usageObject, model, usageAccountId, 'claude')
+                .recordUsageWithDetails(_apiKeyId, usageObject, model, usageAccountId, accountType)
                 .catch((error) => {
                   logger.error('❌ Failed to record stream usage:', error)
                 })
 
               queueRateLimitUpdate(
-                req.rateLimitInfo,
+                _rateLimitInfo,
                 {
                   inputTokens,
                   outputTokens,
@@ -458,7 +491,9 @@ async function handleMessagesRequest(req, res) {
                   cacheReadTokens
                 },
                 model,
-                'claude-stream'
+                'claude-stream',
+                _apiKeyId,
+                accountType
               )
 
               usageDataCaptured = true
@@ -475,11 +510,18 @@ async function handleMessagesRequest(req, res) {
         )
       } else if (accountType === 'claude-console') {
         // Claude Console账号使用Console转发服务（需要传递accountId）
+        // 🧹 内存优化：提取需要的值
+        const _apiKeyIdConsole = req.apiKey.id
+        const _rateLimitInfoConsole = req.rateLimitInfo
+        const _requestBodyConsole = req.body
+        const _apiKeyConsole = req.apiKey
+        const _headersConsole = req.headers
+
         await claudeConsoleRelayService.relayStreamRequestWithUsageCapture(
-          req.body,
-          req.apiKey,
+          _requestBodyConsole,
+          _apiKeyConsole,
           res,
-          req.headers,
+          _headersConsole,
           (usageData) => {
             // 回调函数：当检测到完整usage数据时记录真实token使用量
             logger.info(
@@ -530,7 +572,7 @@ async function handleMessagesRequest(req, res) {
 
               apiKeyService
                 .recordUsageWithDetails(
-                  req.apiKey.id,
+                  _apiKeyIdConsole,
                   usageObject,
                   model,
                   usageAccountId,
@@ -541,7 +583,7 @@ async function handleMessagesRequest(req, res) {
                 })
 
               queueRateLimitUpdate(
-                req.rateLimitInfo,
+                _rateLimitInfoConsole,
                 {
                   inputTokens,
                   outputTokens,
@@ -549,7 +591,9 @@ async function handleMessagesRequest(req, res) {
                   cacheReadTokens
                 },
                 model,
-                'claude-console-stream'
+                'claude-console-stream',
+                _apiKeyIdConsole,
+                accountType
               )
 
               usageDataCaptured = true
@@ -567,6 +611,11 @@ async function handleMessagesRequest(req, res) {
         )
       } else if (accountType === 'bedrock') {
         // Bedrock账号使用Bedrock转发服务
+        // 🧹 内存优化：提取需要的值
+        const _apiKeyIdBedrock = req.apiKey.id
+        const _rateLimitInfoBedrock = req.rateLimitInfo
+        const _requestBodyBedrock = req.body
+
         try {
           const bedrockAccountResult = await bedrockAccountService.getAccount(accountId)
           if (!bedrockAccountResult.success) {
@@ -574,7 +623,7 @@ async function handleMessagesRequest(req, res) {
           }
 
           const result = await bedrockRelayService.handleStreamRequest(
-            req.body,
+            _requestBodyBedrock,
             bedrockAccountResult.data,
             res
           )
@@ -585,13 +634,22 @@ async function handleMessagesRequest(req, res) {
             const outputTokens = result.usage.output_tokens || 0
 
             apiKeyService
-              .recordUsage(req.apiKey.id, inputTokens, outputTokens, 0, 0, result.model, accountId)
+              .recordUsage(
+                _apiKeyIdBedrock,
+                inputTokens,
+                outputTokens,
+                0,
+                0,
+                result.model,
+                accountId,
+                'bedrock'
+              )
               .catch((error) => {
                 logger.error('❌ Failed to record Bedrock stream usage:', error)
               })
 
             queueRateLimitUpdate(
-              req.rateLimitInfo,
+              _rateLimitInfoBedrock,
               {
                 inputTokens,
                 outputTokens,
@@ -599,7 +657,9 @@ async function handleMessagesRequest(req, res) {
                 cacheReadTokens: 0
               },
               result.model,
-              'bedrock-stream'
+              'bedrock-stream',
+              _apiKeyIdBedrock,
+              'bedrock'
             )
 
             usageDataCaptured = true
@@ -616,11 +676,18 @@ async function handleMessagesRequest(req, res) {
         }
       } else if (accountType === 'ccr') {
         // CCR账号使用CCR转发服务（需要传递accountId）
+        // 🧹 内存优化：提取需要的值
+        const _apiKeyIdCcr = req.apiKey.id
+        const _rateLimitInfoCcr = req.rateLimitInfo
+        const _requestBodyCcr = req.body
+        const _apiKeyCcr = req.apiKey
+        const _headersCcr = req.headers
+
         await ccrRelayService.relayStreamRequestWithUsageCapture(
-          req.body,
-          req.apiKey,
+          _requestBodyCcr,
+          _apiKeyCcr,
           res,
-          req.headers,
+          _headersCcr,
           (usageData) => {
             // 回调函数：当检测到完整usage数据时记录真实token使用量
             logger.info(
@@ -670,13 +737,13 @@ async function handleMessagesRequest(req, res) {
               }
 
               apiKeyService
-                .recordUsageWithDetails(req.apiKey.id, usageObject, model, usageAccountId, 'ccr')
+                .recordUsageWithDetails(_apiKeyIdCcr, usageObject, model, usageAccountId, 'ccr')
                 .catch((error) => {
                   logger.error('❌ Failed to record CCR stream usage:', error)
                 })
 
               queueRateLimitUpdate(
-                req.rateLimitInfo,
+                _rateLimitInfoCcr,
                 {
                   inputTokens,
                   outputTokens,
@@ -684,7 +751,9 @@ async function handleMessagesRequest(req, res) {
                   cacheReadTokens
                 },
                 model,
-                'ccr-stream'
+                'ccr-stream',
+                _apiKeyIdCcr,
+                'ccr'
               )
 
               usageDataCaptured = true
@@ -711,18 +780,26 @@ async function handleMessagesRequest(req, res) {
         }
       }, 1000) // 1秒后检查
     } else {
+      // 🧹 内存优化：提取需要的值，避免后续回调捕获整个 req
+      const _apiKeyIdNonStream = req.apiKey.id
+      const _apiKeyNameNonStream = req.apiKey.name
+      const _rateLimitInfoNonStream = req.rateLimitInfo
+      const _requestBodyNonStream = req.body
+      const _apiKeyNonStream = req.apiKey
+      const _headersNonStream = req.headers
+
       // 🔍 检查客户端连接是否仍然有效（可能在并发排队等待期间断开）
       if (res.destroyed || res.socket?.destroyed || res.writableEnded) {
         logger.warn(
-          `⚠️ Client disconnected before non-stream request could start for key: ${req.apiKey?.name || 'unknown'}`
+          `⚠️ Client disconnected before non-stream request could start for key: ${_apiKeyNameNonStream || 'unknown'}`
         )
         return undefined
       }
 
       // 非流式响应 - 只使用官方真实usage数据
       logger.info('📄 Starting non-streaming request', {
-        apiKeyId: req.apiKey.id,
-        apiKeyName: req.apiKey.name
+        apiKeyId: _apiKeyIdNonStream,
+        apiKeyName: _apiKeyNameNonStream
       })
 
       // 📊 监听 socket 事件以追踪连接状态变化
@@ -893,11 +970,11 @@ async function handleMessagesRequest(req, res) {
             ? await claudeAccountService.getAccount(accountId)
             : await claudeConsoleAccountService.getAccount(accountId)
 
-        if (account?.interceptWarmup === 'true' && isWarmupRequest(req.body)) {
+        if (account?.interceptWarmup === 'true' && isWarmupRequest(_requestBodyNonStream)) {
           logger.api(
             `🔥 Warmup request intercepted (non-stream) for account: ${account.name} (${accountId})`
           )
-          return res.json(buildMockWarmupResponse(req.body.model))
+          return res.json(buildMockWarmupResponse(_requestBodyNonStream.model))
         }
       }
 
@@ -910,11 +987,11 @@ async function handleMessagesRequest(req, res) {
       if (accountType === 'claude-official') {
         // 官方Claude账号使用原有的转发服务
         response = await claudeRelayService.relayRequest(
-          req.body,
-          req.apiKey,
-          req,
+          _requestBodyNonStream,
+          _apiKeyNonStream,
+          req, // clientRequest 用于断开检测，保留但服务层已优化
           res,
-          req.headers
+          _headersNonStream
         )
       } else if (accountType === 'claude-console') {
         // Claude Console账号使用Console转发服务
@@ -922,11 +999,11 @@ async function handleMessagesRequest(req, res) {
           `[DEBUG] Calling claudeConsoleRelayService.relayRequest with accountId: ${accountId}`
         )
         response = await claudeConsoleRelayService.relayRequest(
-          req.body,
-          req.apiKey,
-          req,
+          _requestBodyNonStream,
+          _apiKeyNonStream,
+          req, // clientRequest 保留用于断开检测
           res,
-          req.headers,
+          _headersNonStream,
           accountId
         )
       } else if (accountType === 'bedrock') {
@@ -938,9 +1015,9 @@ async function handleMessagesRequest(req, res) {
           }
 
           const result = await bedrockRelayService.handleNonStreamRequest(
-            req.body,
+            _requestBodyNonStream,
             bedrockAccountResult.data,
-            req.headers
+            _headersNonStream
           )
 
           // 构建标准响应格式
@@ -970,11 +1047,11 @@ async function handleMessagesRequest(req, res) {
         // CCR账号使用CCR转发服务
         logger.debug(`[DEBUG] Calling ccrRelayService.relayRequest with accountId: ${accountId}`)
         response = await ccrRelayService.relayRequest(
-          req.body,
-          req.apiKey,
-          req,
+          _requestBodyNonStream,
+          _apiKeyNonStream,
+          req, // clientRequest 保留用于断开检测
           res,
-          req.headers,
+          _headersNonStream,
           accountId
         )
       }
@@ -1023,24 +1100,25 @@ async function handleMessagesRequest(req, res) {
           const cacheCreateTokens = jsonData.usage.cache_creation_input_tokens || 0
           const cacheReadTokens = jsonData.usage.cache_read_input_tokens || 0
           // Parse the model to remove vendor prefix if present (e.g., "ccr,gemini-2.5-pro" -> "gemini-2.5-pro")
-          const rawModel = jsonData.model || req.body.model || 'unknown'
-          const { baseModel } = parseVendorPrefixedModel(rawModel)
-          const model = baseModel || rawModel
+          const rawModel = jsonData.model || _requestBodyNonStream.model || 'unknown'
+          const { baseModel: usageBaseModel } = parseVendorPrefixedModel(rawModel)
+          const model = usageBaseModel || rawModel
 
           // 记录真实的token使用量（包含模型信息和所有4种token以及账户ID）
           const { accountId: responseAccountId } = response
           await apiKeyService.recordUsage(
-            req.apiKey.id,
+            _apiKeyIdNonStream,
             inputTokens,
             outputTokens,
             cacheCreateTokens,
             cacheReadTokens,
             model,
-            responseAccountId
+            responseAccountId,
+            accountType
           )
 
           await queueRateLimitUpdate(
-            req.rateLimitInfo,
+            _rateLimitInfoNonStream,
             {
               inputTokens,
               outputTokens,
@@ -1048,7 +1126,9 @@ async function handleMessagesRequest(req, res) {
               cacheReadTokens
             },
             model,
-            'claude-non-stream'
+            'claude-non-stream',
+            _apiKeyIdNonStream,
+            accountType
           )
 
           usageRecorded = true
@@ -1201,6 +1281,65 @@ router.post('/claude/v1/messages', authenticateApiKey, handleMessagesRequest)
 // 📋 模型列表端点 - 支持 Claude, OpenAI, Gemini
 router.get('/v1/models', authenticateApiKey, async (req, res) => {
   try {
+    // Claude Code / Anthropic baseUrl 的分流：/antigravity/api/v1/models 返回 Antigravity 实时模型列表
+    //（通过 v1internal:fetchAvailableModels），避免依赖静态 modelService 列表。
+    const forcedVendor = req._anthropicVendor || null
+    if (forcedVendor === 'antigravity') {
+      if (!apiKeyService.hasPermission(req.apiKey?.permissions, 'gemini')) {
+        return res.status(403).json({
+          error: {
+            type: 'permission_error',
+            message: '此 API Key 无权访问 Gemini 服务'
+          }
+        })
+      }
+
+      const unifiedGeminiScheduler = require('../services/unifiedGeminiScheduler')
+      const geminiAccountService = require('../services/geminiAccountService')
+
+      let accountSelection
+      try {
+        accountSelection = await unifiedGeminiScheduler.selectAccountForApiKey(
+          req.apiKey,
+          null,
+          null,
+          { oauthProvider: 'antigravity' }
+        )
+      } catch (error) {
+        logger.error('Failed to select Gemini OAuth account (antigravity models):', error)
+        return res.status(503).json({ error: 'No available Gemini OAuth accounts' })
+      }
+
+      const account = await geminiAccountService.getAccount(accountSelection.accountId)
+      if (!account) {
+        return res.status(503).json({ error: 'Gemini OAuth account not found' })
+      }
+
+      let proxyConfig = null
+      if (account.proxy) {
+        try {
+          proxyConfig =
+            typeof account.proxy === 'string' ? JSON.parse(account.proxy) : account.proxy
+        } catch (e) {
+          logger.warn('Failed to parse proxy configuration:', e)
+        }
+      }
+
+      const models = await geminiAccountService.fetchAvailableModelsAntigravity(
+        account.accessToken,
+        proxyConfig,
+        account.refreshToken
+      )
+
+      // 可选：根据 API Key 的模型限制过滤（黑名单语义）
+      let filteredModels = models
+      if (req.apiKey.enableModelRestriction && req.apiKey.restrictedModels?.length > 0) {
+        filteredModels = models.filter((model) => !req.apiKey.restrictedModels.includes(model.id))
+      }
+
+      return res.json({ object: 'list', data: filteredModels })
+    }
+
     const modelService = require('../services/modelService')
 
     // 从 modelService 获取所有支持的模型
@@ -1337,20 +1476,27 @@ router.get('/v1/organizations/:org_id/usage', authenticateApiKey, async (req, re
 
 // 🔢 Token计数端点 - count_tokens beta API
 router.post('/v1/messages/count_tokens', authenticateApiKey, async (req, res) => {
-  // 检查权限
-  if (
-    req.apiKey.permissions &&
-    req.apiKey.permissions !== 'all' &&
-    req.apiKey.permissions !== 'claude'
-  ) {
+  // 按路径强制分流到 Gemini OAuth 账户（避免 model 前缀混乱）
+  const forcedVendor = req._anthropicVendor || null
+  const requiredService =
+    forcedVendor === 'gemini-cli' || forcedVendor === 'antigravity' ? 'gemini' : 'claude'
+
+  if (!apiKeyService.hasPermission(req.apiKey?.permissions, requiredService)) {
     return res.status(403).json({
       error: {
         type: 'permission_error',
-        message: 'This API key does not have permission to access Claude'
+        message:
+          requiredService === 'gemini'
+            ? 'This API key does not have permission to access Gemini'
+            : 'This API key does not have permission to access Claude'
       }
     })
   }
 
+  if (requiredService === 'gemini') {
+    return await handleAnthropicCountTokensToGemini(req, res, { vendor: forcedVendor })
+  }
+
   // 🔗 会话绑定验证（与 messages 端点保持一致）
   const originalSessionId = claudeRelayConfigService.extractOriginalSessionId(req.body)
   const sessionValidation = await claudeRelayConfigService.validateNewSession(
diff --git a/src/routes/apiStats.js b/src/routes/apiStats.js
index a4d76368..7eee8e58 100644
--- a/src/routes/apiStats.js
+++ b/src/routes/apiStats.js
@@ -8,6 +8,7 @@ const openaiAccountService = require('../services/openaiAccountService')
 const serviceRatesService = require('../services/serviceRatesService')
 const { createClaudeTestPayload } = require('../utils/testPayloadHelper')
 const modelsConfig = require('../../config/models')
+const { getSafeMessage } = require('../utils/errorSanitizer')
 
 const router = express.Router()
 
@@ -183,7 +184,7 @@ router.post('/api/user-stats', async (req, res) => {
         restrictedModels,
         enableClientRestriction: keyData.enableClientRestriction === 'true',
         allowedClients,
-        permissions: keyData.permissions || 'all',
+        permissions: keyData.permissions,
         // 添加激活相关字段
         expirationMode: keyData.expirationMode || 'fixed',
         isActivated: keyData.isActivated === 'true',
@@ -502,7 +503,20 @@ router.post('/api/user-stats', async (req, res) => {
         restrictedModels: fullKeyData.restrictedModels || [],
         enableClientRestriction: fullKeyData.enableClientRestriction || false,
         allowedClients: fullKeyData.allowedClients || []
-      }
+      },
+
+      // Key 级别的服务倍率
+      serviceRates: (() => {
+        try {
+          return fullKeyData.serviceRates
+            ? typeof fullKeyData.serviceRates === 'string'
+              ? JSON.parse(fullKeyData.serviceRates)
+              : fullKeyData.serviceRates
+            : {}
+        } catch (e) {
+          return {}
+        }
+      })()
     }
 
     return res.json({
@@ -625,7 +639,18 @@ router.post('/api/batch-stats', async (req, res) => {
             ...usage.monthly,
             cost: costStats.monthly
           },
-          totalCost: costStats.total
+          totalCost: costStats.total,
+          serviceRates: (() => {
+            try {
+              return keyData.serviceRates
+                ? typeof keyData.serviceRates === 'string'
+                  ? JSON.parse(keyData.serviceRates)
+                  : keyData.serviceRates
+                : {}
+            } catch (e) {
+              return {}
+            }
+          })()
         }
       })
     )
@@ -883,13 +908,11 @@ router.post('/api-key/test', async (req, res) => {
     if (!res.headersSent) {
       return res.status(500).json({
         error: 'Test failed',
-        message: error.message || 'Internal server error'
+        message: getSafeMessage(error)
       })
     }
 
-    res.write(
-      `data: ${JSON.stringify({ type: 'error', error: error.message || 'Test failed' })}\n\n`
-    )
+    res.write(`data: ${JSON.stringify({ type: 'error', error: getSafeMessage(error) })}\n\n`)
     res.end()
   }
 })
@@ -926,8 +949,7 @@ router.post('/api-key/test-gemini', async (req, res) => {
     }
 
     // 检查 Gemini 权限
-    const permissions = validation.keyData.permissions || 'all'
-    if (permissions !== 'all' && !permissions.includes('gemini')) {
+    if (!apiKeyService.hasPermission(validation.keyData.permissions, 'gemini')) {
       return res.status(403).json({
         error: 'Permission denied',
         message: 'This API key does not have Gemini permission'
@@ -1022,13 +1044,13 @@ router.post('/api-key/test-gemini', async (req, res) => {
 
       response.data.on('error', (err) => {
         res.write(
-          `data: ${JSON.stringify({ type: 'test_complete', success: false, error: err.message })}\n\n`
+          `data: ${JSON.stringify({ type: 'test_complete', success: false, error: getSafeMessage(err) })}\n\n`
         )
         res.end()
       })
     } catch (axiosError) {
       res.write(
-        `data: ${JSON.stringify({ type: 'test_complete', success: false, error: axiosError.message })}\n\n`
+        `data: ${JSON.stringify({ type: 'test_complete', success: false, error: getSafeMessage(axiosError) })}\n\n`
       )
       res.end()
     }
@@ -1038,13 +1060,11 @@ router.post('/api-key/test-gemini', async (req, res) => {
     if (!res.headersSent) {
       return res.status(500).json({
         error: 'Test failed',
-        message: error.message || 'Internal server error'
+        message: getSafeMessage(error)
       })
     }
 
-    res.write(
-      `data: ${JSON.stringify({ type: 'error', error: error.message || 'Test failed' })}\n\n`
-    )
+    res.write(`data: ${JSON.stringify({ type: 'error', error: getSafeMessage(error) })}\n\n`)
     res.end()
   }
 })
@@ -1081,8 +1101,7 @@ router.post('/api-key/test-openai', async (req, res) => {
     }
 
     // 检查 OpenAI 权限
-    const permissions = validation.keyData.permissions || 'all'
-    if (permissions !== 'all' && !permissions.includes('openai')) {
+    if (!apiKeyService.hasPermission(validation.keyData.permissions, 'openai')) {
       return res.status(403).json({
         error: 'Permission denied',
         message: 'This API key does not have OpenAI permission'
@@ -1179,13 +1198,13 @@ router.post('/api-key/test-openai', async (req, res) => {
 
       response.data.on('error', (err) => {
         res.write(
-          `data: ${JSON.stringify({ type: 'test_complete', success: false, error: err.message })}\n\n`
+          `data: ${JSON.stringify({ type: 'test_complete', success: false, error: getSafeMessage(err) })}\n\n`
         )
         res.end()
       })
     } catch (axiosError) {
       res.write(
-        `data: ${JSON.stringify({ type: 'test_complete', success: false, error: axiosError.message })}\n\n`
+        `data: ${JSON.stringify({ type: 'test_complete', success: false, error: getSafeMessage(axiosError) })}\n\n`
       )
       res.end()
     }
@@ -1195,13 +1214,11 @@ router.post('/api-key/test-openai', async (req, res) => {
     if (!res.headersSent) {
       return res.status(500).json({
         error: 'Test failed',
-        message: error.message || 'Internal server error'
+        message: getSafeMessage(error)
       })
     }
 
-    res.write(
-      `data: ${JSON.stringify({ type: 'error', error: error.message || 'Test failed' })}\n\n`
-    )
+    res.write(`data: ${JSON.stringify({ type: 'error', error: getSafeMessage(error) })}\n\n`)
     res.end()
   }
 })
@@ -1392,4 +1409,153 @@ router.get('/service-rates', async (req, res) => {
   }
 })
 
+// 🎫 公开的额度卡兑换接口（通过 apiId 验证身份）
+router.post('/api/redeem-card', async (req, res) => {
+  const quotaCardService = require('../services/quotaCardService')
+
+  try {
+    const { apiId, code } = req.body
+    const clientIP = req.ip || req.connection?.remoteAddress || 'unknown'
+    const hour = new Date().toISOString().slice(0, 13)
+
+    // 防暴力破解：检查失败锁定
+    const failKey = `redeem_card:fail:${clientIP}`
+    const failCount = parseInt((await redis.client.get(failKey)) || '0')
+    if (failCount >= 5) {
+      logger.security(`🔒 Card redemption locked for IP: ${clientIP}`)
+      return res.status(403).json({
+        success: false,
+        error: '失败次数过多，请1小时后再试'
+      })
+    }
+
+    // 防暴力破解：检查 IP 速率限制
+    const ipKey = `redeem_card:ip:${clientIP}:${hour}`
+    const ipCount = await redis.client.incr(ipKey)
+    await redis.client.expire(ipKey, 3600)
+    if (ipCount > 10) {
+      logger.security(`🚨 Card redemption rate limit for IP: ${clientIP}`)
+      return res.status(429).json({
+        success: false,
+        error: '请求过于频繁，请稍后再试'
+      })
+    }
+
+    if (!apiId || !code) {
+      return res.status(400).json({
+        success: false,
+        error: '请输入卡号'
+      })
+    }
+
+    // 验证 apiId 格式
+    if (
+      typeof apiId !== 'string' ||
+      !apiId.match(/^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$/i)
+    ) {
+      return res.status(400).json({
+        success: false,
+        error: 'API ID 格式无效'
+      })
+    }
+
+    // 验证 API Key 存在且有效
+    const keyData = await redis.getApiKey(apiId)
+    if (!keyData || Object.keys(keyData).length === 0) {
+      return res.status(404).json({
+        success: false,
+        error: 'API Key 不存在'
+      })
+    }
+
+    if (keyData.isActive !== 'true') {
+      return res.status(403).json({
+        success: false,
+        error: 'API Key 已禁用'
+      })
+    }
+
+    // 调用兑换服务
+    const result = await quotaCardService.redeemCard(code, apiId, null, keyData.name || 'API Stats')
+
+    // 成功时清除失败计数（静默处理，不影响成功响应）
+    redis.client.del(failKey).catch(() => {})
+
+    logger.api(`🎫 Card redeemed via API Stats: ${code} -> ${apiId}`)
+
+    res.json({
+      success: true,
+      data: result
+    })
+  } catch (error) {
+    // 失败时增加失败计数（静默处理，不影响错误响应）
+    const clientIP = req.ip || req.connection?.remoteAddress || 'unknown'
+    const failKey = `redeem_card:fail:${clientIP}`
+    redis.client
+      .incr(failKey)
+      .then(() => redis.client.expire(failKey, 3600))
+      .catch(() => {})
+
+    logger.error('❌ Failed to redeem card:', error)
+    res.status(400).json({
+      success: false,
+      error: error.message
+    })
+  }
+})
+
+// 📋 公开的兑换记录查询接口（通过 apiId 验证身份）
+router.get('/api/redemption-history', async (req, res) => {
+  const quotaCardService = require('../services/quotaCardService')
+
+  try {
+    const { apiId, limit = 50, offset = 0 } = req.query
+
+    if (!apiId) {
+      return res.status(400).json({
+        success: false,
+        error: '缺少 API ID'
+      })
+    }
+
+    // 验证 apiId 格式
+    if (
+      typeof apiId !== 'string' ||
+      !apiId.match(/^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$/i)
+    ) {
+      return res.status(400).json({
+        success: false,
+        error: 'API ID 格式无效'
+      })
+    }
+
+    // 验证 API Key 存在
+    const keyData = await redis.getApiKey(apiId)
+    if (!keyData || Object.keys(keyData).length === 0) {
+      return res.status(404).json({
+        success: false,
+        error: 'API Key 不存在'
+      })
+    }
+
+    // 获取该 API Key 的兑换记录
+    const result = await quotaCardService.getRedemptions({
+      apiKeyId: apiId,
+      limit: parseInt(limit),
+      offset: parseInt(offset)
+    })
+
+    res.json({
+      success: true,
+      data: result
+    })
+  } catch (error) {
+    logger.error('❌ Failed to get redemption history:', error)
+    res.status(500).json({
+      success: false,
+      error: error.message
+    })
+  }
+})
+
 module.exports = router
diff --git a/src/routes/azureOpenaiRoutes.js b/src/routes/azureOpenaiRoutes.js
index ca0aa8fe..ce476c09 100644
--- a/src/routes/azureOpenaiRoutes.js
+++ b/src/routes/azureOpenaiRoutes.js
@@ -86,7 +86,8 @@ class AtomicUsageReporter {
         cacheCreateTokens,
         cacheReadTokens,
         modelToRecord,
-        accountId
+        accountId,
+        'azure-openai'
       )
 
       // 同步更新 Azure 账户的 lastUsedAt 和累计使用量
diff --git a/src/routes/droidRoutes.js b/src/routes/droidRoutes.js
index f8479cde..b6d9932a 100644
--- a/src/routes/droidRoutes.js
+++ b/src/routes/droidRoutes.js
@@ -4,12 +4,12 @@ const { authenticateApiKey } = require('../middleware/auth')
 const droidRelayService = require('../services/droidRelayService')
 const sessionHelper = require('../utils/sessionHelper')
 const logger = require('../utils/logger')
+const apiKeyService = require('../services/apiKeyService')
 
 const router = express.Router()
 
 function hasDroidPermission(apiKeyData) {
-  const permissions = apiKeyData?.permissions || 'all'
-  return permissions === 'all' || permissions === 'droid'
+  return apiKeyService.hasPermission(apiKeyData?.permissions, 'droid')
 }
 
 /**
diff --git a/src/routes/geminiRoutes.js b/src/routes/geminiRoutes.js
index eefeba57..8fdbcd45 100644
--- a/src/routes/geminiRoutes.js
+++ b/src/routes/geminiRoutes.js
@@ -29,6 +29,7 @@ const {
   handleStreamGenerateContent,
   handleLoadCodeAssist,
   handleOnboardUser,
+  handleRetrieveUserQuota,
   handleCountTokens,
   handleStandardGenerateContent,
   handleStandardStreamGenerateContent,
@@ -68,7 +69,7 @@ router.get('/usage', authenticateApiKey, handleUsage)
 router.get('/key-info', authenticateApiKey, handleKeyInfo)
 
 // ============================================================================
-// v1internal 独有路由（listExperiments）
+// v1internal 独有路由
 // ============================================================================
 
 /**
@@ -81,6 +82,12 @@ router.post(
   handleSimpleEndpoint('listExperiments')
 )
 
+/**
+ * POST /v1internal:retrieveUserQuota
+ * 获取用户配额信息（Gemini CLI 0.22.2+ 需要）
+ */
+router.post('/v1internal\\:retrieveUserQuota', authenticateApiKey, handleRetrieveUserQuota)
+
 /**
  * POST /v1beta/models/:modelName:listExperiments
  * 带模型参数的实验列表（只有 geminiRoutes 定义此路由）
diff --git a/src/routes/openaiClaudeRoutes.js b/src/routes/openaiClaudeRoutes.js
index 35314e4a..99c0b27b 100644
--- a/src/routes/openaiClaudeRoutes.js
+++ b/src/routes/openaiClaudeRoutes.js
@@ -8,10 +8,12 @@ const router = express.Router()
 const logger = require('../utils/logger')
 const { authenticateApiKey } = require('../middleware/auth')
 const claudeRelayService = require('../services/claudeRelayService')
+const claudeConsoleRelayService = require('../services/claudeConsoleRelayService')
 const openaiToClaude = require('../services/openaiToClaude')
 const apiKeyService = require('../services/apiKeyService')
 const unifiedClaudeScheduler = require('../services/unifiedClaudeScheduler')
 const claudeCodeHeadersService = require('../services/claudeCodeHeadersService')
+const { getSafeMessage } = require('../utils/errorSanitizer')
 const sessionHelper = require('../utils/sessionHelper')
 const { updateRateLimitCounters } = require('../utils/rateLimitHelper')
 const pricingService = require('../services/pricingService')
@@ -19,18 +21,17 @@ const { getEffectiveModel } = require('../utils/modelHelper')
 
 // 🔧 辅助函数：检查 API Key 权限
 function checkPermissions(apiKeyData, requiredPermission = 'claude') {
-  const permissions = apiKeyData.permissions || 'all'
-  return permissions === 'all' || permissions === requiredPermission
+  return apiKeyService.hasPermission(apiKeyData?.permissions, requiredPermission)
 }
 
-function queueRateLimitUpdate(rateLimitInfo, usageSummary, model, context = '') {
+function queueRateLimitUpdate(rateLimitInfo, usageSummary, model, context = '', keyId = null, accountType = null) {
   if (!rateLimitInfo) {
     return
   }
 
   const label = context ? ` (${context})` : ''
 
-  updateRateLimitCounters(rateLimitInfo, usageSummary, model)
+  updateRateLimitCounters(rateLimitInfo, usageSummary, model, keyId, accountType)
     .then(({ totalTokens, totalCost }) => {
       if (totalTokens > 0) {
         logger.api(`📊 Updated rate limit token count${label}: +${totalTokens} tokens`)
@@ -235,7 +236,7 @@ async function handleChatCompletion(req, res, apiKeyData) {
       }
       throw error
     }
-    const { accountId } = accountSelection
+    const { accountId, accountType } = accountSelection
 
     // 获取该账号存储的 Claude Code headers
     const claudeCodeHeaders = await claudeCodeHeadersService.getAccountHeaders(accountId)
@@ -265,72 +266,107 @@ async function handleChatCompletion(req, res, apiKeyData) {
         }
       })
 
-      // 使用转换后的响应流 (使用 OAuth-only beta header，添加 Claude Code 必需的 headers)
-      await claudeRelayService.relayStreamRequestWithUsageCapture(
-        claudeRequest,
-        apiKeyData,
-        res,
-        claudeCodeHeaders,
-        (usage) => {
-          // 记录使用统计
-          if (usage && usage.input_tokens !== undefined && usage.output_tokens !== undefined) {
-            const model = usage.model || claudeRequest.model
-            const cacheCreateTokens =
-              (usage.cache_creation && typeof usage.cache_creation === 'object'
-                ? (usage.cache_creation.ephemeral_5m_input_tokens || 0) +
-                  (usage.cache_creation.ephemeral_1h_input_tokens || 0)
-                : usage.cache_creation_input_tokens || 0) || 0
-            const cacheReadTokens = usage.cache_read_input_tokens || 0
+      // 使用转换后的响应流 (根据账户类型选择转发服务)
+      // 创建 usage 回调函数
+      const usageCallback = (usage) => {
+        // 记录使用统计
+        if (usage && usage.input_tokens !== undefined && usage.output_tokens !== undefined) {
+          const model = usage.model || claudeRequest.model
+          const cacheCreateTokens =
+            (usage.cache_creation && typeof usage.cache_creation === 'object'
+              ? (usage.cache_creation.ephemeral_5m_input_tokens || 0) +
+                (usage.cache_creation.ephemeral_1h_input_tokens || 0)
+              : usage.cache_creation_input_tokens || 0) || 0
+          const cacheReadTokens = usage.cache_read_input_tokens || 0
 
-            // 使用新的 recordUsageWithDetails 方法来支持详细的缓存数据
-            apiKeyService
-              .recordUsageWithDetails(
-                apiKeyData.id,
-                usage, // 直接传递整个 usage 对象，包含可能的 cache_creation 详细数据
-                model,
-                accountId
-              )
-              .catch((error) => {
-                logger.error('❌ Failed to record usage:', error)
-              })
-
-            queueRateLimitUpdate(
-              req.rateLimitInfo,
-              {
-                inputTokens: usage.input_tokens || 0,
-                outputTokens: usage.output_tokens || 0,
-                cacheCreateTokens,
-                cacheReadTokens
-              },
+          // 使用新的 recordUsageWithDetails 方法来支持详细的缓存数据
+          apiKeyService
+            .recordUsageWithDetails(
+              apiKeyData.id,
+              usage, // 直接传递整个 usage 对象，包含可能的 cache_creation 详细数据
               model,
-              'openai-claude-stream'
+              accountId,
+              accountType
             )
-          }
-        },
-        // 流转换器
-        (() => {
-          // 为每个请求创建独立的会话ID
-          const sessionId = `chatcmpl-${Math.random().toString(36).substring(2, 15)}${Math.random().toString(36).substring(2, 15)}`
-          return (chunk) => openaiToClaude.convertStreamChunk(chunk, req.body.model, sessionId)
-        })(),
-        {
-          betaHeader:
-            'oauth-2025-04-20,claude-code-20250219,interleaved-thinking-2025-05-14,fine-grained-tool-streaming-2025-05-14'
+            .catch((error) => {
+              logger.error('❌ Failed to record usage:', error)
+            })
+
+          queueRateLimitUpdate(
+            req.rateLimitInfo,
+            {
+              inputTokens: usage.input_tokens || 0,
+              outputTokens: usage.output_tokens || 0,
+              cacheCreateTokens,
+              cacheReadTokens
+            },
+            model,
+            `openai-${accountType}-stream`,
+            req.apiKey?.id,
+            accountType
+          )
         }
-      )
+      }
+
+      // 创建流转换器
+      const sessionId = `chatcmpl-${Math.random().toString(36).substring(2, 15)}${Math.random().toString(36).substring(2, 15)}`
+      const streamTransformer = (chunk) =>
+        openaiToClaude.convertStreamChunk(chunk, req.body.model, sessionId)
+
+      // 根据账户类型选择转发服务
+      if (accountType === 'claude-console') {
+        // Claude Console 账户使用 Console 转发服务
+        await claudeConsoleRelayService.relayStreamRequestWithUsageCapture(
+          claudeRequest,
+          apiKeyData,
+          res,
+          claudeCodeHeaders,
+          usageCallback,
+          accountId,
+          streamTransformer
+        )
+      } else {
+        // Claude Official 账户使用标准转发服务
+        await claudeRelayService.relayStreamRequestWithUsageCapture(
+          claudeRequest,
+          apiKeyData,
+          res,
+          claudeCodeHeaders,
+          usageCallback,
+          streamTransformer,
+          {
+            betaHeader:
+              'oauth-2025-04-20,claude-code-20250219,interleaved-thinking-2025-05-14,fine-grained-tool-streaming-2025-05-14'
+          }
+        )
+      }
     } else {
       // 非流式请求
       logger.info(`📄 Processing OpenAI non-stream request for model: ${req.body.model}`)
 
-      // 发送请求到 Claude (使用 OAuth-only beta header，添加 Claude Code 必需的 headers)
-      const claudeResponse = await claudeRelayService.relayRequest(
-        claudeRequest,
-        apiKeyData,
-        req,
-        res,
-        claudeCodeHeaders,
-        { betaHeader: 'oauth-2025-04-20' }
-      )
+      // 根据账户类型选择转发服务
+      let claudeResponse
+      if (accountType === 'claude-console') {
+        // Claude Console 账户使用 Console 转发服务
+        claudeResponse = await claudeConsoleRelayService.relayRequest(
+          claudeRequest,
+          apiKeyData,
+          req,
+          res,
+          claudeCodeHeaders,
+          accountId
+        )
+      } else {
+        // Claude Official 账户使用标准转发服务
+        claudeResponse = await claudeRelayService.relayRequest(
+          claudeRequest,
+          apiKeyData,
+          req,
+          res,
+          claudeCodeHeaders,
+          { betaHeader: 'oauth-2025-04-20' }
+        )
+      }
 
       // 解析 Claude 响应
       let claudeData
@@ -376,7 +412,8 @@ async function handleChatCompletion(req, res, apiKeyData) {
             apiKeyData.id,
             usage, // 直接传递整个 usage 对象，包含可能的 cache_creation 详细数据
             claudeRequest.model,
-            accountId
+            accountId,
+            accountType
           )
           .catch((error) => {
             logger.error('❌ Failed to record usage:', error)
@@ -391,7 +428,9 @@ async function handleChatCompletion(req, res, apiKeyData) {
             cacheReadTokens
           },
           claudeRequest.model,
-          'openai-claude-non-stream'
+          `openai-${accountType}-non-stream`,
+          req.apiKey?.id,
+          accountType
         )
       }
 
@@ -418,7 +457,7 @@ async function handleChatCompletion(req, res, apiKeyData) {
         const status = error.status || 500
         res.status(status).json({
           error: {
-            message: error.message || 'Internal server error',
+            message: getSafeMessage(error),
             type: 'server_error',
             code: 'internal_error'
           }
diff --git a/src/routes/openaiGeminiRoutes.js b/src/routes/openaiGeminiRoutes.js
index ef65acc1..d4c39146 100644
--- a/src/routes/openaiGeminiRoutes.js
+++ b/src/routes/openaiGeminiRoutes.js
@@ -6,6 +6,7 @@ const geminiAccountService = require('../services/geminiAccountService')
 const unifiedGeminiScheduler = require('../services/unifiedGeminiScheduler')
 const { getAvailableModels } = require('../services/geminiRelayService')
 const crypto = require('crypto')
+const apiKeyService = require('../services/apiKeyService')
 
 // 生成会话哈希
 function generateSessionHash(req) {
@@ -19,10 +20,19 @@ function generateSessionHash(req) {
   return crypto.createHash('sha256').update(sessionData).digest('hex')
 }
 
+function ensureAntigravityProjectId(account) {
+  if (account.projectId) {
+    return account.projectId
+  }
+  if (account.tempProjectId) {
+    return account.tempProjectId
+  }
+  return `ag-${crypto.randomBytes(8).toString('hex')}`
+}
+
 // 检查 API Key 权限
 function checkPermissions(apiKeyData, requiredPermission = 'gemini') {
-  const permissions = apiKeyData.permissions || 'all'
-  return permissions === 'all' || permissions === requiredPermission
+  return apiKeyService.hasPermission(apiKeyData?.permissions, requiredPermission)
 }
 
 // 转换 OpenAI 消息格式到 Gemini 格式
@@ -335,25 +345,48 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
     const client = await geminiAccountService.getOauthClient(
       account.accessToken,
       account.refreshToken,
-      proxyConfig
+      proxyConfig,
+      account.oauthProvider
     )
     if (actualStream) {
       // 流式响应
+      const oauthProvider = account.oauthProvider || 'gemini-cli'
+      let { projectId } = account
+
+      if (oauthProvider === 'antigravity') {
+        projectId = ensureAntigravityProjectId(account)
+        if (!account.projectId && account.tempProjectId !== projectId) {
+          await geminiAccountService.updateTempProjectId(account.id, projectId)
+          account.tempProjectId = projectId
+        }
+      }
+
       logger.info('StreamGenerateContent request', {
         model,
-        projectId: account.projectId,
+        projectId,
         apiKeyId: apiKeyData.id
       })
 
-      const streamResponse = await geminiAccountService.generateContentStream(
-        client,
-        { model, request: geminiRequestBody },
-        null, // user_prompt_id
-        account.projectId, // 使用有权限的项目ID
-        apiKeyData.id, // 使用 API Key ID 作为 session ID
-        abortController.signal, // 传递中止信号
-        proxyConfig // 传递代理配置
-      )
+      const streamResponse =
+        oauthProvider === 'antigravity'
+          ? await geminiAccountService.generateContentStreamAntigravity(
+              client,
+              { model, request: geminiRequestBody },
+              null, // user_prompt_id
+              projectId,
+              apiKeyData.id, // 使用 API Key ID 作为 session ID
+              abortController.signal, // 传递中止信号
+              proxyConfig // 传递代理配置
+            )
+          : await geminiAccountService.generateContentStream(
+              client,
+              { model, request: geminiRequestBody },
+              null, // user_prompt_id
+              projectId, // 使用有权限的项目ID
+              apiKeyData.id, // 使用 API Key ID 作为 session ID
+              abortController.signal, // 传递中止信号
+              proxyConfig // 传递代理配置
+            )
 
       // 设置流式响应头
       res.setHeader('Content-Type', 'text/event-stream')
@@ -499,7 +532,6 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
         // 记录使用统计
         if (!usageReported && totalUsage.totalTokenCount > 0) {
           try {
-            const apiKeyService = require('../services/apiKeyService')
             await apiKeyService.recordUsage(
               apiKeyData.id,
               totalUsage.promptTokenCount || 0,
@@ -507,7 +539,8 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
               0, // cacheCreateTokens
               0, // cacheReadTokens
               model,
-              account.id
+              account.id,
+              'gemini'
             )
             logger.info(
               `📊 Recorded Gemini stream usage - Input: ${totalUsage.promptTokenCount}, Output: ${totalUsage.candidatesTokenCount}, Total: ${totalUsage.totalTokenCount}`
@@ -559,20 +592,41 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
       })
     } else {
       // 非流式响应
+      const oauthProvider = account.oauthProvider || 'gemini-cli'
+      let { projectId } = account
+
+      if (oauthProvider === 'antigravity') {
+        projectId = ensureAntigravityProjectId(account)
+        if (!account.projectId && account.tempProjectId !== projectId) {
+          await geminiAccountService.updateTempProjectId(account.id, projectId)
+          account.tempProjectId = projectId
+        }
+      }
+
       logger.info('GenerateContent request', {
         model,
-        projectId: account.projectId,
+        projectId,
         apiKeyId: apiKeyData.id
       })
 
-      const response = await geminiAccountService.generateContent(
-        client,
-        { model, request: geminiRequestBody },
-        null, // user_prompt_id
-        account.projectId, // 使用有权限的项目ID
-        apiKeyData.id, // 使用 API Key ID 作为 session ID
-        proxyConfig // 传递代理配置
-      )
+      const response =
+        oauthProvider === 'antigravity'
+          ? await geminiAccountService.generateContentAntigravity(
+              client,
+              { model, request: geminiRequestBody },
+              null, // user_prompt_id
+              projectId,
+              apiKeyData.id, // 使用 API Key ID 作为 session ID
+              proxyConfig // 传递代理配置
+            )
+          : await geminiAccountService.generateContent(
+              client,
+              { model, request: geminiRequestBody },
+              null, // user_prompt_id
+              projectId, // 使用有权限的项目ID
+              apiKeyData.id, // 使用 API Key ID 作为 session ID
+              proxyConfig // 传递代理配置
+            )
 
       // 转换为 OpenAI 格式并返回
       const openaiResponse = convertGeminiResponseToOpenAI(response, model, false)
@@ -580,7 +634,6 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
       // 记录使用统计
       if (openaiResponse.usage) {
         try {
-          const apiKeyService = require('../services/apiKeyService')
           await apiKeyService.recordUsage(
             apiKeyData.id,
             openaiResponse.usage.prompt_tokens || 0,
@@ -588,7 +641,8 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
             0, // cacheCreateTokens
             0, // cacheReadTokens
             model,
-            account.id
+            account.id,
+            'gemini'
           )
           logger.info(
             `📊 Recorded Gemini usage - Input: ${openaiResponse.usage.prompt_tokens}, Output: ${openaiResponse.usage.completion_tokens}, Total: ${openaiResponse.usage.total_tokens}`
@@ -604,12 +658,15 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
     const duration = Date.now() - startTime
     logger.info(`OpenAI-Gemini request completed in ${duration}ms`)
   } catch (error) {
-    // 客户端主动断开连接是正常情况，使用 INFO 级别
-    if (error.message === 'Client disconnected') {
-      logger.info('🔌 OpenAI-Gemini stream ended: Client disconnected')
-    } else {
-      logger.error('OpenAI-Gemini request error:', error)
-    }
+    const statusForLog = error?.status || error?.response?.status
+    logger.error('OpenAI-Gemini request error', {
+      message: error?.message,
+      status: statusForLog,
+      code: error?.code,
+      requestUrl: error?.config?.url,
+      requestMethod: error?.config?.method,
+      upstreamTraceId: error?.response?.headers?.['x-cloudaicompanion-trace-id']
+    })
 
     // 处理速率限制
     if (error.status === 429) {
@@ -645,8 +702,8 @@ router.post('/v1/chat/completions', authenticateApiKey, async (req, res) => {
   return undefined
 })
 
-// OpenAI 兼容的模型列表端点
-router.get('/v1/models', authenticateApiKey, async (req, res) => {
+// 获取可用模型列表的共享处理器
+async function handleGetModels(req, res) {
   try {
     const apiKeyData = req.apiKey
 
@@ -677,8 +734,21 @@ router.get('/v1/models', authenticateApiKey, async (req, res) => {
     let models = []
 
     if (account) {
-      // 获取实际的模型列表
-      models = await getAvailableModels(account.accessToken, account.proxy)
+      // 获取实际的模型列表（失败时回退到默认列表，避免影响 /v1/models 可用性）
+      try {
+        const oauthProvider = account.oauthProvider || 'gemini-cli'
+        models =
+          oauthProvider === 'antigravity'
+            ? await geminiAccountService.fetchAvailableModelsAntigravity(
+                account.accessToken,
+                account.proxy,
+                account.refreshToken
+              )
+            : await getAvailableModels(account.accessToken, account.proxy)
+      } catch (error) {
+        logger.warn('Failed to get Gemini models list from upstream, fallback to default:', error)
+        models = []
+      }
     } else {
       // 返回默认模型列表
       models = [
@@ -691,6 +761,17 @@ router.get('/v1/models', authenticateApiKey, async (req, res) => {
       ]
     }
 
+    if (!models || models.length === 0) {
+      models = [
+        {
+          id: 'gemini-2.0-flash-exp',
+          object: 'model',
+          created: Math.floor(Date.now() / 1000),
+          owned_by: 'google'
+        }
+      ]
+    }
+
     // 如果启用了模型限制，过滤模型列表
     if (apiKeyData.enableModelRestriction && apiKeyData.restrictedModels.length > 0) {
       models = models.filter((model) => apiKeyData.restrictedModels.includes(model.id))
@@ -710,8 +791,13 @@ router.get('/v1/models', authenticateApiKey, async (req, res) => {
       }
     })
   }
-  return undefined
-})
+}
+
+// OpenAI 兼容的模型列表端点 (带 v1 版)
+router.get('/v1/models', authenticateApiKey, handleGetModels)
+
+// OpenAI 兼容的模型列表端点 (根路径版，方便第三方加载)
+router.get('/models', authenticateApiKey, handleGetModels)
 
 // OpenAI 兼容的模型详情端点
 router.get('/v1/models/:model', authenticateApiKey, async (req, res) => {
diff --git a/src/routes/openaiRoutes.js b/src/routes/openaiRoutes.js
index c999af97..7e9811fe 100644
--- a/src/routes/openaiRoutes.js
+++ b/src/routes/openaiRoutes.js
@@ -14,6 +14,7 @@ const crypto = require('crypto')
 const ProxyHelper = require('../utils/proxyHelper')
 const { updateRateLimitCounters } = require('../utils/rateLimitHelper')
 const { IncrementalSSEParser } = require('../utils/sseParser')
+const { getSafeMessage } = require('../utils/errorSanitizer')
 
 // 创建代理 Agent（使用统一的代理工具）
 function createProxyAgent(proxy) {
@@ -22,8 +23,7 @@ function createProxyAgent(proxy) {
 
 // 检查 API Key 是否具备 OpenAI 权限
 function checkOpenAIPermissions(apiKeyData) {
-  const permissions = apiKeyData?.permissions || 'all'
-  return permissions === 'all' || permissions === 'openai'
+  return apiKeyService.hasPermission(apiKeyData?.permissions, 'openai')
 }
 
 function normalizeHeaders(headers = {}) {
@@ -70,7 +70,7 @@ function extractCodexUsageHeaders(headers) {
   return hasData ? snapshot : null
 }
 
-async function applyRateLimitTracking(req, usageSummary, model, context = '') {
+async function applyRateLimitTracking(req, usageSummary, model, context = '', accountType = null) {
   if (!req.rateLimitInfo) {
     return
   }
@@ -81,7 +81,9 @@ async function applyRateLimitTracking(req, usageSummary, model, context = '') {
     const { totalTokens, totalCost } = await updateRateLimitCounters(
       req.rateLimitInfo,
       usageSummary,
-      model
+      model,
+      req.apiKey?.id,
+      accountType
     )
 
     if (totalTokens > 0) {
@@ -613,7 +615,8 @@ const handleResponses = async (req, res) => {
             0, // OpenAI没有cache_creation_tokens
             cacheReadTokens,
             actualModel,
-            accountId
+            accountId,
+            'openai'
           )
 
           logger.info(
@@ -629,7 +632,8 @@ const handleResponses = async (req, res) => {
               cacheReadTokens
             },
             actualModel,
-            'openai-non-stream'
+            'openai-non-stream',
+            'openai'
           )
         }
 
@@ -727,7 +731,8 @@ const handleResponses = async (req, res) => {
             0, // OpenAI没有cache_creation_tokens
             cacheReadTokens,
             modelToRecord,
-            accountId
+            accountId,
+            'openai'
           )
 
           logger.info(
@@ -744,7 +749,8 @@ const handleResponses = async (req, res) => {
               cacheReadTokens
             },
             modelToRecord,
-            'openai-stream'
+            'openai-stream',
+            'openai'
           )
         } catch (error) {
           logger.error('Failed to record OpenAI usage:', error)
@@ -834,13 +840,15 @@ const handleResponses = async (req, res) => {
 
     let responsePayload = error.response?.data
     if (!responsePayload) {
-      responsePayload = { error: { message: error.message || 'Internal server error' } }
+      responsePayload = { error: { message: getSafeMessage(error) } }
     } else if (typeof responsePayload === 'string') {
-      responsePayload = { error: { message: responsePayload } }
+      responsePayload = { error: { message: getSafeMessage(responsePayload) } }
     } else if (typeof responsePayload === 'object' && !responsePayload.error) {
       responsePayload = {
-        error: { message: responsePayload.message || error.message || 'Internal server error' }
+        error: { message: getSafeMessage(responsePayload.message || error) }
       }
+    } else if (responsePayload.error?.message) {
+      responsePayload.error.message = getSafeMessage(responsePayload.error.message)
     }
 
     if (!res.headersSent) {
@@ -893,7 +901,7 @@ router.get('/key-info', authenticateApiKey, async (req, res) => {
       id: keyData.id,
       name: keyData.name,
       description: keyData.description,
-      permissions: keyData.permissions || 'all',
+      permissions: keyData.permissions,
       token_limit: keyData.tokenLimit,
       tokens_used: tokensUsed,
       tokens_remaining:
diff --git a/src/routes/unified.js b/src/routes/unified.js
index a8a8e69d..c1401137 100644
--- a/src/routes/unified.js
+++ b/src/routes/unified.js
@@ -8,6 +8,7 @@ const {
   handleStreamGenerateContent: geminiHandleStreamGenerateContent
 } = require('../handlers/geminiHandlers')
 const openaiRoutes = require('./openaiRoutes')
+const apiKeyService = require('../services/apiKeyService')
 
 const router = express.Router()
 
@@ -45,11 +46,11 @@ async function routeToBackend(req, res, requestedModel) {
   logger.info(`🔀 Routing request - Model: ${requestedModel}, Backend: ${backend}`)
 
   // 检查权限
-  const permissions = req.apiKey.permissions || 'all'
+  const { permissions } = req.apiKey
 
   if (backend === 'claude') {
     // Claude 后端：通过 OpenAI 兼容层
-    if (permissions !== 'all' && permissions !== 'claude') {
+    if (!apiKeyService.hasPermission(permissions, 'claude')) {
       return res.status(403).json({
         error: {
           message: 'This API key does not have permission to access Claude',
@@ -61,7 +62,7 @@ async function routeToBackend(req, res, requestedModel) {
     await handleChatCompletion(req, res, req.apiKey)
   } else if (backend === 'openai') {
     // OpenAI 后端
-    if (permissions !== 'all' && permissions !== 'openai') {
+    if (!apiKeyService.hasPermission(permissions, 'openai')) {
       return res.status(403).json({
         error: {
           message: 'This API key does not have permission to access OpenAI',
@@ -73,7 +74,7 @@ async function routeToBackend(req, res, requestedModel) {
     return await openaiRoutes.handleResponses(req, res)
   } else if (backend === 'gemini') {
     // Gemini 后端
-    if (permissions !== 'all' && permissions !== 'gemini') {
+    if (!apiKeyService.hasPermission(permissions, 'gemini')) {
       return res.status(403).json({
         error: {
           message: 'This API key does not have permission to access Gemini',
diff --git a/src/services/accountBalanceService.js b/src/services/accountBalanceService.js
new file mode 100644
index 00000000..ec25f171
--- /dev/null
+++ b/src/services/accountBalanceService.js
@@ -0,0 +1,789 @@
+const redis = require('../models/redis')
+const balanceScriptService = require('./balanceScriptService')
+const logger = require('../utils/logger')
+const CostCalculator = require('../utils/costCalculator')
+const { isBalanceScriptEnabled } = require('../utils/featureFlags')
+
+class AccountBalanceService {
+  constructor(options = {}) {
+    this.redis = options.redis || redis
+    this.logger = options.logger || logger
+
+    this.providers = new Map()
+
+    this.CACHE_TTL_SECONDS = 3600
+    this.LOCAL_TTL_SECONDS = 300
+
+    this.LOW_BALANCE_THRESHOLD = 10
+    this.HIGH_USAGE_THRESHOLD_PERCENT = 90
+    this.DEFAULT_CONCURRENCY = 10
+  }
+
+  getSupportedPlatforms() {
+    return [
+      'claude',
+      'claude-console',
+      'gemini',
+      'gemini-api',
+      'openai',
+      'openai-responses',
+      'azure_openai',
+      'bedrock',
+      'droid',
+      'ccr'
+    ]
+  }
+
+  normalizePlatform(platform) {
+    if (!platform) {
+      return null
+    }
+
+    const value = String(platform).trim().toLowerCase()
+
+    // 兼容实施文档与历史命名
+    if (value === 'claude-official') {
+      return 'claude'
+    }
+    if (value === 'azure-openai') {
+      return 'azure_openai'
+    }
+
+    // 保持前端平台键一致
+    return value
+  }
+
+  registerProvider(platform, provider) {
+    const normalized = this.normalizePlatform(platform)
+    if (!normalized) {
+      throw new Error('registerProvider: 缺少 platform')
+    }
+    if (!provider || typeof provider.queryBalance !== 'function') {
+      throw new Error(`registerProvider: Provider 无效 (${normalized})`)
+    }
+    this.providers.set(normalized, provider)
+  }
+
+  async getAccountBalance(accountId, platform, options = {}) {
+    const normalizedPlatform = this.normalizePlatform(platform)
+    const account = await this.getAccount(accountId, normalizedPlatform)
+    if (!account) {
+      return null
+    }
+    return await this._getAccountBalanceForAccount(account, normalizedPlatform, options)
+  }
+
+  async refreshAccountBalance(accountId, platform) {
+    const normalizedPlatform = this.normalizePlatform(platform)
+    const account = await this.getAccount(accountId, normalizedPlatform)
+    if (!account) {
+      return null
+    }
+
+    return await this._getAccountBalanceForAccount(account, normalizedPlatform, {
+      queryApi: true,
+      useCache: false
+    })
+  }
+
+  async getAllAccountsBalance(platform, options = {}) {
+    const normalizedPlatform = this.normalizePlatform(platform)
+    const accounts = await this.getAllAccountsByPlatform(normalizedPlatform)
+    const queryApi = this._parseBoolean(options.queryApi) || false
+    const useCache = options.useCache !== false
+
+    const results = await this._mapWithConcurrency(
+      accounts,
+      this.DEFAULT_CONCURRENCY,
+      async (acc) => {
+        try {
+          const balance = await this._getAccountBalanceForAccount(acc, normalizedPlatform, {
+            queryApi,
+            useCache
+          })
+          return { ...balance, name: acc.name || '' }
+        } catch (error) {
+          this.logger.error(`批量获取余额失败: ${normalizedPlatform}:${acc?.id}`, error)
+          return {
+            success: true,
+            data: {
+              accountId: acc?.id,
+              platform: normalizedPlatform,
+              balance: null,
+              quota: null,
+              statistics: {},
+              source: 'local',
+              lastRefreshAt: new Date().toISOString(),
+              cacheExpiresAt: null,
+              status: 'error',
+              error: error.message || '批量查询失败'
+            },
+            name: acc?.name || ''
+          }
+        }
+      }
+    )
+
+    return results
+  }
+
+  async getBalanceSummary() {
+    const platforms = this.getSupportedPlatforms()
+
+    const summary = {
+      totalBalance: 0,
+      totalCost: 0,
+      lowBalanceCount: 0,
+      platforms: {}
+    }
+
+    for (const platform of platforms) {
+      const accounts = await this.getAllAccountsByPlatform(platform)
+      const platformData = {
+        count: accounts.length,
+        totalBalance: 0,
+        totalCost: 0,
+        lowBalanceCount: 0,
+        accounts: []
+      }
+
+      const balances = await this._mapWithConcurrency(
+        accounts,
+        this.DEFAULT_CONCURRENCY,
+        async (acc) => {
+          const balance = await this._getAccountBalanceForAccount(acc, platform, {
+            queryApi: false,
+            useCache: true
+          })
+          return { ...balance, name: acc.name || '' }
+        }
+      )
+
+      for (const item of balances) {
+        platformData.accounts.push(item)
+
+        const amount = item?.data?.balance?.amount
+        const percentage = item?.data?.quota?.percentage
+        const totalCost = Number(item?.data?.statistics?.totalCost || 0)
+
+        const hasAmount = typeof amount === 'number' && Number.isFinite(amount)
+        const isLowBalance = hasAmount && amount < this.LOW_BALANCE_THRESHOLD
+        const isHighUsage =
+          typeof percentage === 'number' &&
+          Number.isFinite(percentage) &&
+          percentage > this.HIGH_USAGE_THRESHOLD_PERCENT
+
+        if (hasAmount) {
+          platformData.totalBalance += amount
+        }
+
+        if (isLowBalance || isHighUsage) {
+          platformData.lowBalanceCount += 1
+          summary.lowBalanceCount += 1
+        }
+
+        platformData.totalCost += totalCost
+      }
+
+      summary.platforms[platform] = platformData
+      summary.totalBalance += platformData.totalBalance
+      summary.totalCost += platformData.totalCost
+    }
+
+    return summary
+  }
+
+  async clearCache(accountId, platform) {
+    const normalizedPlatform = this.normalizePlatform(platform)
+    if (!normalizedPlatform) {
+      throw new Error('缺少 platform 参数')
+    }
+
+    await this.redis.deleteAccountBalance(normalizedPlatform, accountId)
+    this.logger.info(`余额缓存已清除: ${normalizedPlatform}:${accountId}`)
+  }
+
+  async getAccount(accountId, platform) {
+    if (!accountId || !platform) {
+      return null
+    }
+
+    const serviceMap = {
+      claude: require('./claudeAccountService'),
+      'claude-console': require('./claudeConsoleAccountService'),
+      gemini: require('./geminiAccountService'),
+      'gemini-api': require('./geminiApiAccountService'),
+      openai: require('./openaiAccountService'),
+      'openai-responses': require('./openaiResponsesAccountService'),
+      azure_openai: require('./azureOpenaiAccountService'),
+      bedrock: require('./bedrockAccountService'),
+      droid: require('./droidAccountService'),
+      ccr: require('./ccrAccountService')
+    }
+
+    const service = serviceMap[platform]
+    if (!service || typeof service.getAccount !== 'function') {
+      return null
+    }
+
+    const result = await service.getAccount(accountId)
+
+    // 处理不同服务返回格式的差异
+    // Bedrock/CCR/Droid 等服务返回 { success, data } 格式
+    if (result && typeof result === 'object' && 'success' in result && 'data' in result) {
+      return result.success ? result.data : null
+    }
+
+    return result
+  }
+
+  async getAllAccountsByPlatform(platform) {
+    if (!platform) {
+      return []
+    }
+
+    const serviceMap = {
+      claude: require('./claudeAccountService'),
+      'claude-console': require('./claudeConsoleAccountService'),
+      gemini: require('./geminiAccountService'),
+      'gemini-api': require('./geminiApiAccountService'),
+      openai: require('./openaiAccountService'),
+      'openai-responses': require('./openaiResponsesAccountService'),
+      azure_openai: require('./azureOpenaiAccountService'),
+      bedrock: require('./bedrockAccountService'),
+      droid: require('./droidAccountService'),
+      ccr: require('./ccrAccountService')
+    }
+
+    const service = serviceMap[platform]
+    if (!service) {
+      return []
+    }
+
+    // Bedrock 特殊：返回 { success, data }
+    if (platform === 'bedrock' && typeof service.getAllAccounts === 'function') {
+      const result = await service.getAllAccounts()
+      return result?.success ? result.data || [] : []
+    }
+
+    if (platform === 'openai-responses') {
+      return await service.getAllAccounts(true)
+    }
+
+    if (typeof service.getAllAccounts !== 'function') {
+      return []
+    }
+
+    return await service.getAllAccounts()
+  }
+
+  async _getAccountBalanceForAccount(account, platform, options = {}) {
+    const queryMode = this._parseQueryMode(options.queryApi)
+    const useCache = options.useCache !== false
+
+    const accountId = account?.id
+    if (!accountId) {
+      // 如果账户缺少 id，返回空响应而不是抛出错误，避免接口报错和UI错误
+      this.logger.warn('账户缺少 id，返回空余额数据', { account, platform })
+      return this._buildResponse(
+        {
+          status: 'error',
+          errorMessage: '账户数据异常',
+          balance: null,
+          currency: 'USD',
+          quota: null,
+          statistics: {},
+          lastRefreshAt: new Date().toISOString()
+        },
+        'unknown',
+        platform,
+        'local',
+        null,
+        { scriptEnabled: false, scriptConfigured: false }
+      )
+    }
+
+    // 余额脚本配置状态（用于前端控制"刷新余额"按钮）
+    let scriptConfig = null
+    let scriptConfigured = false
+    if (typeof this.redis?.getBalanceScriptConfig === 'function') {
+      scriptConfig = await this.redis.getBalanceScriptConfig(platform, accountId)
+      scriptConfigured = !!(
+        scriptConfig &&
+        scriptConfig.scriptBody &&
+        String(scriptConfig.scriptBody).trim().length > 0
+      )
+    }
+    const scriptEnabled = isBalanceScriptEnabled()
+    const scriptMeta = { scriptEnabled, scriptConfigured }
+
+    const localBalance = await this._getBalanceFromLocal(accountId, platform)
+    const localStatistics = localBalance.statistics || {}
+
+    const quotaFromLocal = this._buildQuotaFromLocal(account, localStatistics)
+
+    // 安全限制：queryApi=auto 仅用于 Antigravity（gemini + oauthProvider=antigravity）账户
+    const effectiveQueryMode =
+      queryMode === 'auto' && !(platform === 'gemini' && account?.oauthProvider === 'antigravity')
+        ? 'local'
+        : queryMode
+
+    // local: 仅本地统计/缓存；auto: 优先缓存，无缓存则尝试远程 Provider（并缓存结果）
+    if (effectiveQueryMode !== 'api') {
+      if (useCache) {
+        const cached = await this.redis.getAccountBalance(platform, accountId)
+        if (cached && cached.status === 'success') {
+          return this._buildResponse(
+            {
+              status: cached.status,
+              errorMessage: cached.errorMessage,
+              balance: quotaFromLocal.balance ?? cached.balance,
+              currency: quotaFromLocal.currency || cached.currency || 'USD',
+              quota: quotaFromLocal.quota || cached.quota || null,
+              statistics: localStatistics,
+              lastRefreshAt: cached.lastRefreshAt
+            },
+            accountId,
+            platform,
+            'cache',
+            cached.ttlSeconds,
+            scriptMeta
+          )
+        }
+      }
+
+      if (effectiveQueryMode === 'local') {
+        return this._buildResponse(
+          {
+            status: 'success',
+            errorMessage: null,
+            balance: quotaFromLocal.balance,
+            currency: quotaFromLocal.currency || 'USD',
+            quota: quotaFromLocal.quota,
+            statistics: localStatistics,
+            lastRefreshAt: localBalance.lastCalculated
+          },
+          accountId,
+          platform,
+          'local',
+          null,
+          scriptMeta
+        )
+      }
+    }
+
+    // 强制查询：优先脚本（如启用且已配置），否则调用 Provider；失败自动降级到本地统计
+    let providerResult
+
+    if (scriptEnabled && scriptConfigured) {
+      providerResult = await this._getBalanceFromScript(scriptConfig, accountId, platform)
+    } else {
+      const provider = this.providers.get(platform)
+      if (!provider) {
+        return this._buildResponse(
+          {
+            status: 'error',
+            errorMessage: `不支持的平台: ${platform}`,
+            balance: quotaFromLocal.balance,
+            currency: quotaFromLocal.currency || 'USD',
+            quota: quotaFromLocal.quota,
+            statistics: localStatistics,
+            lastRefreshAt: new Date().toISOString()
+          },
+          accountId,
+          platform,
+          'local',
+          null,
+          scriptMeta
+        )
+      }
+      providerResult = await this._getBalanceFromProvider(provider, account)
+    }
+
+    const isRemoteSuccess =
+      providerResult.status === 'success' && ['api', 'script'].includes(providerResult.queryMethod)
+
+    // 仅缓存“真实远程查询成功”的结果，避免把字段/本地降级结果当作 API 结果缓存 1h
+    if (isRemoteSuccess) {
+      await this.redis.setAccountBalance(
+        platform,
+        accountId,
+        providerResult,
+        this.CACHE_TTL_SECONDS
+      )
+    }
+
+    const source = isRemoteSuccess ? 'api' : 'local'
+
+    return this._buildResponse(
+      {
+        status: providerResult.status,
+        errorMessage: providerResult.errorMessage,
+        balance: quotaFromLocal.balance ?? providerResult.balance,
+        currency: quotaFromLocal.currency || providerResult.currency || 'USD',
+        quota: quotaFromLocal.quota || providerResult.quota || null,
+        statistics: localStatistics,
+        lastRefreshAt: providerResult.lastRefreshAt
+      },
+      accountId,
+      platform,
+      source,
+      null,
+      scriptMeta
+    )
+  }
+
+  async _getBalanceFromScript(scriptConfig, accountId, platform) {
+    try {
+      const result = await balanceScriptService.execute({
+        scriptBody: scriptConfig.scriptBody,
+        timeoutSeconds: scriptConfig.timeoutSeconds || 10,
+        variables: {
+          baseUrl: scriptConfig.baseUrl || '',
+          apiKey: scriptConfig.apiKey || '',
+          token: scriptConfig.token || '',
+          accountId,
+          platform,
+          extra: scriptConfig.extra || ''
+        }
+      })
+
+      const mapped = result?.mapped || {}
+      return {
+        status: mapped.status || 'error',
+        balance: typeof mapped.balance === 'number' ? mapped.balance : null,
+        currency: mapped.currency || 'USD',
+        quota: mapped.quota || null,
+        queryMethod: 'api',
+        rawData: mapped.rawData || result?.response?.data || null,
+        lastRefreshAt: new Date().toISOString(),
+        errorMessage: mapped.errorMessage || ''
+      }
+    } catch (error) {
+      return {
+        status: 'error',
+        balance: null,
+        currency: 'USD',
+        quota: null,
+        queryMethod: 'api',
+        rawData: null,
+        lastRefreshAt: new Date().toISOString(),
+        errorMessage: error.message || '脚本执行失败'
+      }
+    }
+  }
+
+  async _getBalanceFromProvider(provider, account) {
+    try {
+      const result = await provider.queryBalance(account)
+      return {
+        status: 'success',
+        balance: typeof result?.balance === 'number' ? result.balance : null,
+        currency: result?.currency || 'USD',
+        quota: result?.quota || null,
+        queryMethod: result?.queryMethod || 'api',
+        rawData: result?.rawData || null,
+        lastRefreshAt: new Date().toISOString(),
+        errorMessage: ''
+      }
+    } catch (error) {
+      return {
+        status: 'error',
+        balance: null,
+        currency: 'USD',
+        quota: null,
+        queryMethod: 'api',
+        rawData: null,
+        lastRefreshAt: new Date().toISOString(),
+        errorMessage: error.message || '查询失败'
+      }
+    }
+  }
+
+  async _getBalanceFromLocal(accountId, platform) {
+    const cached = await this.redis.getLocalBalance(platform, accountId)
+    if (cached && cached.statistics) {
+      return cached
+    }
+
+    const statistics = await this._computeLocalStatistics(accountId)
+    const localBalance = {
+      status: 'success',
+      balance: null,
+      currency: 'USD',
+      statistics,
+      queryMethod: 'local',
+      lastCalculated: new Date().toISOString()
+    }
+
+    await this.redis.setLocalBalance(platform, accountId, localBalance, this.LOCAL_TTL_SECONDS)
+    return localBalance
+  }
+
+  async _computeLocalStatistics(accountId) {
+    const safeNumber = (value) => {
+      const num = Number(value)
+      return Number.isFinite(num) ? num : 0
+    }
+
+    try {
+      const usageStats = await this.redis.getAccountUsageStats(accountId)
+      const dailyCost = safeNumber(usageStats?.daily?.cost || 0)
+      const monthlyCost = await this._computeMonthlyCost(accountId)
+      const totalCost = await this._computeTotalCost(accountId)
+
+      return {
+        totalCost,
+        dailyCost,
+        monthlyCost,
+        totalRequests: safeNumber(usageStats?.total?.requests || 0),
+        dailyRequests: safeNumber(usageStats?.daily?.requests || 0),
+        monthlyRequests: safeNumber(usageStats?.monthly?.requests || 0)
+      }
+    } catch (error) {
+      this.logger.debug(`本地统计计算失败: ${accountId}`, error)
+      return {
+        totalCost: 0,
+        dailyCost: 0,
+        monthlyCost: 0,
+        totalRequests: 0,
+        dailyRequests: 0,
+        monthlyRequests: 0
+      }
+    }
+  }
+
+  async _computeMonthlyCost(accountId) {
+    const tzDate = this.redis.getDateInTimezone(new Date())
+    const currentMonth = `${tzDate.getUTCFullYear()}-${String(tzDate.getUTCMonth() + 1).padStart(
+      2,
+      '0'
+    )}`
+
+    const pattern = `account_usage:model:monthly:${accountId}:*:${currentMonth}`
+    return await this._sumModelCostsByKeysPattern(pattern)
+  }
+
+  async _computeTotalCost(accountId) {
+    const pattern = `account_usage:model:monthly:${accountId}:*:*`
+    return await this._sumModelCostsByKeysPattern(pattern)
+  }
+
+  async _sumModelCostsByKeysPattern(pattern) {
+    try {
+      const client = this.redis.getClientSafe()
+      let totalCost = 0
+      let cursor = '0'
+      const scanCount = 200
+      let iterations = 0
+      const maxIterations = 2000
+
+      do {
+        const [nextCursor, keys] = await client.scan(cursor, 'MATCH', pattern, 'COUNT', scanCount)
+        cursor = nextCursor
+        iterations += 1
+
+        if (!keys || keys.length === 0) {
+          continue
+        }
+
+        const pipeline = client.pipeline()
+        keys.forEach((key) => pipeline.hgetall(key))
+        const results = await pipeline.exec()
+
+        for (let i = 0; i < results.length; i += 1) {
+          const [, data] = results[i] || []
+          if (!data || Object.keys(data).length === 0) {
+            continue
+          }
+
+          const parts = String(keys[i]).split(':')
+          const model = parts[4] || 'unknown'
+
+          const usage = {
+            input_tokens: parseInt(data.inputTokens || 0),
+            output_tokens: parseInt(data.outputTokens || 0),
+            cache_creation_input_tokens: parseInt(data.cacheCreateTokens || 0),
+            cache_read_input_tokens: parseInt(data.cacheReadTokens || 0)
+          }
+
+          const costResult = CostCalculator.calculateCost(usage, model)
+          totalCost += costResult.costs.total || 0
+        }
+
+        if (iterations >= maxIterations) {
+          this.logger.warn(`SCAN 次数超过上限，停止汇总：${pattern}`)
+          break
+        }
+      } while (cursor !== '0')
+
+      return totalCost
+    } catch (error) {
+      this.logger.debug(`汇总模型费用失败: ${pattern}`, error)
+      return 0
+    }
+  }
+
+  _buildQuotaFromLocal(account, statistics) {
+    if (!account || !Object.prototype.hasOwnProperty.call(account, 'dailyQuota')) {
+      return { balance: null, currency: null, quota: null }
+    }
+
+    const dailyQuota = Number(account.dailyQuota || 0)
+    const used = Number(statistics?.dailyCost || 0)
+
+    const resetAt = this._computeNextResetAt(account.quotaResetTime || '00:00')
+
+    // 不限制
+    if (!Number.isFinite(dailyQuota) || dailyQuota <= 0) {
+      return {
+        balance: null,
+        currency: 'USD',
+        quota: {
+          daily: Infinity,
+          used,
+          remaining: Infinity,
+          percentage: 0,
+          unlimited: true,
+          resetAt
+        }
+      }
+    }
+
+    const remaining = Math.max(0, dailyQuota - used)
+    const percentage = dailyQuota > 0 ? (used / dailyQuota) * 100 : 0
+
+    return {
+      balance: remaining,
+      currency: 'USD',
+      quota: {
+        daily: dailyQuota,
+        used,
+        remaining,
+        resetAt,
+        percentage: Math.round(percentage * 100) / 100
+      }
+    }
+  }
+
+  _computeNextResetAt(resetTime) {
+    const now = new Date()
+    const tzNow = this.redis.getDateInTimezone(now)
+    const offsetMs = tzNow.getTime() - now.getTime()
+
+    const [h, m] = String(resetTime || '00:00')
+      .split(':')
+      .map((n) => parseInt(n, 10))
+
+    const resetHour = Number.isFinite(h) ? h : 0
+    const resetMinute = Number.isFinite(m) ? m : 0
+
+    const year = tzNow.getUTCFullYear()
+    const month = tzNow.getUTCMonth()
+    const day = tzNow.getUTCDate()
+
+    let resetAtMs = Date.UTC(year, month, day, resetHour, resetMinute, 0, 0) - offsetMs
+    if (resetAtMs <= now.getTime()) {
+      resetAtMs += 24 * 60 * 60 * 1000
+    }
+
+    return new Date(resetAtMs).toISOString()
+  }
+
+  _buildResponse(balanceData, accountId, platform, source, ttlSeconds = null, extraData = {}) {
+    const now = new Date()
+
+    const amount = typeof balanceData.balance === 'number' ? balanceData.balance : null
+    const currency = balanceData.currency || 'USD'
+
+    let cacheExpiresAt = null
+    if (source === 'cache') {
+      const ttl =
+        typeof ttlSeconds === 'number' && ttlSeconds > 0 ? ttlSeconds : this.CACHE_TTL_SECONDS
+      cacheExpiresAt = new Date(Date.now() + ttl * 1000).toISOString()
+    }
+
+    return {
+      success: true,
+      data: {
+        accountId,
+        platform,
+        balance:
+          typeof amount === 'number'
+            ? {
+                amount,
+                currency,
+                formattedAmount: this._formatCurrency(amount, currency)
+              }
+            : null,
+        quota: balanceData.quota || null,
+        statistics: balanceData.statistics || {},
+        source,
+        lastRefreshAt: balanceData.lastRefreshAt || now.toISOString(),
+        cacheExpiresAt,
+        status: balanceData.status || 'success',
+        error: balanceData.errorMessage || null,
+        ...(extraData && typeof extraData === 'object' ? extraData : {})
+      }
+    }
+  }
+
+  _formatCurrency(amount, currency = 'USD') {
+    try {
+      if (typeof amount !== 'number' || !Number.isFinite(amount)) {
+        return 'N/A'
+      }
+      return new Intl.NumberFormat('en-US', { style: 'currency', currency }).format(amount)
+    } catch (error) {
+      return `$${amount.toFixed(2)}`
+    }
+  }
+
+  _parseBoolean(value) {
+    if (typeof value === 'boolean') {
+      return value
+    }
+    if (typeof value !== 'string') {
+      return null
+    }
+    const normalized = value.trim().toLowerCase()
+    if (normalized === 'true' || normalized === '1' || normalized === 'yes') {
+      return true
+    }
+    if (normalized === 'false' || normalized === '0' || normalized === 'no') {
+      return false
+    }
+    return null
+  }
+
+  _parseQueryMode(value) {
+    if (value === 'auto') {
+      return 'auto'
+    }
+    const parsed = this._parseBoolean(value)
+    return parsed ? 'api' : 'local'
+  }
+
+  async _mapWithConcurrency(items, limit, mapper) {
+    const concurrency = Math.max(1, Number(limit) || 1)
+    const list = Array.isArray(items) ? items : []
+
+    const results = new Array(list.length)
+    let nextIndex = 0
+
+    const workers = new Array(Math.min(concurrency, list.length)).fill(null).map(async () => {
+      while (nextIndex < list.length) {
+        const currentIndex = nextIndex
+        nextIndex += 1
+        results[currentIndex] = await mapper(list[currentIndex], currentIndex)
+      }
+    })
+
+    await Promise.all(workers)
+    return results
+  }
+}
+
+const accountBalanceService = new AccountBalanceService()
+module.exports = accountBalanceService
+module.exports.AccountBalanceService = AccountBalanceService
diff --git a/src/services/anthropicGeminiBridgeService.js b/src/services/anthropicGeminiBridgeService.js
new file mode 100644
index 00000000..58c79e07
--- /dev/null
+++ b/src/services/anthropicGeminiBridgeService.js
@@ -0,0 +1,3088 @@
+/**
+ * ============================================================================
+ * Anthropic → Gemini/Antigravity 桥接服务
+ * ============================================================================
+ *
+ * 【模块功能】
+ * 本模块负责将 Anthropic Claude API 格式的请求转换为 Gemini/Antigravity 格式，
+ * 并将响应转换回 Anthropic 格式返回给客户端（如 Claude Code）。
+ *
+ * 【支持的后端 (vendor)】
+ * - gemini-cli: 原生 Google Gemini API
+ * - antigravity: Claude 代理层 (CLIProxyAPI)，使用 Gemini 格式但有额外约束
+ *
+ * 【核心处理流程】
+ * 1. 接收 Anthropic 格式请求 (/v1/messages)
+ * 2. 标准化消息 (normalizeAnthropicMessages) - 处理 thinking blocks、tool_result 等
+ * 3. 转换工具定义 (convertAnthropicToolsToGeminiTools) - 压缩描述、清洗 schema
+ * 4. 转换消息内容 (convertAnthropicMessagesToGeminiContents)
+ * 5. 构建 Gemini 请求 (buildGeminiRequestFromAnthropic)
+ * 6. 发送请求并处理 SSE 流式响应
+ * 7. 将 Gemini 响应转换回 Anthropic 格式返回
+ *
+ * 【Antigravity 特殊处理】
+ * - 工具描述压缩：限制 400 字符，避免 prompt 超长
+ * - Schema description 压缩：限制 200 字符，保留关键约束信息
+ * - Thinking signature 校验：防止格式错误导致 400
+ * - Tool result 截断：限制 20 万字符
+ * - 缺失 tool_result 自动补全：避免 tool_use concurrency 错误
+ */
+
+const util = require('util')
+const crypto = require('crypto')
+const fs = require('fs')
+const path = require('path')
+const logger = require('../utils/logger')
+const { getProjectRoot } = require('../utils/projectPaths')
+const geminiAccountService = require('./geminiAccountService')
+const unifiedGeminiScheduler = require('./unifiedGeminiScheduler')
+const sessionHelper = require('../utils/sessionHelper')
+const signatureCache = require('../utils/signatureCache')
+const apiKeyService = require('./apiKeyService')
+const { updateRateLimitCounters } = require('../utils/rateLimitHelper')
+const { parseSSELine } = require('../utils/sseParser')
+const { sanitizeUpstreamError } = require('../utils/errorSanitizer')
+const { cleanJsonSchemaForGemini } = require('../utils/geminiSchemaCleaner')
+const {
+  dumpAnthropicNonStreamResponse,
+  dumpAnthropicStreamSummary
+} = require('../utils/anthropicResponseDump')
+const {
+  dumpAntigravityStreamEvent,
+  dumpAntigravityStreamSummary
+} = require('../utils/antigravityUpstreamResponseDump')
+
+// ============================================================================
+// 常量定义
+// ============================================================================
+
+// 默认签名
+const THOUGHT_SIGNATURE_FALLBACK = 'skip_thought_signature_validator'
+
+// 支持的后端类型
+const SUPPORTED_VENDORS = new Set(['gemini-cli', 'antigravity'])
+// 需要跳过的系统提醒前缀（Claude 内部消息，不应转发给上游）
+const SYSTEM_REMINDER_PREFIX = '<system-reminder>'
+// 调试：工具定义 dump 相关
+const TOOLS_DUMP_ENV = 'ANTHROPIC_DEBUG_TOOLS_DUMP'
+const TOOLS_DUMP_FILENAME = 'anthropic-tools-dump.jsonl'
+// 环境变量：工具调用失败时是否回退到文本输出
+const TEXT_TOOL_FALLBACK_ENV = 'ANTHROPIC_TEXT_TOOL_FALLBACK'
+// 环境变量：工具报错时是否继续执行（而非中断）
+const TOOL_ERROR_CONTINUE_ENV = 'ANTHROPIC_TOOL_ERROR_CONTINUE'
+// Antigravity 工具顶级描述的最大字符数（防止 prompt 超长）
+const MAX_ANTIGRAVITY_TOOL_DESCRIPTION_CHARS = 400
+// Antigravity 参数 schema description 的最大字符数（保留关键约束信息）
+const MAX_ANTIGRAVITY_SCHEMA_DESCRIPTION_CHARS = 200
+// Antigravity：当已经决定要走工具时，避免“只宣布步骤就结束”
+const ANTIGRAVITY_TOOL_FOLLOW_THROUGH_PROMPT =
+  'When a step requires calling a tool, call the tool immediately in the same turn. Do not stop after announcing the step. Updating todos alone (e.g., TodoWrite) is not enough; you must actually invoke the target MCP tool (browser_*, etc.) before ending the turn.'
+// 工具报错时注入的 system prompt，提示模型不要中断
+const TOOL_ERROR_CONTINUE_PROMPT =
+  'Tool calls may fail (e.g., missing prerequisites). When a tool result indicates an error, do not stop: briefly explain the cause and continue with an alternative approach or the remaining steps.'
+// Antigravity 账号前置注入的系统提示词
+const ANTIGRAVITY_SYSTEM_INSTRUCTION_PREFIX = `<identity>
+You are Antigravity, a powerful agentic AI coding assistant designed by the Google Deepmind team working on Advanced Agentic Coding.
+You are pair programming with a USER to solve their coding task. The task may require creating a new codebase, modifying or debugging an existing codebase, or simply answering a question.
+The USER will send you requests, which you must always prioritize addressing. Along with each USER request, we will attach additional metadata about their current state, such as what files they have open and where their cursor is.
+This information may or may not be relevant to the coding task, it is up for you to decide.
+</identity>
+<communication_style>
+- **Proactiveness**. As an agent, you are allowed to be proactive, but only in the course of completing the user's task. For example, if the user asks you to add a new component, you can edit the code, verify build and test statuses, and take any other obvious follow-up actions, such as performing additional research. However, avoid surprising the user. For example, if the user asks HOW to approach something, you should answer their question and instead of jumping into editing a file.</communication_style>`
+
+// ============================================================================
+// 辅助函数：基础工具
+// ============================================================================
+
+/**
+ * 确保 Antigravity 请求有有效的 projectId
+ * 如果账户没有配置 projectId，则生成一个临时 ID
+ */
+function ensureAntigravityProjectId(account) {
+  if (account.projectId) {
+    return account.projectId
+  }
+  if (account.tempProjectId) {
+    return account.tempProjectId
+  }
+  return `ag-${crypto.randomBytes(8).toString('hex')}`
+}
+
+/**
+ * 从 Anthropic 消息内容中提取纯文本
+ * 支持字符串和 content blocks 数组两种格式
+ * @param {string|Array} content - Anthropic 消息内容
+ * @returns {string} 提取的文本
+ */
+function extractAnthropicText(content) {
+  if (content === null || content === undefined) {
+    return ''
+  }
+  if (typeof content === 'string') {
+    return content
+  }
+  if (!Array.isArray(content)) {
+    return ''
+  }
+  return content
+    .filter((part) => part && part.type === 'text')
+    .map((part) => part.text || '')
+    .join('')
+}
+
+/**
+ * 检查文本是否应该跳过（不转发给上游）
+ * 主要过滤 Claude 内部的 system-reminder 消息
+ */
+function shouldSkipText(text) {
+  if (!text || typeof text !== 'string') {
+    return true
+  }
+  return text.trimStart().startsWith(SYSTEM_REMINDER_PREFIX)
+}
+
+/**
+ * 构建 Gemini 格式的 system parts
+ * 将 Anthropic 的 system prompt 转换为 Gemini 的 parts 数组
+ * @param {string|Array} system - Anthropic 的 system prompt
+ * @returns {Array} Gemini 格式的 parts
+ */
+function buildSystemParts(system) {
+  const parts = []
+  if (!system) {
+    return parts
+  }
+  if (Array.isArray(system)) {
+    for (const part of system) {
+      if (!part || part.type !== 'text') {
+        continue
+      }
+      const text = extractAnthropicText(part.text || '')
+      if (text && !shouldSkipText(text)) {
+        parts.push({ text })
+      }
+    }
+    return parts
+  }
+  const text = extractAnthropicText(system)
+  if (text && !shouldSkipText(text)) {
+    parts.push({ text })
+  }
+  return parts
+}
+
+/**
+ * 构建 tool_use ID 到工具名称的映射
+ * 用于在处理 tool_result 时查找对应的工具名
+ * @param {Array} messages - 消息列表
+ * @returns {Map} tool_use_id -> tool_name 的映射
+ */
+function buildToolUseIdToNameMap(messages) {
+  const toolUseIdToName = new Map()
+
+  for (const message of messages || []) {
+    if (message?.role !== 'assistant') {
+      continue
+    }
+    const content = message?.content
+    if (!Array.isArray(content)) {
+      continue
+    }
+    for (const part of content) {
+      if (!part || part.type !== 'tool_use') {
+        continue
+      }
+      if (part.id && part.name) {
+        toolUseIdToName.set(part.id, part.name)
+      }
+    }
+  }
+
+  return toolUseIdToName
+}
+
+/**
+ * 标准化工具调用的输入参数
+ * 确保输入始终是对象格式
+ */
+function normalizeToolUseInput(input) {
+  if (input === null || input === undefined) {
+    return {}
+  }
+  if (typeof input === 'object') {
+    return input
+  }
+  if (typeof input === 'string') {
+    const trimmed = input.trim()
+    if (!trimmed) {
+      return {}
+    }
+    try {
+      const parsed = JSON.parse(trimmed)
+      if (parsed && typeof parsed === 'object') {
+        return parsed
+      }
+    } catch (_) {
+      return {}
+    }
+  }
+  return {}
+}
+
+// Antigravity 工具结果的最大字符数（约 20 万，防止 prompt 超长）
+const MAX_ANTIGRAVITY_TOOL_RESULT_CHARS = 200000
+
+// ============================================================================
+// 辅助函数：Antigravity 体积压缩
+// 这些函数用于压缩工具描述、schema 等，避免 prompt 超过 Antigravity 的上限
+// ============================================================================
+
+/**
+ * 截断文本并添加截断提示（带换行）
+ * @param {string} text - 原始文本
+ * @param {number} maxChars - 最大字符数
+ * @returns {string} 截断后的文本
+ */
+function truncateText(text, maxChars) {
+  if (!text || typeof text !== 'string') {
+    return ''
+  }
+  if (text.length <= maxChars) {
+    return text
+  }
+  return `${text.slice(0, maxChars)}\n...[truncated ${text.length - maxChars} chars]`
+}
+
+/**
+ * 截断文本并添加截断提示（内联模式，不带换行）
+ */
+function truncateInlineText(text, maxChars) {
+  if (!text || typeof text !== 'string') {
+    return ''
+  }
+  if (text.length <= maxChars) {
+    return text
+  }
+  return `${text.slice(0, maxChars)}...[truncated ${text.length - maxChars} chars]`
+}
+
+/**
+ * 压缩工具顶级描述
+ * 取前 6 行，合并为单行，截断到 400 字符
+ * 这样可以在保留关键信息的同时大幅减少体积
+ * @param {string} description - 原始工具描述
+ * @returns {string} 压缩后的描述
+ */
+function compactToolDescriptionForAntigravity(description) {
+  if (!description || typeof description !== 'string') {
+    return ''
+  }
+  const normalized = description.replace(/\r\n/g, '\n').trim()
+  if (!normalized) {
+    return ''
+  }
+
+  const lines = normalized
+    .split('\n')
+    .map((line) => line.trim())
+    .filter(Boolean)
+
+  if (lines.length === 0) {
+    return ''
+  }
+
+  const compacted = lines.slice(0, 6).join(' ')
+  return truncateInlineText(compacted, MAX_ANTIGRAVITY_TOOL_DESCRIPTION_CHARS)
+}
+
+/**
+ * 压缩 JSON Schema 属性描述
+ * 压缩多余空白，截断到 200 字符
+ * 这是为了保留关键参数约束（如 ji 工具的 action 只能是 "记忆"/"回忆"）
+ * @param {string} description - 原始描述
+ * @returns {string} 压缩后的描述
+ */
+function compactSchemaDescriptionForAntigravity(description) {
+  if (!description || typeof description !== 'string') {
+    return ''
+  }
+  const normalized = description.replace(/\s+/g, ' ').trim()
+  if (!normalized) {
+    return ''
+  }
+  return truncateInlineText(normalized, MAX_ANTIGRAVITY_SCHEMA_DESCRIPTION_CHARS)
+}
+
+/**
+ * 递归压缩 JSON Schema 中所有层级的 description 字段
+ * 保留并压缩 description（而不是删除），确保关键参数约束信息不丢失
+ * @param {Object} schema - JSON Schema 对象
+ * @returns {Object} 压缩后的 schema
+ */
+function compactJsonSchemaDescriptionsForAntigravity(schema) {
+  if (schema === null || schema === undefined) {
+    return schema
+  }
+  if (typeof schema !== 'object') {
+    return schema
+  }
+  if (Array.isArray(schema)) {
+    return schema.map((item) => compactJsonSchemaDescriptionsForAntigravity(item))
+  }
+
+  const cleaned = {}
+  for (const [key, value] of Object.entries(schema)) {
+    if (key === 'description') {
+      const compacted = compactSchemaDescriptionForAntigravity(value)
+      if (compacted) {
+        cleaned.description = compacted
+      }
+      continue
+    }
+    cleaned[key] = compactJsonSchemaDescriptionsForAntigravity(value)
+  }
+  return cleaned
+}
+
+/**
+ * 清洗 thinking block 的 signature
+ * 检查格式是否合法（Base64-like token），不合法则返回空串
+ * 这是为了避免 "Invalid signature in thinking block" 400 错误
+ * @param {string} signature - 原始 signature
+ * @returns {string} 清洗后的 signature（不合法则为空串）
+ */
+function sanitizeThoughtSignatureForAntigravity(signature) {
+  if (!signature || typeof signature !== 'string') {
+    return ''
+  }
+  const trimmed = signature.trim()
+  if (!trimmed) {
+    return ''
+  }
+
+  const compacted = trimmed.replace(/\s+/g, '')
+  if (compacted.length > 65536) {
+    return ''
+  }
+
+  const looksLikeToken = /^[A-Za-z0-9+/_=-]+$/.test(compacted)
+  if (!looksLikeToken) {
+    return ''
+  }
+
+  if (compacted.length < 8) {
+    return ''
+  }
+
+  return compacted
+}
+
+/**
+ * 检测是否是 Antigravity 的 INVALID_ARGUMENT (400) 错误
+ * 用于在日志中特殊标记这类错误，方便调试
+ *
+ * @param {Object} sanitized - sanitizeUpstreamError 处理后的错误对象
+ * @returns {boolean} 是否是参数无效错误
+ */
+function isInvalidAntigravityArgumentError(sanitized) {
+  if (!sanitized || typeof sanitized !== 'object') {
+    return false
+  }
+  const upstreamType = String(sanitized.upstreamType || '').toUpperCase()
+  if (upstreamType === 'INVALID_ARGUMENT') {
+    return true
+  }
+  const message = String(sanitized.upstreamMessage || sanitized.message || '')
+  return /invalid argument/i.test(message)
+}
+
+/**
+ * 汇总 Antigravity 请求信息用于调试
+ * 当发生 400 错误时，输出请求的关键统计信息，帮助定位问题
+ *
+ * @param {Object} requestData - 发送给 Antigravity 的请求数据
+ * @returns {Object} 请求摘要信息
+ */
+function summarizeAntigravityRequestForDebug(requestData) {
+  const request = requestData?.request || {}
+  const contents = Array.isArray(request.contents) ? request.contents : []
+  const partStats = { text: 0, thought: 0, functionCall: 0, functionResponse: 0, other: 0 }
+  let functionResponseIds = 0
+  let fallbackSignatureCount = 0
+
+  for (const message of contents) {
+    const parts = Array.isArray(message?.parts) ? message.parts : []
+    for (const part of parts) {
+      if (!part || typeof part !== 'object') {
+        continue
+      }
+      if (part.thoughtSignature === THOUGHT_SIGNATURE_FALLBACK) {
+        fallbackSignatureCount += 1
+      }
+      if (part.thought) {
+        partStats.thought += 1
+        continue
+      }
+      if (part.functionCall) {
+        partStats.functionCall += 1
+        continue
+      }
+      if (part.functionResponse) {
+        partStats.functionResponse += 1
+        if (part.functionResponse.id) {
+          functionResponseIds += 1
+        }
+        continue
+      }
+      if (typeof part.text === 'string') {
+        partStats.text += 1
+        continue
+      }
+      partStats.other += 1
+    }
+  }
+
+  return {
+    model: requestData?.model,
+    toolCount: Array.isArray(request.tools) ? request.tools.length : 0,
+    toolConfigMode: request.toolConfig?.functionCallingConfig?.mode,
+    thinkingConfig: request.generationConfig?.thinkingConfig,
+    maxOutputTokens: request.generationConfig?.maxOutputTokens,
+    contentsCount: contents.length,
+    partStats,
+    functionResponseIds,
+    fallbackSignatureCount
+  }
+}
+
+/**
+ * 清洗工具结果的 content blocks
+ * - 移除 base64 图片（避免体积过大）
+ * - 截断文本内容到 20 万字符
+ * @param {Array} blocks - content blocks 数组
+ * @returns {Array} 清洗后的 blocks
+ */
+function sanitizeToolResultBlocksForAntigravity(blocks) {
+  const cleaned = []
+  let usedChars = 0
+  let removedImage = false
+
+  for (const block of blocks) {
+    if (!block || typeof block !== 'object') {
+      continue
+    }
+
+    if (
+      block.type === 'image' &&
+      block.source?.type === 'base64' &&
+      typeof block.source?.data === 'string'
+    ) {
+      removedImage = true
+      continue
+    }
+
+    if (block.type === 'text' && typeof block.text === 'string') {
+      const remaining = MAX_ANTIGRAVITY_TOOL_RESULT_CHARS - usedChars
+      if (remaining <= 0) {
+        break
+      }
+      const text = truncateText(block.text, remaining)
+      cleaned.push({ ...block, text })
+      usedChars += text.length
+      continue
+    }
+
+    cleaned.push(block)
+    usedChars += 100
+    if (usedChars >= MAX_ANTIGRAVITY_TOOL_RESULT_CHARS) {
+      break
+    }
+  }
+
+  if (removedImage) {
+    cleaned.push({
+      type: 'text',
+      text: '[image omitted to fit Antigravity prompt limits; use the file path in the previous text block]'
+    })
+  }
+
+  return cleaned
+}
+
+// ============================================================================
+// 核心函数：消息标准化和转换
+// ============================================================================
+
+/**
+ * 标准化工具结果内容
+ * 支持字符串和 content blocks 数组两种格式
+ * 对 Antigravity 会进行截断和图片移除处理
+ */
+function normalizeToolResultContent(content, { vendor = null } = {}) {
+  if (content === null || content === undefined) {
+    return ''
+  }
+  if (typeof content === 'string') {
+    if (vendor === 'antigravity') {
+      return truncateText(content, MAX_ANTIGRAVITY_TOOL_RESULT_CHARS)
+    }
+    return content
+  }
+  // Claude Code 的 tool_result.content 通常是 content blocks 数组（例如 [{type:"text",text:"..."}]）。
+  // 为对齐 CLIProxyAPI/Antigravity 的行为，这里优先保留原始 JSON 结构（数组/对象），
+  // 避免上游将其视为“无效 tool_result”从而触发 tool_use concurrency 400。
+  if (Array.isArray(content) || (content && typeof content === 'object')) {
+    if (vendor === 'antigravity' && Array.isArray(content)) {
+      return sanitizeToolResultBlocksForAntigravity(content)
+    }
+    return content
+  }
+  return ''
+}
+
+/**
+ * 标准化 Anthropic 消息列表
+ * 这是关键的预处理函数，处理以下问题：
+ *
+ * 1. Antigravity thinking block 顺序调整
+ *    - Antigravity 要求 thinking blocks 必须在 assistant 消息的最前面
+ *    - 移除 thinking block 中的 cache_control 字段（上游不接受）
+ *
+ * 2. tool_use 后的冗余内容剥离
+ *    - 移除 tool_use 后的空文本、"(no content)" 等冗余 part
+ *
+ * 3. 缺失 tool_result 补全（Antigravity 专用）
+ *    - 检测消息历史中是否有 tool_use 没有对应的 tool_result
+ *    - 自动插入合成的 tool_result（is_error: true）
+ *    - 避免 "tool_use concurrency" 400 错误
+ *
+ * 4. tool_result 和 user 文本拆分
+ *    - Claude Code 可能把 tool_result 和用户文本混在一个 user message 中
+ *    - 拆分为两个 message 以符合 Anthropic 规范
+ *
+ * @param {Array} messages - 原始消息列表
+ * @param {Object} options - 选项，包含 vendor
+ * @returns {Array} 标准化后的消息列表
+ */
+function normalizeAnthropicMessages(messages, { vendor = null } = {}) {
+  if (!Array.isArray(messages) || messages.length === 0) {
+    return messages
+  }
+
+  const pendingToolUseIds = []
+  const isIgnorableTrailingText = (part) => {
+    if (!part || part.type !== 'text') {
+      return false
+    }
+    if (typeof part.text !== 'string') {
+      return false
+    }
+    const trimmed = part.text.trim()
+    if (trimmed === '' || trimmed === '(no content)') {
+      return true
+    }
+    if (part.cache_control?.type === 'ephemeral' && trimmed === '(no content)') {
+      return true
+    }
+    return false
+  }
+
+  const normalizeAssistantThinkingOrderForVendor = (parts) => {
+    if (vendor !== 'antigravity') {
+      return parts
+    }
+    const thinkingBlocks = []
+    const otherBlocks = []
+    for (const part of parts) {
+      if (!part) {
+        continue
+      }
+      if (part.type === 'thinking' || part.type === 'redacted_thinking') {
+        // 移除 cache_control 字段，上游 API 不接受 thinking block 中包含此字段
+        // 错误信息: "thinking.cache_control: Extra inputs are not permitted"
+        const { cache_control: _cache_control, ...cleanedPart } = part
+        thinkingBlocks.push(cleanedPart)
+        continue
+      }
+      if (isIgnorableTrailingText(part)) {
+        continue
+      }
+      otherBlocks.push(part)
+    }
+    if (thinkingBlocks.length === 0) {
+      return otherBlocks
+    }
+    return [...thinkingBlocks, ...otherBlocks]
+  }
+
+  const stripNonToolPartsAfterToolUse = (parts) => {
+    let seenToolUse = false
+    const cleaned = []
+    for (const part of parts) {
+      if (!part) {
+        continue
+      }
+      if (part.type === 'tool_use') {
+        seenToolUse = true
+        cleaned.push(part)
+        continue
+      }
+      if (!seenToolUse) {
+        cleaned.push(part)
+        continue
+      }
+      if (isIgnorableTrailingText(part)) {
+        continue
+      }
+    }
+    return cleaned
+  }
+
+  const normalized = []
+
+  for (const message of messages) {
+    if (!message || !Array.isArray(message.content)) {
+      normalized.push(message)
+      continue
+    }
+
+    let parts = message.content.filter(Boolean)
+    if (message.role === 'assistant') {
+      parts = normalizeAssistantThinkingOrderForVendor(parts)
+    }
+
+    if (vendor === 'antigravity' && message.role === 'assistant') {
+      if (pendingToolUseIds.length > 0) {
+        normalized.push({
+          role: 'user',
+          content: pendingToolUseIds.map((toolUseId) => ({
+            type: 'tool_result',
+            tool_use_id: toolUseId,
+            is_error: true,
+            content: [
+              {
+                type: 'text',
+                text: '[tool_result missing; tool execution interrupted]'
+              }
+            ]
+          }))
+        })
+        pendingToolUseIds.length = 0
+      }
+
+      const stripped = stripNonToolPartsAfterToolUse(parts)
+      const toolUseIds = stripped
+        .filter((part) => part?.type === 'tool_use' && typeof part.id === 'string')
+        .map((part) => part.id)
+      if (toolUseIds.length > 0) {
+        pendingToolUseIds.push(...toolUseIds)
+      }
+
+      normalized.push({ ...message, content: stripped })
+      continue
+    }
+
+    if (vendor === 'antigravity' && message.role === 'user' && pendingToolUseIds.length > 0) {
+      const toolResults = parts.filter((p) => p.type === 'tool_result')
+      const toolResultIds = new Set(
+        toolResults.map((p) => p.tool_use_id).filter((id) => typeof id === 'string')
+      )
+      const missing = pendingToolUseIds.filter((id) => !toolResultIds.has(id))
+      if (missing.length > 0) {
+        const synthetic = missing.map((toolUseId) => ({
+          type: 'tool_result',
+          tool_use_id: toolUseId,
+          is_error: true,
+          content: [
+            {
+              type: 'text',
+              text: '[tool_result missing; tool execution interrupted]'
+            }
+          ]
+        }))
+        parts = [...toolResults, ...synthetic, ...parts.filter((p) => p.type !== 'tool_result')]
+      }
+      pendingToolUseIds.length = 0
+    }
+
+    if (message.role !== 'user') {
+      normalized.push({ ...message, content: parts })
+      continue
+    }
+
+    const toolResults = parts.filter((p) => p.type === 'tool_result')
+    if (toolResults.length === 0) {
+      normalized.push({ ...message, content: parts })
+      continue
+    }
+
+    const nonToolResults = parts.filter((p) => p.type !== 'tool_result')
+    if (nonToolResults.length === 0) {
+      normalized.push({ ...message, content: toolResults })
+      continue
+    }
+
+    // Claude Code 可能把 tool_result 和下一条用户文本合并在同一个 user message 中。
+    // 但上游（Antigravity/Claude）会按 Anthropic 规则校验：tool_use 后的下一条 message
+    // 必须只包含 tool_result blocks。这里做兼容拆分，避免 400 tool-use concurrency。
+    normalized.push({ ...message, content: toolResults })
+    normalized.push({ ...message, content: nonToolResults })
+  }
+
+  if (vendor === 'antigravity' && pendingToolUseIds.length > 0) {
+    normalized.push({
+      role: 'user',
+      content: pendingToolUseIds.map((toolUseId) => ({
+        type: 'tool_result',
+        tool_use_id: toolUseId,
+        is_error: true,
+        content: [
+          {
+            type: 'text',
+            text: '[tool_result missing; tool execution interrupted]'
+          }
+        ]
+      }))
+    })
+    pendingToolUseIds.length = 0
+  }
+
+  return normalized
+}
+
+// ============================================================================
+// 核心函数：工具定义转换
+// ============================================================================
+
+/**
+ * 将 Anthropic 工具定义转换为 Gemini/Antigravity 格式
+ *
+ * 主要工作：
+ * 1. 工具描述压缩（Antigravity: 400 字符上限）
+ * 2. JSON Schema 清洗（移除不支持的字段如 $schema, format 等）
+ * 3. Schema description 压缩（Antigravity: 200 字符上限，保留关键约束）
+ * 4. 输出格式差异：
+ *    - Antigravity: 使用 parametersJsonSchema
+ *    - Gemini: 使用 parameters
+ *
+ * @param {Array} tools - Anthropic 格式的工具定义数组
+ * @param {Object} options - 选项，包含 vendor
+ * @returns {Array|null} Gemini 格式的工具定义，或 null
+ */
+function convertAnthropicToolsToGeminiTools(tools, { vendor = null } = {}) {
+  if (!Array.isArray(tools) || tools.length === 0) {
+    return null
+  }
+
+  // 说明：Gemini / Antigravity 对工具 schema 的接受程度不同；这里做“尽可能兼容”的最小清洗，降低 400 概率。
+  const sanitizeSchemaForFunctionDeclarations = (schema) => {
+    const allowedKeys = new Set([
+      'type',
+      'properties',
+      'required',
+      'description',
+      'enum',
+      'items',
+      'anyOf',
+      'oneOf',
+      'allOf',
+      'additionalProperties',
+      'minimum',
+      'maximum',
+      'minItems',
+      'maxItems',
+      'minLength',
+      'maxLength'
+    ])
+
+    if (schema === null || schema === undefined) {
+      return null
+    }
+
+    // primitives: keep as-is (e.g. type/description/nullable/minimum...)
+    if (typeof schema !== 'object') {
+      return schema
+    }
+
+    if (Array.isArray(schema)) {
+      return schema
+        .map((item) => sanitizeSchemaForFunctionDeclarations(item))
+        .filter((item) => item !== null && item !== undefined)
+    }
+
+    const sanitized = {}
+    for (const [key, value] of Object.entries(schema)) {
+      // Antigravity/Cloud Code 的 function_declarations.parameters 不接受 $schema / $id 等元字段
+      if (key === '$schema' || key === '$id') {
+        continue
+      }
+      // 去除常见的非必要字段，减少上游 schema 校验失败概率
+      if (key === 'title' || key === 'default' || key === 'examples' || key === 'example') {
+        continue
+      }
+      // 上游对 JSON Schema "format" 支持不稳定（特别是 format=uri），直接移除以降低 400 概率
+      if (key === 'format') {
+        continue
+      }
+      if (!allowedKeys.has(key)) {
+        continue
+      }
+
+      if (key === 'properties') {
+        if (value && typeof value === 'object' && !Array.isArray(value)) {
+          const props = {}
+          for (const [propName, propSchema] of Object.entries(value)) {
+            const sanitizedProp = sanitizeSchemaForFunctionDeclarations(propSchema)
+            if (sanitizedProp && typeof sanitizedProp === 'object') {
+              props[propName] = sanitizedProp
+            }
+          }
+          sanitized.properties = props
+        }
+        continue
+      }
+
+      if (key === 'required') {
+        if (Array.isArray(value)) {
+          const req = value.filter((item) => typeof item === 'string')
+          if (req.length > 0) {
+            sanitized.required = req
+          }
+        }
+        continue
+      }
+
+      if (key === 'enum') {
+        if (Array.isArray(value)) {
+          const en = value.filter(
+            (item) =>
+              typeof item === 'string' || typeof item === 'number' || typeof item === 'boolean'
+          )
+          if (en.length > 0) {
+            sanitized.enum = en
+          }
+        }
+        continue
+      }
+
+      if (key === 'additionalProperties') {
+        if (typeof value === 'boolean') {
+          sanitized.additionalProperties = value
+        } else if (value && typeof value === 'object') {
+          const ap = sanitizeSchemaForFunctionDeclarations(value)
+          if (ap && typeof ap === 'object') {
+            sanitized.additionalProperties = ap
+          }
+        }
+        continue
+      }
+
+      const sanitizedValue = sanitizeSchemaForFunctionDeclarations(value)
+      if (sanitizedValue === null || sanitizedValue === undefined) {
+        continue
+      }
+      sanitized[key] = sanitizedValue
+    }
+
+    // 兜底：确保 schema 至少是一个 object schema
+    if (!sanitized.type) {
+      if (sanitized.items) {
+        sanitized.type = 'array'
+      } else if (sanitized.properties || sanitized.required || sanitized.additionalProperties) {
+        sanitized.type = 'object'
+      } else if (sanitized.enum) {
+        sanitized.type = 'string'
+      } else {
+        sanitized.type = 'object'
+        sanitized.properties = {}
+      }
+    }
+
+    if (sanitized.type === 'object' && !sanitized.properties) {
+      sanitized.properties = {}
+    }
+
+    return sanitized
+  }
+
+  const functionDeclarations = tools
+    .map((tool) => {
+      const toolDef = tool?.custom && typeof tool.custom === 'object' ? tool.custom : tool
+      if (!toolDef || !toolDef.name) {
+        return null
+      }
+
+      const toolDescription =
+        vendor === 'antigravity'
+          ? compactToolDescriptionForAntigravity(toolDef.description || '')
+          : toolDef.description || ''
+
+      const schema =
+        vendor === 'antigravity'
+          ? compactJsonSchemaDescriptionsForAntigravity(
+              cleanJsonSchemaForGemini(toolDef.input_schema)
+            )
+          : sanitizeSchemaForFunctionDeclarations(toolDef.input_schema) || {
+              type: 'object',
+              properties: {}
+            }
+
+      const baseDecl = {
+        name: toolDef.name,
+        description: toolDescription
+      }
+
+      // CLIProxyAPI/Antigravity 侧使用 parametersJsonSchema（而不是 parameters）。
+      if (vendor === 'antigravity') {
+        return { ...baseDecl, parametersJsonSchema: schema }
+      }
+      return { ...baseDecl, parameters: schema }
+    })
+    .filter(Boolean)
+
+  if (functionDeclarations.length === 0) {
+    return null
+  }
+
+  return [
+    {
+      functionDeclarations
+    }
+  ]
+}
+
+/**
+ * 将 Anthropic 的 tool_choice 转换为 Gemini 的 toolConfig
+ * 映射关系：
+ *   auto → AUTO（模型自决定是否调用工具）
+ *   any  → ANY（必须调用某个工具）
+ *   tool → ANY + allowedFunctionNames（指定工具）
+ *   none → NONE（禁止调用工具）
+ */
+function convertAnthropicToolChoiceToGeminiToolConfig(toolChoice) {
+  if (!toolChoice || typeof toolChoice !== 'object') {
+    return null
+  }
+
+  const { type } = toolChoice
+  if (!type) {
+    return null
+  }
+
+  if (type === 'auto') {
+    return { functionCallingConfig: { mode: 'AUTO' } }
+  }
+
+  if (type === 'any') {
+    return { functionCallingConfig: { mode: 'ANY' } }
+  }
+
+  if (type === 'tool') {
+    const { name } = toolChoice
+    if (!name) {
+      return { functionCallingConfig: { mode: 'ANY' } }
+    }
+    return {
+      functionCallingConfig: {
+        mode: 'ANY',
+        allowedFunctionNames: [name]
+      }
+    }
+  }
+
+  if (type === 'none') {
+    return { functionCallingConfig: { mode: 'NONE' } }
+  }
+
+  return null
+}
+
+// ============================================================================
+// 核心函数：消息内容转换
+// ============================================================================
+
+/**
+ * 将 Anthropic 消息转换为 Gemini contents 格式
+ *
+ * 处理的内容类型：
+ * - text: 纯文本内容
+ * - thinking: 思考过程（转换为 Gemini 的 thought part）
+ * - image: 图片（转换为 inlineData）
+ * - tool_use: 工具调用（转换为 functionCall）
+ * - tool_result: 工具结果（转换为 functionResponse）
+ *
+ * Antigravity 特殊处理：
+ * - thinking block 转换为 { thought: true, text, thoughtSignature }
+ * - signature 清洗和校验（不伪造签名）
+ * - 空 thinking block 跳过（避免 400 错误）
+ * - stripThinking 模式：完全剔除 thinking blocks
+ *
+ * @param {Array} messages - 标准化后的消息列表
+ * @param {Map} toolUseIdToName - tool_use ID 到工具名的映射
+ * @param {Object} options - 选项，包含 vendor、stripThinking
+ * @returns {Array} Gemini 格式的 contents
+ */
+function convertAnthropicMessagesToGeminiContents(
+  messages,
+  toolUseIdToName,
+  { vendor = null, stripThinking = false, sessionId = null } = {}
+) {
+  const contents = []
+  for (const message of messages || []) {
+    const role = message?.role === 'assistant' ? 'model' : 'user'
+
+    const content = message?.content
+    const parts = []
+    let lastAntigravityThoughtSignature = ''
+
+    if (typeof content === 'string') {
+      const text = extractAnthropicText(content)
+      if (text && !shouldSkipText(text)) {
+        parts.push({ text })
+      }
+    } else if (Array.isArray(content)) {
+      for (const part of content) {
+        if (!part || !part.type) {
+          continue
+        }
+
+        if (part.type === 'text') {
+          const text = extractAnthropicText(part.text || '')
+          if (text && !shouldSkipText(text)) {
+            parts.push({ text })
+          }
+          continue
+        }
+
+        if (part.type === 'thinking' || part.type === 'redacted_thinking') {
+          // 当 thinking 未启用时，跳过所有 thinking blocks，避免 Antigravity 400 错误：
+          // "When thinking is disabled, an assistant message cannot contain thinking"
+          if (stripThinking) {
+            continue
+          }
+
+          const thinkingText = extractAnthropicText(part.thinking || part.text || '')
+          if (vendor === 'antigravity') {
+            const hasThinkingText = thinkingText && !shouldSkipText(thinkingText)
+            // 先尝试使用请求中的签名，如果没有则尝试从缓存恢复
+            let signature = sanitizeThoughtSignatureForAntigravity(part.signature)
+            if (!signature && sessionId && hasThinkingText) {
+              const cachedSig = signatureCache.getCachedSignature(sessionId, thinkingText)
+              if (cachedSig) {
+                signature = cachedSig
+                logger.debug('[SignatureCache] Restored signature from cache for thinking block')
+              }
+            }
+            const hasSignature = Boolean(signature)
+
+            // Claude Code 有时会发送空的 thinking block（无 thinking / 无 signature）。
+            // 传给 Antigravity 会变成仅含 thoughtSignature 的 part，容易触发 INVALID_ARGUMENT。
+            if (!hasThinkingText && !hasSignature) {
+              continue
+            }
+
+            // Antigravity 会校验 thoughtSignature；缺失/不合法时无法伪造，只能丢弃该块避免 400。
+            if (!hasSignature) {
+              continue
+            }
+
+            lastAntigravityThoughtSignature = signature
+            const thoughtPart = { thought: true, thoughtSignature: signature }
+            if (hasThinkingText) {
+              thoughtPart.text = thinkingText
+            }
+            parts.push(thoughtPart)
+          } else if (thinkingText && !shouldSkipText(thinkingText)) {
+            parts.push({ text: thinkingText })
+          }
+          continue
+        }
+
+        if (part.type === 'image') {
+          const source = part.source || {}
+          if (source.type === 'base64' && source.data) {
+            const mediaType = source.media_type || source.mediaType || 'application/octet-stream'
+            const inlineData =
+              vendor === 'antigravity'
+                ? { mime_type: mediaType, data: source.data }
+                : { mimeType: mediaType, data: source.data }
+            parts.push({ inlineData })
+          }
+          continue
+        }
+
+        if (part.type === 'tool_use') {
+          if (part.name) {
+            const toolCallId = typeof part.id === 'string' && part.id ? part.id : undefined
+            const args = normalizeToolUseInput(part.input)
+            const functionCall = {
+              ...(vendor === 'antigravity' && toolCallId ? { id: toolCallId } : {}),
+              name: part.name,
+              args
+            }
+
+            // Antigravity 对历史工具调用的 functionCall 会校验 thoughtSignature；
+            // Claude Code 侧的签名存放在 thinking block（part.signature），这里需要回填到 functionCall part 上。
+            // [大东的绝杀补丁] 再次尝试！
+            if (vendor === 'antigravity') {
+              // 如果没有真签名，就用“免检金牌”
+              const effectiveSignature =
+                lastAntigravityThoughtSignature || THOUGHT_SIGNATURE_FALLBACK
+
+              // 必须把这个塞进去
+              // Antigravity 要求：每个包含 thoughtSignature 的 part 都必须有 thought: true
+              parts.push({
+                thought: true,
+                thoughtSignature: effectiveSignature,
+                functionCall
+              })
+            } else {
+              parts.push({ functionCall })
+            }
+          }
+          continue
+        }
+
+        if (part.type === 'tool_result') {
+          const toolUseId = part.tool_use_id
+          const toolName = toolUseId ? toolUseIdToName.get(toolUseId) : null
+          if (!toolName) {
+            continue
+          }
+
+          const raw = normalizeToolResultContent(part.content, { vendor })
+
+          let parsedResponse = null
+          if (raw && typeof raw === 'string') {
+            try {
+              parsedResponse = JSON.parse(raw)
+            } catch (_) {
+              parsedResponse = null
+            }
+          }
+
+          if (vendor === 'antigravity') {
+            const toolCallId = typeof toolUseId === 'string' && toolUseId ? toolUseId : undefined
+            const result = parsedResponse !== null ? parsedResponse : raw || ''
+            const response = part.is_error === true ? { result, is_error: true } : { result }
+
+            parts.push({
+              functionResponse: {
+                ...(toolCallId ? { id: toolCallId } : {}),
+                name: toolName,
+                response
+              }
+            })
+          } else {
+            const response =
+              parsedResponse !== null
+                ? parsedResponse
+                : {
+                    content: raw || '',
+                    is_error: part.is_error === true
+                  }
+
+            parts.push({
+              functionResponse: {
+                name: toolName,
+                response
+              }
+            })
+          }
+        }
+      }
+    }
+
+    if (parts.length === 0) {
+      continue
+    }
+
+    contents.push({
+      role,
+      parts
+    })
+  }
+  return contents
+}
+
+/**
+ * 检查是否可以为 Antigravity 启用 thinking 功能
+ *
+ * 规则：查找最后一个 assistant 消息，检查其 thinking block 是否有效
+ * - 如果有 thinking 文本或 signature，则可以启用
+ * - 如果是空 thinking block（无文本且无 signature），则不能启用
+ *
+ * 这是为了避免 "When thinking is disabled, an assistant message cannot contain thinking" 错误
+ *
+ * @param {Array} messages - 消息列表
+ * @returns {boolean} 是否可以启用 thinking
+ */
+function canEnableAntigravityThinking(messages) {
+  if (!Array.isArray(messages) || messages.length === 0) {
+    return true
+  }
+
+  // Antigravity 会校验历史 thinking blocks 的 signature；缺失/不合法时必须禁用 thinking，避免 400。
+  for (const message of messages) {
+    if (!message || message.role !== 'assistant') {
+      continue
+    }
+    const { content } = message
+    if (!Array.isArray(content) || content.length === 0) {
+      continue
+    }
+    for (const part of content) {
+      if (!part || (part.type !== 'thinking' && part.type !== 'redacted_thinking')) {
+        continue
+      }
+      const signature = sanitizeThoughtSignatureForAntigravity(part.signature)
+      if (!signature) {
+        return false
+      }
+    }
+  }
+
+  let lastAssistant = null
+  for (let i = messages.length - 1; i >= 0; i -= 1) {
+    const message = messages[i]
+    if (message && message.role === 'assistant') {
+      lastAssistant = message
+      break
+    }
+  }
+  if (
+    !lastAssistant ||
+    !Array.isArray(lastAssistant.content) ||
+    lastAssistant.content.length === 0
+  ) {
+    return true
+  }
+
+  const parts = lastAssistant.content.filter(Boolean)
+  const hasToolBlocks = parts.some(
+    (part) => part?.type === 'tool_use' || part?.type === 'tool_result'
+  )
+  if (!hasToolBlocks) {
+    return true
+  }
+
+  const first = parts[0]
+  if (!first || (first.type !== 'thinking' && first.type !== 'redacted_thinking')) {
+    return false
+  }
+
+  return true
+}
+
+// ============================================================================
+// 核心函数：构建最终请求
+// ============================================================================
+
+/**
+ * 构建 Gemini/Antigravity 请求体
+ * 这是整个转换流程的主函数，串联所有转换步骤：
+ *
+ * 1. normalizeAnthropicMessages - 消息标准化
+ * 2. buildToolUseIdToNameMap - 构建 tool_use ID 映射
+ * 3. canEnableAntigravityThinking - 检查 thinking 是否可启用
+ * 4. convertAnthropicMessagesToGeminiContents - 转换消息内容
+ * 5. buildSystemParts - 构建 system prompt
+ * 6. convertAnthropicToolsToGeminiTools - 转换工具定义
+ * 7. convertAnthropicToolChoiceToGeminiToolConfig - 转换工具选择
+ * 8. 构建 generationConfig（温度、maxTokens、thinking 等）
+ *
+ * @param {Object} body - Anthropic 请求体
+ * @param {string} baseModel - 基础模型名
+ * @param {Object} options - 选项，包含 vendor
+ * @returns {Object} { model, request } Gemini 请求对象
+ */
+function buildGeminiRequestFromAnthropic(
+  body,
+  baseModel,
+  { vendor = null, sessionId = null } = {}
+) {
+  const normalizedMessages = normalizeAnthropicMessages(body.messages || [], { vendor })
+  const toolUseIdToName = buildToolUseIdToNameMap(normalizedMessages || [])
+
+  // 提前判断是否可以启用 thinking，以便决定是否需要剥离 thinking blocks
+  let canEnableThinking = false
+  if (vendor === 'antigravity' && body?.thinking?.type === 'enabled') {
+    const budgetRaw = Number(body.thinking.budget_tokens)
+    if (Number.isFinite(budgetRaw)) {
+      canEnableThinking = canEnableAntigravityThinking(normalizedMessages)
+    }
+  }
+
+  const contents = convertAnthropicMessagesToGeminiContents(
+    normalizedMessages || [],
+    toolUseIdToName,
+    {
+      vendor,
+      // 当 Antigravity 无法启用 thinking 时，剥离所有 thinking blocks
+      stripThinking: vendor === 'antigravity' && !canEnableThinking,
+      sessionId
+    }
+  )
+  const systemParts = buildSystemParts(body.system)
+
+  if (vendor === 'antigravity' && isEnvEnabled(process.env[TOOL_ERROR_CONTINUE_ENV])) {
+    systemParts.push({ text: TOOL_ERROR_CONTINUE_PROMPT })
+  }
+  if (vendor === 'antigravity') {
+    systemParts.push({ text: ANTIGRAVITY_TOOL_FOLLOW_THROUGH_PROMPT })
+  }
+
+  const temperature = typeof body.temperature === 'number' ? body.temperature : 1
+  const maxTokens = Number.isFinite(body.max_tokens) ? body.max_tokens : 4096
+
+  const generationConfig = {
+    temperature,
+    maxOutputTokens: maxTokens,
+    candidateCount: 1
+  }
+
+  if (typeof body.top_p === 'number') {
+    generationConfig.topP = body.top_p
+  }
+  if (typeof body.top_k === 'number') {
+    generationConfig.topK = body.top_k
+  }
+
+  // 使用前面已经计算好的 canEnableThinking 结果
+  if (vendor === 'antigravity' && body?.thinking?.type === 'enabled') {
+    const budgetRaw = Number(body.thinking.budget_tokens)
+    if (Number.isFinite(budgetRaw)) {
+      if (canEnableThinking) {
+        generationConfig.thinkingConfig = {
+          thinkingBudget: Math.trunc(budgetRaw),
+          include_thoughts: true
+        }
+      } else {
+        logger.warn(
+          '⚠️ Antigravity thinking request dropped: last assistant message lacks usable thinking block',
+          { model: baseModel }
+        )
+      }
+    }
+  }
+
+  const geminiRequestBody = {
+    contents,
+    generationConfig
+  }
+
+  // antigravity: 前置注入系统提示词
+  if (vendor === 'antigravity') {
+    const allParts = [{ text: ANTIGRAVITY_SYSTEM_INSTRUCTION_PREFIX }, ...systemParts]
+    geminiRequestBody.systemInstruction = { role: 'user', parts: allParts }
+  } else if (systemParts.length > 0) {
+    geminiRequestBody.systemInstruction = { parts: systemParts }
+  }
+
+  const geminiTools = convertAnthropicToolsToGeminiTools(body.tools, { vendor })
+  if (geminiTools) {
+    geminiRequestBody.tools = geminiTools
+  }
+
+  const toolConfig = convertAnthropicToolChoiceToGeminiToolConfig(body.tool_choice)
+  if (toolConfig) {
+    geminiRequestBody.toolConfig = toolConfig
+  } else if (geminiTools) {
+    // Anthropic 的默认语义是 tools 存在且未设置 tool_choice 时为 auto。
+    // Gemini/Antigravity 的 function calling 默认可能不会启用，因此显式设置为 AUTO，避免“永远不产出 tool_use”。
+    geminiRequestBody.toolConfig = { functionCallingConfig: { mode: 'AUTO' } }
+  }
+
+  return { model: baseModel, request: geminiRequestBody }
+}
+
+// ============================================================================
+// 辅助函数：Gemini 响应解析
+// ============================================================================
+
+/**
+ * 从 Gemini 响应中提取文本内容
+ * @param {Object} payload - Gemini 响应 payload
+ * @param {boolean} includeThought - 是否包含 thinking 文本
+ * @returns {string} 提取的文本
+ */
+function extractGeminiText(payload, { includeThought = false } = {}) {
+  const candidate = payload?.candidates?.[0]
+  const parts = candidate?.content?.parts
+  if (!Array.isArray(parts)) {
+    return ''
+  }
+  return parts
+    .filter(
+      (part) => typeof part?.text === 'string' && part.text && (includeThought || !part.thought)
+    )
+    .map((part) => part.text)
+    .filter(Boolean)
+    .join('')
+}
+
+/**
+ * 从 Gemini 响应中提取 thinking 文本内容
+ */
+function extractGeminiThoughtText(payload) {
+  const candidate = payload?.candidates?.[0]
+  const parts = candidate?.content?.parts
+  if (!Array.isArray(parts)) {
+    return ''
+  }
+  return parts
+    .filter((part) => part?.thought && typeof part?.text === 'string' && part.text)
+    .map((part) => part.text)
+    .filter(Boolean)
+    .join('')
+}
+
+/**
+ * 从 Gemini 响应中提取 thinking signature
+ * 用于在下一轮对话中传回给 Antigravity
+ */
+function extractGeminiThoughtSignature(payload) {
+  const candidate = payload?.candidates?.[0]
+  const parts = candidate?.content?.parts
+  if (!Array.isArray(parts)) {
+    return ''
+  }
+
+  const resolveSignature = (part) => {
+    if (!part) {
+      return ''
+    }
+    return part.thoughtSignature || part.thought_signature || part.signature || ''
+  }
+
+  // 优先：functionCall part 上的 signature（上游可能把签名挂在工具调用 part 上）
+  for (const part of parts) {
+    if (!part?.functionCall?.name) {
+      continue
+    }
+    const signature = resolveSignature(part)
+    if (signature) {
+      return signature
+    }
+  }
+
+  // 回退：thought part 上的 signature
+  for (const part of parts) {
+    if (!part?.thought) {
+      continue
+    }
+    const signature = resolveSignature(part)
+    if (signature) {
+      return signature
+    }
+  }
+  return ''
+}
+
+/**
+ * 解析 Gemini 响应的 token 使用情况
+ * 计算输出 token 数（包括 candidate + thought tokens）
+ */
+function resolveUsageOutputTokens(usageMetadata) {
+  if (!usageMetadata || typeof usageMetadata !== 'object') {
+    return 0
+  }
+  const promptTokens = usageMetadata.promptTokenCount || 0
+  const candidateTokens = usageMetadata.candidatesTokenCount || 0
+  const thoughtTokens = usageMetadata.thoughtsTokenCount || 0
+  const totalTokens = usageMetadata.totalTokenCount || 0
+
+  let outputTokens = candidateTokens + thoughtTokens
+  if (outputTokens === 0 && totalTokens > 0) {
+    outputTokens = totalTokens - promptTokens
+    if (outputTokens < 0) {
+      outputTokens = 0
+    }
+  }
+  return outputTokens
+}
+
+/**
+ * 检查环境变量是否启用
+ * 支持 true/1/yes/on 等值
+ */
+function isEnvEnabled(value) {
+  if (!value) {
+    return false
+  }
+  const normalized = String(value).trim().toLowerCase()
+  return normalized === 'true' || normalized === '1' || normalized === 'yes' || normalized === 'on'
+}
+
+/**
+ * 从文本中提取 Write 工具调用
+ * 处理模型在文本中输出 "Write: <path>" 格式的情况
+ * 这是一个兜底机制，用于处理 function calling 失败的情况
+ */
+function tryExtractWriteToolFromText(text, fallbackCwd) {
+  if (!text || typeof text !== 'string') {
+    return null
+  }
+
+  const lines = text.split(/\r?\n/)
+  const index = lines.findIndex((line) => /^\s*Write\s*:\s*/i.test(line))
+  if (index < 0) {
+    return null
+  }
+
+  const header = lines[index]
+  const rawPath = header.replace(/^\s*Write\s*:\s*/i, '').trim()
+  if (!rawPath) {
+    return null
+  }
+
+  const content = lines.slice(index + 1).join('\n')
+  const prefixText = lines.slice(0, index).join('\n').trim()
+
+  // Claude Code 的 Write 工具要求绝对路径。若模型给的是相对路径，仅在本地运行代理时可用；
+  // 这里提供一个可选回退：使用服务端 cwd 解析。
+  let filePath = rawPath
+  if (!path.isAbsolute(filePath) && fallbackCwd) {
+    filePath = path.resolve(fallbackCwd, filePath)
+  }
+
+  return {
+    prefixText: prefixText || '',
+    tool: {
+      name: 'Write',
+      input: {
+        file_path: filePath,
+        content: content || ''
+      }
+    }
+  }
+}
+
+function mapGeminiFinishReasonToAnthropicStopReason(finishReason) {
+  const normalized = (finishReason || '').toString().toUpperCase()
+  if (normalized === 'MAX_TOKENS') {
+    return 'max_tokens'
+  }
+  return 'end_turn'
+}
+
+/**
+ * 生成工具调用 ID
+ * 使用 toolu_ 前缀 + 随机字符串
+ */
+function buildToolUseId() {
+  return `toolu_${crypto.randomBytes(10).toString('hex')}`
+}
+
+/**
+ * 稳定的 JSON 序列化（键按字母顺序排列）
+ * 用于生成可比较的 JSON 字符串
+ */
+function stableJsonStringify(value) {
+  if (value === null || value === undefined) {
+    return 'null'
+  }
+  if (Array.isArray(value)) {
+    return `[${value.map((item) => stableJsonStringify(item)).join(',')}]`
+  }
+  if (typeof value === 'object') {
+    const keys = Object.keys(value).sort()
+    const pairs = keys.map((key) => `${JSON.stringify(key)}:${stableJsonStringify(value[key])}`)
+    return `{${pairs.join(',')}}`
+  }
+  return JSON.stringify(value)
+}
+
+/**
+ * 从 Gemini 响应中提取 parts 数组
+ */
+function extractGeminiParts(payload) {
+  const candidate = payload?.candidates?.[0]
+  const parts = candidate?.content?.parts
+  if (!Array.isArray(parts)) {
+    return []
+  }
+  return parts
+}
+
+// ============================================================================
+// 核心函数：Gemini 响应转换为 Anthropic 格式
+// ============================================================================
+
+/**
+ * 将 Gemini 响应转换为 Anthropic content blocks
+ *
+ * 处理的内容类型：
+ * - text: 纯文本 → { type: "text", text }
+ * - thought: 思考过程 → { type: "thinking", thinking, signature }
+ * - functionCall: 工具调用 → { type: "tool_use", id, name, input }
+ *
+ * 注意：thinking blocks 会被调整到数组最前面（符合 Anthropic 规范）
+ */
+function convertGeminiPayloadToAnthropicContent(payload) {
+  const parts = extractGeminiParts(payload)
+  const content = []
+  let currentText = ''
+
+  const flushText = () => {
+    if (!currentText) {
+      return
+    }
+    content.push({ type: 'text', text: currentText })
+    currentText = ''
+  }
+
+  const pushThinkingBlock = (thinkingText, signature) => {
+    const normalizedThinking = typeof thinkingText === 'string' ? thinkingText : ''
+    const normalizedSignature = typeof signature === 'string' ? signature : ''
+    if (!normalizedThinking && !normalizedSignature) {
+      return
+    }
+    const block = { type: 'thinking', thinking: normalizedThinking }
+    if (normalizedSignature) {
+      block.signature = normalizedSignature
+    }
+    content.push(block)
+  }
+
+  const resolveSignature = (part) => {
+    if (!part) {
+      return ''
+    }
+    return part.thoughtSignature || part.thought_signature || part.signature || ''
+  }
+
+  for (const part of parts) {
+    const isThought = part?.thought === true
+    if (isThought) {
+      flushText()
+      pushThinkingBlock(typeof part?.text === 'string' ? part.text : '', resolveSignature(part))
+      continue
+    }
+
+    if (typeof part?.text === 'string' && part.text) {
+      currentText += part.text
+      continue
+    }
+
+    const functionCall = part?.functionCall
+    if (functionCall?.name) {
+      flushText()
+
+      // 上游可能把 thought signature 挂在 functionCall part 上：需要原样传回给客户端，
+      // 以便下一轮对话能携带 signature。
+      const functionCallSignature = resolveSignature(part)
+      if (functionCallSignature) {
+        pushThinkingBlock('', functionCallSignature)
+      }
+
+      const toolUseId =
+        typeof functionCall.id === 'string' && functionCall.id ? functionCall.id : buildToolUseId()
+      content.push({
+        type: 'tool_use',
+        id: toolUseId,
+        name: functionCall.name,
+        input: functionCall.args || {}
+      })
+    }
+  }
+
+  flushText()
+  const thinkingBlocks = content.filter(
+    (b) => b && (b.type === 'thinking' || b.type === 'redacted_thinking')
+  )
+  if (thinkingBlocks.length > 0) {
+    const firstType = content?.[0]?.type
+    if (firstType !== 'thinking' && firstType !== 'redacted_thinking') {
+      const others = content.filter(
+        (b) => b && b.type !== 'thinking' && b.type !== 'redacted_thinking'
+      )
+      return [...thinkingBlocks, ...others]
+    }
+  }
+  return content
+}
+
+/**
+ * 构建 Anthropic 格式的错误响应
+ */
+function buildAnthropicError(message) {
+  return {
+    type: 'error',
+    error: {
+      type: 'api_error',
+      message: message || 'Upstream error'
+    }
+  }
+}
+
+/**
+ * 判断是否应该在无工具模式下重试
+ * 当上游报告 JSON Schema 或工具相关错误时，移除工具定义重试
+ */
+function shouldRetryWithoutTools(sanitizedError) {
+  const message = (sanitizedError?.upstreamMessage || sanitizedError?.message || '').toLowerCase()
+  if (!message) {
+    return false
+  }
+  return (
+    message.includes('json schema is invalid') ||
+    message.includes('invalid json payload') ||
+    message.includes('tools.') ||
+    message.includes('function_declarations')
+  )
+}
+
+/**
+ * 从请求中移除工具定义（用于重试）
+ */
+function stripToolsFromRequest(requestData) {
+  if (!requestData || !requestData.request) {
+    return requestData
+  }
+  const nextRequest = {
+    ...requestData,
+    request: {
+      ...requestData.request
+    }
+  }
+  delete nextRequest.request.tools
+  delete nextRequest.request.toolConfig
+  return nextRequest
+}
+
+/**
+ * 写入 Anthropic SSE 事件
+ * 将事件和数据以 SSE 格式发送给客户端
+ */
+function writeAnthropicSseEvent(res, event, data) {
+  res.write(`event: ${event}\n`)
+  res.write(`data: ${JSON.stringify(data)}\n\n`)
+}
+
+// ============================================================================
+// 调试和跟踪函数
+// ============================================================================
+
+/**
+ * 记录工具定义到文件（调试用）
+ * 只在环境变量 ANTHROPIC_DEBUG_TOOLS_DUMP 启用时生效
+ */
+function dumpToolsPayload({ vendor, model, tools, toolChoice }) {
+  if (!isEnvEnabled(process.env[TOOLS_DUMP_ENV])) {
+    return
+  }
+  if (!Array.isArray(tools) || tools.length === 0) {
+    return
+  }
+  if (vendor !== 'antigravity') {
+    return
+  }
+
+  const filePath = path.join(getProjectRoot(), TOOLS_DUMP_FILENAME)
+  const payload = {
+    timestamp: new Date().toISOString(),
+    vendor,
+    model,
+    tool_choice: toolChoice || null,
+    tools
+  }
+
+  try {
+    fs.appendFileSync(filePath, `${JSON.stringify(payload)}\n`, 'utf8')
+    logger.warn(`🧾 Tools payload dumped to ${filePath}`)
+  } catch (error) {
+    logger.warn('Failed to dump tools payload:', error.message)
+  }
+}
+
+/**
+ * 更新速率限制计数器
+ * 跟踪 token 使用量和成本
+ */
+async function applyRateLimitTracking(rateLimitInfo, usageSummary, model, context = '', keyId = null) {
+  if (!rateLimitInfo) {
+    return
+  }
+
+  const label = context ? ` (${context})` : ''
+
+  try {
+    const { totalTokens, totalCost } = await updateRateLimitCounters(
+      rateLimitInfo,
+      usageSummary,
+      model,
+      keyId,
+      'gemini'
+    )
+    if (totalTokens > 0) {
+      logger.api(`📊 Updated rate limit token count${label}: +${totalTokens} tokens`)
+    }
+    if (typeof totalCost === 'number' && totalCost > 0) {
+      logger.api(`💰 Updated rate limit cost count${label}: +$${totalCost.toFixed(6)}`)
+    }
+  } catch (error) {
+    logger.error(`❌ Failed to update rate limit counters${label}:`, error)
+  }
+}
+
+// ============================================================================
+// 主入口函数：API 请求处理
+// ============================================================================
+
+/**
+ * 处理 Anthropic 格式的请求并转发到 Gemini/Antigravity
+ *
+ * 这是整个模块的主入口，完整流程：
+ * 1. 验证 vendor 支持
+ * 2. 选择可用的 Gemini 账户
+ * 3. 模型回退匹配（如果请求的模型不可用）
+ * 4. 构建 Gemini 请求 (buildGeminiRequestFromAnthropic)
+ * 5. 发送请求（流式或非流式）
+ * 6. 处理响应并转换为 Anthropic 格式
+ * 7. 如果工具相关错误，尝试移除工具重试
+ * 8. 返回结果给客户端
+ *
+ * @param {Object} req - Express 请求对象
+ * @param {Object} res - Express 响应对象
+ * @param {Object} options - 包含 vendor 和 baseModel
+ */
+async function handleAnthropicMessagesToGemini(req, res, { vendor, baseModel }) {
+  if (!SUPPORTED_VENDORS.has(vendor)) {
+    return res.status(400).json(buildAnthropicError(`Unsupported vendor: ${vendor}`))
+  }
+
+  dumpToolsPayload({
+    vendor,
+    model: baseModel,
+    tools: req.body?.tools || null,
+    toolChoice: req.body?.tool_choice || null
+  })
+
+  const pickFallbackModel = (account, requestedModel) => {
+    const supportedModels = Array.isArray(account?.supportedModels) ? account.supportedModels : []
+    if (supportedModels.length === 0) {
+      return requestedModel
+    }
+
+    const normalize = (m) => String(m || '').replace(/^models\//, '')
+    const requested = normalize(requestedModel)
+    const normalizedSupported = supportedModels.map(normalize)
+
+    if (normalizedSupported.includes(requested)) {
+      return requestedModel
+    }
+
+    // Claude Code 常见探测模型：优先回退到 Opus 4.5（如果账号支持）
+    const preferred = ['claude-opus-4-5', 'claude-sonnet-4-5-thinking', 'claude-sonnet-4-5']
+    for (const candidate of preferred) {
+      if (normalizedSupported.includes(candidate)) {
+        return candidate
+      }
+    }
+
+    return normalizedSupported[0]
+  }
+
+  const isStream = req.body?.stream === true
+  const sessionHash = sessionHelper.generateSessionHash(req.body)
+  const upstreamSessionId = sessionHash || req.apiKey?.id || null
+
+  let accountSelection
+  try {
+    accountSelection = await unifiedGeminiScheduler.selectAccountForApiKey(
+      req.apiKey,
+      sessionHash,
+      baseModel,
+      { oauthProvider: vendor }
+    )
+  } catch (error) {
+    logger.error('Failed to select Gemini account (via /v1/messages):', error)
+    return res
+      .status(503)
+      .json(buildAnthropicError(error.message || 'No available Gemini accounts'))
+  }
+
+  let { accountId } = accountSelection
+  const { accountType } = accountSelection
+  if (accountType !== 'gemini') {
+    return res
+      .status(400)
+      .json(buildAnthropicError('Only Gemini OAuth accounts are supported for this vendor'))
+  }
+
+  const account = await geminiAccountService.getAccount(accountId)
+  if (!account) {
+    return res.status(503).json(buildAnthropicError('Gemini OAuth account not found'))
+  }
+
+  await geminiAccountService.markAccountUsed(account.id)
+
+  let proxyConfig = null
+  if (account.proxy) {
+    try {
+      proxyConfig = typeof account.proxy === 'string' ? JSON.parse(account.proxy) : account.proxy
+    } catch (e) {
+      logger.warn('Failed to parse proxy configuration:', e)
+    }
+  }
+
+  const client = await geminiAccountService.getOauthClient(
+    account.accessToken,
+    account.refreshToken,
+    proxyConfig,
+    account.oauthProvider
+  )
+
+  let { projectId } = account
+  if (vendor === 'antigravity') {
+    projectId = ensureAntigravityProjectId(account)
+    if (!account.projectId && account.tempProjectId !== projectId) {
+      await geminiAccountService.updateTempProjectId(account.id, projectId)
+      account.tempProjectId = projectId
+    }
+  }
+
+  const effectiveModel = pickFallbackModel(account, baseModel)
+  if (effectiveModel !== baseModel) {
+    logger.warn('⚠️ Requested model not supported by account, falling back', {
+      requestedModel: baseModel,
+      effectiveModel,
+      vendor,
+      accountId
+    })
+  }
+
+  let requestData = buildGeminiRequestFromAnthropic(req.body, effectiveModel, {
+    vendor,
+    sessionId: sessionHash
+  })
+
+  // Antigravity 上游对 function calling 的启用/校验更严格：参考实现普遍使用 VALIDATED。
+  // 这里仅在 tools 存在且未显式禁用（tool_choice=none）时应用，避免破坏原始语义。
+  if (
+    vendor === 'antigravity' &&
+    Array.isArray(requestData?.request?.tools) &&
+    requestData.request.tools.length > 0
+  ) {
+    const existingCfg = requestData?.request?.toolConfig?.functionCallingConfig || null
+    const mode = existingCfg?.mode
+    if (mode !== 'NONE') {
+      const nextCfg = { ...(existingCfg || {}), mode: 'VALIDATED' }
+      requestData = {
+        ...requestData,
+        request: {
+          ...requestData.request,
+          toolConfig: { functionCallingConfig: nextCfg }
+        }
+      }
+    }
+  }
+
+  // Antigravity 默认启用 tools（对齐 CLIProxyAPI）。若上游拒绝 schema，会在下方自动重试去掉 tools/toolConfig。
+
+  const abortController = new AbortController()
+  req.on('close', () => {
+    if (!abortController.signal.aborted) {
+      abortController.abort()
+    }
+  })
+
+  if (!isStream) {
+    try {
+      const attemptRequest = async (payload) => {
+        if (vendor === 'antigravity') {
+          return await geminiAccountService.generateContentAntigravity(
+            client,
+            payload,
+            null,
+            projectId,
+            upstreamSessionId,
+            proxyConfig
+          )
+        }
+        return await geminiAccountService.generateContent(
+          client,
+          payload,
+          null,
+          projectId,
+          upstreamSessionId,
+          proxyConfig
+        )
+      }
+
+      let rawResponse
+      try {
+        rawResponse = await attemptRequest(requestData)
+      } catch (error) {
+        const sanitized = sanitizeUpstreamError(error)
+        if (shouldRetryWithoutTools(sanitized) && requestData.request?.tools) {
+          logger.warn('⚠️ Tool schema rejected by upstream, retrying without tools', {
+            vendor,
+            accountId
+          })
+          rawResponse = await attemptRequest(stripToolsFromRequest(requestData))
+        } else if (
+          // [429 账户切换] 检测到 Antigravity 配额耗尽错误时，尝试切换账户重试
+          vendor === 'antigravity' &&
+          sanitized.statusCode === 429 &&
+          (sanitized.message?.toLowerCase()?.includes('exhausted') ||
+            sanitized.upstreamMessage?.toLowerCase()?.includes('exhausted') ||
+            sanitized.message?.toLowerCase()?.includes('capacity'))
+        ) {
+          logger.warn(
+            '⚠️ Antigravity 429 quota exhausted (non-stream), switching account and retrying',
+            {
+              vendor,
+              accountId,
+              model: effectiveModel
+            }
+          )
+          // 删除当前会话映射，让调度器选择其他账户
+          if (sessionHash) {
+            await unifiedGeminiScheduler._deleteSessionMapping(sessionHash)
+          }
+          // 重新选择账户
+          try {
+            const newAccountSelection = await unifiedGeminiScheduler.selectAccountForApiKey(
+              req.apiKey,
+              sessionHash,
+              effectiveModel,
+              { oauthProvider: vendor }
+            )
+            const newAccountId = newAccountSelection.accountId
+            const newClient = await geminiAccountService.getGeminiClient(newAccountId)
+            if (!newClient) {
+              throw new Error('Failed to get new Gemini client for retry')
+            }
+            logger.info(
+              `🔄 Retrying non-stream with new account: ${newAccountId} (was: ${accountId})`
+            )
+            // 用新账户的 client 重试
+            rawResponse =
+              vendor === 'antigravity'
+                ? await geminiAccountService.generateContentAntigravity(
+                    newClient,
+                    requestData,
+                    null,
+                    projectId,
+                    upstreamSessionId,
+                    proxyConfig
+                  )
+                : await geminiAccountService.generateContent(
+                    newClient,
+                    requestData,
+                    null,
+                    projectId,
+                    upstreamSessionId,
+                    proxyConfig
+                  )
+            // 更新 accountId 以便后续使用记录
+            accountId = newAccountId
+          } catch (retryError) {
+            logger.error('❌ Failed to retry non-stream with new account:', retryError)
+            throw error // 抛出原始错误
+          }
+        } else {
+          throw error
+        }
+      }
+
+      const payload = rawResponse?.response || rawResponse
+      let content = convertGeminiPayloadToAnthropicContent(payload)
+      let hasToolUse = content.some((block) => block.type === 'tool_use')
+
+      // Antigravity 某些模型可能不会返回 functionCall（导致永远没有 tool_use），但会把 “Write: xxx” 以纯文本形式输出。
+      // 可选回退：解析该文本并合成标准 tool_use，交给 claude-cli 去执行。
+      if (!hasToolUse && isEnvEnabled(process.env[TEXT_TOOL_FALLBACK_ENV])) {
+        const fullText = extractGeminiText(payload)
+        const extracted = tryExtractWriteToolFromText(fullText, process.cwd())
+        if (extracted?.tool) {
+          const toolUseId = buildToolUseId()
+          const blocks = []
+          if (extracted.prefixText) {
+            blocks.push({ type: 'text', text: extracted.prefixText })
+          }
+          blocks.push({
+            type: 'tool_use',
+            id: toolUseId,
+            name: extracted.tool.name,
+            input: extracted.tool.input
+          })
+          content = blocks
+          hasToolUse = true
+          logger.warn('⚠️ Synthesized tool_use from plain text Write directive', {
+            vendor,
+            accountId,
+            tool: extracted.tool.name
+          })
+        }
+      }
+
+      const usageMetadata = payload?.usageMetadata || {}
+      const inputTokens = usageMetadata.promptTokenCount || 0
+      const outputTokens = resolveUsageOutputTokens(usageMetadata)
+      const finishReason = payload?.candidates?.[0]?.finishReason
+
+      const stopReason = hasToolUse
+        ? 'tool_use'
+        : mapGeminiFinishReasonToAnthropicStopReason(finishReason)
+
+      if (req.apiKey?.id && (inputTokens > 0 || outputTokens > 0)) {
+        await apiKeyService.recordUsage(
+          req.apiKey.id,
+          inputTokens,
+          outputTokens,
+          0,
+          0,
+          effectiveModel,
+          accountId,
+          'gemini'
+        )
+        await applyRateLimitTracking(
+          req.rateLimitInfo,
+          { inputTokens, outputTokens, cacheCreateTokens: 0, cacheReadTokens: 0 },
+          effectiveModel,
+          'anthropic-messages',
+          req.apiKey?.id
+        )
+      }
+
+      const responseBody = {
+        id: `msg_${crypto.randomBytes(12).toString('hex')}`,
+        type: 'message',
+        role: 'assistant',
+        model: req.body.model || effectiveModel,
+        content,
+        stop_reason: stopReason,
+        stop_sequence: null,
+        usage: {
+          input_tokens: inputTokens,
+          output_tokens: outputTokens
+        }
+      }
+
+      dumpAnthropicNonStreamResponse(req, 200, responseBody, {
+        vendor,
+        accountId,
+        effectiveModel,
+        forcedVendor: vendor
+      })
+
+      return res.status(200).json(responseBody)
+    } catch (error) {
+      const sanitized = sanitizeUpstreamError(error)
+      logger.error('Upstream Gemini error (via /v1/messages):', sanitized)
+      dumpAnthropicNonStreamResponse(
+        req,
+        sanitized.statusCode || 502,
+        buildAnthropicError(sanitized.upstreamMessage || sanitized.message),
+        { vendor, accountId, effectiveModel, forcedVendor: vendor, upstreamError: sanitized }
+      )
+      return res
+        .status(sanitized.statusCode || 502)
+        .json(buildAnthropicError(sanitized.upstreamMessage || sanitized.message))
+    }
+  }
+
+  const messageId = `msg_${crypto.randomBytes(12).toString('hex')}`
+  const responseModel = req.body.model || effectiveModel
+
+  try {
+    const startStream = async (payload) => {
+      if (vendor === 'antigravity') {
+        return await geminiAccountService.generateContentStreamAntigravity(
+          client,
+          payload,
+          null,
+          projectId,
+          upstreamSessionId,
+          abortController.signal,
+          proxyConfig
+        )
+      }
+      return await geminiAccountService.generateContentStream(
+        client,
+        payload,
+        null,
+        projectId,
+        upstreamSessionId,
+        abortController.signal,
+        proxyConfig
+      )
+    }
+
+    let streamResponse
+    try {
+      streamResponse = await startStream(requestData)
+    } catch (error) {
+      const sanitized = sanitizeUpstreamError(error)
+      if (shouldRetryWithoutTools(sanitized) && requestData.request?.tools) {
+        logger.warn('⚠️ Tool schema rejected by upstream, retrying stream without tools', {
+          vendor,
+          accountId
+        })
+        streamResponse = await startStream(stripToolsFromRequest(requestData))
+      } else if (
+        // [429 账户切换] 检测到 Antigravity 配额耗尽错误时，尝试切换账户重试
+        vendor === 'antigravity' &&
+        sanitized.statusCode === 429 &&
+        (sanitized.message?.toLowerCase()?.includes('exhausted') ||
+          sanitized.upstreamMessage?.toLowerCase()?.includes('exhausted') ||
+          sanitized.message?.toLowerCase()?.includes('capacity'))
+      ) {
+        logger.warn('⚠️ Antigravity 429 quota exhausted, switching account and retrying', {
+          vendor,
+          accountId,
+          model: effectiveModel
+        })
+        // 删除当前会话映射，让调度器选择其他账户
+        if (sessionHash) {
+          await unifiedGeminiScheduler._deleteSessionMapping(sessionHash)
+        }
+        // 重新选择账户
+        try {
+          const newAccountSelection = await unifiedGeminiScheduler.selectAccountForApiKey(
+            req.apiKey,
+            sessionHash,
+            effectiveModel,
+            { oauthProvider: vendor }
+          )
+          const newAccountId = newAccountSelection.accountId
+          const newClient = await geminiAccountService.getGeminiClient(newAccountId)
+          if (!newClient) {
+            throw new Error('Failed to get new Gemini client for retry')
+          }
+          logger.info(`🔄 Retrying with new account: ${newAccountId} (was: ${accountId})`)
+          // 用新账户的 client 重试
+          streamResponse =
+            vendor === 'antigravity'
+              ? await geminiAccountService.generateContentStreamAntigravity(
+                  newClient,
+                  requestData,
+                  null,
+                  projectId,
+                  upstreamSessionId,
+                  abortController.signal,
+                  proxyConfig
+                )
+              : await geminiAccountService.generateContentStream(
+                  newClient,
+                  requestData,
+                  null,
+                  projectId,
+                  upstreamSessionId,
+                  abortController.signal,
+                  proxyConfig
+                )
+          // 更新 accountId 以便后续使用记录
+          accountId = newAccountId
+        } catch (retryError) {
+          logger.error('❌ Failed to retry with new account:', retryError)
+          throw error // 抛出原始错误
+        }
+      } else {
+        throw error
+      }
+    }
+
+    // 仅在上游流成功建立后再开始向客户端发送 SSE。
+    // 这样如果上游在握手阶段直接返回 4xx/5xx（例如 schema 400 或配额 429），
+    // 我们可以返回真实 HTTP 状态码，而不是先 200 再在 SSE 内发 error 事件。
+    res.setHeader('Content-Type', 'text/event-stream')
+    res.setHeader('Cache-Control', 'no-cache')
+    res.setHeader('Connection', 'keep-alive')
+    res.setHeader('X-Accel-Buffering', 'no')
+
+    writeAnthropicSseEvent(res, 'message_start', {
+      type: 'message_start',
+      message: {
+        id: messageId,
+        type: 'message',
+        role: 'assistant',
+        model: responseModel,
+        content: [],
+        stop_reason: null,
+        stop_sequence: null,
+        usage: {
+          input_tokens: 0,
+          output_tokens: 0
+        }
+      }
+    })
+
+    const isAntigravityVendor = vendor === 'antigravity'
+    const wantsThinkingBlockFirst =
+      isAntigravityVendor &&
+      requestData?.request?.generationConfig?.thinkingConfig?.include_thoughts === true
+
+    // ========================================================================
+    // [大东的 2.0 补丁 - 修复版] 活跃度看门狗 (Watchdog)
+    // ========================================================================
+    let activityTimeout = null
+    const STREAM_ACTIVITY_TIMEOUT_MS = 45000 // 45秒无数据视为卡死
+
+    const resetActivityTimeout = () => {
+      if (activityTimeout) {
+        clearTimeout(activityTimeout)
+      }
+      activityTimeout = setTimeout(() => {
+        if (finished) {
+          return
+        }
+
+        // 🛑【关键修改】先锁门！防止 abort() 触发的 onError 再次写入 res
+        finished = true
+
+        logger.warn('⚠️ Upstream stream zombie detected (no data for 45s). Forcing termination.', {
+          requestId: req.requestId
+        })
+
+        if (!abortController.signal.aborted) {
+          abortController.abort()
+        }
+
+        writeAnthropicSseEvent(res, 'error', {
+          type: 'error',
+          error: {
+            type: 'overloaded_error',
+            message: 'Upstream stream timed out (zombie connection). Please try again.'
+          }
+        })
+        res.end()
+      }, STREAM_ACTIVITY_TIMEOUT_MS)
+    }
+
+    // 🔥【这里！】一定要加这句来启动它！
+    resetActivityTimeout()
+    // ========================================================================
+
+    let buffer = ''
+    let emittedText = ''
+    let emittedThinking = ''
+    let emittedThoughtSignature = ''
+    let finished = false
+    let usageMetadata = null
+    let finishReason = null
+    let emittedAnyToolUse = false
+    let sseEventIndex = 0
+    const emittedToolCallKeys = new Set()
+    const emittedToolUseNames = new Set()
+    const pendingToolCallsById = new Map()
+
+    let currentIndex = wantsThinkingBlockFirst ? 0 : -1
+    let currentBlockType = wantsThinkingBlockFirst ? 'thinking' : null
+
+    const startTextBlock = (index) => {
+      writeAnthropicSseEvent(res, 'content_block_start', {
+        type: 'content_block_start',
+        index,
+        content_block: { type: 'text', text: '' }
+      })
+    }
+
+    const stopCurrentBlock = () => {
+      writeAnthropicSseEvent(res, 'content_block_stop', {
+        type: 'content_block_stop',
+        index: currentIndex
+      })
+    }
+
+    const startThinkingBlock = (index) => {
+      writeAnthropicSseEvent(res, 'content_block_start', {
+        type: 'content_block_start',
+        index,
+        content_block: { type: 'thinking', thinking: '' }
+      })
+    }
+
+    if (wantsThinkingBlockFirst) {
+      startThinkingBlock(0)
+    }
+
+    const switchBlockType = (nextType) => {
+      if (currentBlockType === nextType) {
+        return
+      }
+      if (currentBlockType === 'text' || currentBlockType === 'thinking') {
+        stopCurrentBlock()
+      }
+      currentIndex += 1
+      currentBlockType = nextType
+      if (nextType === 'text') {
+        startTextBlock(currentIndex)
+      } else if (nextType === 'thinking') {
+        startThinkingBlock(currentIndex)
+      }
+    }
+
+    const canStartThinkingBlock = (_hasSignature = false) => {
+      // Antigravity 特殊处理：某些情况下不应启动 thinking block
+      if (isAntigravityVendor) {
+        // 如果 wantsThinkingBlockFirst 且已发送过工具调用，不应再启动 thinking
+        if (wantsThinkingBlockFirst && emittedAnyToolUse) {
+          return false
+        }
+        // [移除规则2] 签名可能在后续 chunk 中到达，不应提前阻止 thinking 启动
+      }
+      if (currentIndex < 0) {
+        return true
+      }
+      if (currentBlockType === 'thinking') {
+        return true
+      }
+      if (emittedThinking || emittedThoughtSignature) {
+        return true
+      }
+      return false
+    }
+
+    const emitToolUseBlock = (name, args, id = null) => {
+      const toolUseId = typeof id === 'string' && id ? id : buildToolUseId()
+      const jsonArgs = stableJsonStringify(args || {})
+
+      if (name) {
+        emittedToolUseNames.add(name)
+      }
+      currentIndex += 1
+      const toolIndex = currentIndex
+
+      writeAnthropicSseEvent(res, 'content_block_start', {
+        type: 'content_block_start',
+        index: toolIndex,
+        content_block: { type: 'tool_use', id: toolUseId, name, input: {} }
+      })
+
+      writeAnthropicSseEvent(res, 'content_block_delta', {
+        type: 'content_block_delta',
+        index: toolIndex,
+        delta: { type: 'input_json_delta', partial_json: jsonArgs }
+      })
+
+      writeAnthropicSseEvent(res, 'content_block_stop', {
+        type: 'content_block_stop',
+        index: toolIndex
+      })
+      emittedAnyToolUse = true
+      currentBlockType = null
+    }
+
+    const resolveFunctionCallArgs = (functionCall) => {
+      if (!functionCall || typeof functionCall !== 'object') {
+        return { args: null, json: '', canContinue: false }
+      }
+      const canContinue =
+        functionCall.willContinue === true ||
+        functionCall.will_continue === true ||
+        functionCall.continue === true ||
+        functionCall.willContinue === 'true' ||
+        functionCall.will_continue === 'true'
+
+      const raw =
+        functionCall.args !== undefined
+          ? functionCall.args
+          : functionCall.partialArgs !== undefined
+            ? functionCall.partialArgs
+            : functionCall.partial_args !== undefined
+              ? functionCall.partial_args
+              : functionCall.argsJson !== undefined
+                ? functionCall.argsJson
+                : functionCall.args_json !== undefined
+                  ? functionCall.args_json
+                  : ''
+
+      if (raw && typeof raw === 'object' && !Array.isArray(raw)) {
+        return { args: raw, json: '', canContinue }
+      }
+
+      const json =
+        typeof raw === 'string' ? raw : raw === null || raw === undefined ? '' : String(raw)
+      if (!json) {
+        return { args: null, json: '', canContinue }
+      }
+
+      try {
+        const parsed = JSON.parse(json)
+        if (parsed && typeof parsed === 'object' && !Array.isArray(parsed)) {
+          return { args: parsed, json: '', canContinue }
+        }
+      } catch (_) {
+        // ignore: treat as partial JSON string
+      }
+
+      return { args: null, json, canContinue }
+    }
+
+    const flushPendingToolCallById = (id, { force = false } = {}) => {
+      const pending = pendingToolCallsById.get(id)
+      if (!pending) {
+        return
+      }
+      if (!pending.name) {
+        return
+      }
+      if (!pending.args && pending.argsJson) {
+        try {
+          const parsed = JSON.parse(pending.argsJson)
+          if (parsed && typeof parsed === 'object' && !Array.isArray(parsed)) {
+            pending.args = parsed
+            pending.argsJson = ''
+          }
+        } catch (_) {
+          // keep buffering
+        }
+      }
+      if (!pending.args) {
+        if (!force) {
+          return
+        }
+        pending.args = {}
+      }
+
+      const toolKey = `id:${id}`
+      if (emittedToolCallKeys.has(toolKey)) {
+        pendingToolCallsById.delete(id)
+        return
+      }
+      emittedToolCallKeys.add(toolKey)
+
+      if (currentBlockType === 'text' || currentBlockType === 'thinking') {
+        stopCurrentBlock()
+      }
+      currentBlockType = 'tool_use'
+      emitToolUseBlock(pending.name, pending.args, id)
+      pendingToolCallsById.delete(id)
+    }
+
+    const finalize = async () => {
+      if (finished) {
+        return
+      }
+      finished = true
+
+      // 若存在未完成的工具调用（例如 args 分段但上游提前结束），尽力 flush，避免客户端卡死。
+      for (const id of pendingToolCallsById.keys()) {
+        flushPendingToolCallById(id, { force: true })
+      }
+
+      // 上游可能在没有 finishReason 的情况下静默结束（例如 browser_snapshot 输出过大被截断）。
+      // 这种情况下主动向客户端发送错误，避免长时间挂起。
+      if (!finishReason) {
+        logger.warn(
+          '⚠️ Upstream stream ended without finishReason; sending overloaded_error to client',
+          {
+            requestId: req.requestId,
+            model: effectiveModel,
+            hasToolCalls: emittedAnyToolUse
+          }
+        )
+
+        writeAnthropicSseEvent(res, 'error', {
+          type: 'error',
+          error: {
+            type: 'overloaded_error',
+            message:
+              'Upstream connection interrupted unexpectedly (missing finish reason). Please retry.'
+          }
+        })
+
+        // 记录摘要便于排查
+        dumpAnthropicStreamSummary(req, {
+          vendor,
+          accountId,
+          effectiveModel,
+          responseModel,
+          stop_reason: 'error',
+          tool_use_names: Array.from(emittedToolUseNames).filter(Boolean),
+          text_preview: emittedText ? emittedText.slice(0, 800) : '',
+          usage: { input_tokens: 0, output_tokens: 0 }
+        })
+
+        if (vendor === 'antigravity') {
+          dumpAntigravityStreamSummary({
+            requestId: req.requestId,
+            model: effectiveModel,
+            totalEvents: sseEventIndex,
+            finishReason: null,
+            hasThinking: Boolean(emittedThinking || emittedThoughtSignature),
+            hasToolCalls: emittedAnyToolUse,
+            toolCallNames: Array.from(emittedToolUseNames).filter(Boolean),
+            usage: { input_tokens: 0, output_tokens: 0 },
+            textPreview: emittedText ? emittedText.slice(0, 500) : '',
+            error: 'missing_finish_reason'
+          }).catch(() => {})
+        }
+
+        res.end()
+        return
+      }
+
+      const inputTokens = usageMetadata?.promptTokenCount || 0
+      const outputTokens = resolveUsageOutputTokens(usageMetadata)
+
+      if (currentBlockType === 'text' || currentBlockType === 'thinking') {
+        stopCurrentBlock()
+      }
+
+      writeAnthropicSseEvent(res, 'message_delta', {
+        type: 'message_delta',
+        delta: {
+          stop_reason: emittedAnyToolUse
+            ? 'tool_use'
+            : mapGeminiFinishReasonToAnthropicStopReason(finishReason),
+          stop_sequence: null
+        },
+        usage: {
+          output_tokens: outputTokens
+        }
+      })
+
+      writeAnthropicSseEvent(res, 'message_stop', { type: 'message_stop' })
+      res.end()
+
+      dumpAnthropicStreamSummary(req, {
+        vendor,
+        accountId,
+        effectiveModel,
+        responseModel,
+        stop_reason: emittedAnyToolUse
+          ? 'tool_use'
+          : mapGeminiFinishReasonToAnthropicStopReason(finishReason),
+        tool_use_names: Array.from(emittedToolUseNames).filter(Boolean),
+        text_preview: emittedText ? emittedText.slice(0, 800) : '',
+        usage: { input_tokens: inputTokens, output_tokens: outputTokens }
+      })
+
+      // 记录 Antigravity 上游流摘要用于调试
+      if (vendor === 'antigravity') {
+        dumpAntigravityStreamSummary({
+          requestId: req.requestId,
+          model: effectiveModel,
+          totalEvents: sseEventIndex,
+          finishReason,
+          hasThinking: Boolean(emittedThinking || emittedThoughtSignature),
+          hasToolCalls: emittedAnyToolUse,
+          toolCallNames: Array.from(emittedToolUseNames).filter(Boolean),
+          usage: { input_tokens: inputTokens, output_tokens: outputTokens },
+          textPreview: emittedText ? emittedText.slice(0, 500) : ''
+        }).catch(() => {})
+      }
+
+      if (req.apiKey?.id && (inputTokens > 0 || outputTokens > 0)) {
+        await apiKeyService.recordUsage(
+          req.apiKey.id,
+          inputTokens,
+          outputTokens,
+          0,
+          0,
+          effectiveModel,
+          accountId,
+          'gemini'
+        )
+        await applyRateLimitTracking(
+          req.rateLimitInfo,
+          { inputTokens, outputTokens, cacheCreateTokens: 0, cacheReadTokens: 0 },
+          effectiveModel,
+          'anthropic-messages-stream'
+        )
+      }
+    }
+
+    streamResponse.on('data', (chunk) => {
+      resetActivityTimeout() // <--- 【新增】收到数据了，重置倒计时！
+
+      if (finished) {
+        return
+      }
+
+      buffer += chunk.toString()
+      const lines = buffer.split('\n')
+      buffer = lines.pop() || ''
+
+      for (const line of lines) {
+        if (!line.trim()) {
+          continue
+        }
+
+        const parsed = parseSSELine(line)
+        if (parsed.type === 'control') {
+          continue
+        }
+        if (parsed.type !== 'data' || !parsed.data) {
+          continue
+        }
+
+        const payload = parsed.data?.response || parsed.data
+
+        // 记录上游 SSE 事件用于调试
+        if (vendor === 'antigravity') {
+          sseEventIndex += 1
+          dumpAntigravityStreamEvent({
+            requestId: req.requestId,
+            eventIndex: sseEventIndex,
+            eventType: parsed.type,
+            data: payload
+          }).catch(() => {})
+        }
+
+        const { usageMetadata: currentUsageMetadata, candidates } = payload || {}
+        if (currentUsageMetadata) {
+          usageMetadata = currentUsageMetadata
+        }
+
+        const [candidate] = Array.isArray(candidates) ? candidates : []
+        const { finishReason: currentFinishReason } = candidate || {}
+        if (currentFinishReason) {
+          finishReason = currentFinishReason
+        }
+
+        const parts = extractGeminiParts(payload)
+        const rawThoughtSignature = extractGeminiThoughtSignature(payload)
+        // Antigravity 专用净化：确保签名格式符合 API 要求
+        const thoughtSignature = isAntigravityVendor
+          ? sanitizeThoughtSignatureForAntigravity(rawThoughtSignature)
+          : rawThoughtSignature
+        const fullThoughtForToolOrdering = extractGeminiThoughtText(payload)
+
+        if (wantsThinkingBlockFirst) {
+          // 关键：确保 thinking/signature 在 tool_use 之前输出，避免出现 tool_use 后紧跟 thinking(signature)
+          // 导致下一轮请求的 thinking 校验/工具调用校验失败（Antigravity 会返回 400）。
+          if (thoughtSignature && canStartThinkingBlock()) {
+            let delta = ''
+            if (thoughtSignature.startsWith(emittedThoughtSignature)) {
+              delta = thoughtSignature.slice(emittedThoughtSignature.length)
+            } else if (thoughtSignature !== emittedThoughtSignature) {
+              delta = thoughtSignature
+            }
+            if (delta) {
+              switchBlockType('thinking')
+              writeAnthropicSseEvent(res, 'content_block_delta', {
+                type: 'content_block_delta',
+                index: currentIndex,
+                delta: { type: 'signature_delta', signature: delta }
+              })
+              emittedThoughtSignature = thoughtSignature
+            }
+          }
+
+          if (fullThoughtForToolOrdering && canStartThinkingBlock()) {
+            let delta = ''
+            if (fullThoughtForToolOrdering.startsWith(emittedThinking)) {
+              delta = fullThoughtForToolOrdering.slice(emittedThinking.length)
+            } else {
+              delta = fullThoughtForToolOrdering
+            }
+            if (delta) {
+              switchBlockType('thinking')
+              emittedThinking = fullThoughtForToolOrdering
+              writeAnthropicSseEvent(res, 'content_block_delta', {
+                type: 'content_block_delta',
+                index: currentIndex,
+                delta: { type: 'thinking_delta', thinking: delta }
+              })
+            }
+          }
+        }
+        for (const part of parts) {
+          const functionCall = part?.functionCall
+          if (!functionCall?.name) {
+            continue
+          }
+
+          const id = typeof functionCall.id === 'string' && functionCall.id ? functionCall.id : null
+          const { args, json, canContinue } = resolveFunctionCallArgs(functionCall)
+
+          // 若没有 id（无法聚合多段 args），只在拿到可用 args 时才 emit
+          if (!id) {
+            const finalArgs = args || {}
+            const toolKey = `${functionCall.name}:${stableJsonStringify(finalArgs)}`
+            if (emittedToolCallKeys.has(toolKey)) {
+              continue
+            }
+            emittedToolCallKeys.add(toolKey)
+
+            if (currentBlockType === 'text' || currentBlockType === 'thinking') {
+              stopCurrentBlock()
+            }
+            currentBlockType = 'tool_use'
+            emitToolUseBlock(functionCall.name, finalArgs, null)
+            continue
+          }
+
+          const pending = pendingToolCallsById.get(id) || {
+            id,
+            name: functionCall.name,
+            args: null,
+            argsJson: ''
+          }
+          pending.name = functionCall.name
+          if (args) {
+            pending.args = args
+            pending.argsJson = ''
+          } else if (json) {
+            pending.argsJson += json
+          }
+          pendingToolCallsById.set(id, pending)
+
+          // 能确定“本次已完整”时再 emit；否则继续等待后续 SSE 事件补全 args。
+          if (!canContinue) {
+            flushPendingToolCallById(id)
+          }
+        }
+
+        if (thoughtSignature && canStartThinkingBlock(true)) {
+          let delta = ''
+          if (thoughtSignature.startsWith(emittedThoughtSignature)) {
+            delta = thoughtSignature.slice(emittedThoughtSignature.length)
+          } else if (thoughtSignature !== emittedThoughtSignature) {
+            delta = thoughtSignature
+          }
+          if (delta) {
+            switchBlockType('thinking')
+            writeAnthropicSseEvent(res, 'content_block_delta', {
+              type: 'content_block_delta',
+              index: currentIndex,
+              delta: { type: 'signature_delta', signature: delta }
+            })
+            emittedThoughtSignature = thoughtSignature
+          }
+        }
+
+        const fullThought = extractGeminiThoughtText(payload)
+        if (
+          fullThought &&
+          canStartThinkingBlock(Boolean(thoughtSignature || emittedThoughtSignature))
+        ) {
+          let delta = ''
+          if (fullThought.startsWith(emittedThinking)) {
+            delta = fullThought.slice(emittedThinking.length)
+          } else {
+            delta = fullThought
+          }
+          if (delta) {
+            switchBlockType('thinking')
+            emittedThinking = fullThought
+            writeAnthropicSseEvent(res, 'content_block_delta', {
+              type: 'content_block_delta',
+              index: currentIndex,
+              delta: { type: 'thinking_delta', thinking: delta }
+            })
+            // [签名缓存] 当 thinking 内容和签名都有时，缓存供后续请求使用
+            if (isAntigravityVendor && sessionHash && emittedThoughtSignature) {
+              signatureCache.cacheSignature(sessionHash, fullThought, emittedThoughtSignature)
+            }
+          }
+        }
+
+        const fullText = extractGeminiText(payload)
+        if (fullText) {
+          let delta = ''
+          if (fullText.startsWith(emittedText)) {
+            delta = fullText.slice(emittedText.length)
+          } else {
+            delta = fullText
+          }
+          if (delta) {
+            switchBlockType('text')
+            emittedText = fullText
+            writeAnthropicSseEvent(res, 'content_block_delta', {
+              type: 'content_block_delta',
+              index: currentIndex,
+              delta: { type: 'text_delta', text: delta }
+            })
+          }
+        }
+      }
+    })
+
+    streamResponse.on('end', () => {
+      if (activityTimeout) {
+        clearTimeout(activityTimeout)
+      } // <--- 【新增】正常结束，取消报警
+
+      finalize().catch((e) => logger.error('Failed to finalize Anthropic SSE response:', e))
+    })
+
+    streamResponse.on('error', (error) => {
+      if (activityTimeout) {
+        clearTimeout(activityTimeout)
+      } // <--- 【新增】报错了，取消报警
+
+      if (finished) {
+        return
+      }
+      const sanitized = sanitizeUpstreamError(error)
+      logger.error('Upstream Gemini stream error (via /v1/messages):', sanitized)
+      writeAnthropicSseEvent(
+        res,
+        'error',
+        buildAnthropicError(sanitized.upstreamMessage || sanitized.message)
+      )
+      res.end()
+    })
+
+    return undefined
+  } catch (error) {
+    // ============================================================
+    // [大东修复 3.0] 彻底防止 JSON 循环引用导致服务崩溃
+    // ============================================================
+
+    // 1. 使用 util.inspect 安全地将错误对象转为字符串，不使用 JSON.stringify
+    const safeErrorDetails = util.inspect(error, {
+      showHidden: false,
+      depth: 2,
+      colors: false,
+      breakLength: Infinity
+    })
+
+    // 2. 打印安全日志，绝对不会崩
+    logger.error(`❌ [Critical] Failed to start Gemini stream. 错误详情:\n${safeErrorDetails}`)
+
+    const sanitized = sanitizeUpstreamError(error)
+
+    // 3. 特殊处理 Antigravity 的参数错误 (400)，输出详细请求信息便于调试
+    if (
+      vendor === 'antigravity' &&
+      effectiveModel.includes('claude') &&
+      isInvalidAntigravityArgumentError(sanitized)
+    ) {
+      logger.warn('⚠️ Antigravity Claude invalid argument detected', {
+        requestId: req.requestId,
+        ...summarizeAntigravityRequestForDebug(requestData),
+        statusCode: sanitized.statusCode,
+        upstreamType: sanitized.upstreamType,
+        upstreamMessage: sanitized.upstreamMessage || sanitized.message
+      })
+    }
+
+    // 4. 确保返回 JSON 响应给客户端 (让客户端知道出错了并重试)
+    if (!res.headersSent) {
+      // 记录非流式响应日志
+      dumpAnthropicNonStreamResponse(
+        req,
+        sanitized.statusCode || 502,
+        buildAnthropicError(sanitized.upstreamMessage || sanitized.message),
+        { vendor, accountId, effectiveModel, forcedVendor: vendor, upstreamError: sanitized }
+      )
+
+      return res
+        .status(sanitized.statusCode || 502)
+        .json(buildAnthropicError(sanitized.upstreamMessage || sanitized.message))
+    }
+
+    // 5. 如果头已经发了，走 SSE 发送错误
+    writeAnthropicSseEvent(
+      res,
+      'error',
+      buildAnthropicError(sanitized.upstreamMessage || sanitized.message)
+    )
+    res.end()
+    return undefined
+  }
+}
+
+async function handleAnthropicCountTokensToGemini(req, res, { vendor }) {
+  if (!SUPPORTED_VENDORS.has(vendor)) {
+    return res.status(400).json(buildAnthropicError(`Unsupported vendor: ${vendor}`))
+  }
+
+  const sessionHash = sessionHelper.generateSessionHash(req.body)
+
+  const model = (req.body?.model || '').trim()
+  if (!model) {
+    return res.status(400).json(buildAnthropicError('Missing model'))
+  }
+
+  let accountSelection
+  try {
+    accountSelection = await unifiedGeminiScheduler.selectAccountForApiKey(
+      req.apiKey,
+      sessionHash,
+      model,
+      { oauthProvider: vendor }
+    )
+  } catch (error) {
+    logger.error('Failed to select Gemini account (count_tokens):', error)
+    return res
+      .status(503)
+      .json(buildAnthropicError(error.message || 'No available Gemini accounts'))
+  }
+
+  const { accountId, accountType } = accountSelection
+  if (accountType !== 'gemini') {
+    return res
+      .status(400)
+      .json(buildAnthropicError('Only Gemini OAuth accounts are supported for this vendor'))
+  }
+
+  const account = await geminiAccountService.getAccount(accountId)
+  if (!account) {
+    return res.status(503).json(buildAnthropicError('Gemini OAuth account not found'))
+  }
+
+  await geminiAccountService.markAccountUsed(account.id)
+
+  let proxyConfig = null
+  if (account.proxy) {
+    try {
+      proxyConfig = typeof account.proxy === 'string' ? JSON.parse(account.proxy) : account.proxy
+    } catch (e) {
+      logger.warn('Failed to parse proxy configuration:', e)
+    }
+  }
+
+  const client = await geminiAccountService.getOauthClient(
+    account.accessToken,
+    account.refreshToken,
+    proxyConfig,
+    account.oauthProvider
+  )
+
+  const normalizedMessages = normalizeAnthropicMessages(req.body.messages || [], { vendor })
+  const toolUseIdToName = buildToolUseIdToNameMap(normalizedMessages || [])
+
+  let canEnableThinking = false
+  if (vendor === 'antigravity' && req.body?.thinking?.type === 'enabled') {
+    const budgetRaw = Number(req.body.thinking.budget_tokens)
+    if (Number.isFinite(budgetRaw)) {
+      canEnableThinking = canEnableAntigravityThinking(normalizedMessages)
+    }
+  }
+
+  const contents = convertAnthropicMessagesToGeminiContents(
+    normalizedMessages || [],
+    toolUseIdToName,
+    {
+      vendor,
+      stripThinking: vendor === 'antigravity' && !canEnableThinking,
+      sessionId: sessionHash
+    }
+  )
+
+  try {
+    const countResult =
+      vendor === 'antigravity'
+        ? await geminiAccountService.countTokensAntigravity(client, contents, model, proxyConfig)
+        : await geminiAccountService.countTokens(client, contents, model, proxyConfig)
+
+    const totalTokens = countResult?.totalTokens || 0
+    return res.status(200).json({ input_tokens: totalTokens })
+  } catch (error) {
+    const sanitized = sanitizeUpstreamError(error)
+    logger.error('Upstream token count error (via /v1/messages/count_tokens):', sanitized)
+    return res
+      .status(sanitized.statusCode || 502)
+      .json(buildAnthropicError(sanitized.upstreamMessage || sanitized.message))
+  }
+}
+
+// ============================================================================
+// 模块导出
+// ============================================================================
+
+module.exports = {
+  // 主入口：处理 /v1/messages 请求
+  handleAnthropicMessagesToGemini,
+  // 辅助入口：处理 /v1/messages/count_tokens 请求
+  handleAnthropicCountTokensToGemini
+}
diff --git a/src/services/antigravityClient.js b/src/services/antigravityClient.js
new file mode 100644
index 00000000..9ce1eb93
--- /dev/null
+++ b/src/services/antigravityClient.js
@@ -0,0 +1,595 @@
+const axios = require('axios')
+const https = require('https')
+const { v4: uuidv4 } = require('uuid')
+
+const ProxyHelper = require('../utils/proxyHelper')
+const logger = require('../utils/logger')
+const {
+  mapAntigravityUpstreamModel,
+  normalizeAntigravityModelInput,
+  getAntigravityModelMetadata
+} = require('../utils/antigravityModel')
+const { cleanJsonSchemaForGemini } = require('../utils/geminiSchemaCleaner')
+const { dumpAntigravityUpstreamRequest } = require('../utils/antigravityUpstreamDump')
+
+const keepAliveAgent = new https.Agent({
+  keepAlive: true,
+  keepAliveMsecs: 30000,
+  timeout: 120000,
+  maxSockets: 100,
+  maxFreeSockets: 10
+})
+
+function getAntigravityApiUrl() {
+  return process.env.ANTIGRAVITY_API_URL || 'https://daily-cloudcode-pa.sandbox.googleapis.com'
+}
+
+function normalizeBaseUrl(url) {
+  const str = String(url || '').trim()
+  return str.endsWith('/') ? str.slice(0, -1) : str
+}
+
+function getAntigravityApiUrlCandidates() {
+  const configured = normalizeBaseUrl(getAntigravityApiUrl())
+  const daily = 'https://daily-cloudcode-pa.sandbox.googleapis.com'
+  const prod = 'https://cloudcode-pa.googleapis.com'
+
+  // 若显式配置了自定义 base url，则只使用该地址（不做 fallback，避免意外路由到别的环境）。
+  if (process.env.ANTIGRAVITY_API_URL) {
+    return [configured]
+  }
+
+  // 默认行为：优先 daily（与旧逻辑一致），失败时再尝试 prod（对齐 CLIProxyAPI）。
+  if (configured === normalizeBaseUrl(daily)) {
+    return [configured, prod]
+  }
+  if (configured === normalizeBaseUrl(prod)) {
+    return [configured, daily]
+  }
+
+  return [configured, prod, daily].filter(Boolean)
+}
+
+function getAntigravityHeaders(accessToken, baseUrl) {
+  const resolvedBaseUrl = baseUrl || getAntigravityApiUrl()
+  let host = 'daily-cloudcode-pa.sandbox.googleapis.com'
+  try {
+    host = new URL(resolvedBaseUrl).host || host
+  } catch (e) {
+    // ignore
+  }
+
+  return {
+    Host: host,
+    'User-Agent': process.env.ANTIGRAVITY_USER_AGENT || 'antigravity/1.11.3 windows/amd64',
+    Authorization: `Bearer ${accessToken}`,
+    'Content-Type': 'application/json',
+    'Accept-Encoding': 'gzip',
+    requestType: 'agent'
+  }
+}
+
+function generateAntigravityProjectId() {
+  return `ag-${uuidv4().replace(/-/g, '').slice(0, 16)}`
+}
+
+function generateAntigravitySessionId() {
+  return `sess-${uuidv4()}`
+}
+
+function resolveAntigravityProjectId(projectId, requestData) {
+  const candidate = projectId || requestData?.project || requestData?.projectId || null
+  return candidate || generateAntigravityProjectId()
+}
+
+function resolveAntigravitySessionId(sessionId, requestData) {
+  const candidate =
+    sessionId || requestData?.request?.sessionId || requestData?.request?.session_id || null
+  return candidate || generateAntigravitySessionId()
+}
+
+function buildAntigravityEnvelope({ requestData, projectId, sessionId, userPromptId }) {
+  const model = mapAntigravityUpstreamModel(requestData?.model)
+  const resolvedProjectId = resolveAntigravityProjectId(projectId, requestData)
+  const resolvedSessionId = resolveAntigravitySessionId(sessionId, requestData)
+  const requestPayload = {
+    ...(requestData?.request || {})
+  }
+
+  if (requestPayload.session_id !== undefined) {
+    delete requestPayload.session_id
+  }
+  requestPayload.sessionId = resolvedSessionId
+
+  const envelope = {
+    project: resolvedProjectId,
+    requestId: `req-${uuidv4()}`,
+    model,
+    userAgent: 'antigravity',
+    request: {
+      ...requestPayload
+    }
+  }
+
+  if (userPromptId) {
+    envelope.user_prompt_id = userPromptId
+    envelope.userPromptId = userPromptId
+  }
+
+  normalizeAntigravityEnvelope(envelope)
+  return { model, envelope }
+}
+
+function normalizeAntigravityThinking(model, requestPayload) {
+  if (!requestPayload || typeof requestPayload !== 'object') {
+    return
+  }
+
+  const { generationConfig } = requestPayload
+  if (!generationConfig || typeof generationConfig !== 'object') {
+    return
+  }
+  const { thinkingConfig } = generationConfig
+  if (!thinkingConfig || typeof thinkingConfig !== 'object') {
+    return
+  }
+
+  const normalizedModel = normalizeAntigravityModelInput(model)
+  if (thinkingConfig.thinkingLevel && !normalizedModel.startsWith('gemini-3-')) {
+    delete thinkingConfig.thinkingLevel
+  }
+
+  const metadata = getAntigravityModelMetadata(normalizedModel)
+  if (metadata && !metadata.thinking) {
+    delete generationConfig.thinkingConfig
+    return
+  }
+  if (!metadata || !metadata.thinking) {
+    return
+  }
+
+  const budgetRaw = Number(thinkingConfig.thinkingBudget)
+  if (!Number.isFinite(budgetRaw)) {
+    return
+  }
+  let budget = Math.trunc(budgetRaw)
+
+  const minBudget = Number.isFinite(metadata.thinking.min) ? metadata.thinking.min : null
+  const maxBudget = Number.isFinite(metadata.thinking.max) ? metadata.thinking.max : null
+
+  if (maxBudget !== null && budget > maxBudget) {
+    budget = maxBudget
+  }
+
+  let effectiveMax = Number.isFinite(generationConfig.maxOutputTokens)
+    ? generationConfig.maxOutputTokens
+    : null
+  let setDefaultMax = false
+  if (!effectiveMax && metadata.maxCompletionTokens) {
+    effectiveMax = metadata.maxCompletionTokens
+    setDefaultMax = true
+  }
+
+  if (effectiveMax && budget >= effectiveMax) {
+    budget = Math.max(0, effectiveMax - 1)
+  }
+
+  if (minBudget !== null && budget >= 0 && budget < minBudget) {
+    delete generationConfig.thinkingConfig
+    return
+  }
+
+  thinkingConfig.thinkingBudget = budget
+  if (setDefaultMax) {
+    generationConfig.maxOutputTokens = effectiveMax
+  }
+}
+
+function normalizeAntigravityEnvelope(envelope) {
+  if (!envelope || typeof envelope !== 'object') {
+    return
+  }
+  const model = String(envelope.model || '')
+  const requestPayload = envelope.request
+  if (!requestPayload || typeof requestPayload !== 'object') {
+    return
+  }
+
+  if (requestPayload.safetySettings !== undefined) {
+    delete requestPayload.safetySettings
+  }
+
+  // 对齐 CLIProxyAPI：有 tools 时默认启用 VALIDATED（除非显式 NONE）
+  if (Array.isArray(requestPayload.tools) && requestPayload.tools.length > 0) {
+    const existing = requestPayload?.toolConfig?.functionCallingConfig || null
+    if (existing?.mode !== 'NONE') {
+      const nextCfg = { ...(existing || {}), mode: 'VALIDATED' }
+      requestPayload.toolConfig = { functionCallingConfig: nextCfg }
+    }
+  }
+
+  // 对齐 CLIProxyAPI：非 Claude 模型移除 maxOutputTokens（Antigravity 环境不稳定）
+  normalizeAntigravityThinking(model, requestPayload)
+  if (!model.includes('claude')) {
+    if (requestPayload.generationConfig && typeof requestPayload.generationConfig === 'object') {
+      delete requestPayload.generationConfig.maxOutputTokens
+    }
+    return
+  }
+
+  // Claude 模型：parametersJsonSchema -> parameters + schema 清洗（避免 $schema / additionalProperties 等触发 400）
+  if (!Array.isArray(requestPayload.tools)) {
+    return
+  }
+
+  for (const tool of requestPayload.tools) {
+    if (!tool || typeof tool !== 'object') {
+      continue
+    }
+    const decls = Array.isArray(tool.functionDeclarations)
+      ? tool.functionDeclarations
+      : Array.isArray(tool.function_declarations)
+        ? tool.function_declarations
+        : null
+
+    if (!decls) {
+      continue
+    }
+
+    for (const decl of decls) {
+      if (!decl || typeof decl !== 'object') {
+        continue
+      }
+      let schema =
+        decl.parametersJsonSchema !== undefined ? decl.parametersJsonSchema : decl.parameters
+      if (typeof schema === 'string' && schema) {
+        try {
+          schema = JSON.parse(schema)
+        } catch (_) {
+          schema = null
+        }
+      }
+
+      decl.parameters = cleanJsonSchemaForGemini(schema)
+      delete decl.parametersJsonSchema
+    }
+  }
+}
+
+async function request({
+  accessToken,
+  proxyConfig = null,
+  requestData,
+  projectId = null,
+  sessionId = null,
+  userPromptId = null,
+  stream = false,
+  signal = null,
+  params = null,
+  timeoutMs = null
+}) {
+  const { model, envelope } = buildAntigravityEnvelope({
+    requestData,
+    projectId,
+    sessionId,
+    userPromptId
+  })
+
+  const proxyAgent = ProxyHelper.createProxyAgent(proxyConfig)
+  let endpoints = getAntigravityApiUrlCandidates()
+
+  // Claude 模型在 sandbox(daily) 环境下对 tool_use/tool_result 的兼容性不稳定，优先走 prod。
+  // 保持可配置优先：若用户显式设置了 ANTIGRAVITY_API_URL，则不改变顺序。
+  if (!process.env.ANTIGRAVITY_API_URL && String(model).includes('claude')) {
+    const prodHost = 'cloudcode-pa.googleapis.com'
+    const dailyHost = 'daily-cloudcode-pa.sandbox.googleapis.com'
+    const ordered = []
+    for (const u of endpoints) {
+      if (String(u).includes(prodHost)) {
+        ordered.push(u)
+      }
+    }
+    for (const u of endpoints) {
+      if (!String(u).includes(prodHost)) {
+        ordered.push(u)
+      }
+    }
+    // 去重并保持 prod -> daily 的稳定顺序
+    endpoints = Array.from(new Set(ordered)).sort((a, b) => {
+      const av = String(a)
+      const bv = String(b)
+      const aScore = av.includes(prodHost) ? 0 : av.includes(dailyHost) ? 1 : 2
+      const bScore = bv.includes(prodHost) ? 0 : bv.includes(dailyHost) ? 1 : 2
+      return aScore - bScore
+    })
+  }
+
+  const isRetryable = (error) => {
+    // 处理网络层面的连接重置或超时（常见于长请求被中间节点切断）
+    if (error.code === 'ECONNRESET' || error.code === 'ETIMEDOUT') {
+      return true
+    }
+
+    const status = error?.response?.status
+    if (status === 429) {
+      return true
+    }
+
+    // 400/404 的 “model unavailable / not found” 在不同环境间可能表现不同，允许 fallback。
+    if (status === 400 || status === 404) {
+      const data = error?.response?.data
+      const safeToString = (value) => {
+        if (typeof value === 'string') {
+          return value
+        }
+        if (value === null || value === undefined) {
+          return ''
+        }
+        // axios responseType=stream 时，data 可能是 stream（存在循环引用），不能 JSON.stringify
+        if (typeof value === 'object' && typeof value.pipe === 'function') {
+          return ''
+        }
+        if (Buffer.isBuffer(value)) {
+          try {
+            return value.toString('utf8')
+          } catch (_) {
+            return ''
+          }
+        }
+        if (typeof value === 'object') {
+          try {
+            return JSON.stringify(value)
+          } catch (_) {
+            return ''
+          }
+        }
+        return String(value)
+      }
+
+      const text = safeToString(data)
+      const msg = (text || '').toLowerCase()
+      return (
+        msg.includes('requested model is currently unavailable') ||
+        msg.includes('tool_use') ||
+        msg.includes('tool_result') ||
+        msg.includes('requested entity was not found') ||
+        msg.includes('not found')
+      )
+    }
+
+    return false
+  }
+
+  let lastError = null
+  let retriedAfterDelay = false
+
+  const attemptRequest = async () => {
+    for (let index = 0; index < endpoints.length; index += 1) {
+      const baseUrl = endpoints[index]
+      const url = `${baseUrl}/v1internal:${stream ? 'streamGenerateContent' : 'generateContent'}`
+
+      const axiosConfig = {
+        url,
+        method: 'POST',
+        ...(params ? { params } : {}),
+        headers: getAntigravityHeaders(accessToken, baseUrl),
+        data: envelope,
+        timeout: stream ? 0 : timeoutMs || 600000,
+        ...(stream ? { responseType: 'stream' } : {})
+      }
+
+      if (proxyAgent) {
+        axiosConfig.httpsAgent = proxyAgent
+        axiosConfig.proxy = false
+        if (index === 0) {
+          logger.info(
+            `🌐 Using proxy for Antigravity ${stream ? 'streamGenerateContent' : 'generateContent'}: ${ProxyHelper.getProxyDescription(proxyConfig)}`
+          )
+        }
+      } else {
+        axiosConfig.httpsAgent = keepAliveAgent
+      }
+
+      if (signal) {
+        axiosConfig.signal = signal
+      }
+
+      try {
+        dumpAntigravityUpstreamRequest({
+          requestId: envelope.requestId,
+          model,
+          stream,
+          url,
+          baseUrl,
+          params: axiosConfig.params || null,
+          headers: axiosConfig.headers,
+          envelope
+        }).catch(() => {})
+        const response = await axios(axiosConfig)
+        return { model, response }
+      } catch (error) {
+        lastError = error
+        const status = error?.response?.status || null
+
+        const hasNext = index + 1 < endpoints.length
+        if (hasNext && isRetryable(error)) {
+          logger.warn('⚠️ Antigravity upstream error, retrying with fallback baseUrl', {
+            status,
+            from: baseUrl,
+            to: endpoints[index + 1],
+            model
+          })
+          continue
+        }
+        throw error
+      }
+    }
+
+    throw lastError || new Error('Antigravity request failed')
+  }
+
+  try {
+    return await attemptRequest()
+  } catch (error) {
+    // 如果是 429 RESOURCE_EXHAUSTED 且尚未重试过，等待 2 秒后重试一次
+    const status = error?.response?.status
+    if (status === 429 && !retriedAfterDelay && !signal?.aborted) {
+      const data = error?.response?.data
+
+      // 安全地将 data 转为字符串，避免 stream 对象导致循环引用崩溃
+      const safeDataToString = (value) => {
+        if (typeof value === 'string') {
+          return value
+        }
+        if (value === null || value === undefined) {
+          return ''
+        }
+        // stream 对象存在循环引用，不能 JSON.stringify
+        if (typeof value === 'object' && typeof value.pipe === 'function') {
+          return ''
+        }
+        if (Buffer.isBuffer(value)) {
+          try {
+            return value.toString('utf8')
+          } catch (_) {
+            return ''
+          }
+        }
+        if (typeof value === 'object') {
+          try {
+            return JSON.stringify(value)
+          } catch (_) {
+            return ''
+          }
+        }
+        return String(value)
+      }
+
+      const msg = safeDataToString(data)
+      if (
+        msg.toLowerCase().includes('resource_exhausted') ||
+        msg.toLowerCase().includes('no capacity')
+      ) {
+        retriedAfterDelay = true
+        logger.warn('⏳ Antigravity 429 RESOURCE_EXHAUSTED, waiting 2s before retry', { model })
+        await new Promise((resolve) => setTimeout(resolve, 2000))
+        return await attemptRequest()
+      }
+    }
+    throw error
+  }
+}
+
+async function fetchAvailableModels({ accessToken, proxyConfig = null, timeoutMs = 30000 }) {
+  const proxyAgent = ProxyHelper.createProxyAgent(proxyConfig)
+  const endpoints = getAntigravityApiUrlCandidates()
+
+  let lastError = null
+  for (let index = 0; index < endpoints.length; index += 1) {
+    const baseUrl = endpoints[index]
+    const url = `${baseUrl}/v1internal:fetchAvailableModels`
+
+    const axiosConfig = {
+      url,
+      method: 'POST',
+      headers: getAntigravityHeaders(accessToken, baseUrl),
+      data: {},
+      timeout: timeoutMs
+    }
+
+    if (proxyAgent) {
+      axiosConfig.httpsAgent = proxyAgent
+      axiosConfig.proxy = false
+      if (index === 0) {
+        logger.info(
+          `🌐 Using proxy for Antigravity fetchAvailableModels: ${ProxyHelper.getProxyDescription(proxyConfig)}`
+        )
+      }
+    } else {
+      axiosConfig.httpsAgent = keepAliveAgent
+    }
+
+    try {
+      const response = await axios(axiosConfig)
+      return response.data
+    } catch (error) {
+      lastError = error
+      const status = error?.response?.status
+      const hasNext = index + 1 < endpoints.length
+      if (hasNext && (status === 429 || status === 404)) {
+        continue
+      }
+      throw error
+    }
+  }
+
+  throw lastError || new Error('Antigravity fetchAvailableModels failed')
+}
+
+async function countTokens({
+  accessToken,
+  proxyConfig = null,
+  contents,
+  model,
+  timeoutMs = 30000
+}) {
+  const upstreamModel = mapAntigravityUpstreamModel(model)
+
+  const proxyAgent = ProxyHelper.createProxyAgent(proxyConfig)
+  const endpoints = getAntigravityApiUrlCandidates()
+
+  let lastError = null
+  for (let index = 0; index < endpoints.length; index += 1) {
+    const baseUrl = endpoints[index]
+    const url = `${baseUrl}/v1internal:countTokens`
+    const axiosConfig = {
+      url,
+      method: 'POST',
+      headers: getAntigravityHeaders(accessToken, baseUrl),
+      data: {
+        request: {
+          model: `models/${upstreamModel}`,
+          contents
+        }
+      },
+      timeout: timeoutMs
+    }
+
+    if (proxyAgent) {
+      axiosConfig.httpsAgent = proxyAgent
+      axiosConfig.proxy = false
+      if (index === 0) {
+        logger.info(
+          `🌐 Using proxy for Antigravity countTokens: ${ProxyHelper.getProxyDescription(proxyConfig)}`
+        )
+      }
+    } else {
+      axiosConfig.httpsAgent = keepAliveAgent
+    }
+
+    try {
+      const response = await axios(axiosConfig)
+      return response.data
+    } catch (error) {
+      lastError = error
+      const status = error?.response?.status
+      const hasNext = index + 1 < endpoints.length
+      if (hasNext && (status === 429 || status === 404)) {
+        continue
+      }
+      throw error
+    }
+  }
+
+  throw lastError || new Error('Antigravity countTokens failed')
+}
+
+module.exports = {
+  getAntigravityApiUrl,
+  getAntigravityApiUrlCandidates,
+  getAntigravityHeaders,
+  buildAntigravityEnvelope,
+  request,
+  fetchAvailableModels,
+  countTokens
+}
diff --git a/src/services/antigravityRelayService.js b/src/services/antigravityRelayService.js
new file mode 100644
index 00000000..6a3378f1
--- /dev/null
+++ b/src/services/antigravityRelayService.js
@@ -0,0 +1,173 @@
+const apiKeyService = require('./apiKeyService')
+const { convertMessagesToGemini, convertGeminiResponse } = require('./geminiRelayService')
+const { normalizeAntigravityModelInput } = require('../utils/antigravityModel')
+const antigravityClient = require('./antigravityClient')
+
+function buildRequestData({ messages, model, temperature, maxTokens, sessionId }) {
+  const requestedModel = normalizeAntigravityModelInput(model)
+  const { contents, systemInstruction } = convertMessagesToGemini(messages)
+
+  const requestData = {
+    model: requestedModel,
+    request: {
+      contents,
+      generationConfig: {
+        temperature,
+        maxOutputTokens: maxTokens,
+        candidateCount: 1,
+        topP: 0.95,
+        topK: 40
+      },
+      ...(sessionId ? { sessionId } : {})
+    }
+  }
+
+  if (systemInstruction) {
+    requestData.request.systemInstruction = { parts: [{ text: systemInstruction }] }
+  }
+
+  return requestData
+}
+
+async function* handleStreamResponse(response, model, apiKeyId, accountId) {
+  let buffer = ''
+  let totalUsage = {
+    promptTokenCount: 0,
+    candidatesTokenCount: 0,
+    totalTokenCount: 0
+  }
+  let usageRecorded = false
+
+  try {
+    for await (const chunk of response.data) {
+      buffer += chunk.toString()
+
+      const lines = buffer.split('\n')
+      buffer = lines.pop() || ''
+
+      for (const line of lines) {
+        if (!line.trim()) {
+          continue
+        }
+
+        let jsonData = line
+        if (line.startsWith('data: ')) {
+          jsonData = line.substring(6).trim()
+        }
+
+        if (!jsonData || jsonData === '[DONE]') {
+          continue
+        }
+
+        try {
+          const data = JSON.parse(jsonData)
+          const payload = data?.response || data
+
+          if (payload?.usageMetadata) {
+            totalUsage = payload.usageMetadata
+          }
+
+          const openaiChunk = convertGeminiResponse(payload, model, true)
+          if (openaiChunk) {
+            yield `data: ${JSON.stringify(openaiChunk)}\n\n`
+            const finishReason = openaiChunk.choices?.[0]?.finish_reason
+            if (finishReason === 'stop') {
+              yield 'data: [DONE]\n\n'
+
+              if (apiKeyId && totalUsage.totalTokenCount > 0) {
+                await apiKeyService.recordUsage(
+                  apiKeyId,
+                  totalUsage.promptTokenCount || 0,
+                  totalUsage.candidatesTokenCount || 0,
+                  0,
+                  0,
+                  model,
+                  accountId,
+                  'gemini'
+                )
+                usageRecorded = true
+              }
+              return
+            }
+          }
+        } catch (e) {
+          // ignore chunk parse errors
+        }
+      }
+    }
+  } finally {
+    if (!usageRecorded && apiKeyId && totalUsage.totalTokenCount > 0) {
+      await apiKeyService.recordUsage(
+        apiKeyId,
+        totalUsage.promptTokenCount || 0,
+        totalUsage.candidatesTokenCount || 0,
+        0,
+        0,
+        model,
+        accountId,
+        'gemini'
+      )
+    }
+  }
+}
+
+async function sendAntigravityRequest({
+  messages,
+  model,
+  temperature = 0.7,
+  maxTokens = 4096,
+  stream = false,
+  accessToken,
+  proxy,
+  apiKeyId,
+  signal,
+  projectId,
+  accountId = null
+}) {
+  const requestedModel = normalizeAntigravityModelInput(model)
+
+  const requestData = buildRequestData({
+    messages,
+    model: requestedModel,
+    temperature,
+    maxTokens,
+    sessionId: apiKeyId
+  })
+
+  const { response } = await antigravityClient.request({
+    accessToken,
+    proxyConfig: proxy,
+    requestData,
+    projectId,
+    sessionId: apiKeyId,
+    stream,
+    signal,
+    params: { alt: 'sse' }
+  })
+
+  if (stream) {
+    return handleStreamResponse(response, requestedModel, apiKeyId, accountId)
+  }
+
+  const payload = response.data?.response || response.data
+  const openaiResponse = convertGeminiResponse(payload, requestedModel, false)
+
+  if (apiKeyId && openaiResponse?.usage) {
+    await apiKeyService.recordUsage(
+      apiKeyId,
+      openaiResponse.usage.prompt_tokens || 0,
+      openaiResponse.usage.completion_tokens || 0,
+      0,
+      0,
+      requestedModel,
+      accountId,
+      'gemini'
+    )
+  }
+
+  return openaiResponse
+}
+
+module.exports = {
+  sendAntigravityRequest
+}
diff --git a/src/services/apiKeyService.js b/src/services/apiKeyService.js
index ed07ec01..b640bd6c 100644
--- a/src/services/apiKeyService.js
+++ b/src/services/apiKeyService.js
@@ -38,6 +38,51 @@ const ACCOUNT_CATEGORY_MAP = {
   droid: 'droid'
 }
 
+/**
+ * 规范化权限数据，兼容旧格式（字符串）和新格式（数组）
+ * @param {string|array} permissions - 权限数据
+ * @returns {array} - 权限数组，空数组表示全部服务
+ */
+function normalizePermissions(permissions) {
+  if (!permissions) {
+    return [] // 空 = 全部服务
+  }
+  if (Array.isArray(permissions)) {
+    return permissions
+  }
+  // 尝试解析 JSON 字符串（新格式存储）
+  if (typeof permissions === 'string') {
+    if (permissions.startsWith('[')) {
+      try {
+        const parsed = JSON.parse(permissions)
+        if (Array.isArray(parsed)) {
+          return parsed
+        }
+      } catch (e) {
+        // 解析失败，继续处理为普通字符串
+      }
+    }
+    // 旧格式 'all' 转为空数组
+    if (permissions === 'all') {
+      return []
+    }
+    // 旧单个字符串转为数组
+    return [permissions]
+  }
+  return []
+}
+
+/**
+ * 检查是否有访问特定服务的权限
+ * @param {string|array} permissions - 权限数据
+ * @param {string} service - 服务名称（claude/gemini/openai/droid）
+ * @returns {boolean} - 是否有权限
+ */
+function hasPermission(permissions, service) {
+  const perms = normalizePermissions(permissions)
+  return perms.length === 0 || perms.includes(service) // 空数组 = 全部服务
+}
+
 function normalizeAccountTypeKey(type) {
   if (!type) {
     return null
@@ -90,7 +135,7 @@ class ApiKeyService {
       azureOpenaiAccountId = null,
       bedrockAccountId = null, // 添加 Bedrock 账号ID支持
       droidAccountId = null,
-      permissions = 'all', // 可选值：'claude'、'gemini'、'openai'、'droid' 或 'all'，聚合Key为数组
+      permissions = [], // 数组格式，空数组表示全部服务，如 ['claude', 'gemini']
       isActive = true,
       concurrencyLimit = 0,
       rateLimitWindow = null,
@@ -108,12 +153,7 @@ class ApiKeyService {
       activationUnit = 'days', // 新增：激活时间单位 'hours' 或 'days'
       expirationMode = 'fixed', // 新增：过期模式 'fixed'(固定时间) 或 'activation'(首次使用后激活)
       icon = '', // 新增：图标（base64编码）
-      // 聚合 Key 相关字段
-      isAggregated = false, // 是否为聚合 Key
-      quotaLimit = 0, // CC 额度上限（聚合 Key 使用）
-      quotaUsed = 0, // 已消耗 CC 额度
-      serviceQuotaLimits = {}, // 分服务额度限制 { claude: 50, codex: 30 }
-      serviceQuotaUsed = {} // 分服务已消耗额度
+      serviceRates = {} // API Key 级别服务倍率覆盖
     } = options
 
     // 生成简单的API Key (64字符十六进制)
@@ -121,15 +161,8 @@ class ApiKeyService {
     const keyId = uuidv4()
     const hashedKey = this._hashApiKey(apiKey)
 
-    // 处理 permissions：聚合 Key 使用数组，传统 Key 使用字符串
+    // 处理 permissions
     let permissionsValue = permissions
-    if (isAggregated && !Array.isArray(permissions)) {
-      // 聚合 Key 但 permissions 不是数组，转换为数组
-      permissionsValue =
-        permissions === 'all'
-          ? ['claude', 'codex', 'gemini', 'droid', 'bedrock', 'azure', 'ccr']
-          : [permissions]
-    }
 
     const keyData = {
       id: keyId,
@@ -149,9 +182,7 @@ class ApiKeyService {
       azureOpenaiAccountId: azureOpenaiAccountId || '',
       bedrockAccountId: bedrockAccountId || '', // 添加 Bedrock 账号ID
       droidAccountId: droidAccountId || '',
-      permissions: Array.isArray(permissionsValue)
-        ? JSON.stringify(permissionsValue)
-        : permissionsValue || 'all',
+      permissions: JSON.stringify(normalizePermissions(permissions)),
       enableModelRestriction: String(enableModelRestriction),
       restrictedModels: JSON.stringify(restrictedModels || []),
       enableClientRestriction: String(enableClientRestriction || false),
@@ -172,12 +203,7 @@ class ApiKeyService {
       userId: options.userId || '',
       userUsername: options.userUsername || '',
       icon: icon || '', // 新增：图标（base64编码）
-      // 聚合 Key 相关字段
-      isAggregated: String(isAggregated),
-      quotaLimit: String(quotaLimit || 0),
-      quotaUsed: String(quotaUsed || 0),
-      serviceQuotaLimits: JSON.stringify(serviceQuotaLimits || {}),
-      serviceQuotaUsed: JSON.stringify(serviceQuotaUsed || {})
+      serviceRates: JSON.stringify(serviceRates || {}) // API Key 级别服务倍率
     }
 
     // 保存API Key数据并建立哈希映射
@@ -207,9 +233,7 @@ class ApiKeyService {
       logger.warn(`Failed to add key ${keyId} to API Key index:`, err.message)
     }
 
-    logger.success(
-      `🔑 Generated new API key: ${name} (${keyId})${isAggregated ? ' [Aggregated]' : ''}`
-    )
+    logger.success(`🔑 Generated new API key: ${name} (${keyId})`)
 
     // 解析 permissions 用于返回
     let parsedPermissions = keyData.permissions
@@ -237,7 +261,7 @@ class ApiKeyService {
       azureOpenaiAccountId: keyData.azureOpenaiAccountId,
       bedrockAccountId: keyData.bedrockAccountId, // 添加 Bedrock 账号ID
       droidAccountId: keyData.droidAccountId,
-      permissions: parsedPermissions,
+      permissions: normalizePermissions(keyData.permissions),
       enableModelRestriction: keyData.enableModelRestriction === 'true',
       restrictedModels: JSON.parse(keyData.restrictedModels),
       enableClientRestriction: keyData.enableClientRestriction === 'true',
@@ -254,12 +278,7 @@ class ApiKeyService {
       createdAt: keyData.createdAt,
       expiresAt: keyData.expiresAt,
       createdBy: keyData.createdBy,
-      // 聚合 Key 相关字段
-      isAggregated: keyData.isAggregated === 'true',
-      quotaLimit: parseFloat(keyData.quotaLimit || 0),
-      quotaUsed: parseFloat(keyData.quotaUsed || 0),
-      serviceQuotaLimits: JSON.parse(keyData.serviceQuotaLimits || '{}'),
-      serviceQuotaUsed: JSON.parse(keyData.serviceQuotaUsed || '{}')
+      serviceRates: JSON.parse(keyData.serviceRates || '{}') // API Key 级别服务倍率
     }
   }
 
@@ -399,14 +418,10 @@ class ApiKeyService {
         // 不是 JSON，保持原值
       }
 
-      // 解析聚合 Key 相关字段
-      let serviceQuotaLimits = {}
-      let serviceQuotaUsed = {}
+      // 解析 serviceRates
+      let serviceRates = {}
       try {
-        serviceQuotaLimits = keyData.serviceQuotaLimits
-          ? JSON.parse(keyData.serviceQuotaLimits)
-          : {}
-        serviceQuotaUsed = keyData.serviceQuotaUsed ? JSON.parse(keyData.serviceQuotaUsed) : {}
+        serviceRates = keyData.serviceRates ? JSON.parse(keyData.serviceRates) : {}
       } catch (e) {
         // 解析失败使用默认值
       }
@@ -426,7 +441,7 @@ class ApiKeyService {
           azureOpenaiAccountId: keyData.azureOpenaiAccountId,
           bedrockAccountId: keyData.bedrockAccountId, // 添加 Bedrock 账号ID
           droidAccountId: keyData.droidAccountId,
-          permissions,
+          permissions: normalizePermissions(keyData.permissions),
           tokenLimit: parseInt(keyData.tokenLimit),
           concurrencyLimit: parseInt(keyData.concurrencyLimit || 0),
           rateLimitWindow: parseInt(keyData.rateLimitWindow || 0),
@@ -443,12 +458,7 @@ class ApiKeyService {
           totalCost: costData.totalCost || 0,
           weeklyOpusCost: costData.weeklyOpusCost || 0,
           tags,
-          // 聚合 Key 相关字段
-          isAggregated: keyData.isAggregated === 'true',
-          quotaLimit: parseFloat(keyData.quotaLimit || 0),
-          quotaUsed: parseFloat(keyData.quotaUsed || 0),
-          serviceQuotaLimits,
-          serviceQuotaUsed
+          serviceRates
         }
       }
     } catch (error) {
@@ -560,7 +570,7 @@ class ApiKeyService {
           azureOpenaiAccountId: keyData.azureOpenaiAccountId,
           bedrockAccountId: keyData.bedrockAccountId,
           droidAccountId: keyData.droidAccountId,
-          permissions: keyData.permissions || 'all',
+          permissions: normalizePermissions(keyData.permissions),
           tokenLimit: parseInt(keyData.tokenLimit),
           concurrencyLimit: parseInt(keyData.concurrencyLimit || 0),
           rateLimitWindow: parseInt(keyData.rateLimitWindow || 0),
@@ -586,9 +596,154 @@ class ApiKeyService {
     }
   }
 
-  // 🏷️ 获取所有标签（轻量级，使用 SCAN + Pipeline）
+  // 🏷️ 获取所有标签（合并索引和全局集合）
   async getAllTags() {
-    return await redis.scanAllApiKeyTags()
+    const indexTags = await redis.scanAllApiKeyTags()
+    const globalTags = await redis.getGlobalTags()
+    // 过滤空值和空格
+    return [
+      ...new Set(
+        [...indexTags, ...globalTags].map((t) => (t ? t.trim() : '')).filter((t) => t)
+      )
+    ].sort()
+  }
+
+  // 🏷️ 创建新标签
+  async createTag(tagName) {
+    const existingTags = await this.getAllTags()
+    if (existingTags.includes(tagName)) {
+      return { success: false, error: '标签已存在' }
+    }
+    await redis.addTag(tagName)
+    return { success: true }
+  }
+
+  // 🏷️ 获取标签详情（含使用数量）
+  async getTagsWithCount() {
+    const apiKeys = await redis.getAllApiKeys()
+    const tagCounts = new Map()
+
+    // 统计 API Key 上的标签（trim 后统计）
+    for (const key of apiKeys) {
+      if (key.isDeleted === 'true') continue
+      let tags = []
+      try {
+        const parsed = key.tags ? JSON.parse(key.tags) : []
+        tags = Array.isArray(parsed) ? parsed : []
+      } catch {
+        tags = []
+      }
+      for (const tag of tags) {
+        if (typeof tag === 'string') {
+          const trimmed = tag.trim()
+          if (trimmed) {
+            tagCounts.set(trimmed, (tagCounts.get(trimmed) || 0) + 1)
+          }
+        }
+      }
+    }
+
+    // 直接获取全局标签集合（避免重复扫描）
+    const globalTags = await redis.getGlobalTags()
+    for (const tag of globalTags) {
+      const trimmed = tag ? tag.trim() : ''
+      if (trimmed && !tagCounts.has(trimmed)) {
+        tagCounts.set(trimmed, 0)
+      }
+    }
+
+    return Array.from(tagCounts.entries())
+      .map(([name, count]) => ({ name, count }))
+      .sort((a, b) => b.count - a.count)
+  }
+
+  // 🏷️ 从所有 API Key 中移除指定标签
+  async removeTagFromAllKeys(tagName) {
+    const normalizedName = (tagName || '').trim()
+    if (!normalizedName) {
+      return { affectedCount: 0 }
+    }
+
+    const apiKeys = await redis.getAllApiKeys()
+    let affectedCount = 0
+
+    for (const key of apiKeys) {
+      if (key.isDeleted === 'true') continue
+      let tags = []
+      try {
+        const parsed = key.tags ? JSON.parse(key.tags) : []
+        tags = Array.isArray(parsed) ? parsed : []
+      } catch {
+        tags = []
+      }
+
+      // 匹配时 trim 比较，过滤非字符串
+      const strTags = tags.filter((t) => typeof t === 'string')
+      if (strTags.some((t) => t.trim() === normalizedName)) {
+        const newTags = strTags.filter((t) => t.trim() !== normalizedName)
+        await this.updateApiKey(key.id, { tags: newTags })
+        affectedCount++
+      }
+    }
+
+    // 同时从全局标签集合删除
+    await redis.removeTag(normalizedName)
+    await redis.removeTag(tagName) // 也删除原始值（可能带空格）
+
+    return { affectedCount }
+  }
+
+  // 🏷️ 重命名标签
+  async renameTag(oldName, newName) {
+    if (!newName || !newName.trim()) {
+      return { affectedCount: 0, error: '新标签名不能为空' }
+    }
+
+    const normalizedOld = (oldName || '').trim()
+    const normalizedNew = newName.trim()
+
+    if (!normalizedOld) {
+      return { affectedCount: 0, error: '旧标签名不能为空' }
+    }
+
+    const apiKeys = await redis.getAllApiKeys()
+    let affectedCount = 0
+    let foundInKeys = false
+
+    for (const key of apiKeys) {
+      if (key.isDeleted === 'true') continue
+      let tags = []
+      try {
+        const parsed = key.tags ? JSON.parse(key.tags) : []
+        tags = Array.isArray(parsed) ? parsed : []
+      } catch {
+        tags = []
+      }
+
+      // 匹配时 trim 比较，过滤非字符串
+      const strTags = tags.filter((t) => typeof t === 'string')
+      if (strTags.some((t) => t.trim() === normalizedOld)) {
+        foundInKeys = true
+        const newTags = [...new Set(strTags.map((t) => (t.trim() === normalizedOld ? normalizedNew : t)))]
+        await this.updateApiKey(key.id, { tags: newTags })
+        affectedCount++
+      }
+    }
+
+    // 检查全局集合是否有该标签
+    const globalTags = await redis.getGlobalTags()
+    const foundInGlobal = globalTags.some((t) => typeof t === 'string' && t.trim() === normalizedOld)
+
+    if (!foundInKeys && !foundInGlobal) {
+      return { affectedCount: 0, error: '标签不存在' }
+    }
+
+    // 同时更新全局标签集合（删旧加新）
+    await redis.removeTag(normalizedOld)
+    await redis.removeTag(oldName) // 也删除原始值
+    await redis.addTag(normalizedNew)
+
+    return { affectedCount }
   }
 
   // 📋 获取所有API Keys
@@ -623,7 +778,7 @@ class ApiKeyService {
         key.isActive = key.isActive === 'true'
         key.enableModelRestriction = key.enableModelRestriction === 'true'
         key.enableClientRestriction = key.enableClientRestriction === 'true'
-        key.permissions = key.permissions || 'all' // 兼容旧数据
+        key.permissions = normalizePermissions(key.permissions)
         key.dailyCostLimit = parseFloat(key.dailyCostLimit || 0)
         key.totalCostLimit = parseFloat(key.totalCostLimit || 0)
         key.weeklyOpusCostLimit = parseFloat(key.weeklyOpusCostLimit || 0)
@@ -1060,12 +1215,7 @@ class ApiKeyService {
         'userId', // 新增：用户ID（所有者变更）
         'userUsername', // 新增：用户名（所有者变更）
         'createdBy', // 新增：创建者（所有者变更）
-        // 聚合 Key 相关字段
-        'isAggregated',
-        'quotaLimit',
-        'quotaUsed',
-        'serviceQuotaLimits',
-        'serviceQuotaUsed'
+        'serviceRates' // API Key 级别服务倍率
       ]
       const updatedData = { ...keyData }
 
@@ -1075,21 +1225,17 @@ class ApiKeyService {
             field === 'restrictedModels' ||
             field === 'allowedClients' ||
             field === 'tags' ||
-            field === 'serviceQuotaLimits' ||
-            field === 'serviceQuotaUsed'
+            field === 'serviceRates'
           ) {
             // 特殊处理数组/对象字段
-            updatedData[field] = JSON.stringify(
-              value || (field === 'serviceQuotaLimits' || field === 'serviceQuotaUsed' ? {} : [])
-            )
+            updatedData[field] = JSON.stringify(value || (field === 'serviceRates' ? {} : []))
           } else if (field === 'permissions') {
-            // permissions 可能是数组（聚合 Key）或字符串（传统 Key）
+            // permissions 可能是数组或字符串
             updatedData[field] = Array.isArray(value) ? JSON.stringify(value) : value || 'all'
           } else if (
             field === 'enableModelRestriction' ||
             field === 'enableClientRestriction' ||
-            field === 'isActivated' ||
-            field === 'isAggregated'
+            field === 'isActivated'
           ) {
             // 布尔值转字符串
             updatedData[field] = String(value)
@@ -1358,7 +1504,7 @@ class ApiKeyService {
     }
   }
 
-  // 📊 记录使用情况（支持缓存token和账户级别统计）
+  // 📊 记录使用情况（支持缓存token和账户级别统计，应用服务倍率）
   async recordUsage(
     keyId,
     inputTokens = 0,
@@ -1366,7 +1512,8 @@ class ApiKeyService {
     cacheCreateTokens = 0,
     cacheReadTokens = 0,
     model = 'unknown',
-    accountId = null
+    accountId = null,
+    accountType = null
   ) {
     try {
       const totalTokens = inputTokens + outputTokens + cacheCreateTokens + cacheReadTokens
@@ -1404,12 +1551,21 @@ class ApiKeyService {
         isLongContextRequest
       )
 
-      // 记录费用统计
-      if (costInfo.costs.total > 0) {
-        await redis.incrementDailyCost(keyId, costInfo.costs.total)
+      // 记录费用统计（应用服务倍率）
+      const realCost = costInfo.costs.total
+      let ratedCost = realCost
+      if (realCost > 0) {
+        const serviceRatesService = require('./serviceRatesService')
+        const service = serviceRatesService.getService(accountType, model)
+        ratedCost = await this.calculateRatedCost(keyId, service, realCost)
+
+        await redis.incrementDailyCost(keyId, ratedCost, realCost)
         logger.database(
-          `💰 Recorded cost for ${keyId}: $${costInfo.costs.total.toFixed(6)}, model: ${model}`
+          `💰 Recorded cost for ${keyId}: rated=$${ratedCost.toFixed(6)}, real=$${realCost.toFixed(6)}, model: ${model}, service: ${service}`
         )
+
+        // 记录 Opus 周费用（如果适用）
+        await this.recordOpusCost(keyId, ratedCost, realCost, model, accountType)
       } else {
         logger.debug(`💰 No cost recorded for ${keyId} - zero cost for model: ${model}`)
       }
@@ -1452,19 +1608,20 @@ class ApiKeyService {
         }
       }
 
-      // 记录单次请求的使用详情
-      const usageCost = costInfo && costInfo.costs ? costInfo.costs.total || 0 : 0
+      // 记录单次请求的使用详情（同时保存真实成本和倍率成本）
       await redis.addUsageRecord(keyId, {
         timestamp: new Date().toISOString(),
         model,
         accountId: accountId || null,
+        accountType: accountType || null,
         inputTokens,
         outputTokens,
         cacheCreateTokens,
         cacheReadTokens,
         totalTokens,
-        cost: Number(usageCost.toFixed(6)),
-        costBreakdown: costInfo && costInfo.costs ? costInfo.costs : undefined
+        cost: Number(ratedCost.toFixed(6)),
+        realCost: Number(realCost.toFixed(6)),
+        realCostBreakdown: costInfo && costInfo.costs ? costInfo.costs : undefined
       })
 
       const logParts = [`Model: ${model}`, `Input: ${inputTokens}`, `Output: ${outputTokens}`]
@@ -1483,28 +1640,26 @@ class ApiKeyService {
   }
 
   // 📊 记录 Opus 模型费用（仅限 claude 和 claude-console 账户）
-  async recordOpusCost(keyId, cost, model, accountType) {
+  // ratedCost: 倍率后的成本（用于限额校验）
+  // realCost: 真实成本（用于对账），如果不传则等于 ratedCost
+  async recordOpusCost(keyId, ratedCost, realCost, model, accountType) {
     try {
       // 判断是否为 Opus 模型
       if (!model || !model.toLowerCase().includes('claude-opus')) {
         return // 不是 Opus 模型，直接返回
       }
 
-      // 判断是否为 claude、claude-console 或 ccr 账户
-      if (
-        !accountType ||
-        (accountType !== 'claude' && accountType !== 'claude-console' && accountType !== 'ccr')
-      ) {
+      // 判断是否为 claude-official、claude-console 或 ccr 账户
+      const opusAccountTypes = ['claude-official', 'claude-console', 'ccr']
+      if (!accountType || !opusAccountTypes.includes(accountType)) {
         logger.debug(`⚠️ Skipping Opus cost recording for non-Claude account type: ${accountType}`)
         return // 不是 claude 账户，直接返回
       }
 
-      // 记录 Opus 周费用
-      await redis.incrementWeeklyOpusCost(keyId, cost)
+      // 记录 Opus 周费用（倍率成本和真实成本）
+      await redis.incrementWeeklyOpusCost(keyId, ratedCost, realCost)
       logger.database(
-        `💰 Recorded Opus weekly cost for ${keyId}: $${cost.toFixed(
-          6
-        )}, model: ${model}, account type: ${accountType}`
+        `💰 Recorded Opus weekly cost for ${keyId}: rated=$${ratedCost.toFixed(6)}, real=$${realCost.toFixed(6)}, model: ${model}`
       )
     } catch (error) {
       logger.error('❌ Failed to record Opus cost:', error)
@@ -1603,15 +1758,22 @@ class ApiKeyService {
         costInfo.isLongContextRequest || false // 传递 1M 上下文请求标记
       )
 
-      // 记录费用统计
-      if (costInfo.totalCost > 0) {
-        await redis.incrementDailyCost(keyId, costInfo.totalCost)
+      // 记录费用统计（应用服务倍率）
+      const realCostWithDetails = costInfo.totalCost || 0
+      let ratedCostWithDetails = realCostWithDetails
+      if (realCostWithDetails > 0) {
+        const serviceRatesService = require('./serviceRatesService')
+        const service = serviceRatesService.getService(accountType, model)
+        ratedCostWithDetails = await this.calculateRatedCost(keyId, service, realCostWithDetails)
+
+        // 记录倍率成本和真实成本
+        await redis.incrementDailyCost(keyId, ratedCostWithDetails, realCostWithDetails)
         logger.database(
-          `💰 Recorded cost for ${keyId}: $${costInfo.totalCost.toFixed(6)}, model: ${model}`
+          `💰 Recorded cost for ${keyId}: rated=$${ratedCostWithDetails.toFixed(6)}, real=$${realCostWithDetails.toFixed(6)}, model: ${model}, service: ${service}`
         )
 
-        // 记录 Opus 周费用（如果适用）
-        await this.recordOpusCost(keyId, costInfo.totalCost, model, accountType)
+        // 记录 Opus 周费用（如果适用，也应用倍率）
+        await this.recordOpusCost(keyId, ratedCostWithDetails, realCostWithDetails, model, accountType)
 
         // 记录详细的缓存费用（如果有）
         if (costInfo.ephemeral5mCost > 0 || costInfo.ephemeral1hCost > 0) {
@@ -1683,8 +1845,9 @@ class ApiKeyService {
         ephemeral5mTokens,
         ephemeral1hTokens,
         totalTokens,
-        cost: Number((costInfo.totalCost || 0).toFixed(6)),
-        costBreakdown: {
+        cost: Number(ratedCostWithDetails.toFixed(6)),
+        realCost: Number(realCostWithDetails.toFixed(6)),
+        realCostBreakdown: {
           input: costInfo.inputCost || 0,
           output: costInfo.outputCost || 0,
           cacheCreate: costInfo.cacheCreateCost || 0,
@@ -1921,9 +2084,19 @@ class ApiKeyService {
     const recordLimit = optionObject.recordLimit || 20
     const recentRecords = await redis.getUsageRecords(keyId, recordLimit)
 
+    // API 兼容：同时输出 costBreakdown 和 realCostBreakdown
+    const compatibleRecords = recentRecords.map((record) => {
+      const breakdown = record.realCostBreakdown || record.costBreakdown
+      return {
+        ...record,
+        costBreakdown: breakdown,
+        realCostBreakdown: breakdown
+      }
+    })
+
     return {
       ...usageStats,
-      recentRecords
+      recentRecords: compatibleRecords
     }
   }
 
@@ -2022,7 +2195,7 @@ class ApiKeyService {
         userId: keyData.userId,
         userUsername: keyData.userUsername,
         createdBy: keyData.createdBy,
-        permissions: keyData.permissions,
+        permissions: normalizePermissions(keyData.permissions),
         dailyCostLimit: parseFloat(keyData.dailyCostLimit || 0),
         totalCostLimit: parseFloat(keyData.totalCostLimit || 0),
         // 所有平台账户绑定字段
@@ -2268,320 +2441,97 @@ class ApiKeyService {
   }
 
   // ═══════════════════════════════════════════════════════════════════════════
-  // 聚合 Key 相关方法
+  // 服务倍率和费用限制相关方法
   // ═══════════════════════════════════════════════════════════════════════════
 
   /**
-   * 判断是否为聚合 Key
-   */
-  isAggregatedKey(keyData) {
-    return keyData && keyData.isAggregated === 'true'
-  }
-
-  /**
-   * 获取转换为聚合 Key 的预览信息
+   * 计算应用倍率后的费用
+   * 公式：消费计费 = 真实消费 × 全局倍率 × Key 倍率
    * @param {string} keyId - API Key ID
-   * @returns {Object} 转换预览信息
-   */
-  async getConvertToAggregatedPreview(keyId) {
-    try {
-      const keyData = await redis.getApiKey(keyId)
-      if (!keyData || Object.keys(keyData).length === 0) {
-        throw new Error('API key not found')
-      }
-
-      if (keyData.isAggregated === 'true') {
-        throw new Error('API key is already aggregated')
-      }
-
-      // 获取当前服务倍率
-      const ratesConfig = await serviceRatesService.getRates()
-
-      // 确定原服务类型
-      let originalService = keyData.permissions || 'all'
-      try {
-        const parsed = JSON.parse(originalService)
-        if (Array.isArray(parsed)) {
-          originalService = parsed[0] || 'claude'
-        }
-      } catch (e) {
-        // 不是 JSON，保持原值
-      }
-
-      // 映射 permissions 到服务类型
-      const serviceMap = {
-        all: 'claude',
-        claude: 'claude',
-        gemini: 'gemini',
-        openai: 'codex',
-        droid: 'droid',
-        bedrock: 'bedrock',
-        azure: 'azure',
-        ccr: 'ccr'
-      }
-      const mappedService = serviceMap[originalService] || 'claude'
-      const serviceRate = ratesConfig.rates[mappedService] || 1.0
-
-      // 获取已消耗的真实成本
-      const costStats = await redis.getCostStats(keyId)
-      const totalRealCost = costStats?.total || 0
-
-      // 获取原限额
-      const originalLimit = parseFloat(keyData.totalCostLimit || 0)
-
-      // 计算建议的 CC 额度
-      const suggestedQuotaLimit = originalLimit * serviceRate
-      const suggestedQuotaUsed = totalRealCost * serviceRate
-
-      // 获取可用服务列表
-      const availableServices = Object.keys(ratesConfig.rates)
-
-      return {
-        keyId,
-        keyName: keyData.name,
-        originalService: mappedService,
-        originalPermissions: originalService,
-        originalLimit,
-        originalUsed: totalRealCost,
-        serviceRate,
-        suggestedQuotaLimit: Math.round(suggestedQuotaLimit * 1000) / 1000,
-        suggestedQuotaUsed: Math.round(suggestedQuotaUsed * 1000) / 1000,
-        availableServices,
-        ratesConfig: ratesConfig.rates
-      }
-    } catch (error) {
-      logger.error('❌ Failed to get convert preview:', error)
-      throw error
-    }
-  }
-
-  /**
-   * 将传统 Key 转换为聚合 Key
-   * @param {string} keyId - API Key ID
-   * @param {Object} options - 转换选项
-   * @param {number} options.quotaLimit - CC 额度上限
-   * @param {Array<string>} options.permissions - 允许的服务列表
-   * @param {Object} options.serviceQuotaLimits - 分服务额度限制（可选）
-   * @returns {Object} 转换结果
-   */
-  async convertToAggregated(keyId, options = {}) {
-    try {
-      const keyData = await redis.getApiKey(keyId)
-      if (!keyData || Object.keys(keyData).length === 0) {
-        throw new Error('API key not found')
-      }
-
-      if (keyData.isAggregated === 'true') {
-        throw new Error('API key is already aggregated')
-      }
-
-      const {
-        quotaLimit,
-        permissions,
-        serviceQuotaLimits = {},
-        quotaUsed = null // 如果不传，自动计算
-      } = options
-
-      if (quotaLimit === undefined || quotaLimit === null) {
-        throw new Error('quotaLimit is required')
-      }
-
-      if (!permissions || !Array.isArray(permissions) || permissions.length === 0) {
-        throw new Error('permissions must be a non-empty array')
-      }
-
-      // 计算已消耗的 CC 额度
-      let calculatedQuotaUsed = quotaUsed
-      if (calculatedQuotaUsed === null) {
-        // 自动计算：获取原服务的倍率，按倍率换算已消耗成本
-        const preview = await this.getConvertToAggregatedPreview(keyId)
-        calculatedQuotaUsed = preview.suggestedQuotaUsed
-      }
-
-      // 更新 Key 数据
-      const updates = {
-        isAggregated: true,
-        quotaLimit,
-        quotaUsed: calculatedQuotaUsed,
-        permissions,
-        serviceQuotaLimits,
-        serviceQuotaUsed: {} // 转换时重置分服务统计
-      }
-
-      await this.updateApiKey(keyId, updates)
-
-      logger.success(`🔄 Converted API key ${keyId} to aggregated key with ${quotaLimit} CC quota`)
-
-      return {
-        success: true,
-        keyId,
-        quotaLimit,
-        quotaUsed: calculatedQuotaUsed,
-        permissions
-      }
-    } catch (error) {
-      logger.error('❌ Failed to convert to aggregated key:', error)
-      throw error
-    }
-  }
-
-  /**
-   * 快速检查聚合 Key 额度（用于请求前检查）
-   * @param {string} keyId - API Key ID
-   * @returns {Object} { allowed: boolean, reason?: string, quotaRemaining?: number }
-   */
-  async quickQuotaCheck(keyId) {
-    try {
-      const [quotaUsed, quotaLimit, isAggregated, isActive] = await redis.client.hmget(
-        `api_key:${keyId}`,
-        'quotaUsed',
-        'quotaLimit',
-        'isAggregated',
-        'isActive'
-      )
-
-      // 非聚合 Key 不检查额度
-      if (isAggregated !== 'true') {
-        return { allowed: true, isAggregated: false }
-      }
-
-      if (isActive !== 'true') {
-        return { allowed: false, reason: 'inactive', isAggregated: true }
-      }
-
-      const used = parseFloat(quotaUsed || 0)
-      const limit = parseFloat(quotaLimit || 0)
-
-      // 额度为 0 表示不限制
-      if (limit === 0) {
-        return { allowed: true, isAggregated: true, quotaRemaining: Infinity }
-      }
-
-      if (used >= limit) {
-        return {
-          allowed: false,
-          reason: 'quota_exceeded',
-          isAggregated: true,
-          quotaUsed: used,
-          quotaLimit: limit
-        }
-      }
-
-      return { allowed: true, isAggregated: true, quotaRemaining: limit - used }
-    } catch (error) {
-      logger.error('❌ Quick quota check failed:', error)
-      // 出错时允许通过，避免阻塞请求
-      return { allowed: true, error: error.message }
-    }
-  }
-
-  /**
-   * 异步扣减聚合 Key 额度（请求完成后调用）
-   * @param {string} keyId - API Key ID
-   * @param {number} costUSD - 真实成本（USD）
    * @param {string} service - 服务类型
-   * @returns {Promise<void>}
+   * @param {number} realCost - 真实成本（USD）
+   * @returns {Promise<number>} 应用倍率后的费用
    */
-  async deductQuotaAsync(keyId, costUSD, service) {
-    // 使用 setImmediate 确保不阻塞响应
-    setImmediate(async () => {
+  async calculateRatedCost(keyId, service, realCost) {
+    try {
+      // 获取全局倍率
+      const globalRate = await serviceRatesService.getServiceRate(service)
+
+      // 获取 Key 倍率
+      const keyData = await redis.getApiKey(keyId)
+      let keyRates = {}
       try {
-        // 获取服务倍率
-        const rate = await serviceRatesService.getServiceRate(service)
-        const quotaToDeduct = costUSD * rate
-
-        // 原子更新总额度
-        await redis.client.hincrbyfloat(`api_key:${keyId}`, 'quotaUsed', quotaToDeduct)
-
-        // 更新分服务额度
-        const serviceQuotaUsedStr = await redis.client.hget(`api_key:${keyId}`, 'serviceQuotaUsed')
-        let serviceQuotaUsed = {}
-        try {
-          serviceQuotaUsed = JSON.parse(serviceQuotaUsedStr || '{}')
-        } catch (e) {
-          serviceQuotaUsed = {}
-        }
-        serviceQuotaUsed[service] = (serviceQuotaUsed[service] || 0) + quotaToDeduct
-        await redis.client.hset(
-          `api_key:${keyId}`,
-          'serviceQuotaUsed',
-          JSON.stringify(serviceQuotaUsed)
-        )
-
-        logger.debug(
-          `📊 Deducted ${quotaToDeduct.toFixed(4)} CC quota from key ${keyId} (service: ${service}, rate: ${rate})`
-        )
-      } catch (error) {
-        logger.error(`❌ Failed to deduct quota for key ${keyId}:`, error)
+        keyRates = JSON.parse(keyData?.serviceRates || '{}')
+      } catch (e) {
+        keyRates = {}
       }
-    })
+      const keyRate = keyRates[service] ?? 1.0
+
+      // 相乘计算
+      return realCost * globalRate * keyRate
+    } catch (error) {
+      logger.error('❌ Failed to calculate rated cost:', error)
+      // 出错时返回原始费用
+      return realCost
+    }
   }
 
   /**
-   * 增加聚合 Key 额度（用于核销额度卡）
+   * 增加 API Key 费用限制（用于核销额度卡）
    * @param {string} keyId - API Key ID
-   * @param {number} quotaAmount - 要增加的 CC 额度
-   * @returns {Promise<Object>} { success: boolean, newQuotaLimit: number }
+   * @param {number} amount - 要增加的金额（USD）
+   * @returns {Promise<Object>} { success: boolean, newTotalCostLimit: number }
    */
-  async addQuota(keyId, quotaAmount) {
+  async addTotalCostLimit(keyId, amount) {
     try {
       const keyData = await redis.getApiKey(keyId)
       if (!keyData || Object.keys(keyData).length === 0) {
         throw new Error('API key not found')
       }
 
-      if (keyData.isAggregated !== 'true') {
-        throw new Error('Only aggregated keys can add quota')
-      }
+      const currentLimit = parseFloat(keyData.totalCostLimit || 0)
+      const newLimit = currentLimit + amount
 
-      const currentLimit = parseFloat(keyData.quotaLimit || 0)
-      const newLimit = currentLimit + quotaAmount
+      await redis.client.hset(`apikey:${keyId}`, 'totalCostLimit', String(newLimit))
 
-      await redis.client.hset(`api_key:${keyId}`, 'quotaLimit', String(newLimit))
+      logger.success(`💰 Added $${amount} to key ${keyId}, new limit: $${newLimit}`)
 
-      logger.success(`💰 Added ${quotaAmount} CC quota to key ${keyId}, new limit: ${newLimit}`)
-
-      return { success: true, previousLimit: currentLimit, newQuotaLimit: newLimit }
+      return { success: true, previousLimit: currentLimit, newTotalCostLimit: newLimit }
     } catch (error) {
-      logger.error('❌ Failed to add quota:', error)
+      logger.error('❌ Failed to add total cost limit:', error)
       throw error
     }
   }
 
   /**
-   * 减少聚合 Key 额度（用于撤销核销）
+   * 减少 API Key 费用限制（用于撤销核销）
    * @param {string} keyId - API Key ID
-   * @param {number} quotaAmount - 要减少的 CC 额度
-   * @returns {Promise<Object>} { success: boolean, newQuotaLimit: number, actualDeducted: number }
+   * @param {number} amount - 要减少的金额（USD）
+   * @returns {Promise<Object>} { success: boolean, newTotalCostLimit: number, actualDeducted: number }
    */
-  async deductQuotaLimit(keyId, quotaAmount) {
+  async deductTotalCostLimit(keyId, amount) {
     try {
       const keyData = await redis.getApiKey(keyId)
       if (!keyData || Object.keys(keyData).length === 0) {
         throw new Error('API key not found')
       }
 
-      if (keyData.isAggregated !== 'true') {
-        throw new Error('Only aggregated keys can deduct quota')
-      }
-
-      const currentLimit = parseFloat(keyData.quotaLimit || 0)
-      const currentUsed = parseFloat(keyData.quotaUsed || 0)
+      const currentLimit = parseFloat(keyData.totalCostLimit || 0)
+      const costStats = await redis.getCostStats(keyId)
+      const currentUsed = costStats?.total || 0
 
       // 不能扣到比已使用的还少
       const minLimit = currentUsed
-      const actualDeducted = Math.min(quotaAmount, currentLimit - minLimit)
-      const newLimit = Math.max(currentLimit - quotaAmount, minLimit)
+      const actualDeducted = Math.min(amount, currentLimit - minLimit)
+      const newLimit = Math.max(currentLimit - amount, minLimit)
 
-      await redis.client.hset(`api_key:${keyId}`, 'quotaLimit', String(newLimit))
+      await redis.client.hset(`apikey:${keyId}`, 'totalCostLimit', String(newLimit))
 
-      logger.success(
-        `💸 Deducted ${actualDeducted} CC quota from key ${keyId}, new limit: ${newLimit}`
-      )
+      logger.success(`💸 Deducted $${actualDeducted} from key ${keyId}, new limit: $${newLimit}`)
 
-      return { success: true, previousLimit: currentLimit, newQuotaLimit: newLimit, actualDeducted }
+      return { success: true, previousLimit: currentLimit, newTotalCostLimit: newLimit, actualDeducted }
     } catch (error) {
-      logger.error('❌ Failed to deduct quota limit:', error)
+      logger.error('❌ Failed to deduct total cost limit:', error)
       throw error
     }
   }
@@ -2643,4 +2593,8 @@ const apiKeyService = new ApiKeyService()
 // 为了方便其他服务调用，导出 recordUsage 方法
 apiKeyService.recordUsageMetrics = apiKeyService.recordUsage.bind(apiKeyService)
 
+// 导出权限辅助函数供路由使用
+apiKeyService.hasPermission = hasPermission
+apiKeyService.normalizePermissions = normalizePermissions
+
 module.exports = apiKeyService
diff --git a/src/services/balanceProviders/baseBalanceProvider.js b/src/services/balanceProviders/baseBalanceProvider.js
new file mode 100644
index 00000000..ececd2e5
--- /dev/null
+++ b/src/services/balanceProviders/baseBalanceProvider.js
@@ -0,0 +1,133 @@
+const axios = require('axios')
+const logger = require('../../utils/logger')
+const ProxyHelper = require('../../utils/proxyHelper')
+
+/**
+ * Provider 抽象基类
+ * 各平台 Provider 需继承并实现 queryBalance(account)
+ */
+class BaseBalanceProvider {
+  constructor(platform) {
+    this.platform = platform
+    this.logger = logger
+  }
+
+  /**
+   * 查询余额（抽象方法）
+   * @param {object} account - 账户对象
+   * @returns {Promise<object>}
+   * 形如：
+   * {
+   *   balance: number|null,
+   *   currency?: string,
+   *   quota?: { daily, used, remaining, resetAt, percentage, unlimited? },
+   *   queryMethod?: 'api'|'field'|'local',
+   *   rawData?: any
+   * }
+   */
+  async queryBalance(_account) {
+    throw new Error('queryBalance 方法必须由子类实现')
+  }
+
+  /**
+   * 通用 HTTP 请求方法（支持代理）
+   * @param {string} url
+   * @param {object} options
+   * @param {object} account
+   */
+  async makeRequest(url, options = {}, account = {}) {
+    const config = {
+      url,
+      method: options.method || 'GET',
+      headers: options.headers || {},
+      timeout: options.timeout || 15000,
+      data: options.data,
+      params: options.params,
+      responseType: options.responseType
+    }
+
+    const proxyConfig = account.proxyConfig || account.proxy
+    if (proxyConfig) {
+      const agent = ProxyHelper.createProxyAgent(proxyConfig)
+      if (agent) {
+        config.httpAgent = agent
+        config.httpsAgent = agent
+        config.proxy = false
+      }
+    }
+
+    try {
+      const response = await axios(config)
+      return {
+        success: true,
+        data: response.data,
+        status: response.status,
+        headers: response.headers
+      }
+    } catch (error) {
+      const status = error.response?.status
+      const message = error.response?.data?.message || error.message || '请求失败'
+      this.logger.debug(`余额 Provider HTTP 请求失败: ${url} (${this.platform})`, {
+        status,
+        message
+      })
+      return { success: false, status, error: message }
+    }
+  }
+
+  /**
+   * 从账户字段读取 dailyQuota / dailyUsage（通用降级方案）
+   * 注意：部分平台 dailyUsage 字段可能不是实时值，最终以 AccountBalanceService 的本地统计为准
+   */
+  readQuotaFromFields(account) {
+    const dailyQuota = Number(account?.dailyQuota || 0)
+    const dailyUsage = Number(account?.dailyUsage || 0)
+
+    // 无限制
+    if (!Number.isFinite(dailyQuota) || dailyQuota <= 0) {
+      return {
+        balance: null,
+        currency: 'USD',
+        quota: {
+          daily: Infinity,
+          used: Number.isFinite(dailyUsage) ? dailyUsage : 0,
+          remaining: Infinity,
+          percentage: 0,
+          unlimited: true
+        },
+        queryMethod: 'field'
+      }
+    }
+
+    const used = Number.isFinite(dailyUsage) ? dailyUsage : 0
+    const remaining = Math.max(0, dailyQuota - used)
+    const percentage = dailyQuota > 0 ? (used / dailyQuota) * 100 : 0
+
+    return {
+      balance: remaining,
+      currency: 'USD',
+      quota: {
+        daily: dailyQuota,
+        used,
+        remaining,
+        percentage: Math.round(percentage * 100) / 100
+      },
+      queryMethod: 'field'
+    }
+  }
+
+  parseCurrency(data) {
+    return data?.currency || data?.Currency || 'USD'
+  }
+
+  async safeExecute(fn, fallbackValue = null) {
+    try {
+      return await fn()
+    } catch (error) {
+      this.logger.error(`余额 Provider 执行失败: ${this.platform}`, error)
+      return fallbackValue
+    }
+  }
+}
+
+module.exports = BaseBalanceProvider
diff --git a/src/services/balanceProviders/claudeBalanceProvider.js b/src/services/balanceProviders/claudeBalanceProvider.js
new file mode 100644
index 00000000..89783028
--- /dev/null
+++ b/src/services/balanceProviders/claudeBalanceProvider.js
@@ -0,0 +1,30 @@
+const BaseBalanceProvider = require('./baseBalanceProvider')
+const claudeAccountService = require('../claudeAccountService')
+
+class ClaudeBalanceProvider extends BaseBalanceProvider {
+  constructor() {
+    super('claude')
+  }
+
+  /**
+   * Claude（OAuth）：优先尝试获取 OAuth usage（用于配额/使用信息），不强行提供余额金额
+   */
+  async queryBalance(account) {
+    this.logger.debug(`查询 Claude 余额（OAuth usage）: ${account?.id}`)
+
+    // 仅 OAuth 账户可用；失败时降级
+    const usageData = await claudeAccountService.fetchOAuthUsage(account.id).catch(() => null)
+    if (!usageData) {
+      return { balance: null, currency: 'USD', queryMethod: 'local' }
+    }
+
+    return {
+      balance: null,
+      currency: 'USD',
+      queryMethod: 'api',
+      rawData: usageData
+    }
+  }
+}
+
+module.exports = ClaudeBalanceProvider
diff --git a/src/services/balanceProviders/claudeConsoleBalanceProvider.js b/src/services/balanceProviders/claudeConsoleBalanceProvider.js
new file mode 100644
index 00000000..f5441047
--- /dev/null
+++ b/src/services/balanceProviders/claudeConsoleBalanceProvider.js
@@ -0,0 +1,14 @@
+const BaseBalanceProvider = require('./baseBalanceProvider')
+
+class ClaudeConsoleBalanceProvider extends BaseBalanceProvider {
+  constructor() {
+    super('claude-console')
+  }
+
+  async queryBalance(account) {
+    this.logger.debug(`查询 Claude Console 余额（字段）: ${account?.id}`)
+    return this.readQuotaFromFields(account)
+  }
+}
+
+module.exports = ClaudeConsoleBalanceProvider
diff --git a/src/services/balanceProviders/geminiBalanceProvider.js b/src/services/balanceProviders/geminiBalanceProvider.js
new file mode 100644
index 00000000..0f7fb783
--- /dev/null
+++ b/src/services/balanceProviders/geminiBalanceProvider.js
@@ -0,0 +1,250 @@
+const BaseBalanceProvider = require('./baseBalanceProvider')
+const antigravityClient = require('../antigravityClient')
+const geminiAccountService = require('../geminiAccountService')
+
+const OAUTH_PROVIDER_ANTIGRAVITY = 'antigravity'
+
+function clamp01(value) {
+  if (typeof value !== 'number' || !Number.isFinite(value)) {
+    return null
+  }
+  if (value < 0) {
+    return 0
+  }
+  if (value > 1) {
+    return 1
+  }
+  return value
+}
+
+function round2(value) {
+  if (typeof value !== 'number' || !Number.isFinite(value)) {
+    return null
+  }
+  return Math.round(value * 100) / 100
+}
+
+function normalizeQuotaCategory(displayName, modelId) {
+  const name = String(displayName || '')
+  const id = String(modelId || '')
+
+  if (name.includes('Gemini') && name.includes('Pro')) {
+    return 'Gemini Pro'
+  }
+  if (name.includes('Gemini') && name.includes('Flash')) {
+    return 'Gemini Flash'
+  }
+  if (name.includes('Gemini') && name.toLowerCase().includes('image')) {
+    return 'Gemini Image'
+  }
+
+  if (name.includes('Claude') || name.includes('GPT-OSS')) {
+    return 'Claude'
+  }
+
+  if (id.startsWith('gemini-3-pro-') || id.startsWith('gemini-2.5-pro')) {
+    return 'Gemini Pro'
+  }
+  if (id.startsWith('gemini-3-flash') || id.startsWith('gemini-2.5-flash')) {
+    return 'Gemini Flash'
+  }
+  if (id.includes('image')) {
+    return 'Gemini Image'
+  }
+  if (id.includes('claude') || id.includes('gpt-oss')) {
+    return 'Claude'
+  }
+
+  return name || id || 'Unknown'
+}
+
+function buildAntigravityQuota(modelsResponse) {
+  const models = modelsResponse && typeof modelsResponse === 'object' ? modelsResponse.models : null
+
+  if (!models || typeof models !== 'object') {
+    return null
+  }
+
+  const parseRemainingFraction = (quotaInfo) => {
+    if (!quotaInfo || typeof quotaInfo !== 'object') {
+      return null
+    }
+
+    const raw =
+      quotaInfo.remainingFraction ??
+      quotaInfo.remaining_fraction ??
+      quotaInfo.remaining ??
+      undefined
+
+    const num = typeof raw === 'number' ? raw : typeof raw === 'string' ? Number(raw) : NaN
+    if (!Number.isFinite(num)) {
+      return null
+    }
+
+    return clamp01(num)
+  }
+
+  const allowedCategories = new Set(['Gemini Pro', 'Claude', 'Gemini Flash', 'Gemini Image'])
+  const fixedOrder = ['Gemini Pro', 'Claude', 'Gemini Flash', 'Gemini Image']
+
+  const categoryMap = new Map()
+
+  for (const [modelId, modelDataRaw] of Object.entries(models)) {
+    if (!modelDataRaw || typeof modelDataRaw !== 'object') {
+      continue
+    }
+
+    const displayName = modelDataRaw.displayName || modelDataRaw.display_name || modelId
+    const quotaInfo = modelDataRaw.quotaInfo || modelDataRaw.quota_info || null
+
+    const remainingFraction = parseRemainingFraction(quotaInfo)
+    if (remainingFraction === null) {
+      continue
+    }
+
+    const remainingPercent = round2(remainingFraction * 100)
+    const usedPercent = round2(100 - remainingPercent)
+    const resetAt = quotaInfo?.resetTime || quotaInfo?.reset_time || null
+
+    const category = normalizeQuotaCategory(displayName, modelId)
+    if (!allowedCategories.has(category)) {
+      continue
+    }
+    const entry = {
+      category,
+      modelId,
+      displayName: String(displayName || modelId || category),
+      remainingPercent,
+      usedPercent,
+      resetAt: typeof resetAt === 'string' && resetAt.trim() ? resetAt : null
+    }
+
+    const existing = categoryMap.get(category)
+    if (!existing || entry.remainingPercent < existing.remainingPercent) {
+      categoryMap.set(category, entry)
+    }
+  }
+
+  const buckets = fixedOrder.map((category) => {
+    const existing = categoryMap.get(category) || null
+    if (existing) {
+      return existing
+    }
+    return {
+      category,
+      modelId: '',
+      displayName: category,
+      remainingPercent: null,
+      usedPercent: null,
+      resetAt: null
+    }
+  })
+
+  if (buckets.length === 0) {
+    return null
+  }
+
+  const critical = buckets
+    .filter((item) => item.remainingPercent !== null)
+    .reduce((min, item) => {
+      if (!min) {
+        return item
+      }
+      return (item.remainingPercent ?? 0) < (min.remainingPercent ?? 0) ? item : min
+    }, null)
+
+  if (!critical) {
+    return null
+  }
+
+  return {
+    balance: null,
+    currency: 'USD',
+    quota: {
+      type: 'antigravity',
+      total: 100,
+      used: critical.usedPercent,
+      remaining: critical.remainingPercent,
+      percentage: critical.usedPercent,
+      resetAt: critical.resetAt,
+      buckets: buckets.map((item) => ({
+        category: item.category,
+        remaining: item.remainingPercent,
+        used: item.usedPercent,
+        percentage: item.usedPercent,
+        resetAt: item.resetAt
+      }))
+    },
+    queryMethod: 'api',
+    rawData: {
+      modelsCount: Object.keys(models).length,
+      bucketCount: buckets.length
+    }
+  }
+}
+
+class GeminiBalanceProvider extends BaseBalanceProvider {
+  constructor() {
+    super('gemini')
+  }
+
+  async queryBalance(account) {
+    const oauthProvider = account?.oauthProvider
+    if (oauthProvider !== OAUTH_PROVIDER_ANTIGRAVITY) {
+      if (account && Object.prototype.hasOwnProperty.call(account, 'dailyQuota')) {
+        return this.readQuotaFromFields(account)
+      }
+      return { balance: null, currency: 'USD', queryMethod: 'local' }
+    }
+
+    const accessToken = String(account?.accessToken || '').trim()
+    const refreshToken = String(account?.refreshToken || '').trim()
+    const proxyConfig = account?.proxyConfig || account?.proxy || null
+
+    if (!accessToken) {
+      throw new Error('Antigravity 账户缺少 accessToken')
+    }
+
+    const fetch = async (token) =>
+      await antigravityClient.fetchAvailableModels({
+        accessToken: token,
+        proxyConfig
+      })
+
+    let data
+    try {
+      data = await fetch(accessToken)
+    } catch (error) {
+      const status = error?.response?.status
+      if ((status === 401 || status === 403) && refreshToken) {
+        const refreshed = await geminiAccountService.refreshAccessToken(
+          refreshToken,
+          proxyConfig,
+          OAUTH_PROVIDER_ANTIGRAVITY
+        )
+        const nextToken = String(refreshed?.access_token || '').trim()
+        if (!nextToken) {
+          throw error
+        }
+        data = await fetch(nextToken)
+      } else {
+        throw error
+      }
+    }
+
+    const mapped = buildAntigravityQuota(data)
+    if (!mapped) {
+      return {
+        balance: null,
+        currency: 'USD',
+        quota: null,
+        queryMethod: 'api',
+        rawData: data || null
+      }
+    }
+
+    return mapped
+  }
+}
+
+module.exports = GeminiBalanceProvider
diff --git a/src/services/balanceProviders/genericBalanceProvider.js b/src/services/balanceProviders/genericBalanceProvider.js
new file mode 100644
index 00000000..6b3efe2b
--- /dev/null
+++ b/src/services/balanceProviders/genericBalanceProvider.js
@@ -0,0 +1,23 @@
+const BaseBalanceProvider = require('./baseBalanceProvider')
+
+class GenericBalanceProvider extends BaseBalanceProvider {
+  constructor(platform) {
+    super(platform)
+  }
+
+  async queryBalance(account) {
+    this.logger.debug(`${this.platform} 暂无专用余额 API，实现降级策略`)
+
+    if (account && Object.prototype.hasOwnProperty.call(account, 'dailyQuota')) {
+      return this.readQuotaFromFields(account)
+    }
+
+    return {
+      balance: null,
+      currency: 'USD',
+      queryMethod: 'local'
+    }
+  }
+}
+
+module.exports = GenericBalanceProvider
diff --git a/src/services/balanceProviders/index.js b/src/services/balanceProviders/index.js
new file mode 100644
index 00000000..47806f1d
--- /dev/null
+++ b/src/services/balanceProviders/index.js
@@ -0,0 +1,25 @@
+const ClaudeBalanceProvider = require('./claudeBalanceProvider')
+const ClaudeConsoleBalanceProvider = require('./claudeConsoleBalanceProvider')
+const OpenAIResponsesBalanceProvider = require('./openaiResponsesBalanceProvider')
+const GenericBalanceProvider = require('./genericBalanceProvider')
+const GeminiBalanceProvider = require('./geminiBalanceProvider')
+
+function registerAllProviders(balanceService) {
+  // Claude
+  balanceService.registerProvider('claude', new ClaudeBalanceProvider())
+  balanceService.registerProvider('claude-console', new ClaudeConsoleBalanceProvider())
+
+  // OpenAI / Codex
+  balanceService.registerProvider('openai-responses', new OpenAIResponsesBalanceProvider())
+  balanceService.registerProvider('openai', new GenericBalanceProvider('openai'))
+  balanceService.registerProvider('azure_openai', new GenericBalanceProvider('azure_openai'))
+
+  // 其他平台（降级）
+  balanceService.registerProvider('gemini', new GeminiBalanceProvider())
+  balanceService.registerProvider('gemini-api', new GenericBalanceProvider('gemini-api'))
+  balanceService.registerProvider('bedrock', new GenericBalanceProvider('bedrock'))
+  balanceService.registerProvider('droid', new GenericBalanceProvider('droid'))
+  balanceService.registerProvider('ccr', new GenericBalanceProvider('ccr'))
+}
+
+module.exports = { registerAllProviders }
diff --git a/src/services/balanceProviders/openaiResponsesBalanceProvider.js b/src/services/balanceProviders/openaiResponsesBalanceProvider.js
new file mode 100644
index 00000000..9ff8433e
--- /dev/null
+++ b/src/services/balanceProviders/openaiResponsesBalanceProvider.js
@@ -0,0 +1,54 @@
+const BaseBalanceProvider = require('./baseBalanceProvider')
+
+class OpenAIResponsesBalanceProvider extends BaseBalanceProvider {
+  constructor() {
+    super('openai-responses')
+  }
+
+  /**
+   * OpenAI-Responses：
+   * - 优先使用 dailyQuota 字段（如果配置了额度）
+   * - 可选：尝试调用兼容 API（不同服务商实现不一，失败自动降级）
+   */
+  async queryBalance(account) {
+    this.logger.debug(`查询 OpenAI Responses 余额: ${account?.id}`)
+
+    // 配置了额度时直接返回（字段法）
+    if (account?.dailyQuota && Number(account.dailyQuota) > 0) {
+      return this.readQuotaFromFields(account)
+    }
+
+    // 尝试调用 usage 接口（兼容性不保证）
+    if (account?.apiKey && account?.baseApi) {
+      const baseApi = String(account.baseApi).replace(/\/$/, '')
+      const response = await this.makeRequest(
+        `${baseApi}/v1/usage`,
+        {
+          method: 'GET',
+          headers: {
+            Authorization: `Bearer ${account.apiKey}`,
+            'Content-Type': 'application/json'
+          }
+        },
+        account
+      )
+
+      if (response.success) {
+        return {
+          balance: null,
+          currency: this.parseCurrency(response.data),
+          queryMethod: 'api',
+          rawData: response.data
+        }
+      }
+    }
+
+    return {
+      balance: null,
+      currency: 'USD',
+      queryMethod: 'local'
+    }
+  }
+}
+
+module.exports = OpenAIResponsesBalanceProvider
diff --git a/src/services/balanceScriptService.js b/src/services/balanceScriptService.js
new file mode 100644
index 00000000..3d348d33
--- /dev/null
+++ b/src/services/balanceScriptService.js
@@ -0,0 +1,210 @@
+const vm = require('vm')
+const axios = require('axios')
+const { isBalanceScriptEnabled } = require('../utils/featureFlags')
+
+/**
+ * SSRF防护：检查URL是否访问内网或敏感地址
+ * @param {string} url - 要检查的URL
+ * @returns {boolean} - true表示URL安全
+ */
+function isUrlSafe(url) {
+  try {
+    const parsed = new URL(url)
+    const hostname = parsed.hostname.toLowerCase()
+
+    // 禁止的协议
+    if (!['http:', 'https:'].includes(parsed.protocol)) {
+      return false
+    }
+
+    // 禁止访问localhost和私有IP
+    const privatePatterns = [
+      /^localhost$/i,
+      /^127\./,
+      /^10\./,
+      /^172\.(1[6-9]|2[0-9]|3[0-1])\./,
+      /^192\.168\./,
+      /^169\.254\./, // AWS metadata
+      /^0\./, // 0.0.0.0
+      /^::1$/,
+      /^fc00:/i,
+      /^fe80:/i,
+      /\.local$/i,
+      /\.internal$/i,
+      /\.localhost$/i
+    ]
+
+    for (const pattern of privatePatterns) {
+      if (pattern.test(hostname)) {
+        return false
+      }
+    }
+
+    return true
+  } catch {
+    return false
+  }
+}
+
+/**
+ * 可配置脚本余额查询执行器
+ * - 脚本格式：({ request: {...}, extractor: function(response){...} })
+ * - 模板变量：{{baseUrl}}, {{apiKey}}, {{token}}, {{accountId}}, {{platform}}, {{extra}}
+ */
+class BalanceScriptService {
+  /**
+   * 执行脚本：返回标准余额结构 + 原始响应
+   * @param {object} options
+   *  - scriptBody: string
+   *  - variables: Record<string,string>
+   *  - timeoutSeconds: number
+   */
+  async execute(options = {}) {
+    if (!isBalanceScriptEnabled()) {
+      const error = new Error('余额脚本功能已禁用（可通过 BALANCE_SCRIPT_ENABLED=true 启用）')
+      error.code = 'BALANCE_SCRIPT_DISABLED'
+      throw error
+    }
+
+    const scriptBody = options.scriptBody?.trim()
+    if (!scriptBody) {
+      throw new Error('脚本内容为空')
+    }
+
+    const timeoutMs = Math.max(1, (options.timeoutSeconds || 10) * 1000)
+    const sandbox = {
+      console,
+      Math,
+      Date
+    }
+
+    let scriptResult
+    try {
+      const wrapped = scriptBody.startsWith('(') ? scriptBody : `(${scriptBody})`
+      const script = new vm.Script(wrapped)
+      scriptResult = script.runInNewContext(sandbox, { timeout: timeoutMs })
+    } catch (error) {
+      throw new Error(`脚本解析失败: ${error.message}`)
+    }
+
+    if (!scriptResult || typeof scriptResult !== 'object') {
+      throw new Error('脚本返回格式无效（需返回 { request, extractor }）')
+    }
+
+    const variables = options.variables || {}
+    const request = this.applyTemplates(scriptResult.request || {}, variables)
+    const { extractor } = scriptResult
+
+    if (!request?.url || typeof request.url !== 'string') {
+      throw new Error('脚本 request.url 不能为空')
+    }
+
+    // SSRF防护：验证URL安全性
+    if (!isUrlSafe(request.url)) {
+      throw new Error('脚本 request.url 不安全：禁止访问内网地址、localhost或使用非HTTP(S)协议')
+    }
+
+    if (typeof extractor !== 'function') {
+      throw new Error('脚本 extractor 必须是函数')
+    }
+
+    const axiosConfig = {
+      url: request.url,
+      method: (request.method || 'GET').toUpperCase(),
+      headers: request.headers || {},
+      timeout: timeoutMs
+    }
+
+    if (request.params) {
+      axiosConfig.params = request.params
+    }
+    if (request.body || request.data) {
+      axiosConfig.data = request.body || request.data
+    }
+
+    let httpResponse
+    try {
+      httpResponse = await axios(axiosConfig)
+    } catch (error) {
+      const { response } = error || {}
+      const { status, data } = response || {}
+      throw new Error(
+        `请求失败: ${status || ''} ${error.message}${data ? ` | ${JSON.stringify(data)}` : ''}`
+      )
+    }
+
+    const responseData = httpResponse?.data
+
+    let extracted = {}
+    try {
+      extracted = extractor(responseData) || {}
+    } catch (error) {
+      throw new Error(`extractor 执行失败: ${error.message}`)
+    }
+
+    const mapped = this.mapExtractorResult(extracted, responseData)
+    return {
+      mapped,
+      extracted,
+      response: {
+        status: httpResponse?.status,
+        headers: httpResponse?.headers,
+        data: responseData
+      }
+    }
+  }
+
+  applyTemplates(value, variables) {
+    if (typeof value === 'string') {
+      return value.replace(/{{(\w+)}}/g, (_, key) => {
+        const trimmed = key.trim()
+        return variables[trimmed] !== undefined ? String(variables[trimmed]) : ''
+      })
+    }
+    if (Array.isArray(value)) {
+      return value.map((item) => this.applyTemplates(item, variables))
+    }
+    if (value && typeof value === 'object') {
+      const result = {}
+      Object.keys(value).forEach((k) => {
+        result[k] = this.applyTemplates(value[k], variables)
+      })
+      return result
+    }
+    return value
+  }
+
+  mapExtractorResult(result = {}, responseData) {
+    const isValid = result.isValid !== false
+    const remaining = Number(result.remaining)
+    const total = Number(result.total)
+    const used = Number(result.used)
+    const currency = result.unit || 'USD'
+
+    const quota =
+      Number.isFinite(total) || Number.isFinite(used)
+        ? {
+            total: Number.isFinite(total) ? total : null,
+            used: Number.isFinite(used) ? used : null,
+            remaining: Number.isFinite(remaining) ? remaining : null,
+            percentage:
+              Number.isFinite(total) && total > 0 && Number.isFinite(used)
+                ? (used / total) * 100
+                : null
+          }
+        : null
+
+    return {
+      status: isValid ? 'success' : 'error',
+      errorMessage: isValid ? '' : result.invalidMessage || '套餐无效',
+      balance: Number.isFinite(remaining) ? remaining : null,
+      currency,
+      quota,
+      planName: result.planName || null,
+      extra: result.extra || null,
+      rawData: responseData || result.raw
+    }
+  }
+}
+
+module.exports = new BalanceScriptService()
diff --git a/src/services/bedrockAccountService.js b/src/services/bedrockAccountService.js
index 38c1c84a..0bb270c0 100644
--- a/src/services/bedrockAccountService.js
+++ b/src/services/bedrockAccountService.js
@@ -35,12 +35,13 @@ class BedrockAccountService {
       description = '',
       region = process.env.AWS_REGION || 'us-east-1',
       awsCredentials = null, // { accessKeyId, secretAccessKey, sessionToken }
+      bearerToken = null, // AWS Bearer Token for Bedrock API Keys
       defaultModel = 'us.anthropic.claude-sonnet-4-20250514-v1:0',
       isActive = true,
       accountType = 'shared', // 'dedicated' or 'shared'
       priority = 50, // 调度优先级 (1-100，数字越小优先级越高)
       schedulable = true, // 是否可被调度
-      credentialType = 'default' // 'default', 'access_key', 'bearer_token'
+      credentialType = 'access_key' // 'access_key', 'bearer_token'（默认为 access_key）
     } = options
 
     const accountId = uuidv4()
@@ -71,6 +72,11 @@ class BedrockAccountService {
       accountData.awsCredentials = this._encryptAwsCredentials(awsCredentials)
     }
 
+    // 加密存储 Bearer Token
+    if (bearerToken) {
+      accountData.bearerToken = this._encryptAwsCredentials({ token: bearerToken })
+    }
+
     const client = redis.getClientSafe()
     await client.set(`bedrock_account:${accountId}`, JSON.stringify(accountData))
     await redis.addToIndex('bedrock_account:index', accountId)
@@ -107,9 +113,85 @@ class BedrockAccountService {
 
       const account = JSON.parse(accountData)
 
-      // 解密AWS凭证用于内部使用
-      if (account.awsCredentials) {
-        account.awsCredentials = this._decryptAwsCredentials(account.awsCredentials)
+      // 根据凭证类型解密对应的凭证
+      // 增强逻辑：优先按照 credentialType 解密，如果字段不存在则尝试解密实际存在的字段（兜底）
+      try {
+        let accessKeyDecrypted = false
+        let bearerTokenDecrypted = false
+
+        // 第一步：按照 credentialType 尝试解密对应的凭证
+        if (account.credentialType === 'access_key' && account.awsCredentials) {
+          // Access Key 模式：解密 AWS 凭证
+          account.awsCredentials = this._decryptAwsCredentials(account.awsCredentials)
+          accessKeyDecrypted = true
+          logger.debug(
+            `🔓 解密 Access Key 成功 - ID: ${accountId}, 类型: ${account.credentialType}`
+          )
+        } else if (account.credentialType === 'bearer_token' && account.bearerToken) {
+          // Bearer Token 模式：解密 Bearer Token
+          const decrypted = this._decryptAwsCredentials(account.bearerToken)
+          account.bearerToken = decrypted.token
+          bearerTokenDecrypted = true
+          logger.debug(
+            `🔓 解密 Bearer Token 成功 - ID: ${accountId}, 类型: ${account.credentialType}`
+          )
+        } else if (!account.credentialType || account.credentialType === 'default') {
+          // 向后兼容：旧版本账号可能没有 credentialType 字段，尝试解密所有存在的凭证
+          if (account.awsCredentials) {
+            account.awsCredentials = this._decryptAwsCredentials(account.awsCredentials)
+            accessKeyDecrypted = true
+          }
+          if (account.bearerToken) {
+            const decrypted = this._decryptAwsCredentials(account.bearerToken)
+            account.bearerToken = decrypted.token
+            bearerTokenDecrypted = true
+          }
+          logger.debug(
+            `🔓 兼容模式解密 - ID: ${accountId}, Access Key: ${accessKeyDecrypted}, Bearer Token: ${bearerTokenDecrypted}`
+          )
+        }
+
+        // 第二步：兜底逻辑 - 如果按照 credentialType 没有解密到任何凭证，尝试解密实际存在的字段
+        if (!accessKeyDecrypted && !bearerTokenDecrypted) {
+          logger.warn(
+            `⚠️ credentialType="${account.credentialType}" 与实际字段不匹配，尝试兜底解密 - ID: ${accountId}`
+          )
+          if (account.awsCredentials) {
+            account.awsCredentials = this._decryptAwsCredentials(account.awsCredentials)
+            accessKeyDecrypted = true
+            logger.warn(
+              `🔓 兜底解密 Access Key 成功 - ID: ${accountId}, credentialType 应为 'access_key'`
+            )
+          }
+          if (account.bearerToken) {
+            const decrypted = this._decryptAwsCredentials(account.bearerToken)
+            account.bearerToken = decrypted.token
+            bearerTokenDecrypted = true
+            logger.warn(
+              `🔓 兜底解密 Bearer Token 成功 - ID: ${accountId}, credentialType 应为 'bearer_token'`
+            )
+          }
+        }
+
+        // 验证至少解密了一种凭证
+        if (!accessKeyDecrypted && !bearerTokenDecrypted) {
+          logger.error(
+            `❌ 未找到任何凭证可解密 - ID: ${accountId}, credentialType: ${account.credentialType}, hasAwsCredentials: ${!!account.awsCredentials}, hasBearerToken: ${!!account.bearerToken}`
+          )
+          return {
+            success: false,
+            error: 'No valid credentials found in account data'
+          }
+        }
+      } catch (decryptError) {
+        logger.error(
+          `❌ 解密Bedrock凭证失败 - ID: ${accountId}, 类型: ${account.credentialType}`,
+          decryptError
+        )
+        return {
+          success: false,
+          error: `Credentials decryption failed: ${decryptError.message}`
+        }
       }
 
       logger.debug(`🔍 获取Bedrock账户 - ID: ${accountId}, 名称: ${account.name}`)
@@ -162,7 +244,11 @@ class BedrockAccountService {
             updatedAt: account.updatedAt,
             type: 'bedrock',
             platform: 'bedrock',
-            hasCredentials: !!account.awsCredentials
+            // 根据凭证类型判断是否有凭证
+            hasCredentials:
+              account.credentialType === 'bearer_token'
+                ? !!account.bearerToken
+                : !!account.awsCredentials
           })
         }
       }
@@ -242,6 +328,15 @@ class BedrockAccountService {
         logger.info(`🔐 重新加密Bedrock账户凭证 - ID: ${accountId}`)
       }
 
+      // 更新 Bearer Token
+      if (updates.bearerToken !== undefined) {
+        if (updates.bearerToken) {
+          account.bearerToken = this._encryptAwsCredentials({ token: updates.bearerToken })
+        } else {
+          delete account.bearerToken
+        }
+      }
+
       // ✅ 直接保存 subscriptionExpiresAt（如果提供）
       // Bedrock 没有 token 刷新逻辑，不会覆盖此字段
       if (updates.subscriptionExpiresAt !== undefined) {
@@ -353,13 +448,45 @@ class BedrockAccountService {
 
       const account = accountResult.data
 
-      logger.info(`🧪 测试Bedrock账户连接 - ID: ${accountId}, 名称: ${account.name}`)
+      logger.info(
+        `🧪 测试Bedrock账户连接 - ID: ${accountId}, 名称: ${account.name}, 凭证类型: ${account.credentialType}`
+      )
 
-      // 尝试获取模型列表来测试连接
+      // 验证凭证是否已解密
+      const hasValidCredentials =
+        (account.credentialType === 'access_key' && account.awsCredentials) ||
+        (account.credentialType === 'bearer_token' && account.bearerToken) ||
+        (!account.credentialType && (account.awsCredentials || account.bearerToken))
+
+      if (!hasValidCredentials) {
+        logger.error(
+          `❌ 测试失败：账户没有有效凭证 - ID: ${accountId}, credentialType: ${account.credentialType}`
+        )
+        return {
+          success: false,
+          error: 'No valid credentials found after decryption'
+        }
+      }
+
+      // 尝试创建 Bedrock 客户端来验证凭证格式
+      try {
+        bedrockRelayService._getBedrockClient(account.region, account)
+        logger.debug(`✅ Bedrock客户端创建成功 - ID: ${accountId}`)
+      } catch (clientError) {
+        logger.error(`❌ 创建Bedrock客户端失败 - ID: ${accountId}`, clientError)
+        return {
+          success: false,
+          error: `Failed to create Bedrock client: ${clientError.message}`
+        }
+      }
+
+      // 获取可用模型列表（硬编码，但至少验证了凭证格式正确）
       const models = await bedrockRelayService.getAvailableModels(account)
 
       if (models && models.length > 0) {
-        logger.info(`✅ Bedrock账户测试成功 - ID: ${accountId}, 发现 ${models.length} 个模型`)
+        logger.info(
+          `✅ Bedrock账户测试成功 - ID: ${accountId}, 发现 ${models.length} 个模型, 凭证类型: ${account.credentialType}`
+        )
         return {
           success: true,
           data: {
@@ -384,6 +511,135 @@ class BedrockAccountService {
     }
   }
 
+  /**
+   * 🧪 测试 Bedrock 账户连接（SSE 流式返回，供前端测试页面使用）
+   * @param {string} accountId - 账户ID
+   * @param {Object} res - Express response 对象
+   * @param {string} model - 测试使用的模型
+   */
+  async testAccountConnection(accountId, res, model = null) {
+    const { InvokeModelWithResponseStreamCommand } = require('@aws-sdk/client-bedrock-runtime')
+
+    try {
+      // 获取账户信息
+      const accountResult = await this.getAccount(accountId)
+      if (!accountResult.success) {
+        throw new Error(accountResult.error || 'Account not found')
+      }
+
+      const account = accountResult.data
+
+      // 根据账户类型选择合适的测试模型
+      if (!model) {
+        // Access Key 模式使用 Haiku（更快更便宜）
+        model = account.defaultModel || 'us.anthropic.claude-3-5-haiku-20241022-v1:0'
+      }
+
+      logger.info(
+        `🧪 Testing Bedrock account connection: ${account.name} (${accountId}), model: ${model}, credentialType: ${account.credentialType}`
+      )
+
+      // 设置 SSE 响应头
+      res.setHeader('Content-Type', 'text/event-stream')
+      res.setHeader('Cache-Control', 'no-cache')
+      res.setHeader('Connection', 'keep-alive')
+      res.setHeader('X-Accel-Buffering', 'no')
+      res.status(200)
+
+      // 发送 test_start 事件
+      res.write(`data: ${JSON.stringify({ type: 'test_start' })}\n\n`)
+
+      // 构造测试请求体（Bedrock 格式）
+      const bedrockPayload = {
+        anthropic_version: 'bedrock-2023-05-31',
+        max_tokens: 256,
+        messages: [
+          {
+            role: 'user',
+            content:
+              'Hello! Please respond with a simple greeting to confirm the connection is working. And tell me who are you?'
+          }
+        ]
+      }
+
+      // 获取 Bedrock 客户端
+      const region = account.region || bedrockRelayService.defaultRegion
+      const client = bedrockRelayService._getBedrockClient(region, account)
+
+      // 创建流式调用命令
+      const command = new InvokeModelWithResponseStreamCommand({
+        modelId: model,
+        body: JSON.stringify(bedrockPayload),
+        contentType: 'application/json',
+        accept: 'application/json'
+      })
+
+      logger.debug(`🌊 Bedrock test stream - model: ${model}, region: ${region}`)
+
+      const startTime = Date.now()
+      const response = await client.send(command)
+
+      // 处理流式响应
+      // let responseText = ''
+      for await (const chunk of response.body) {
+        if (chunk.chunk) {
+          const chunkData = JSON.parse(new TextDecoder().decode(chunk.chunk.bytes))
+
+          // 提取文本内容
+          if (chunkData.type === 'content_block_delta' && chunkData.delta?.text) {
+            const { text } = chunkData.delta
+            // responseText += text
+
+            // 发送 content 事件
+            res.write(`data: ${JSON.stringify({ type: 'content', text })}\n\n`)
+          }
+
+          // 检测错误
+          if (chunkData.type === 'error') {
+            throw new Error(chunkData.error?.message || 'Bedrock API error')
+          }
+        }
+      }
+
+      const duration = Date.now() - startTime
+      logger.info(`✅ Bedrock test completed - model: ${model}, duration: ${duration}ms`)
+
+      // 发送 message_stop 事件（前端兼容）
+      res.write(`data: ${JSON.stringify({ type: 'message_stop' })}\n\n`)
+
+      // 发送 test_complete 事件
+      res.write(`data: ${JSON.stringify({ type: 'test_complete', success: true })}\n\n`)
+
+      // 结束响应
+      res.end()
+
+      logger.info(`✅ Test request completed for Bedrock account: ${account.name}`)
+    } catch (error) {
+      logger.error(`❌ Test Bedrock account connection failed:`, error)
+
+      // 发送错误事件给前端
+      try {
+        // 检查响应流是否仍然可写
+        if (!res.writableEnded && !res.destroyed) {
+          if (!res.headersSent) {
+            res.setHeader('Content-Type', 'text/event-stream')
+            res.setHeader('Cache-Control', 'no-cache')
+            res.setHeader('Connection', 'keep-alive')
+            res.status(200)
+          }
+          const errorMsg = error.message || '测试失败'
+          res.write(`data: ${JSON.stringify({ type: 'error', error: errorMsg })}\n\n`)
+          res.end()
+        }
+      } catch (writeError) {
+        logger.error('Failed to write error to response stream:', writeError)
+      }
+
+      // 不再重新抛出错误，避免路由层再次处理
+      // throw error
+    }
+  }
+
   /**
    * 检查账户订阅是否过期
    * @param {Object} account - 账户对象
diff --git a/src/services/bedrockRelayService.js b/src/services/bedrockRelayService.js
index d04e42b2..0a73e115 100644
--- a/src/services/bedrockRelayService.js
+++ b/src/services/bedrockRelayService.js
@@ -48,13 +48,17 @@ class BedrockRelayService {
         secretAccessKey: bedrockAccount.awsCredentials.secretAccessKey,
         sessionToken: bedrockAccount.awsCredentials.sessionToken
       }
+    } else if (bedrockAccount?.bearerToken) {
+      // Bearer Token 模式：AWS SDK >= 3.400.0 会自动检测环境变量
+      clientConfig.token = { token: bedrockAccount.bearerToken }
+      logger.debug(`🔑 使用 Bearer Token 认证 - 账户: ${bedrockAccount.name || 'unknown'}`)
     } else {
       // 检查是否有环境变量凭证
       if (process.env.AWS_ACCESS_KEY_ID && process.env.AWS_SECRET_ACCESS_KEY) {
         clientConfig.credentials = fromEnv()
       } else {
         throw new Error(
-          'AWS凭证未配置。请在Bedrock账户中配置AWS访问密钥，或设置环境变量AWS_ACCESS_KEY_ID和AWS_SECRET_ACCESS_KEY'
+          'AWS凭证未配置。请在Bedrock账户中配置AWS访问密钥或Bearer Token，或设置环境变量AWS_ACCESS_KEY_ID和AWS_SECRET_ACCESS_KEY'
         )
       }
     }
@@ -431,6 +435,18 @@ class BedrockRelayService {
   _mapToBedrockModel(modelName) {
     // 标准Claude模型名到Bedrock模型名的映射表
     const modelMapping = {
+      // Claude 4.5 Opus
+      'claude-opus-4-5': 'us.anthropic.claude-opus-4-5-20251101-v1:0',
+      'claude-opus-4-5-20251101': 'us.anthropic.claude-opus-4-5-20251101-v1:0',
+
+      // Claude 4.5 Sonnet
+      'claude-sonnet-4-5': 'us.anthropic.claude-sonnet-4-5-20250929-v1:0',
+      'claude-sonnet-4-5-20250929': 'us.anthropic.claude-sonnet-4-5-20250929-v1:0',
+
+      // Claude 4.5 Haiku
+      'claude-haiku-4-5': 'us.anthropic.claude-haiku-4-5-20251001-v1:0',
+      'claude-haiku-4-5-20251001': 'us.anthropic.claude-haiku-4-5-20251001-v1:0',
+
       // Claude Sonnet 4
       'claude-sonnet-4': 'us.anthropic.claude-sonnet-4-20250514-v1:0',
       'claude-sonnet-4-20250514': 'us.anthropic.claude-sonnet-4-20250514-v1:0',
diff --git a/src/services/claudeRelayService.js b/src/services/claudeRelayService.js
index 95da1c7a..cab37ee3 100644
--- a/src/services/claudeRelayService.js
+++ b/src/services/claudeRelayService.js
@@ -29,51 +29,51 @@ const safeClone =
 class ClaudeRelayService {
   constructor() {
     this.claudeApiUrl = 'https://api.anthropic.com/v1/messages?beta=true'
+    // 🧹 内存优化：用于存储请求体字符串，避免闭包捕获
+    this.bodyStore = new Map()
+    this._bodyStoreIdCounter = 0
     this.apiVersion = config.claude.apiVersion
     this.betaHeader = config.claude.betaHeader
     this.systemPrompt = config.claude.systemPrompt
     this.claudeCodeSystemPrompt = "You are Claude Code, Anthropic's official CLI for Claude."
+    this.toolNameSuffix = null
+    this.toolNameSuffixGeneratedAt = 0
+    this.toolNameSuffixTtlMs = 60 * 60 * 1000
   }
 
   // 🔧 根据模型ID和客户端传递的 anthropic-beta 获取最终的 header
-  // 规则：
-  // 1. 如果客户端传递了 anthropic-beta，检查是否包含 oauth-2025-04-20
-  // 2. 如果没有 oauth-2025-04-20，则添加到 claude-code-20250219 后面（如果有的话），否则放在第一位
-  // 3. 如果客户端没传递，则根据模型判断：haiku 不需要 claude-code，其他模型需要
   _getBetaHeader(modelId, clientBetaHeader) {
     const OAUTH_BETA = 'oauth-2025-04-20'
     const CLAUDE_CODE_BETA = 'claude-code-20250219'
+    const INTERLEAVED_THINKING_BETA = 'interleaved-thinking-2025-05-14'
+    const TOOL_STREAMING_BETA = 'fine-grained-tool-streaming-2025-05-14'
 
-    // 如果客户端传递了 anthropic-beta
-    if (clientBetaHeader) {
-      // 检查是否已包含 oauth-2025-04-20
-      if (clientBetaHeader.includes(OAUTH_BETA)) {
-        return clientBetaHeader
-      }
-
-      // 需要添加 oauth-2025-04-20
-      const parts = clientBetaHeader.split(',').map((p) => p.trim())
-
-      // 找到 claude-code-20250219 的位置
-      const claudeCodeIndex = parts.findIndex((p) => p === CLAUDE_CODE_BETA)
-
-      if (claudeCodeIndex !== -1) {
-        // 在 claude-code-20250219 后面插入
-        parts.splice(claudeCodeIndex + 1, 0, OAUTH_BETA)
-      } else {
-        // 放在第一位
-        parts.unshift(OAUTH_BETA)
-      }
-
-      return parts.join(',')
-    }
-
-    // 客户端没有传递，根据模型判断
     const isHaikuModel = modelId && modelId.toLowerCase().includes('haiku')
-    if (isHaikuModel) {
-      return 'oauth-2025-04-20,interleaved-thinking-2025-05-14'
+    const baseBetas = isHaikuModel
+      ? [OAUTH_BETA, INTERLEAVED_THINKING_BETA]
+      : [CLAUDE_CODE_BETA, OAUTH_BETA, INTERLEAVED_THINKING_BETA, TOOL_STREAMING_BETA]
+
+    const betaList = []
+    const seen = new Set()
+    const addBeta = (beta) => {
+      if (!beta || seen.has(beta)) {
+        return
+      }
+      seen.add(beta)
+      betaList.push(beta)
     }
-    return 'claude-code-20250219,oauth-2025-04-20,interleaved-thinking-2025-05-14,fine-grained-tool-streaming-2025-05-14'
+
+    baseBetas.forEach(addBeta)
+
+    if (clientBetaHeader) {
+      clientBetaHeader
+        .split(',')
+        .map((p) => p.trim())
+        .filter(Boolean)
+        .forEach(addBeta)
+    }
+
+    return betaList.join(',')
   }
 
   _buildStandardRateLimitMessage(resetTime) {
@@ -148,6 +148,235 @@ class ClaudeRelayService {
     return ClaudeCodeValidator.includesClaudeCodeSystemPrompt(requestBody, 1)
   }
 
+  _isClaudeCodeUserAgent(clientHeaders) {
+    const userAgent = clientHeaders?.['user-agent'] || clientHeaders?.['User-Agent']
+    return typeof userAgent === 'string' && /^claude-cli\/[^\s]+\s+\(/i.test(userAgent)
+  }
+
+  _isActualClaudeCodeRequest(requestBody, clientHeaders) {
+    return this.isRealClaudeCodeRequest(requestBody) && this._isClaudeCodeUserAgent(clientHeaders)
+  }
+
+  _getHeaderValueCaseInsensitive(headers, key) {
+    if (!headers || typeof headers !== 'object') {
+      return undefined
+    }
+    const lowerKey = key.toLowerCase()
+    for (const candidate of Object.keys(headers)) {
+      if (candidate.toLowerCase() === lowerKey) {
+        return headers[candidate]
+      }
+    }
+    return undefined
+  }
+
+  _isClaudeCodeCredentialError(body) {
+    const message = this._extractErrorMessage(body)
+    if (!message) {
+      return false
+    }
+    const lower = message.toLowerCase()
+    return (
+      lower.includes('only authorized for use with claude code') ||
+      lower.includes('cannot be used for other api requests')
+    )
+  }
+
+  _toPascalCaseToolName(name) {
+    const parts = name.split(/[_-]/).filter(Boolean)
+    if (parts.length === 0) {
+      return name
+    }
+    const pascal = parts
+      .map((part) => part.charAt(0).toUpperCase() + part.slice(1).toLowerCase())
+      .join('')
+    return `${pascal}_tool`
+  }
+
+  _getToolNameSuffix() {
+    const now = Date.now()
+    if (!this.toolNameSuffix || now - this.toolNameSuffixGeneratedAt > this.toolNameSuffixTtlMs) {
+      this.toolNameSuffix = Math.random().toString(36).substring(2, 8)
+      this.toolNameSuffixGeneratedAt = now
+    }
+    return this.toolNameSuffix
+  }
+
+  _toRandomizedToolName(name) {
+    const suffix = this._getToolNameSuffix()
+    return `${name}_${suffix}`
+  }
+
+  _transformToolNamesInRequestBody(body, options = {}) {
+    if (!body || typeof body !== 'object') {
+      return null
+    }
+
+    const useRandomized = options.useRandomizedToolNames === true
+    const forwardMap = new Map()
+    const reverseMap = new Map()
+
+    const transformName = (name) => {
+      if (typeof name !== 'string' || name.length === 0) {
+        return name
+      }
+      if (forwardMap.has(name)) {
+        return forwardMap.get(name)
+      }
+      const transformed = useRandomized
+        ? this._toRandomizedToolName(name)
+        : this._toPascalCaseToolName(name)
+      if (transformed !== name) {
+        forwardMap.set(name, transformed)
+        reverseMap.set(transformed, name)
+      }
+      return transformed
+    }
+
+    if (Array.isArray(body.tools)) {
+      body.tools.forEach((tool) => {
+        if (tool && typeof tool.name === 'string') {
+          tool.name = transformName(tool.name)
+        }
+      })
+    }
+
+    if (body.tool_choice && typeof body.tool_choice === 'object') {
+      if (typeof body.tool_choice.name === 'string') {
+        body.tool_choice.name = transformName(body.tool_choice.name)
+      }
+    }
+
+    if (Array.isArray(body.messages)) {
+      body.messages.forEach((message) => {
+        const content = message?.content
+        if (Array.isArray(content)) {
+          content.forEach((block) => {
+            if (block?.type === 'tool_use' && typeof block.name === 'string') {
+              block.name = transformName(block.name)
+            }
+          })
+        }
+      })
+    }
+
+    return reverseMap.size > 0 ? reverseMap : null
+  }
+
+  _restoreToolName(name, toolNameMap) {
+    if (!toolNameMap || toolNameMap.size === 0) {
+      return name
+    }
+    return toolNameMap.get(name) || name
+  }
+
+  _restoreToolNamesInContentBlocks(content, toolNameMap) {
+    if (!Array.isArray(content)) {
+      return
+    }
+
+    content.forEach((block) => {
+      if (block?.type === 'tool_use' && typeof block.name === 'string') {
+        block.name = this._restoreToolName(block.name, toolNameMap)
+      }
+    })
+  }
+
+  _restoreToolNamesInResponseObject(responseBody, toolNameMap) {
+    if (!responseBody || typeof responseBody !== 'object') {
+      return
+    }
+
+    if (Array.isArray(responseBody.content)) {
+      this._restoreToolNamesInContentBlocks(responseBody.content, toolNameMap)
+    }
+
+    if (responseBody.message && Array.isArray(responseBody.message.content)) {
+      this._restoreToolNamesInContentBlocks(responseBody.message.content, toolNameMap)
+    }
+  }
+
+  _restoreToolNamesInResponseBody(responseBody, toolNameMap) {
+    if (!responseBody || !toolNameMap || toolNameMap.size === 0) {
+      return responseBody
+    }
+
+    if (typeof responseBody === 'string') {
+      try {
+        const parsed = JSON.parse(responseBody)
+        this._restoreToolNamesInResponseObject(parsed, toolNameMap)
+        return JSON.stringify(parsed)
+      } catch (error) {
+        return responseBody
+      }
+    }
+
+    if (typeof responseBody === 'object') {
+      this._restoreToolNamesInResponseObject(responseBody, toolNameMap)
+    }
+
+    return responseBody
+  }
+
+  _restoreToolNamesInStreamEvent(event, toolNameMap) {
+    if (!event || typeof event !== 'object') {
+      return
+    }
+
+    if (event.content_block && event.content_block.type === 'tool_use') {
+      if (typeof event.content_block.name === 'string') {
+        event.content_block.name = this._restoreToolName(event.content_block.name, toolNameMap)
+      }
+    }
+
+    if (event.delta && event.delta.type === 'tool_use') {
+      if (typeof event.delta.name === 'string') {
+        event.delta.name = this._restoreToolName(event.delta.name, toolNameMap)
+      }
+    }
+
+    if (event.message && Array.isArray(event.message.content)) {
+      this._restoreToolNamesInContentBlocks(event.message.content, toolNameMap)
+    }
+
+    if (Array.isArray(event.content)) {
+      this._restoreToolNamesInContentBlocks(event.content, toolNameMap)
+    }
+  }
+
+  _createToolNameStripperStreamTransformer(streamTransformer, toolNameMap) {
+    if (!toolNameMap || toolNameMap.size === 0) {
+      return streamTransformer
+    }
+
+    return (payload) => {
+      const transformed = streamTransformer ? streamTransformer(payload) : payload
+      if (!transformed || typeof transformed !== 'string') {
+        return transformed
+      }
+
+      const lines = transformed.split('\n')
+      const updated = lines.map((line) => {
+        if (!line.startsWith('data:')) {
+          return line
+        }
+        const jsonStr = line.slice(5).trimStart()
+        if (!jsonStr || jsonStr === '[DONE]') {
+          return line
+        }
+        try {
+          const data = JSON.parse(jsonStr)
+          this._restoreToolNamesInStreamEvent(data, toolNameMap)
+          return `data: ${JSON.stringify(data)}`
+        } catch (error) {
+          return line
+        }
+      })
+
+      return updated.join('\n')
+    }
+  }
+
   // 🚀 转发请求到Claude API
   async relayRequest(
     requestBody,
@@ -161,6 +390,7 @@ class ClaudeRelayService {
     let queueLockAcquired = false
     let queueRequestId = null
     let selectedAccountId = null
+    let bodyStoreIdNonStream = null // 🧹 在 try 块外声明，以便 finally 清理
 
     try {
       // 调试日志：查看API Key数据
@@ -319,7 +549,12 @@ class ClaudeRelayService {
       // 获取有效的访问token
       const accessToken = await claudeAccountService.getValidAccessToken(accountId)
 
+      const isRealClaudeCodeRequest = this._isActualClaudeCodeRequest(requestBody, clientHeaders)
       const processedBody = this._processRequestBody(requestBody, account)
+      // 🧹 内存优化：存储到 bodyStore，避免闭包捕获
+      const originalBodyString = JSON.stringify(processedBody)
+      bodyStoreIdNonStream = ++this._bodyStoreIdCounter
+      this.bodyStore.set(bodyStoreIdNonStream, originalBodyString)
 
       // 获取代理配置
       const proxyAgent = await this._getProxyAgent(accountId)
@@ -340,36 +575,59 @@ class ClaudeRelayService {
         clientResponse.once('close', handleClientDisconnect)
       }
 
-      // 发送请求到Claude API（传入回调以获取请求对象）
-      // 🔄 403 重试机制：仅对 claude-official 类型账户（OAuth 或 Setup Token）
-      const maxRetries = this._shouldRetryOn403(accountType) ? 2 : 0
-      let retryCount = 0
-      let response
-      let shouldRetry = false
+      const makeRequestWithRetries = async (requestOptions) => {
+        const maxRetries = this._shouldRetryOn403(accountType) ? 2 : 0
+        let retryCount = 0
+        let response
+        let shouldRetry = false
 
-      do {
-        response = await this._makeClaudeRequest(
-          processedBody,
-          accessToken,
-          proxyAgent,
-          clientHeaders,
-          accountId,
-          (req) => {
-            upstreamRequest = req
-          },
-          options
-        )
-
-        // 检查是否需要重试 403
-        shouldRetry = response.statusCode === 403 && retryCount < maxRetries
-        if (shouldRetry) {
-          retryCount++
-          logger.warn(
-            `🔄 403 error for account ${accountId}, retry ${retryCount}/${maxRetries} after 2s`
+        do {
+          // 🧹 每次重试从 bodyStore 解析新对象，避免闭包捕获
+          let retryRequestBody
+          try {
+            retryRequestBody = JSON.parse(this.bodyStore.get(bodyStoreIdNonStream))
+          } catch (parseError) {
+            logger.error(`❌ Failed to parse body for retry: ${parseError.message}`)
+            throw new Error(`Request body parse failed: ${parseError.message}`)
+          }
+          response = await this._makeClaudeRequest(
+            retryRequestBody,
+            accessToken,
+            proxyAgent,
+            clientHeaders,
+            accountId,
+            (req) => {
+              upstreamRequest = req
+            },
+            {
+              ...requestOptions,
+              isRealClaudeCodeRequest
+            }
           )
-          await this._sleep(2000)
-        }
-      } while (shouldRetry)
+
+          shouldRetry = response.statusCode === 403 && retryCount < maxRetries
+          if (shouldRetry) {
+            retryCount++
+            logger.warn(
+              `🔄 403 error for account ${accountId}, retry ${retryCount}/${maxRetries} after 2s`
+            )
+            await this._sleep(2000)
+          }
+        } while (shouldRetry)
+
+        return { response, retryCount }
+      }
+
+      let requestOptions = options
+      let { response, retryCount } = await makeRequestWithRetries(requestOptions)
+
+      if (
+        this._isClaudeCodeCredentialError(response.body) &&
+        requestOptions.useRandomizedToolNames !== true
+      ) {
+        requestOptions = { ...requestOptions, useRandomizedToolNames: true }
+        ;({ response, retryCount } = await makeRequestWithRetries(requestOptions))
+      }
 
       // 如果进行了重试，记录最终结果
       if (retryCount > 0) {
@@ -669,6 +927,10 @@ class ClaudeRelayService {
       )
       throw error
     } finally {
+      // 🧹 清理 bodyStore
+      if (bodyStoreIdNonStream !== null) {
+        this.bodyStore.delete(bodyStoreIdNonStream)
+      }
       // 📬 释放用户消息队列锁（兜底，正常情况下已在请求发送后提前释放）
       if (queueLockAcquired && queueRequestId && selectedAccountId) {
         try {
@@ -1043,23 +1305,19 @@ class ClaudeRelayService {
     // 获取过滤后的客户端 headers
     const filteredHeaders = this._filterClientHeaders(clientHeaders)
 
-    // 判断是否是真实的 Claude Code 请求
-    const isRealClaudeCode = this.isRealClaudeCodeRequest(body)
+    const isRealClaudeCode =
+      requestOptions.isRealClaudeCodeRequest === undefined
+        ? this.isRealClaudeCodeRequest(body)
+        : requestOptions.isRealClaudeCodeRequest === true
 
     // 如果不是真实的 Claude Code 请求，需要使用从账户获取的 Claude Code headers
     let finalHeaders = { ...filteredHeaders }
     let requestPayload = body
 
     if (!isRealClaudeCode) {
-      // 获取该账号存储的 Claude Code headers
       const claudeCodeHeaders = await claudeCodeHeadersService.getAccountHeaders(accountId)
-
-      // 只添加客户端没有提供的 headers
       Object.keys(claudeCodeHeaders).forEach((key) => {
-        const lowerKey = key.toLowerCase()
-        if (!finalHeaders[key] && !finalHeaders[lowerKey]) {
-          finalHeaders[key] = claudeCodeHeaders[key]
-        }
+        finalHeaders[key] = claudeCodeHeaders[key]
       })
     }
 
@@ -1081,6 +1339,13 @@ class ClaudeRelayService {
     requestPayload = extensionResult.body
     finalHeaders = extensionResult.headers
 
+    let toolNameMap = null
+    if (!isRealClaudeCode) {
+      toolNameMap = this._transformToolNamesInRequestBody(requestPayload, {
+        useRandomizedToolNames: requestOptions.useRandomizedToolNames === true
+      })
+    }
+
     // 序列化请求体，计算 content-length
     const bodyString = JSON.stringify(requestPayload)
     const contentLength = Buffer.byteLength(bodyString, 'utf8')
@@ -1108,13 +1373,14 @@ class ClaudeRelayService {
 
     // 根据模型和客户端传递的 anthropic-beta 动态设置 header
     const modelId = requestPayload?.model || body?.model
-    const clientBetaHeader = clientHeaders?.['anthropic-beta']
+    const clientBetaHeader = this._getHeaderValueCaseInsensitive(clientHeaders, 'anthropic-beta')
     headers['anthropic-beta'] = this._getBetaHeader(modelId, clientBetaHeader)
     return {
       requestPayload,
       bodyString,
       headers,
-      isRealClaudeCode
+      isRealClaudeCode,
+      toolNameMap
     }
   }
 
@@ -1180,7 +1446,8 @@ class ClaudeRelayService {
       return prepared.abortResponse
     }
 
-    const { bodyString, headers } = prepared
+    let { bodyString } = prepared
+    const { headers, isRealClaudeCode, toolNameMap } = prepared
 
     return new Promise((resolve, reject) => {
       // 支持自定义路径（如 count_tokens）
@@ -1235,6 +1502,10 @@ class ClaudeRelayService {
               responseBody = responseData.toString('utf8')
             }
 
+            if (!isRealClaudeCode) {
+              responseBody = this._restoreToolNamesInResponseBody(responseBody, toolNameMap)
+            }
+
             const response = {
               statusCode: res.statusCode,
               headers: res.headers,
@@ -1293,6 +1564,8 @@ class ClaudeRelayService {
 
       // 写入请求体
       req.write(bodyString)
+      // 🧹 内存优化：立即清空 bodyString 引用，避免闭包捕获
+      bodyString = null
       req.end()
     })
   }
@@ -1474,7 +1747,12 @@ class ClaudeRelayService {
       // 获取有效的访问token
       const accessToken = await claudeAccountService.getValidAccessToken(accountId)
 
+      const isRealClaudeCodeRequest = this._isActualClaudeCodeRequest(requestBody, clientHeaders)
       const processedBody = this._processRequestBody(requestBody, account)
+      // 🧹 内存优化：存储到 bodyStore，不放入 requestOptions 避免闭包捕获
+      const originalBodyString = JSON.stringify(processedBody)
+      const bodyStoreId = ++this._bodyStoreIdCounter
+      this.bodyStore.set(bodyStoreId, originalBodyString)
 
       // 获取代理配置
       const proxyAgent = await this._getProxyAgent(accountId)
@@ -1496,7 +1774,11 @@ class ClaudeRelayService {
         accountType,
         sessionHash,
         streamTransformer,
-        options,
+        {
+          ...options,
+          bodyStoreId,
+          isRealClaudeCodeRequest
+        },
         isDedicatedOfficialAccount,
         // 📬 新增回调：在收到响应头时释放队列锁
         async () => {
@@ -1585,7 +1867,12 @@ class ClaudeRelayService {
       return prepared.abortResponse
     }
 
-    const { bodyString, headers } = prepared
+    let { bodyString } = prepared
+    const { headers, toolNameMap } = prepared
+    const toolNameStreamTransformer = this._createToolNameStripperStreamTransformer(
+      streamTransformer,
+      toolNameMap
+    )
 
     return new Promise((resolve, reject) => {
       const url = new URL(this.claudeApiUrl)
@@ -1693,8 +1980,22 @@ class ClaudeRelayService {
 
               try {
                 // 递归调用自身进行重试
+                // 🧹 从 bodyStore 获取字符串用于重试
+                if (
+                  !requestOptions.bodyStoreId ||
+                  !this.bodyStore.has(requestOptions.bodyStoreId)
+                ) {
+                  throw new Error('529 retry requires valid bodyStoreId')
+                }
+                let retryBody
+                try {
+                  retryBody = JSON.parse(this.bodyStore.get(requestOptions.bodyStoreId))
+                } catch (parseError) {
+                  logger.error(`❌ Failed to parse body for 529 retry: ${parseError.message}`)
+                  throw new Error(`529 retry body parse failed: ${parseError.message}`)
+                }
                 const retryResult = await this._makeClaudeStreamRequestWithUsageCapture(
-                  body,
+                  retryBody,
                   accessToken,
                   proxyAgent,
                   clientHeaders,
@@ -1789,11 +2090,48 @@ class ClaudeRelayService {
             errorData += chunk.toString()
           })
 
-          res.on('end', () => {
+          res.on('end', async () => {
             logger.error(
               `❌ Claude API error response (Account: ${account?.name || accountId}):`,
               errorData
             )
+            if (
+              this._isClaudeCodeCredentialError(errorData) &&
+              requestOptions.useRandomizedToolNames !== true &&
+              requestOptions.bodyStoreId &&
+              this.bodyStore.has(requestOptions.bodyStoreId)
+            ) {
+              let retryBody
+              try {
+                retryBody = JSON.parse(this.bodyStore.get(requestOptions.bodyStoreId))
+              } catch (parseError) {
+                logger.error(`❌ Failed to parse body for 403 retry: ${parseError.message}`)
+                reject(new Error(`403 retry body parse failed: ${parseError.message}`))
+                return
+              }
+              try {
+                const retryResult = await this._makeClaudeStreamRequestWithUsageCapture(
+                  retryBody,
+                  accessToken,
+                  proxyAgent,
+                  clientHeaders,
+                  responseStream,
+                  usageCallback,
+                  accountId,
+                  accountType,
+                  sessionHash,
+                  streamTransformer,
+                  { ...requestOptions, useRandomizedToolNames: true },
+                  isDedicatedOfficialAccount,
+                  onResponseStart,
+                  retryCount
+                )
+                resolve(retryResult)
+              } catch (retryError) {
+                reject(retryError)
+              }
+              return
+            }
             if (this._isOrganizationDisabledError(res.statusCode, errorData)) {
               ;(async () => {
                 try {
@@ -1828,7 +2166,7 @@ class ClaudeRelayService {
               }
 
               // 如果有 streamTransformer（如测试请求），使用前端期望的格式
-              if (streamTransformer) {
+              if (toolNameStreamTransformer) {
                 responseStream.write(
                   `data: ${JSON.stringify({ type: 'error', error: errorMessage })}\n\n`
                 )
@@ -1867,6 +2205,11 @@ class ClaudeRelayService {
         let rateLimitDetected = false // 限流检测标志
 
         // 监听数据块，解析SSE并寻找usage信息
+        // 🧹 内存优化：在闭包创建前提取需要的值，避免闭包捕获 body 和 requestOptions
+        // body 和 requestOptions 只在闭包外使用，闭包内只引用基本类型
+        const requestedModel = body?.model || 'unknown'
+        const { isRealClaudeCodeRequest } = requestOptions
+
         res.on('data', (chunk) => {
           try {
             const chunkStr = chunk.toString()
@@ -1882,8 +2225,8 @@ class ClaudeRelayService {
               if (isStreamWritable(responseStream)) {
                 const linesToForward = lines.join('\n') + (lines.length > 0 ? '\n' : '')
                 // 如果有流转换器，应用转换
-                if (streamTransformer) {
-                  const transformed = streamTransformer(linesToForward)
+                if (toolNameStreamTransformer) {
+                  const transformed = toolNameStreamTransformer(linesToForward)
                   if (transformed) {
                     responseStream.write(transformed)
                   }
@@ -2016,8 +2359,8 @@ class ClaudeRelayService {
           try {
             // 处理缓冲区中剩余的数据
             if (buffer.trim() && isStreamWritable(responseStream)) {
-              if (streamTransformer) {
-                const transformed = streamTransformer(buffer)
+              if (toolNameStreamTransformer) {
+                const transformed = toolNameStreamTransformer(buffer)
                 if (transformed) {
                   responseStream.write(transformed)
                 }
@@ -2072,7 +2415,7 @@ class ClaudeRelayService {
 
             // 打印原始的usage数据为JSON字符串，避免嵌套问题
             logger.info(
-              `📊 === Stream Request Usage Summary === Model: ${body.model}, Total Events: ${allUsageData.length}, Usage Data: ${JSON.stringify(allUsageData)}`
+              `📊 === Stream Request Usage Summary === Model: ${requestedModel}, Total Events: ${allUsageData.length}, Usage Data: ${JSON.stringify(allUsageData)}`
             )
 
             // 一般一个请求只会使用一个模型，即使有多个usage事件也应该合并
@@ -2082,7 +2425,7 @@ class ClaudeRelayService {
               output_tokens: totalUsage.output_tokens,
               cache_creation_input_tokens: totalUsage.cache_creation_input_tokens,
               cache_read_input_tokens: totalUsage.cache_read_input_tokens,
-              model: allUsageData[allUsageData.length - 1].model || body.model // 使用最后一个模型或请求模型
+              model: allUsageData[allUsageData.length - 1].model || requestedModel // 使用最后一个模型或请求模型
             }
 
             // 如果有详细的cache_creation数据，合并它们
@@ -2191,15 +2534,15 @@ class ClaudeRelayService {
             }
 
             // 只有真实的 Claude Code 请求才更新 headers（流式请求）
-            if (
-              clientHeaders &&
-              Object.keys(clientHeaders).length > 0 &&
-              this.isRealClaudeCodeRequest(body)
-            ) {
+            if (clientHeaders && Object.keys(clientHeaders).length > 0 && isRealClaudeCodeRequest) {
               await claudeCodeHeadersService.storeAccountHeaders(accountId, clientHeaders)
             }
           }
 
+          // 🧹 清理 bodyStore
+          if (requestOptions.bodyStoreId) {
+            this.bodyStore.delete(requestOptions.bodyStoreId)
+          }
           logger.debug('🌊 Claude stream response with usage capture completed')
           resolve()
         })
@@ -2256,6 +2599,10 @@ class ClaudeRelayService {
           )
           responseStream.end()
         }
+        // 🧹 清理 bodyStore
+        if (requestOptions.bodyStoreId) {
+          this.bodyStore.delete(requestOptions.bodyStoreId)
+        }
         reject(error)
       })
 
@@ -2285,6 +2632,10 @@ class ClaudeRelayService {
           )
           responseStream.end()
         }
+        // 🧹 清理 bodyStore
+        if (requestOptions.bodyStoreId) {
+          this.bodyStore.delete(requestOptions.bodyStoreId)
+        }
         reject(new Error('Request timeout'))
       })
 
@@ -2298,6 +2649,8 @@ class ClaudeRelayService {
 
       // 写入请求体
       req.write(bodyString)
+      // 🧹 内存优化：立即清空 bodyString 引用，避免闭包捕获
+      bodyString = null
       req.end()
     })
   }
diff --git a/src/services/droidRelayService.js b/src/services/droidRelayService.js
index 77522b78..2ca40d4c 100644
--- a/src/services/droidRelayService.js
+++ b/src/services/droidRelayService.js
@@ -90,7 +90,7 @@ class DroidRelayService {
     return normalizedBody
   }
 
-  async _applyRateLimitTracking(rateLimitInfo, usageSummary, model, context = '') {
+  async _applyRateLimitTracking(rateLimitInfo, usageSummary, model, context = '', keyId = null) {
     if (!rateLimitInfo) {
       return
     }
@@ -99,7 +99,9 @@ class DroidRelayService {
       const { totalTokens, totalCost } = await updateRateLimitCounters(
         rateLimitInfo,
         usageSummary,
-        model
+        model,
+        keyId,
+        'droid'
       )
 
       if (totalTokens > 0) {
@@ -606,7 +608,8 @@ class DroidRelayService {
               clientRequest?.rateLimitInfo,
               usageSummary,
               model,
-              ' [stream]'
+              ' [stream]',
+              keyId
             )
 
             logger.success(`Droid stream completed - Account: ${account.name}`)
@@ -1225,7 +1228,8 @@ class DroidRelayService {
         clientRequest?.rateLimitInfo,
         usageSummary,
         model,
-        endpointLabel
+        endpointLabel,
+        keyId
       )
 
       logger.success(
diff --git a/src/services/geminiAccountService.js b/src/services/geminiAccountService.js
index 4d9fb10c..250fd684 100644
--- a/src/services/geminiAccountService.js
+++ b/src/services/geminiAccountService.js
@@ -14,16 +14,67 @@ const {
 } = require('../utils/tokenRefreshLogger')
 const tokenRefreshService = require('./tokenRefreshService')
 const { createEncryptor } = require('../utils/commonHelper')
+const antigravityClient = require('./antigravityClient')
 
 // Gemini 账户键前缀
 const GEMINI_ACCOUNT_KEY_PREFIX = 'gemini_account:'
 const SHARED_GEMINI_ACCOUNTS_KEY = 'shared_gemini_accounts'
 const ACCOUNT_SESSION_MAPPING_PREFIX = 'gemini_session_account_mapping:'
 
-// Gemini CLI OAuth 配置 - 这些是公开的 Gemini CLI 凭据
-const OAUTH_CLIENT_ID = '681255809395-oo8ft2oprdrnp9e3aqf6av3hmdib135j.apps.googleusercontent.com'
-const OAUTH_CLIENT_SECRET = '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'
-const OAUTH_SCOPES = ['https://www.googleapis.com/auth/cloud-platform']
+// Gemini OAuth 配置 - 支持 Gemini CLI 与 Antigravity 两种 OAuth 应用
+const OAUTH_PROVIDER_GEMINI_CLI = 'gemini-cli'
+const OAUTH_PROVIDER_ANTIGRAVITY = 'antigravity'
+
+const OAUTH_PROVIDERS = {
+  [OAUTH_PROVIDER_GEMINI_CLI]: {
+    // Gemini CLI OAuth 配置（公开）
+    clientId:
+      process.env.GEMINI_OAUTH_CLIENT_ID ||
+      '681255809395-oo8ft2oprdrnp9e3aqf6av3hmdib135j.apps.googleusercontent.com',
+    clientSecret: process.env.GEMINI_OAUTH_CLIENT_SECRET || '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',
+    scopes: ['https://www.googleapis.com/auth/cloud-platform']
+  },
+  [OAUTH_PROVIDER_ANTIGRAVITY]: {
+    // Antigravity OAuth 配置（参考 gcli2api）
+    clientId:
+      process.env.ANTIGRAVITY_OAUTH_CLIENT_ID ||
+      '1071006060591-tmhssin2h21lcre235vtolojh4g403ep.apps.googleusercontent.com',
+    clientSecret:
+      process.env.ANTIGRAVITY_OAUTH_CLIENT_SECRET || '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',
+    scopes: [
+      'https://www.googleapis.com/auth/cloud-platform',
+      'https://www.googleapis.com/auth/userinfo.email',
+      'https://www.googleapis.com/auth/userinfo.profile',
+      'https://www.googleapis.com/auth/cclog',
+      'https://www.googleapis.com/auth/experimentsandconfigs'
+    ]
+  }
+}
+
+if (!process.env.GEMINI_OAUTH_CLIENT_SECRET) {
+  logger.warn(
+    '⚠️ GEMINI_OAUTH_CLIENT_SECRET 未设置，使用内置默认值（建议在生产环境通过环境变量覆盖）'
+  )
+}
+if (!process.env.ANTIGRAVITY_OAUTH_CLIENT_SECRET) {
+  logger.warn(
+    '⚠️ ANTIGRAVITY_OAUTH_CLIENT_SECRET 未设置，使用内置默认值（建议在生产环境通过环境变量覆盖）'
+  )
+}
+
+function normalizeOauthProvider(oauthProvider) {
+  if (!oauthProvider) {
+    return OAUTH_PROVIDER_GEMINI_CLI
+  }
+  return oauthProvider === OAUTH_PROVIDER_ANTIGRAVITY
+    ? OAUTH_PROVIDER_ANTIGRAVITY
+    : OAUTH_PROVIDER_GEMINI_CLI
+}
+
+function getOauthProviderConfig(oauthProvider) {
+  const normalized = normalizeOauthProvider(oauthProvider)
+  return OAUTH_PROVIDERS[normalized] || OAUTH_PROVIDERS[OAUTH_PROVIDER_GEMINI_CLI]
+}
 
 // 🌐 TCP Keep-Alive Agent 配置
 // 解决长时间流式请求中 NAT/防火墙空闲超时导致的连接中断问题
@@ -41,6 +92,117 @@ logger.info('🌐 Gemini HTTPS Agent initialized with TCP Keep-Alive support')
 const encryptor = createEncryptor('gemini-account-salt')
 const { encrypt, decrypt } = encryptor
 
+async function fetchAvailableModelsAntigravity(
+  accessToken,
+  proxyConfig = null,
+  refreshToken = null
+) {
+  try {
+    let effectiveToken = accessToken
+    if (refreshToken) {
+      try {
+        const client = await getOauthClient(
+          accessToken,
+          refreshToken,
+          proxyConfig,
+          OAUTH_PROVIDER_ANTIGRAVITY
+        )
+        if (client && client.getAccessToken) {
+          const latest = await client.getAccessToken()
+          if (latest?.token) {
+            effectiveToken = latest.token
+          }
+        }
+      } catch (error) {
+        logger.warn('Failed to refresh Antigravity access token for models list:', {
+          message: error.message
+        })
+      }
+    }
+
+    const data = await antigravityClient.fetchAvailableModels({
+      accessToken: effectiveToken,
+      proxyConfig
+    })
+    const modelsDict = data?.models
+    const created = Math.floor(Date.now() / 1000)
+
+    const models = []
+    const seen = new Set()
+    const {
+      getAntigravityModelAlias,
+      getAntigravityModelMetadata,
+      normalizeAntigravityModelInput
+    } = require('../utils/antigravityModel')
+
+    const pushModel = (modelId) => {
+      if (!modelId || seen.has(modelId)) {
+        return
+      }
+      seen.add(modelId)
+      const metadata = getAntigravityModelMetadata(modelId)
+      const entry = {
+        id: modelId,
+        object: 'model',
+        created,
+        owned_by: 'antigravity'
+      }
+      if (metadata?.name) {
+        entry.name = metadata.name
+      }
+      if (metadata?.maxCompletionTokens) {
+        entry.max_completion_tokens = metadata.maxCompletionTokens
+      }
+      if (metadata?.thinking) {
+        entry.thinking = metadata.thinking
+      }
+      models.push(entry)
+    }
+
+    if (modelsDict && typeof modelsDict === 'object') {
+      for (const modelId of Object.keys(modelsDict)) {
+        const normalized = normalizeAntigravityModelInput(modelId)
+        const alias = getAntigravityModelAlias(normalized)
+        if (!alias) {
+          continue
+        }
+        pushModel(alias)
+
+        if (alias.endsWith('-thinking')) {
+          pushModel(alias.replace(/-thinking$/, ''))
+        }
+
+        if (alias.startsWith('gemini-claude-')) {
+          pushModel(alias.replace(/^gemini-/, ''))
+        }
+      }
+    }
+
+    return models
+  } catch (error) {
+    logger.error('Failed to fetch Antigravity models:', error.response?.data || error.message)
+    return [
+      {
+        id: 'gemini-2.5-flash',
+        object: 'model',
+        created: Math.floor(Date.now() / 1000),
+        owned_by: 'antigravity'
+      }
+    ]
+  }
+}
+
+async function countTokensAntigravity(client, contents, model, proxyConfig = null) {
+  const { token } = await client.getAccessToken()
+  const response = await antigravityClient.countTokens({
+    accessToken: token,
+    proxyConfig,
+    contents,
+    model
+  })
+  return response
+}
+
 // 🧹 定期清理缓存（每10分钟）
 setInterval(
   () => {
@@ -51,14 +213,15 @@ setInterval(
 )
 
 // 创建 OAuth2 客户端（支持代理配置）
-function createOAuth2Client(redirectUri = null, proxyConfig = null) {
+function createOAuth2Client(redirectUri = null, proxyConfig = null, oauthProvider = null) {
   // 如果没有提供 redirectUri，使用默认值
   const uri = redirectUri || 'http://localhost:45462'
+  const oauthConfig = getOauthProviderConfig(oauthProvider)
 
   // 准备客户端选项
   const clientOptions = {
-    clientId: OAUTH_CLIENT_ID,
-    clientSecret: OAUTH_CLIENT_SECRET,
+    clientId: oauthConfig.clientId,
+    clientSecret: oauthConfig.clientSecret,
     redirectUri: uri
   }
 
@@ -79,10 +242,17 @@ function createOAuth2Client(redirectUri = null, proxyConfig = null) {
 }
 
 // 生成授权 URL (支持 PKCE 和代理)
-async function generateAuthUrl(state = null, redirectUri = null, proxyConfig = null) {
+async function generateAuthUrl(
+  state = null,
+  redirectUri = null,
+  proxyConfig = null,
+  oauthProvider = null
+) {
   // 使用新的 redirect URI
   const finalRedirectUri = redirectUri || 'https://codeassist.google.com/authcode'
-  const oAuth2Client = createOAuth2Client(finalRedirectUri, proxyConfig)
+  const normalizedProvider = normalizeOauthProvider(oauthProvider)
+  const oauthConfig = getOauthProviderConfig(normalizedProvider)
+  const oAuth2Client = createOAuth2Client(finalRedirectUri, proxyConfig, normalizedProvider)
 
   if (proxyConfig) {
     logger.info(
@@ -99,7 +269,7 @@ async function generateAuthUrl(state = null, redirectUri = null, proxyConfig = n
   const authUrl = oAuth2Client.generateAuthUrl({
     redirect_uri: finalRedirectUri,
     access_type: 'offline',
-    scope: OAUTH_SCOPES,
+    scope: oauthConfig.scopes,
     code_challenge_method: 'S256',
     code_challenge: codeVerifier.codeChallenge,
     state: stateValue,
@@ -110,7 +280,8 @@ async function generateAuthUrl(state = null, redirectUri = null, proxyConfig = n
     authUrl,
     state: stateValue,
     codeVerifier: codeVerifier.codeVerifier,
-    redirectUri: finalRedirectUri
+    redirectUri: finalRedirectUri,
+    oauthProvider: normalizedProvider
   }
 }
 
@@ -171,11 +342,14 @@ async function exchangeCodeForTokens(
   code,
   redirectUri = null,
   codeVerifier = null,
-  proxyConfig = null
+  proxyConfig = null,
+  oauthProvider = null
 ) {
   try {
+    const normalizedProvider = normalizeOauthProvider(oauthProvider)
+    const oauthConfig = getOauthProviderConfig(normalizedProvider)
     // 创建带代理配置的 OAuth2Client
-    const oAuth2Client = createOAuth2Client(redirectUri, proxyConfig)
+    const oAuth2Client = createOAuth2Client(redirectUri, proxyConfig, normalizedProvider)
 
     if (proxyConfig) {
       logger.info(
@@ -201,7 +375,7 @@ async function exchangeCodeForTokens(
     return {
       access_token: tokens.access_token,
       refresh_token: tokens.refresh_token,
-      scope: tokens.scope || OAUTH_SCOPES.join(' '),
+      scope: tokens.scope || oauthConfig.scopes.join(' '),
       token_type: tokens.token_type || 'Bearer',
       expiry_date: tokens.expiry_date || Date.now() + tokens.expires_in * 1000
     }
@@ -212,9 +386,11 @@ async function exchangeCodeForTokens(
 }
 
 // 刷新访问令牌
-async function refreshAccessToken(refreshToken, proxyConfig = null) {
+async function refreshAccessToken(refreshToken, proxyConfig = null, oauthProvider = null) {
+  const normalizedProvider = normalizeOauthProvider(oauthProvider)
+  const oauthConfig = getOauthProviderConfig(normalizedProvider)
   // 创建带代理配置的 OAuth2Client
-  const oAuth2Client = createOAuth2Client(null, proxyConfig)
+  const oAuth2Client = createOAuth2Client(null, proxyConfig, normalizedProvider)
 
   try {
     // 设置 refresh_token
@@ -246,7 +422,7 @@ async function refreshAccessToken(refreshToken, proxyConfig = null) {
     return {
       access_token: credentials.access_token,
       refresh_token: credentials.refresh_token || refreshToken, // 保留原 refresh_token 如果没有返回新的
-      scope: credentials.scope || OAUTH_SCOPES.join(' '),
+      scope: credentials.scope || oauthConfig.scopes.join(' '),
       token_type: credentials.token_type || 'Bearer',
       expiry_date: credentials.expiry_date || Date.now() + 3600000 // 默认1小时过期
     }
@@ -266,6 +442,8 @@ async function refreshAccessToken(refreshToken, proxyConfig = null) {
 async function createAccount(accountData) {
   const id = uuidv4()
   const now = new Date().toISOString()
+  const oauthProvider = normalizeOauthProvider(accountData.oauthProvider)
+  const oauthConfig = getOauthProviderConfig(oauthProvider)
 
   // 处理凭证数据
   let geminiOauth = null
@@ -298,7 +476,7 @@ async function createAccount(accountData) {
       geminiOauth = JSON.stringify({
         access_token: accessToken,
         refresh_token: refreshToken,
-        scope: accountData.scope || OAUTH_SCOPES.join(' '),
+        scope: accountData.scope || oauthConfig.scopes.join(' '),
         token_type: accountData.tokenType || 'Bearer',
         expiry_date: accountData.expiryDate || Date.now() + 3600000 // 默认1小时
       })
@@ -326,7 +504,8 @@ async function createAccount(accountData) {
     refreshToken: refreshToken ? encrypt(refreshToken) : '',
     expiresAt, // OAuth Token 过期时间（技术字段，自动刷新）
     // 只有OAuth方式才有scopes，手动添加的没有
-    scopes: accountData.geminiOauth ? accountData.scopes || OAUTH_SCOPES.join(' ') : '',
+    scopes: accountData.geminiOauth ? accountData.scopes || oauthConfig.scopes.join(' ') : '',
+    oauthProvider,
 
     // ✅ 新增：账户订阅到期时间（业务字段，手动管理）
     subscriptionExpiresAt: accountData.subscriptionExpiresAt || null,
@@ -436,6 +615,10 @@ async function updateAccount(accountId, updates) {
     updates.schedulable = updates.schedulable.toString()
   }
 
+  if (updates.oauthProvider !== undefined) {
+    updates.oauthProvider = normalizeOauthProvider(updates.oauthProvider)
+  }
+
   // 加密敏感字段
   if (updates.geminiOauth) {
     updates.geminiOauth = encrypt(
@@ -824,12 +1007,13 @@ async function refreshAccountToken(accountId) {
       // 重新获取账户数据（可能已被其他进程刷新）
       const updatedAccount = await getAccount(accountId)
       if (updatedAccount && updatedAccount.accessToken) {
+        const oauthConfig = getOauthProviderConfig(updatedAccount.oauthProvider)
         const accessToken = decrypt(updatedAccount.accessToken)
         return {
           access_token: accessToken,
           refresh_token: updatedAccount.refreshToken ? decrypt(updatedAccount.refreshToken) : '',
           expiry_date: updatedAccount.expiresAt ? new Date(updatedAccount.expiresAt).getTime() : 0,
-          scope: updatedAccount.scope || OAUTH_SCOPES.join(' '),
+          scope: updatedAccount.scopes || oauthConfig.scopes.join(' '),
           token_type: 'Bearer'
         }
       }
@@ -843,7 +1027,11 @@ async function refreshAccountToken(accountId) {
 
     // account.refreshToken 已经是解密后的值（从 getAccount 返回）
     // 传入账户的代理配置
-    const newTokens = await refreshAccessToken(account.refreshToken, account.proxy)
+    const newTokens = await refreshAccessToken(
+      account.refreshToken,
+      account.proxy,
+      account.oauthProvider
+    )
 
     // 更新账户信息
     const updates = {
@@ -975,14 +1163,15 @@ async function getAccountRateLimitInfo(accountId) {
 }
 
 // 获取配置的OAuth客户端 - 参考GeminiCliSimulator的getOauthClient方法（支持代理）
-async function getOauthClient(accessToken, refreshToken, proxyConfig = null) {
-  const client = createOAuth2Client(null, proxyConfig)
+async function getOauthClient(accessToken, refreshToken, proxyConfig = null, oauthProvider = null) {
+  const normalizedProvider = normalizeOauthProvider(oauthProvider)
+  const oauthConfig = getOauthProviderConfig(normalizedProvider)
+  const client = createOAuth2Client(null, proxyConfig, normalizedProvider)
 
   const creds = {
     access_token: accessToken,
     refresh_token: refreshToken,
-    scope:
-      'https://www.googleapis.com/auth/cloud-platform https://www.googleapis.com/auth/userinfo.profile openid https://www.googleapis.com/auth/userinfo.email',
+    scope: oauthConfig.scopes.join(' '),
     token_type: 'Bearer',
     expiry_date: 1754269905646
   }
@@ -1448,6 +1637,43 @@ async function generateContent(
   return response.data
 }
 
+// 调用 Antigravity 上游生成内容（非流式）
+async function generateContentAntigravity(
+  client,
+  requestData,
+  userPromptId,
+  projectId = null,
+  sessionId = null,
+  proxyConfig = null
+) {
+  const { token } = await client.getAccessToken()
+  const { model } = antigravityClient.buildAntigravityEnvelope({
+    requestData,
+    projectId,
+    sessionId,
+    userPromptId
+  })
+
+  logger.info('🪐 Antigravity generateContent API调用开始', {
+    model,
+    userPromptId,
+    projectId,
+    sessionId
+  })
+
+  const { response } = await antigravityClient.request({
+    accessToken: token,
+    proxyConfig,
+    requestData,
+    projectId,
+    sessionId,
+    userPromptId,
+    stream: false
+  })
+  logger.info('✅ Antigravity generateContent API调用成功')
+  return response.data
+}
+
 // 调用 Code Assist API 生成内容（流式）
 async function generateContentStream(
   client,
@@ -1532,6 +1758,46 @@ async function generateContentStream(
   return response.data // 返回流对象
 }
 
+// 调用 Antigravity 上游生成内容（流式）
+async function generateContentStreamAntigravity(
+  client,
+  requestData,
+  userPromptId,
+  projectId = null,
+  sessionId = null,
+  signal = null,
+  proxyConfig = null
+) {
+  const { token } = await client.getAccessToken()
+  const { model } = antigravityClient.buildAntigravityEnvelope({
+    requestData,
+    projectId,
+    sessionId,
+    userPromptId
+  })
+
+  logger.info('🌊 Antigravity streamGenerateContent API调用开始', {
+    model,
+    userPromptId,
+    projectId,
+    sessionId
+  })
+
+  const { response } = await antigravityClient.request({
+    accessToken: token,
+    proxyConfig,
+    requestData,
+    projectId,
+    sessionId,
+    userPromptId,
+    stream: true,
+    signal,
+    params: { alt: 'sse' }
+  })
+  logger.info('✅ Antigravity streamGenerateContent API调用成功，开始流式传输')
+  return response.data
+}
+
 // 更新账户的临时项目 ID
 async function updateTempProjectId(accountId, tempProjectId) {
   if (!tempProjectId) {
@@ -1625,10 +1891,12 @@ module.exports = {
   decrypt,
   encryptor, // 暴露加密器以便测试和监控
   countTokens,
+  countTokensAntigravity,
   generateContent,
   generateContentStream,
+  generateContentAntigravity,
+  generateContentStreamAntigravity,
+  fetchAvailableModelsAntigravity,
   updateTempProjectId,
-  resetAccountStatus,
-  OAUTH_CLIENT_ID,
-  OAUTH_SCOPES
+  resetAccountStatus
 }
diff --git a/src/services/geminiRelayService.js b/src/services/geminiRelayService.js
index 3d9a8ed5..8a4aad03 100644
--- a/src/services/geminiRelayService.js
+++ b/src/services/geminiRelayService.js
@@ -163,7 +163,8 @@ async function* handleStreamResponse(response, model, apiKeyId, accountId = null
                   0, // cacheCreateTokens (Gemini 没有这个概念)
                   0, // cacheReadTokens (Gemini 没有这个概念)
                   model,
-                  accountId
+                  accountId,
+                  'gemini'
                 )
                 .catch((error) => {
                   logger.error('❌ Failed to record Gemini usage:', error)
@@ -317,7 +318,8 @@ async function sendGeminiRequest({
             0, // cacheCreateTokens
             0, // cacheReadTokens
             model,
-            accountId
+            accountId,
+            'gemini'
           )
           .catch((error) => {
             logger.error('❌ Failed to record Gemini usage:', error)
diff --git a/src/services/openaiResponsesRelayService.js b/src/services/openaiResponsesRelayService.js
index d7db8eaa..23711718 100644
--- a/src/services/openaiResponsesRelayService.js
+++ b/src/services/openaiResponsesRelayService.js
@@ -557,7 +557,8 @@ class OpenAIResponsesRelayService {
             cacheCreateTokens,
             cacheReadTokens,
             modelToRecord,
-            account.id
+            account.id,
+            'openai-responses'
           )
 
           logger.info(
@@ -685,7 +686,8 @@ class OpenAIResponsesRelayService {
           cacheCreateTokens,
           cacheReadTokens,
           actualModel,
-          account.id
+          account.id,
+          'openai-responses'
         )
 
         logger.info(
diff --git a/src/services/quotaCardService.js b/src/services/quotaCardService.js
index 009ef397..c7cd93ec 100644
--- a/src/services/quotaCardService.js
+++ b/src/services/quotaCardService.js
@@ -12,6 +12,51 @@ class QuotaCardService {
     this.CARD_PREFIX = 'quota_card:'
     this.REDEMPTION_PREFIX = 'redemption:'
     this.CARD_CODE_PREFIX = 'CC' // 卡号前缀
+    this.LIMITS_CONFIG_KEY = 'system:quota_card_limits'
+  }
+
+  /**
+   * 获取额度卡上限配置
+   */
+  async getLimitsConfig() {
+    try {
+      const configStr = await redis.client.get(this.LIMITS_CONFIG_KEY)
+      if (configStr) {
+        return JSON.parse(configStr)
+      }
+      // 没有 Redis 配置时，使用 config.js 默认值
+      const config = require('../../config/config')
+      return config.quotaCardLimits || {
+        enabled: true,
+        maxExpiryDays: 90,
+        maxTotalCostLimit: 1000
+      }
+    } catch (error) {
+      logger.error('❌ Failed to get limits config:', error)
+      return { enabled: true, maxExpiryDays: 90, maxTotalCostLimit: 1000 }
+    }
+  }
+
+  /**
+   * 保存额度卡上限配置
+   */
+  async saveLimitsConfig(config) {
+    try {
+      const parsedDays = parseInt(config.maxExpiryDays)
+      const parsedCost = parseFloat(config.maxTotalCostLimit)
+      const newConfig = {
+        enabled: config.enabled !== false,
+        maxExpiryDays: Number.isNaN(parsedDays) ? 90 : parsedDays,
+        maxTotalCostLimit: Number.isNaN(parsedCost) ? 1000 : parsedCost,
+        updatedAt: new Date().toISOString()
+      }
+      await redis.client.set(this.LIMITS_CONFIG_KEY, JSON.stringify(newConfig))
+      logger.info('✅ Quota card limits config saved')
+      return newConfig
+    } catch (error) {
+      logger.error('❌ Failed to save limits config:', error)
+      throw error
+    }
   }
 
   /**
@@ -248,53 +293,119 @@ class QuotaCardService {
       // 获取卡信息
       const card = await this.getCardByCode(code)
       if (!card) {
-        throw new Error('Card not found')
+        throw new Error('卡号不存在')
       }
 
       // 检查卡状态
       if (card.status !== 'unused') {
-        throw new Error(`Card is ${card.status}, cannot redeem`)
+        const statusMap = { used: '已使用', expired: '已过期', revoked: '已撤销' }
+        throw new Error(`卡片${statusMap[card.status] || card.status}，无法兑换`)
       }
 
       // 检查卡是否过期
       if (card.expiresAt && new Date(card.expiresAt) < new Date()) {
         // 更新卡状态为过期
         await this._updateCardStatus(card.id, 'expired')
-        throw new Error('Card has expired')
+        throw new Error('卡片已过期')
       }
 
       // 获取 API Key 信息
       const apiKeyService = require('./apiKeyService')
       const keyData = await redis.getApiKey(apiKeyId)
       if (!keyData || Object.keys(keyData).length === 0) {
-        throw new Error('API key not found')
+        throw new Error('API Key 不存在')
       }
 
-      // 检查 API Key 是否为聚合类型（只有聚合 Key 才能核销额度卡）
-      if (card.type !== 'time' && keyData.isAggregated !== 'true') {
-        throw new Error('Only aggregated keys can redeem quota cards')
-      }
+      // 获取上限配置
+      const limits = await this.getLimitsConfig()
 
       // 执行核销
       const redemptionId = uuidv4()
       const now = new Date().toISOString()
 
       // 记录核销前状态
-      const beforeQuota = parseFloat(keyData.quotaLimit || 0)
+      const beforeLimit = parseFloat(keyData.totalCostLimit || 0)
       const beforeExpiry = keyData.expiresAt || ''
 
       // 应用卡效果
-      let afterQuota = beforeQuota
+      let afterLimit = beforeLimit
       let afterExpiry = beforeExpiry
+      let quotaAdded = 0
+      let timeAdded = 0
+      let actualTimeUnit = card.timeUnit // 实际使用的时间单位（截断时会改为 days）
+      const warnings = [] // 截断警告信息
 
       if (card.type === 'quota' || card.type === 'combo') {
-        const result = await apiKeyService.addQuota(apiKeyId, card.quotaAmount)
-        afterQuota = result.newQuotaLimit
+        let amountToAdd = card.quotaAmount
+
+        // 上限保护：检查是否超过最大额度限制
+        if (limits.enabled && limits.maxTotalCostLimit > 0) {
+          const maxAllowed = limits.maxTotalCostLimit - beforeLimit
+          if (amountToAdd > maxAllowed) {
+            amountToAdd = Math.max(0, maxAllowed)
+            warnings.push(`额度已达上限，本次仅增加 ${amountToAdd} CC（原卡面 ${card.quotaAmount} CC）`)
+            logger.warn(`额度卡兑换超出上限，已截断：原 ${card.quotaAmount} -> 实际 ${amountToAdd}`)
+          }
+        }
+
+        if (amountToAdd > 0) {
+          const result = await apiKeyService.addTotalCostLimit(apiKeyId, amountToAdd)
+          afterLimit = result.newTotalCostLimit
+          quotaAdded = amountToAdd
+        }
       }
 
       if (card.type === 'time' || card.type === 'combo') {
+        // 计算新的过期时间
+        let baseDate = beforeExpiry ? new Date(beforeExpiry) : new Date()
+        if (baseDate < new Date()) {
+          baseDate = new Date()
+        }
+
+        let newExpiry = new Date(baseDate)
+        switch (card.timeUnit) {
+          case 'hours':
+            newExpiry.setTime(newExpiry.getTime() + card.timeAmount * 60 * 60 * 1000)
+            break
+          case 'days':
+            newExpiry.setDate(newExpiry.getDate() + card.timeAmount)
+            break
+          case 'months':
+            newExpiry.setMonth(newExpiry.getMonth() + card.timeAmount)
+            break
+        }
+
+        // 上限保护：检查是否超过最大有效期
+        if (limits.enabled && limits.maxExpiryDays > 0) {
+          const maxExpiry = new Date()
+          maxExpiry.setDate(maxExpiry.getDate() + limits.maxExpiryDays)
+          if (newExpiry > maxExpiry) {
+            newExpiry = maxExpiry
+            warnings.push(`有效期已达上限（${limits.maxExpiryDays}天），时间已截断`)
+            logger.warn(`时间卡兑换超出上限，已截断至 ${maxExpiry.toISOString()}`)
+          }
+        }
+
         const result = await apiKeyService.extendExpiry(apiKeyId, card.timeAmount, card.timeUnit)
-        afterExpiry = result.newExpiresAt
+        // 如果有上限保护，使用截断后的时间
+        if (limits.enabled && limits.maxExpiryDays > 0) {
+          const maxExpiry = new Date()
+          maxExpiry.setDate(maxExpiry.getDate() + limits.maxExpiryDays)
+          if (new Date(result.newExpiresAt) > maxExpiry) {
+            await redis.client.hset(`apikey:${apiKeyId}`, 'expiresAt', maxExpiry.toISOString())
+            afterExpiry = maxExpiry.toISOString()
+            // 计算实际增加的天数，截断时统一用天
+            const actualDays = Math.max(0, Math.ceil((maxExpiry - baseDate) / (1000 * 60 * 60 * 24)))
+            timeAdded = actualDays
+            actualTimeUnit = 'days'
+          } else {
+            afterExpiry = result.newExpiresAt
+            timeAdded = card.timeAmount
+          }
+        } else {
+          afterExpiry = result.newExpiresAt
+          timeAdded = card.timeAmount
+        }
       }
 
       // 更新卡状态
@@ -321,11 +432,11 @@ class QuotaCardService {
         username,
         apiKeyId,
         apiKeyName: keyData.name || '',
-        quotaAdded: String(card.type === 'time' ? 0 : card.quotaAmount),
-        timeAdded: String(card.type === 'quota' ? 0 : card.timeAmount),
-        timeUnit: card.timeUnit,
-        beforeQuota: String(beforeQuota),
-        afterQuota: String(afterQuota),
+        quotaAdded: String(quotaAdded),
+        timeAdded: String(timeAdded),
+        timeUnit: actualTimeUnit,
+        beforeLimit: String(beforeLimit),
+        afterLimit: String(afterLimit),
         beforeExpiry,
         afterExpiry,
         timestamp: now,
@@ -343,14 +454,15 @@ class QuotaCardService {
 
       return {
         success: true,
+        warnings,
         redemptionId,
         cardCode: card.code,
         cardType: card.type,
-        quotaAdded: card.type === 'time' ? 0 : card.quotaAmount,
-        timeAdded: card.type === 'quota' ? 0 : card.timeAmount,
-        timeUnit: card.timeUnit,
-        beforeQuota,
-        afterQuota,
+        quotaAdded,
+        timeAdded,
+        timeUnit: actualTimeUnit,
+        beforeLimit,
+        afterLimit,
         beforeExpiry,
         afterExpiry
       }
@@ -383,13 +495,13 @@ class QuotaCardService {
       const now = new Date().toISOString()
 
       // 撤销效果
-      let actualQuotaDeducted = 0
+      let actualDeducted = 0
       if (parseFloat(redemptionData.quotaAdded) > 0) {
-        const result = await apiKeyService.deductQuotaLimit(
+        const result = await apiKeyService.deductTotalCostLimit(
           redemptionData.apiKeyId,
           parseFloat(redemptionData.quotaAdded)
         )
-        actualQuotaDeducted = result.actualDeducted
+        actualDeducted = result.actualDeducted
       }
 
       // 注意：时间卡撤销比较复杂，这里简化处理，不回退时间
@@ -401,7 +513,7 @@ class QuotaCardService {
         revokedAt: now,
         revokedBy,
         revokeReason: reason,
-        actualQuotaDeducted: String(actualQuotaDeducted)
+        actualDeducted: String(actualDeducted)
       })
 
       // 更新卡状态
@@ -423,7 +535,7 @@ class QuotaCardService {
         success: true,
         redemptionId,
         cardCode: redemptionData.cardCode,
-        actualQuotaDeducted,
+        actualDeducted,
         reason
       }
     } catch (error) {
@@ -469,8 +581,8 @@ class QuotaCardService {
             quotaAdded: parseFloat(data.quotaAdded || 0),
             timeAdded: parseInt(data.timeAdded || 0),
             timeUnit: data.timeUnit,
-            beforeQuota: parseFloat(data.beforeQuota || 0),
-            afterQuota: parseFloat(data.afterQuota || 0),
+            beforeLimit: parseFloat(data.beforeLimit || 0),
+            afterLimit: parseFloat(data.afterLimit || 0),
             beforeExpiry: data.beforeExpiry,
             afterExpiry: data.afterExpiry,
             timestamp: data.timestamp,
@@ -478,7 +590,7 @@ class QuotaCardService {
             revokedAt: data.revokedAt,
             revokedBy: data.revokedBy,
             revokeReason: data.revokeReason,
-            actualQuotaDeducted: parseFloat(data.actualQuotaDeducted || 0)
+            actualDeducted: parseFloat(data.actualDeducted || 0)
           })
         }
       }
diff --git a/src/services/rateLimitCleanupService.js b/src/services/rateLimitCleanupService.js
index ebf8f44b..0775b650 100644
--- a/src/services/rateLimitCleanupService.js
+++ b/src/services/rateLimitCleanupService.js
@@ -72,7 +72,8 @@ class RateLimitCleanupService {
       const results = {
         openai: { checked: 0, cleared: 0, errors: [] },
         claude: { checked: 0, cleared: 0, errors: [] },
-        claudeConsole: { checked: 0, cleared: 0, errors: [] }
+        claudeConsole: { checked: 0, cleared: 0, errors: [] },
+        tokenRefresh: { checked: 0, refreshed: 0, errors: [] }
       }
 
       // 清理 OpenAI 账号
@@ -84,21 +85,29 @@ class RateLimitCleanupService {
       // 清理 Claude Console 账号
       await this.cleanupClaudeConsoleAccounts(results.claudeConsole)
 
+      // 主动刷新等待重置的 Claude 账户 Token（防止 5小时/7天 等待期间 Token 过期）
+      await this.proactiveRefreshClaudeTokens(results.tokenRefresh)
+
       const totalChecked =
         results.openai.checked + results.claude.checked + results.claudeConsole.checked
       const totalCleared =
         results.openai.cleared + results.claude.cleared + results.claudeConsole.cleared
       const duration = Date.now() - startTime
 
-      if (totalCleared > 0) {
+      if (totalCleared > 0 || results.tokenRefresh.refreshed > 0) {
         logger.info(
-          `✅ Rate limit cleanup completed: ${totalCleared} accounts cleared out of ${totalChecked} checked (${duration}ms)`
+          `✅ Rate limit cleanup completed: ${totalCleared}/${totalChecked} accounts cleared, ${results.tokenRefresh.refreshed} tokens refreshed (${duration}ms)`
         )
         logger.info(`   OpenAI: ${results.openai.cleared}/${results.openai.checked}`)
         logger.info(`   Claude: ${results.claude.cleared}/${results.claude.checked}`)
         logger.info(
           `   Claude Console: ${results.claudeConsole.cleared}/${results.claudeConsole.checked}`
         )
+        if (results.tokenRefresh.checked > 0 || results.tokenRefresh.refreshed > 0) {
+          logger.info(
+            `   Token Refresh: ${results.tokenRefresh.refreshed}/${results.tokenRefresh.checked} refreshed`
+          )
+        }
 
         // 发送 webhook 恢复通知
         if (this.clearedAccounts.length > 0) {
@@ -114,7 +123,8 @@ class RateLimitCleanupService {
       const allErrors = [
         ...results.openai.errors,
         ...results.claude.errors,
-        ...results.claudeConsole.errors
+        ...results.claudeConsole.errors,
+        ...results.tokenRefresh.errors
       ]
       if (allErrors.length > 0) {
         logger.warn(`⚠️ Encountered ${allErrors.length} errors during cleanup:`, allErrors)
@@ -348,6 +358,75 @@ class RateLimitCleanupService {
     }
   }
 
+  /**
+   * 主动刷新 Claude 账户 Token（防止等待重置期间 Token 过期）
+   * 仅对因限流/配额限制而等待重置的账户执行刷新：
+   * - 429 限流账户（rateLimitAutoStopped=true）
+   * - 5小时限制自动停止账户（fiveHourAutoStopped=true）
+   * 不处理错误状态账户（error/temp_error）
+   */
+  async proactiveRefreshClaudeTokens(result) {
+    try {
+      const redis = require('../models/redis')
+      const accounts = await redis.getAllClaudeAccounts()
+      const now = Date.now()
+      const refreshAheadMs = 30 * 60 * 1000 // 提前30分钟刷新
+      const recentRefreshMs = 5 * 60 * 1000 // 5分钟内刷新过则跳过
+
+      for (const account of accounts) {
+        // 1. 必须激活
+        if (account.isActive !== 'true') {
+          continue
+        }
+
+        // 2. 必须有 refreshToken
+        if (!account.refreshToken) {
+          continue
+        }
+
+        // 3. 【优化】仅处理因限流/配额限制而等待重置的账户
+        // 正常调度的账户会在请求时自动刷新，无需主动刷新
+        // 错误状态账户的 Token 可能已失效，刷新也会失败
+        const isWaitingForReset =
+          account.rateLimitAutoStopped === 'true' || // 429 限流
+          account.fiveHourAutoStopped === 'true' // 5小时限制自动停止
+        if (!isWaitingForReset) {
+          continue
+        }
+
+        // 4. 【优化】如果最近 5 分钟内已刷新，跳过（避免重复刷新）
+        const lastRefreshAt = account.lastRefreshAt ? new Date(account.lastRefreshAt).getTime() : 0
+        if (now - lastRefreshAt < recentRefreshMs) {
+          continue
+        }
+
+        // 5. 检查 Token 是否即将过期（30分钟内）
+        const expiresAt = parseInt(account.expiresAt)
+        if (expiresAt && now < expiresAt - refreshAheadMs) {
+          continue
+        }
+
+        // 符合条件，执行刷新
+        result.checked++
+        try {
+          await claudeAccountService.refreshAccountToken(account.id)
+          result.refreshed++
+          logger.info(`🔄 Proactively refreshed token: ${account.name} (${account.id})`)
+        } catch (error) {
+          result.errors.push({
+            accountId: account.id,
+            accountName: account.name,
+            error: error.message
+          })
+          logger.warn(`⚠️ Proactive refresh failed for ${account.name}: ${error.message}`)
+        }
+      }
+    } catch (error) {
+      logger.error('Failed to proactively refresh Claude tokens:', error)
+      result.errors.push({ error: error.message })
+    }
+  }
+
   /**
    * 手动触发一次清理（供 API 或 CLI 调用）
    */
diff --git a/src/services/serviceRatesService.js b/src/services/serviceRatesService.js
index 2d6f76bb..62740a87 100644
--- a/src/services/serviceRatesService.js
+++ b/src/services/serviceRatesService.js
@@ -207,6 +207,36 @@ class ServiceRatesService {
     return 'claude'
   }
 
+  /**
+   * 根据账户类型获取服务类型（优先级高于模型推断）
+   */
+  getServiceFromAccountType(accountType) {
+    if (!accountType) return null
+
+    const mapping = {
+      claude: 'claude',
+      'claude-official': 'claude',
+      'claude-console': 'claude',
+      ccr: 'ccr',
+      bedrock: 'bedrock',
+      gemini: 'gemini',
+      'openai-responses': 'codex',
+      openai: 'codex',
+      azure: 'azure',
+      'azure-openai': 'azure',
+      droid: 'droid'
+    }
+
+    return mapping[accountType] || null
+  }
+
+  /**
+   * 获取服务类型（优先 accountType，后备 model）
+   */
+  getService(accountType, model) {
+    return this.getServiceFromAccountType(accountType) || this.getServiceFromModel(model)
+  }
+
   /**
    * 获取所有支持的服务列表
    */
diff --git a/src/services/unifiedGeminiScheduler.js b/src/services/unifiedGeminiScheduler.js
index 381ff51a..3316e7da 100644
--- a/src/services/unifiedGeminiScheduler.js
+++ b/src/services/unifiedGeminiScheduler.js
@@ -5,11 +5,51 @@ const redis = require('../models/redis')
 const logger = require('../utils/logger')
 const { isSchedulable, isActive, sortAccountsByPriority } = require('../utils/commonHelper')
 
+const OAUTH_PROVIDER_GEMINI_CLI = 'gemini-cli'
+const OAUTH_PROVIDER_ANTIGRAVITY = 'antigravity'
+const KNOWN_OAUTH_PROVIDERS = [OAUTH_PROVIDER_GEMINI_CLI, OAUTH_PROVIDER_ANTIGRAVITY]
+
+function normalizeOauthProvider(oauthProvider) {
+  if (!oauthProvider) {
+    return OAUTH_PROVIDER_GEMINI_CLI
+  }
+  return oauthProvider === OAUTH_PROVIDER_ANTIGRAVITY
+    ? OAUTH_PROVIDER_ANTIGRAVITY
+    : OAUTH_PROVIDER_GEMINI_CLI
+}
+
 class UnifiedGeminiScheduler {
   constructor() {
     this.SESSION_MAPPING_PREFIX = 'unified_gemini_session_mapping:'
   }
 
+  _getSessionMappingKey(sessionHash, oauthProvider = null) {
+    if (!sessionHash) {
+      return null
+    }
+    if (!oauthProvider) {
+      return `${this.SESSION_MAPPING_PREFIX}${sessionHash}`
+    }
+    const normalized = normalizeOauthProvider(oauthProvider)
+    return `${this.SESSION_MAPPING_PREFIX}${normalized}:${sessionHash}`
+  }
+
+  // 🔧 辅助方法：检查账户是否可调度（兼容字符串和布尔值）
+  _isSchedulable(schedulable) {
+    // 如果是 undefined 或 null，默认为可调度
+    if (schedulable === undefined || schedulable === null) {
+      return true
+    }
+    // 明确设置为 false（布尔值）或 'false'（字符串）时不可调度
+    return schedulable !== false && schedulable !== 'false'
+  }
+
+  // 🔧 辅助方法：检查账户是否激活（兼容字符串和布尔值）
+  _isActive(isActive) {
+    // 兼容布尔值 true 和字符串 'true'
+    return isActive === true || isActive === 'true'
+  }
+
   // 🎯 统一调度Gemini账号
   async selectAccountForApiKey(
     apiKeyData,
@@ -17,7 +57,8 @@ class UnifiedGeminiScheduler {
     requestedModel = null,
     options = {}
   ) {
-    const { allowApiAccounts = false } = options
+    const { allowApiAccounts = false, oauthProvider = null } = options
+    const normalizedOauthProvider = oauthProvider ? normalizeOauthProvider(oauthProvider) : null
 
     try {
       // 如果API Key绑定了专属账户或分组，优先使用
@@ -59,15 +100,28 @@ class UnifiedGeminiScheduler {
         // 普通 Gemini OAuth 专属账户
         else {
           const boundAccount = await geminiAccountService.getAccount(apiKeyData.geminiAccountId)
-          if (boundAccount && isActive(boundAccount.isActive) && boundAccount.status !== 'error') {
-            logger.info(
-              `🎯 Using bound dedicated Gemini account: ${boundAccount.name} (${apiKeyData.geminiAccountId}) for API key ${apiKeyData.name}`
-            )
-            // 更新账户的最后使用时间
-            await geminiAccountService.markAccountUsed(apiKeyData.geminiAccountId)
-            return {
-              accountId: apiKeyData.geminiAccountId,
-              accountType: 'gemini'
+          if (
+            boundAccount &&
+            this._isActive(boundAccount.isActive) &&
+            boundAccount.status !== 'error'
+          ) {
+            if (
+              normalizedOauthProvider &&
+              normalizeOauthProvider(boundAccount.oauthProvider) !== normalizedOauthProvider
+            ) {
+              logger.warn(
+                `⚠️ Bound Gemini OAuth account ${boundAccount.name} oauthProvider=${normalizeOauthProvider(boundAccount.oauthProvider)} does not match requested oauthProvider=${normalizedOauthProvider}, falling back to pool`
+              )
+            } else {
+              logger.info(
+                `🎯 Using bound dedicated Gemini account: ${boundAccount.name} (${apiKeyData.geminiAccountId}) for API key ${apiKeyData.name}`
+              )
+              // 更新账户的最后使用时间
+              await geminiAccountService.markAccountUsed(apiKeyData.geminiAccountId)
+              return {
+                accountId: apiKeyData.geminiAccountId,
+                accountType: 'gemini'
+              }
             }
           } else {
             logger.warn(
@@ -79,7 +133,7 @@ class UnifiedGeminiScheduler {
 
       // 如果有会话哈希，检查是否有已映射的账户
       if (sessionHash) {
-        const mappedAccount = await this._getSessionMapping(sessionHash)
+        const mappedAccount = await this._getSessionMapping(sessionHash, normalizedOauthProvider)
         if (mappedAccount) {
           // 验证映射的账户是否仍然可用
           const isAvailable = await this._isAccountAvailable(
@@ -88,7 +142,7 @@ class UnifiedGeminiScheduler {
           )
           if (isAvailable) {
             // 🚀 智能会话续期（续期 unified 映射键，按配置）
-            await this._extendSessionMappingTTL(sessionHash)
+            await this._extendSessionMappingTTL(sessionHash, normalizedOauthProvider)
             logger.info(
               `🎯 Using sticky session account: ${mappedAccount.accountId} (${mappedAccount.accountType}) for session ${sessionHash}`
             )
@@ -109,11 +163,10 @@ class UnifiedGeminiScheduler {
       }
 
       // 获取所有可用账户
-      const availableAccounts = await this._getAllAvailableAccounts(
-        apiKeyData,
-        requestedModel,
-        allowApiAccounts
-      )
+      const availableAccounts = await this._getAllAvailableAccounts(apiKeyData, requestedModel, {
+        allowApiAccounts,
+        oauthProvider: normalizedOauthProvider
+      })
 
       if (availableAccounts.length === 0) {
         // 提供更详细的错误信息
@@ -137,7 +190,8 @@ class UnifiedGeminiScheduler {
         await this._setSessionMapping(
           sessionHash,
           selectedAccount.accountId,
-          selectedAccount.accountType
+          selectedAccount.accountType,
+          normalizedOauthProvider
         )
         logger.info(
           `🎯 Created new sticky session mapping: ${selectedAccount.name} (${selectedAccount.accountId}, ${selectedAccount.accountType}) for session ${sessionHash}`
@@ -166,7 +220,18 @@ class UnifiedGeminiScheduler {
   }
 
   // 📋 获取所有可用账户
-  async _getAllAvailableAccounts(apiKeyData, requestedModel = null, allowApiAccounts = false) {
+  async _getAllAvailableAccounts(
+    apiKeyData,
+    requestedModel = null,
+    allowApiAccountsOrOptions = false
+  ) {
+    const options =
+      allowApiAccountsOrOptions && typeof allowApiAccountsOrOptions === 'object'
+        ? allowApiAccountsOrOptions
+        : { allowApiAccounts: allowApiAccountsOrOptions }
+    const { allowApiAccounts = false, oauthProvider = null } = options
+    const normalizedOauthProvider = oauthProvider ? normalizeOauthProvider(oauthProvider) : null
+
     const availableAccounts = []
 
     // 如果API Key绑定了专属账户，优先返回
@@ -222,7 +287,17 @@ class UnifiedGeminiScheduler {
       // 普通 Gemini OAuth 账户
       else if (!apiKeyData.geminiAccountId.startsWith('group:')) {
         const boundAccount = await geminiAccountService.getAccount(apiKeyData.geminiAccountId)
-        if (boundAccount && isActive(boundAccount.isActive) && boundAccount.status !== 'error') {
+        if (
+          boundAccount &&
+          this._isActive(boundAccount.isActive) &&
+          boundAccount.status !== 'error'
+        ) {
+          if (
+            normalizedOauthProvider &&
+            normalizeOauthProvider(boundAccount.oauthProvider) !== normalizedOauthProvider
+          ) {
+            return availableAccounts
+          }
           const isRateLimited = await this.isAccountRateLimited(boundAccount.id)
           if (!isRateLimited) {
             // 检查模型支持
@@ -272,6 +347,12 @@ class UnifiedGeminiScheduler {
         (account.accountType === 'shared' || !account.accountType) && // 兼容旧数据
         isSchedulable(account.schedulable)
       ) {
+        if (
+          normalizedOauthProvider &&
+          normalizeOauthProvider(account.oauthProvider) !== normalizedOauthProvider
+        ) {
+          continue
+        }
         // 检查是否可调度
 
         // 检查token是否过期
@@ -391,9 +472,10 @@ class UnifiedGeminiScheduler {
   }
 
   // 🔗 获取会话映射
-  async _getSessionMapping(sessionHash) {
+  async _getSessionMapping(sessionHash, oauthProvider = null) {
     const client = redis.getClientSafe()
-    const mappingData = await client.get(`${this.SESSION_MAPPING_PREFIX}${sessionHash}`)
+    const key = this._getSessionMappingKey(sessionHash, oauthProvider)
+    const mappingData = key ? await client.get(key) : null
 
     if (mappingData) {
       try {
@@ -408,27 +490,42 @@ class UnifiedGeminiScheduler {
   }
 
   // 💾 设置会话映射
-  async _setSessionMapping(sessionHash, accountId, accountType) {
+  async _setSessionMapping(sessionHash, accountId, accountType, oauthProvider = null) {
     const client = redis.getClientSafe()
     const mappingData = JSON.stringify({ accountId, accountType })
     // 依据配置设置TTL（小时）
     const appConfig = require('../../config/config')
     const ttlHours = appConfig.session?.stickyTtlHours || 1
     const ttlSeconds = Math.max(1, Math.floor(ttlHours * 60 * 60))
-    await client.setex(`${this.SESSION_MAPPING_PREFIX}${sessionHash}`, ttlSeconds, mappingData)
+    const key = this._getSessionMappingKey(sessionHash, oauthProvider)
+    if (!key) {
+      return
+    }
+    await client.setex(key, ttlSeconds, mappingData)
   }
 
   // 🗑️ 删除会话映射
   async _deleteSessionMapping(sessionHash) {
     const client = redis.getClientSafe()
-    await client.del(`${this.SESSION_MAPPING_PREFIX}${sessionHash}`)
+    if (!sessionHash) {
+      return
+    }
+
+    const keys = [this._getSessionMappingKey(sessionHash)]
+    for (const provider of KNOWN_OAUTH_PROVIDERS) {
+      keys.push(this._getSessionMappingKey(sessionHash, provider))
+    }
+    await client.del(keys.filter(Boolean))
   }
 
   // 🔁 续期统一调度会话映射TTL（针对 unified_gemini_session_mapping:* 键），遵循会话配置
-  async _extendSessionMappingTTL(sessionHash) {
+  async _extendSessionMappingTTL(sessionHash, oauthProvider = null) {
     try {
       const client = redis.getClientSafe()
-      const key = `${this.SESSION_MAPPING_PREFIX}${sessionHash}`
+      const key = this._getSessionMappingKey(sessionHash, oauthProvider)
+      if (!key) {
+        return false
+      }
       const remainingTTL = await client.ttl(key)
 
       if (remainingTTL === -2) {
diff --git a/src/utils/anthropicRequestDump.js b/src/utils/anthropicRequestDump.js
new file mode 100644
index 00000000..8e755064
--- /dev/null
+++ b/src/utils/anthropicRequestDump.js
@@ -0,0 +1,126 @@
+const path = require('path')
+const logger = require('./logger')
+const { getProjectRoot } = require('./projectPaths')
+const { safeRotatingAppend } = require('./safeRotatingAppend')
+
+const REQUEST_DUMP_ENV = 'ANTHROPIC_DEBUG_REQUEST_DUMP'
+const REQUEST_DUMP_MAX_BYTES_ENV = 'ANTHROPIC_DEBUG_REQUEST_DUMP_MAX_BYTES'
+const REQUEST_DUMP_FILENAME = 'anthropic-requests-dump.jsonl'
+
+function isEnabled() {
+  const raw = process.env[REQUEST_DUMP_ENV]
+  if (!raw) {
+    return false
+  }
+  return raw === '1' || raw.toLowerCase() === 'true'
+}
+
+function getMaxBytes() {
+  const raw = process.env[REQUEST_DUMP_MAX_BYTES_ENV]
+  if (!raw) {
+    return 2 * 1024 * 1024
+  }
+  const parsed = Number.parseInt(raw, 10)
+  if (!Number.isFinite(parsed) || parsed <= 0) {
+    return 2 * 1024 * 1024
+  }
+  return parsed
+}
+
+function maskSecret(value) {
+  if (value === null || value === undefined) {
+    return value
+  }
+  const str = String(value)
+  if (str.length <= 8) {
+    return '***'
+  }
+  return `${str.slice(0, 4)}...${str.slice(-4)}`
+}
+
+function sanitizeHeaders(headers) {
+  const sensitive = new Set([
+    'authorization',
+    'proxy-authorization',
+    'x-api-key',
+    'cookie',
+    'set-cookie',
+    'x-forwarded-for',
+    'x-real-ip'
+  ])
+
+  const out = {}
+  for (const [k, v] of Object.entries(headers || {})) {
+    const key = k.toLowerCase()
+    if (sensitive.has(key)) {
+      out[key] = maskSecret(v)
+      continue
+    }
+    out[key] = v
+  }
+  return out
+}
+
+function safeJsonStringify(payload, maxBytes) {
+  let json = ''
+  try {
+    json = JSON.stringify(payload)
+  } catch (e) {
+    return JSON.stringify({
+      type: 'anthropic_request_dump_error',
+      error: 'JSON.stringify_failed',
+      message: e?.message || String(e)
+    })
+  }
+
+  if (Buffer.byteLength(json, 'utf8') <= maxBytes) {
+    return json
+  }
+
+  const truncated = Buffer.from(json, 'utf8').subarray(0, maxBytes).toString('utf8')
+  return JSON.stringify({
+    type: 'anthropic_request_dump_truncated',
+    maxBytes,
+    originalBytes: Buffer.byteLength(json, 'utf8'),
+    partialJson: truncated
+  })
+}
+
+async function dumpAnthropicMessagesRequest(req, meta = {}) {
+  if (!isEnabled()) {
+    return
+  }
+
+  const maxBytes = getMaxBytes()
+  const filename = path.join(getProjectRoot(), REQUEST_DUMP_FILENAME)
+
+  const record = {
+    ts: new Date().toISOString(),
+    requestId: req?.requestId || null,
+    method: req?.method || null,
+    url: req?.originalUrl || req?.url || null,
+    ip: req?.ip || null,
+    meta,
+    headers: sanitizeHeaders(req?.headers || {}),
+    body: req?.body || null
+  }
+
+  const line = `${safeJsonStringify(record, maxBytes)}\n`
+
+  try {
+    await safeRotatingAppend(filename, line)
+  } catch (e) {
+    logger.warn('Failed to dump Anthropic request', {
+      filename,
+      requestId: req?.requestId || null,
+      error: e?.message || String(e)
+    })
+  }
+}
+
+module.exports = {
+  dumpAnthropicMessagesRequest,
+  REQUEST_DUMP_ENV,
+  REQUEST_DUMP_MAX_BYTES_ENV,
+  REQUEST_DUMP_FILENAME
+}
diff --git a/src/utils/anthropicResponseDump.js b/src/utils/anthropicResponseDump.js
new file mode 100644
index 00000000..c21605bc
--- /dev/null
+++ b/src/utils/anthropicResponseDump.js
@@ -0,0 +1,125 @@
+const path = require('path')
+const logger = require('./logger')
+const { getProjectRoot } = require('./projectPaths')
+const { safeRotatingAppend } = require('./safeRotatingAppend')
+
+const RESPONSE_DUMP_ENV = 'ANTHROPIC_DEBUG_RESPONSE_DUMP'
+const RESPONSE_DUMP_MAX_BYTES_ENV = 'ANTHROPIC_DEBUG_RESPONSE_DUMP_MAX_BYTES'
+const RESPONSE_DUMP_FILENAME = 'anthropic-responses-dump.jsonl'
+
+function isEnabled() {
+  const raw = process.env[RESPONSE_DUMP_ENV]
+  if (!raw) {
+    return false
+  }
+  return raw === '1' || raw.toLowerCase() === 'true'
+}
+
+function getMaxBytes() {
+  const raw = process.env[RESPONSE_DUMP_MAX_BYTES_ENV]
+  if (!raw) {
+    return 2 * 1024 * 1024
+  }
+  const parsed = Number.parseInt(raw, 10)
+  if (!Number.isFinite(parsed) || parsed <= 0) {
+    return 2 * 1024 * 1024
+  }
+  return parsed
+}
+
+function safeJsonStringify(payload, maxBytes) {
+  let json = ''
+  try {
+    json = JSON.stringify(payload)
+  } catch (e) {
+    return JSON.stringify({
+      type: 'anthropic_response_dump_error',
+      error: 'JSON.stringify_failed',
+      message: e?.message || String(e)
+    })
+  }
+
+  if (Buffer.byteLength(json, 'utf8') <= maxBytes) {
+    return json
+  }
+
+  const truncated = Buffer.from(json, 'utf8').subarray(0, maxBytes).toString('utf8')
+  return JSON.stringify({
+    type: 'anthropic_response_dump_truncated',
+    maxBytes,
+    originalBytes: Buffer.byteLength(json, 'utf8'),
+    partialJson: truncated
+  })
+}
+
+function summarizeAnthropicResponseBody(body) {
+  const content = Array.isArray(body?.content) ? body.content : []
+  const toolUses = content.filter((b) => b && b.type === 'tool_use')
+  const texts = content
+    .filter((b) => b && b.type === 'text' && typeof b.text === 'string')
+    .map((b) => b.text)
+    .join('')
+
+  return {
+    id: body?.id || null,
+    model: body?.model || null,
+    stop_reason: body?.stop_reason || null,
+    usage: body?.usage || null,
+    content_blocks: content.map((b) => (b ? b.type : null)).filter(Boolean),
+    tool_use_names: toolUses.map((b) => b.name).filter(Boolean),
+    text_preview: texts ? texts.slice(0, 800) : ''
+  }
+}
+
+async function dumpAnthropicResponse(req, responseInfo, meta = {}) {
+  if (!isEnabled()) {
+    return
+  }
+
+  const maxBytes = getMaxBytes()
+  const filename = path.join(getProjectRoot(), RESPONSE_DUMP_FILENAME)
+
+  const record = {
+    ts: new Date().toISOString(),
+    requestId: req?.requestId || null,
+    url: req?.originalUrl || req?.url || null,
+    meta,
+    response: responseInfo
+  }
+
+  const line = `${safeJsonStringify(record, maxBytes)}\n`
+  try {
+    await safeRotatingAppend(filename, line)
+  } catch (e) {
+    logger.warn('Failed to dump Anthropic response', {
+      filename,
+      requestId: req?.requestId || null,
+      error: e?.message || String(e)
+    })
+  }
+}
+
+async function dumpAnthropicNonStreamResponse(req, statusCode, body, meta = {}) {
+  return dumpAnthropicResponse(
+    req,
+    { kind: 'non-stream', statusCode, summary: summarizeAnthropicResponseBody(body), body },
+    meta
+  )
+}
+
+async function dumpAnthropicStreamSummary(req, summary, meta = {}) {
+  return dumpAnthropicResponse(req, { kind: 'stream', summary }, meta)
+}
+
+async function dumpAnthropicStreamError(req, error, meta = {}) {
+  return dumpAnthropicResponse(req, { kind: 'stream-error', error }, meta)
+}
+
+module.exports = {
+  dumpAnthropicNonStreamResponse,
+  dumpAnthropicStreamSummary,
+  dumpAnthropicStreamError,
+  RESPONSE_DUMP_ENV,
+  RESPONSE_DUMP_MAX_BYTES_ENV,
+  RESPONSE_DUMP_FILENAME
+}
diff --git a/src/utils/antigravityModel.js b/src/utils/antigravityModel.js
new file mode 100644
index 00000000..53811b4b
--- /dev/null
+++ b/src/utils/antigravityModel.js
@@ -0,0 +1,138 @@
+const DEFAULT_ANTIGRAVITY_MODEL = 'gemini-2.5-flash'
+
+const UPSTREAM_TO_ALIAS = {
+  'rev19-uic3-1p': 'gemini-2.5-computer-use-preview-10-2025',
+  'gemini-3-pro-image': 'gemini-3-pro-image-preview',
+  'gemini-3-pro-high': 'gemini-3-pro-preview',
+  'gemini-3-flash': 'gemini-3-flash-preview',
+  'claude-sonnet-4-5': 'gemini-claude-sonnet-4-5',
+  'claude-sonnet-4-5-thinking': 'gemini-claude-sonnet-4-5-thinking',
+  'claude-opus-4-5-thinking': 'gemini-claude-opus-4-5-thinking',
+  chat_20706: '',
+  chat_23310: '',
+  'gemini-2.5-flash-thinking': '',
+  'gemini-3-pro-low': '',
+  'gemini-2.5-pro': ''
+}
+
+const ALIAS_TO_UPSTREAM = {
+  'gemini-2.5-computer-use-preview-10-2025': 'rev19-uic3-1p',
+  'gemini-3-pro-image-preview': 'gemini-3-pro-image',
+  'gemini-3-pro-preview': 'gemini-3-pro-high',
+  'gemini-3-flash-preview': 'gemini-3-flash',
+  'gemini-claude-sonnet-4-5': 'claude-sonnet-4-5',
+  'gemini-claude-sonnet-4-5-thinking': 'claude-sonnet-4-5-thinking',
+  'gemini-claude-opus-4-5-thinking': 'claude-opus-4-5-thinking'
+}
+
+const ANTIGRAVITY_MODEL_METADATA = {
+  'gemini-2.5-flash': {
+    thinking: { min: 0, max: 24576, zeroAllowed: true, dynamicAllowed: true },
+    name: 'models/gemini-2.5-flash'
+  },
+  'gemini-2.5-flash-lite': {
+    thinking: { min: 0, max: 24576, zeroAllowed: true, dynamicAllowed: true },
+    name: 'models/gemini-2.5-flash-lite'
+  },
+  'gemini-2.5-computer-use-preview-10-2025': {
+    name: 'models/gemini-2.5-computer-use-preview-10-2025'
+  },
+  'gemini-3-pro-preview': {
+    thinking: {
+      min: 128,
+      max: 32768,
+      zeroAllowed: false,
+      dynamicAllowed: true,
+      levels: ['low', 'high']
+    },
+    name: 'models/gemini-3-pro-preview'
+  },
+  'gemini-3-pro-image-preview': {
+    thinking: {
+      min: 128,
+      max: 32768,
+      zeroAllowed: false,
+      dynamicAllowed: true,
+      levels: ['low', 'high']
+    },
+    name: 'models/gemini-3-pro-image-preview'
+  },
+  'gemini-3-flash-preview': {
+    thinking: {
+      min: 128,
+      max: 32768,
+      zeroAllowed: false,
+      dynamicAllowed: true,
+      levels: ['minimal', 'low', 'medium', 'high']
+    },
+    name: 'models/gemini-3-flash-preview'
+  },
+  'gemini-claude-sonnet-4-5-thinking': {
+    thinking: { min: 1024, max: 200000, zeroAllowed: false, dynamicAllowed: true },
+    maxCompletionTokens: 64000
+  },
+  'gemini-claude-opus-4-5-thinking': {
+    thinking: { min: 1024, max: 200000, zeroAllowed: false, dynamicAllowed: true },
+    maxCompletionTokens: 64000
+  }
+}
+
+function normalizeAntigravityModelInput(model, defaultModel = DEFAULT_ANTIGRAVITY_MODEL) {
+  if (!model) {
+    return defaultModel
+  }
+  return model.startsWith('models/') ? model.slice('models/'.length) : model
+}
+
+function getAntigravityModelAlias(modelName) {
+  const normalized = normalizeAntigravityModelInput(modelName)
+  if (Object.prototype.hasOwnProperty.call(UPSTREAM_TO_ALIAS, normalized)) {
+    return UPSTREAM_TO_ALIAS[normalized]
+  }
+  return normalized
+}
+
+function getAntigravityModelMetadata(modelName) {
+  const normalized = normalizeAntigravityModelInput(modelName)
+  if (Object.prototype.hasOwnProperty.call(ANTIGRAVITY_MODEL_METADATA, normalized)) {
+    return ANTIGRAVITY_MODEL_METADATA[normalized]
+  }
+  if (normalized.startsWith('claude-')) {
+    const prefixed = `gemini-${normalized}`
+    if (Object.prototype.hasOwnProperty.call(ANTIGRAVITY_MODEL_METADATA, prefixed)) {
+      return ANTIGRAVITY_MODEL_METADATA[prefixed]
+    }
+    const thinkingAlias = `${prefixed}-thinking`
+    if (Object.prototype.hasOwnProperty.call(ANTIGRAVITY_MODEL_METADATA, thinkingAlias)) {
+      return ANTIGRAVITY_MODEL_METADATA[thinkingAlias]
+    }
+  }
+  return null
+}
+
+function mapAntigravityUpstreamModel(model) {
+  const normalized = normalizeAntigravityModelInput(model)
+  let upstream = Object.prototype.hasOwnProperty.call(ALIAS_TO_UPSTREAM, normalized)
+    ? ALIAS_TO_UPSTREAM[normalized]
+    : normalized
+
+  if (upstream.startsWith('gemini-claude-')) {
+    upstream = upstream.replace(/^gemini-/, '')
+  }
+
+  const mapping = {
+    // Opus：上游更常见的是 thinking 变体（CLIProxyAPI 也按此处理）
+    'claude-opus-4-5': 'claude-opus-4-5-thinking',
+    // Gemini thinking 变体回退
+    'gemini-2.5-flash-thinking': 'gemini-2.5-flash'
+  }
+
+  return mapping[upstream] || upstream
+}
+
+module.exports = {
+  normalizeAntigravityModelInput,
+  getAntigravityModelAlias,
+  getAntigravityModelMetadata,
+  mapAntigravityUpstreamModel
+}
diff --git a/src/utils/antigravityUpstreamDump.js b/src/utils/antigravityUpstreamDump.js
new file mode 100644
index 00000000..56120aa5
--- /dev/null
+++ b/src/utils/antigravityUpstreamDump.js
@@ -0,0 +1,121 @@
+const path = require('path')
+const logger = require('./logger')
+const { getProjectRoot } = require('./projectPaths')
+const { safeRotatingAppend } = require('./safeRotatingAppend')
+
+const UPSTREAM_REQUEST_DUMP_ENV = 'ANTIGRAVITY_DEBUG_UPSTREAM_REQUEST_DUMP'
+const UPSTREAM_REQUEST_DUMP_MAX_BYTES_ENV = 'ANTIGRAVITY_DEBUG_UPSTREAM_REQUEST_DUMP_MAX_BYTES'
+const UPSTREAM_REQUEST_DUMP_FILENAME = 'antigravity-upstream-requests-dump.jsonl'
+
+function isEnabled() {
+  const raw = process.env[UPSTREAM_REQUEST_DUMP_ENV]
+  if (!raw) {
+    return false
+  }
+  const normalized = String(raw).trim().toLowerCase()
+  return normalized === '1' || normalized === 'true'
+}
+
+function getMaxBytes() {
+  const raw = process.env[UPSTREAM_REQUEST_DUMP_MAX_BYTES_ENV]
+  if (!raw) {
+    return 2 * 1024 * 1024
+  }
+  const parsed = Number.parseInt(raw, 10)
+  if (!Number.isFinite(parsed) || parsed <= 0) {
+    return 2 * 1024 * 1024
+  }
+  return parsed
+}
+
+function redact(value) {
+  if (!value) {
+    return value
+  }
+  const s = String(value)
+  if (s.length <= 10) {
+    return '***'
+  }
+  return `${s.slice(0, 3)}...${s.slice(-4)}`
+}
+
+function safeJsonStringify(payload, maxBytes) {
+  let json = ''
+  try {
+    json = JSON.stringify(payload)
+  } catch (e) {
+    return JSON.stringify({
+      type: 'antigravity_upstream_dump_error',
+      error: 'JSON.stringify_failed',
+      message: e?.message || String(e)
+    })
+  }
+
+  if (Buffer.byteLength(json, 'utf8') <= maxBytes) {
+    return json
+  }
+
+  const truncated = Buffer.from(json, 'utf8').subarray(0, maxBytes).toString('utf8')
+  return JSON.stringify({
+    type: 'antigravity_upstream_dump_truncated',
+    maxBytes,
+    originalBytes: Buffer.byteLength(json, 'utf8'),
+    partialJson: truncated
+  })
+}
+
+async function dumpAntigravityUpstreamRequest(requestInfo) {
+  if (!isEnabled()) {
+    return
+  }
+
+  const maxBytes = getMaxBytes()
+  const filename = path.join(getProjectRoot(), UPSTREAM_REQUEST_DUMP_FILENAME)
+
+  const record = {
+    ts: new Date().toISOString(),
+    type: 'antigravity_upstream_request',
+    requestId: requestInfo?.requestId || null,
+    model: requestInfo?.model || null,
+    stream: Boolean(requestInfo?.stream),
+    url: requestInfo?.url || null,
+    baseUrl: requestInfo?.baseUrl || null,
+    params: requestInfo?.params || null,
+    headers: requestInfo?.headers
+      ? {
+          Host: requestInfo.headers.Host || requestInfo.headers.host || null,
+          'User-Agent':
+            requestInfo.headers['User-Agent'] || requestInfo.headers['user-agent'] || null,
+          Authorization: (() => {
+            const raw = requestInfo.headers.Authorization || requestInfo.headers.authorization
+            if (!raw) {
+              return null
+            }
+            const value = String(raw)
+            const m = value.match(/^Bearer\\s+(.+)$/i)
+            const token = m ? m[1] : value
+            return `Bearer ${redact(token)}`
+          })()
+        }
+      : null,
+    envelope: requestInfo?.envelope || null
+  }
+
+  const line = `${safeJsonStringify(record, maxBytes)}\n`
+  try {
+    await safeRotatingAppend(filename, line)
+  } catch (e) {
+    logger.warn('Failed to dump Antigravity upstream request', {
+      filename,
+      requestId: requestInfo?.requestId || null,
+      error: e?.message || String(e)
+    })
+  }
+}
+
+module.exports = {
+  dumpAntigravityUpstreamRequest,
+  UPSTREAM_REQUEST_DUMP_ENV,
+  UPSTREAM_REQUEST_DUMP_MAX_BYTES_ENV,
+  UPSTREAM_REQUEST_DUMP_FILENAME
+}
diff --git a/src/utils/antigravityUpstreamResponseDump.js b/src/utils/antigravityUpstreamResponseDump.js
new file mode 100644
index 00000000..177b1d11
--- /dev/null
+++ b/src/utils/antigravityUpstreamResponseDump.js
@@ -0,0 +1,175 @@
+const path = require('path')
+const logger = require('./logger')
+const { getProjectRoot } = require('./projectPaths')
+const { safeRotatingAppend } = require('./safeRotatingAppend')
+
+const UPSTREAM_RESPONSE_DUMP_ENV = 'ANTIGRAVITY_DEBUG_UPSTREAM_RESPONSE_DUMP'
+const UPSTREAM_RESPONSE_DUMP_MAX_BYTES_ENV = 'ANTIGRAVITY_DEBUG_UPSTREAM_RESPONSE_DUMP_MAX_BYTES'
+const UPSTREAM_RESPONSE_DUMP_FILENAME = 'antigravity-upstream-responses-dump.jsonl'
+
+function isEnabled() {
+  const raw = process.env[UPSTREAM_RESPONSE_DUMP_ENV]
+  if (!raw) {
+    return false
+  }
+  const normalized = String(raw).trim().toLowerCase()
+  return normalized === '1' || normalized === 'true'
+}
+
+function getMaxBytes() {
+  const raw = process.env[UPSTREAM_RESPONSE_DUMP_MAX_BYTES_ENV]
+  if (!raw) {
+    return 2 * 1024 * 1024
+  }
+  const parsed = Number.parseInt(raw, 10)
+  if (!Number.isFinite(parsed) || parsed <= 0) {
+    return 2 * 1024 * 1024
+  }
+  return parsed
+}
+
+function safeJsonStringify(payload, maxBytes) {
+  let json = ''
+  try {
+    json = JSON.stringify(payload)
+  } catch (e) {
+    return JSON.stringify({
+      type: 'antigravity_upstream_response_dump_error',
+      error: 'JSON.stringify_failed',
+      message: e?.message || String(e)
+    })
+  }
+
+  if (Buffer.byteLength(json, 'utf8') <= maxBytes) {
+    return json
+  }
+
+  const truncated = Buffer.from(json, 'utf8').subarray(0, maxBytes).toString('utf8')
+  return JSON.stringify({
+    type: 'antigravity_upstream_response_dump_truncated',
+    maxBytes,
+    originalBytes: Buffer.byteLength(json, 'utf8'),
+    partialJson: truncated
+  })
+}
+
+/**
+ * 记录 Antigravity 上游 API 的响应
+ * @param {Object} responseInfo - 响应信息
+ * @param {string} responseInfo.requestId - 请求 ID
+ * @param {string} responseInfo.model - 模型名称
+ * @param {number} responseInfo.statusCode - HTTP 状态码
+ * @param {string} responseInfo.statusText - HTTP 状态文本
+ * @param {Object} responseInfo.headers - 响应头
+ * @param {string} responseInfo.responseType - 响应类型 (stream/non-stream/error)
+ * @param {Object} responseInfo.summary - 响应摘要
+ * @param {Object} responseInfo.error - 错误信息（如果有）
+ */
+async function dumpAntigravityUpstreamResponse(responseInfo) {
+  if (!isEnabled()) {
+    return
+  }
+
+  const maxBytes = getMaxBytes()
+  const filename = path.join(getProjectRoot(), UPSTREAM_RESPONSE_DUMP_FILENAME)
+
+  const record = {
+    ts: new Date().toISOString(),
+    type: 'antigravity_upstream_response',
+    requestId: responseInfo?.requestId || null,
+    model: responseInfo?.model || null,
+    statusCode: responseInfo?.statusCode || null,
+    statusText: responseInfo?.statusText || null,
+    responseType: responseInfo?.responseType || null,
+    headers: responseInfo?.headers || null,
+    summary: responseInfo?.summary || null,
+    error: responseInfo?.error || null,
+    rawData: responseInfo?.rawData || null
+  }
+
+  const line = `${safeJsonStringify(record, maxBytes)}\n`
+  try {
+    await safeRotatingAppend(filename, line)
+  } catch (e) {
+    logger.warn('Failed to dump Antigravity upstream response', {
+      filename,
+      requestId: responseInfo?.requestId || null,
+      error: e?.message || String(e)
+    })
+  }
+}
+
+/**
+ * 记录 SSE 流中的每个事件（用于详细调试）
+ */
+async function dumpAntigravityStreamEvent(eventInfo) {
+  if (!isEnabled()) {
+    return
+  }
+
+  const maxBytes = getMaxBytes()
+  const filename = path.join(getProjectRoot(), UPSTREAM_RESPONSE_DUMP_FILENAME)
+
+  const record = {
+    ts: new Date().toISOString(),
+    type: 'antigravity_stream_event',
+    requestId: eventInfo?.requestId || null,
+    eventIndex: eventInfo?.eventIndex || null,
+    eventType: eventInfo?.eventType || null,
+    data: eventInfo?.data || null
+  }
+
+  const line = `${safeJsonStringify(record, maxBytes)}\n`
+  try {
+    await safeRotatingAppend(filename, line)
+  } catch (e) {
+    // 静默处理，避免日志过多
+  }
+}
+
+/**
+ * 记录流式响应的最终摘要
+ */
+async function dumpAntigravityStreamSummary(summaryInfo) {
+  if (!isEnabled()) {
+    return
+  }
+
+  const maxBytes = getMaxBytes()
+  const filename = path.join(getProjectRoot(), UPSTREAM_RESPONSE_DUMP_FILENAME)
+
+  const record = {
+    ts: new Date().toISOString(),
+    type: 'antigravity_stream_summary',
+    requestId: summaryInfo?.requestId || null,
+    model: summaryInfo?.model || null,
+    totalEvents: summaryInfo?.totalEvents || 0,
+    finishReason: summaryInfo?.finishReason || null,
+    hasThinking: summaryInfo?.hasThinking || false,
+    hasToolCalls: summaryInfo?.hasToolCalls || false,
+    toolCallNames: summaryInfo?.toolCallNames || [],
+    usage: summaryInfo?.usage || null,
+    error: summaryInfo?.error || null,
+    textPreview: summaryInfo?.textPreview || null
+  }
+
+  const line = `${safeJsonStringify(record, maxBytes)}\n`
+  try {
+    await safeRotatingAppend(filename, line)
+  } catch (e) {
+    logger.warn('Failed to dump Antigravity stream summary', {
+      filename,
+      requestId: summaryInfo?.requestId || null,
+      error: e?.message || String(e)
+    })
+  }
+}
+
+module.exports = {
+  dumpAntigravityUpstreamResponse,
+  dumpAntigravityStreamEvent,
+  dumpAntigravityStreamSummary,
+  UPSTREAM_RESPONSE_DUMP_ENV,
+  UPSTREAM_RESPONSE_DUMP_MAX_BYTES_ENV,
+  UPSTREAM_RESPONSE_DUMP_FILENAME
+}
diff --git a/src/utils/errorSanitizer.js b/src/utils/errorSanitizer.js
index 44c17cd5..f72afdac 100644
--- a/src/utils/errorSanitizer.js
+++ b/src/utils/errorSanitizer.js
@@ -1,162 +1,228 @@
 /**
- * 错误消息清理工具
- * 用于移除上游错误中的供应商特定信息（如 URL、引用等）
+ * 错误消息清理工具 - 白名单错误码制
+ * 所有错误映射到预定义的标准错误码，原始消息只记日志不返回前端
  */
 
+const logger = require('./logger')
+
+// 标准错误码定义
+const ERROR_CODES = {
+  E001: { message: 'Service temporarily unavailable', status: 503 },
+  E002: { message: 'Network connection failed', status: 502 },
+  E003: { message: 'Authentication failed', status: 401 },
+  E004: { message: 'Rate limit exceeded', status: 429 },
+  E005: { message: 'Invalid request', status: 400 },
+  E006: { message: 'Model not available', status: 503 },
+  E007: { message: 'Upstream service error', status: 502 },
+  E008: { message: 'Request timeout', status: 504 },
+  E009: { message: 'Permission denied', status: 403 },
+  E010: { message: 'Resource not found', status: 404 },
+  E011: { message: 'Account temporarily unavailable', status: 503 },
+  E012: { message: 'Server overloaded', status: 529 },
+  E013: { message: 'Invalid API key', status: 401 },
+  E014: { message: 'Quota exceeded', status: 429 },
+  E015: { message: 'Internal server error', status: 500 }
+}
+
+// 错误特征匹配规则（按优先级排序）
+const ERROR_MATCHERS = [
+  // 网络层错误
+  { pattern: /ENOTFOUND|DNS|getaddrinfo/i, code: 'E002' },
+  { pattern: /ECONNREFUSED|ECONNRESET|connection refused/i, code: 'E002' },
+  { pattern: /ETIMEDOUT|timeout/i, code: 'E008' },
+  { pattern: /ECONNABORTED|aborted/i, code: 'E002' },
+
+  // 认证错误
+  { pattern: /unauthorized|invalid.*token|token.*invalid|invalid.*key/i, code: 'E003' },
+  { pattern: /invalid.*api.*key|api.*key.*invalid/i, code: 'E013' },
+  { pattern: /authentication|auth.*fail/i, code: 'E003' },
+
+  // 权限错误
+  { pattern: /forbidden|permission.*denied|access.*denied/i, code: 'E009' },
+  { pattern: /does not have.*permission/i, code: 'E009' },
+
+  // 限流错误
+  { pattern: /rate.*limit|too many requests|429/i, code: 'E004' },
+  { pattern: /quota.*exceeded|usage.*limit/i, code: 'E014' },
+
+  // 过载错误
+  { pattern: /overloaded|529|capacity/i, code: 'E012' },
+
+  // 账户错误
+  { pattern: /account.*disabled|organization.*disabled/i, code: 'E011' },
+  { pattern: /too many active sessions/i, code: 'E011' },
+
+  // 模型错误
+  { pattern: /model.*not.*found|model.*unavailable|unsupported.*model/i, code: 'E006' },
+
+  // 请求错误
+  { pattern: /bad.*request|invalid.*request|malformed/i, code: 'E005' },
+  { pattern: /not.*found|404/i, code: 'E010' },
+
+  // 上游错误
+  { pattern: /upstream|502|bad.*gateway/i, code: 'E007' },
+  { pattern: /503|service.*unavailable/i, code: 'E001' }
+]
+
 /**
- * 清理错误消息中的 URL 和供应商引用
- * @param {string} message - 原始错误消息
- * @returns {string} - 清理后的消息
+ * 根据原始错误匹配标准错误码
+ * @param {Error|string|object} error - 原始错误
+ * @param {object} options - 选项
+ * @param {string} options.context - 错误上下文（用于日志）
+ * @param {boolean} options.logOriginal - 是否记录原始错误（默认true）
+ * @returns {{ code: string, message: string, status: number }}
  */
-function sanitizeErrorMessage(message) {
-  if (typeof message !== 'string') {
-    return message
+function mapToErrorCode(error, options = {}) {
+  const { context = 'unknown', logOriginal = true } = options
+
+  // 提取原始错误信息
+  const originalMessage = extractOriginalMessage(error)
+  const errorCode = error?.code || error?.response?.status
+  const statusCode = error?.response?.status || error?.status || error?.statusCode
+
+  // 记录原始错误到日志（供调试）
+  if (logOriginal && originalMessage) {
+    logger.debug(`[ErrorSanitizer] Original error (${context}):`, {
+      message: originalMessage,
+      code: errorCode,
+      status: statusCode
+    })
   }
 
-  // 移除 URL（http:// 或 https://）
-  let cleaned = message.replace(/https?:\/\/[^\s]+/gi, '')
+  // 匹配错误码
+  let matchedCode = 'E015' // 默认：内部服务器错误
 
-  // 移除常见的供应商引用模式
-  cleaned = cleaned.replace(/For more (?:details|information|help)[,\s]*/gi, '')
-  cleaned = cleaned.replace(/(?:please\s+)?visit\s+\S*/gi, '') // 移除 "visit xxx"
-  cleaned = cleaned.replace(/(?:see|check)\s+(?:our|the)\s+\S*/gi, '') // 移除 "see our xxx"
-  cleaned = cleaned.replace(/(?:contact|reach)\s+(?:us|support)\s+at\s+\S*/gi, '') // 移除联系信息
-
-  // 移除供应商特定关键词（包括整个单词）
-  cleaned = cleaned.replace(/88code\S*/gi, '')
-  cleaned = cleaned.replace(/duck\S*/gi, '')
-  cleaned = cleaned.replace(/packy\S*/gi, '')
-  cleaned = cleaned.replace(/ikun\S*/gi, '')
-  cleaned = cleaned.replace(/privnode\S*/gi, '')
-  cleaned = cleaned.replace(/yescode\S*/gi, '')
-  cleaned = cleaned.replace(/yes.vg\S*/gi, '')
-  cleaned = cleaned.replace(/share\S*/gi, '')
-  cleaned = cleaned.replace(/yhlxj\S*/gi, '')
-  cleaned = cleaned.replace(/gac\S*/gi, '')
-  cleaned = cleaned.replace(/driod\S*/gi, '')
-
-  cleaned = cleaned.replace(/\s+/g, ' ').trim()
-
-  // 如果消息被清理得太短或为空，返回通用消息
-  if (cleaned.length < 5) {
-    return 'The requested model is currently unavailable'
+  // 先按 HTTP 状态码快速匹配
+  if (statusCode) {
+    if (statusCode === 401) matchedCode = 'E003'
+    else if (statusCode === 403) matchedCode = 'E009'
+    else if (statusCode === 404) matchedCode = 'E010'
+    else if (statusCode === 429) matchedCode = 'E004'
+    else if (statusCode === 502) matchedCode = 'E007'
+    else if (statusCode === 503) matchedCode = 'E001'
+    else if (statusCode === 504) matchedCode = 'E008'
+    else if (statusCode === 529) matchedCode = 'E012'
   }
 
-  return cleaned
+  // 再按消息内容精确匹配（可能覆盖状态码匹配）
+  if (originalMessage) {
+    for (const matcher of ERROR_MATCHERS) {
+      if (matcher.pattern.test(originalMessage)) {
+        matchedCode = matcher.code
+        break
+      }
+    }
+  }
+
+  // 按错误 code 匹配（网络错误）
+  if (errorCode) {
+    const codeStr = String(errorCode).toUpperCase()
+    if (codeStr === 'ENOTFOUND' || codeStr === 'EAI_AGAIN') matchedCode = 'E002'
+    else if (codeStr === 'ECONNREFUSED' || codeStr === 'ECONNRESET') matchedCode = 'E002'
+    else if (codeStr === 'ETIMEDOUT' || codeStr === 'ESOCKETTIMEDOUT') matchedCode = 'E008'
+    else if (codeStr === 'ECONNABORTED') matchedCode = 'E002'
+  }
+
+  const result = ERROR_CODES[matchedCode]
+  return {
+    code: matchedCode,
+    message: result.message,
+    status: result.status
+  }
 }
 
 /**
- * 递归清理对象中的所有错误消息字段
- * @param {Object} errorData - 原始错误数据对象
- * @returns {Object} - 清理后的错误数据
+ * 提取原始错误消息
  */
-function sanitizeUpstreamError(errorData) {
-  if (!errorData || typeof errorData !== 'object') {
-    return errorData
-  }
-
-  // 深拷贝避免修改原始对象
-  const sanitized = JSON.parse(JSON.stringify(errorData))
-
-  // 递归清理嵌套的错误对象
-  const sanitizeObject = (obj) => {
-    if (!obj || typeof obj !== 'object') {
-      return obj
-    }
-
-    for (const key in obj) {
-      // 清理所有字符串字段，不仅仅是 message
-      if (typeof obj[key] === 'string') {
-        obj[key] = sanitizeErrorMessage(obj[key])
-      } else if (typeof obj[key] === 'object') {
-        sanitizeObject(obj[key])
-      }
-    }
-
-    return obj
-  }
-
-  return sanitizeObject(sanitized)
-}
-
-/**
- * 提取错误消息（支持多种错误格式）
- * @param {*} body - 错误响应体（字符串或对象）
- * @returns {string} - 提取的错误消息
- */
-function extractErrorMessage(body) {
-  if (!body) {
-    return ''
-  }
-
-  // 处理字符串类型
-  if (typeof body === 'string') {
-    const trimmed = body.trim()
-    if (!trimmed) {
-      return ''
-    }
-    try {
-      const parsed = JSON.parse(trimmed)
-      return extractErrorMessage(parsed)
-    } catch (error) {
-      return trimmed
-    }
-  }
-
-  // 处理对象类型
-  if (typeof body === 'object') {
-    // 常见错误格式: { error: "message" }
-    if (typeof body.error === 'string') {
-      return body.error
-    }
-    // 嵌套错误格式: { error: { message: "..." } }
-    if (body.error && typeof body.error === 'object') {
-      if (typeof body.error.message === 'string') {
-        return body.error.message
-      }
-      if (typeof body.error.error === 'string') {
-        return body.error.error
-      }
-    }
-    // 直接消息格式: { message: "..." }
-    if (typeof body.message === 'string') {
-      return body.message
-    }
-  }
-
+function extractOriginalMessage(error) {
+  if (!error) return ''
+  if (typeof error === 'string') return error
+  if (error.message) return error.message
+  if (error.response?.data?.error?.message) return error.response.data.error.message
+  if (error.response?.data?.error) return String(error.response.data.error)
+  if (error.response?.data?.message) return error.response.data.message
   return ''
 }
 
 /**
- * 检测是否为账户被禁用或不可用的 400 错误
- * @param {number} statusCode - HTTP 状态码
- * @param {*} body - 响应体
- * @returns {boolean} - 是否为账户禁用错误
+ * 创建安全的错误响应对象
+ * @param {Error|string|object} error - 原始错误
+ * @param {object} options - 选项
+ * @returns {{ error: { code: string, message: string }, status: number }}
  */
-function isAccountDisabledError(statusCode, body) {
-  if (statusCode !== 400) {
-    return false
+function createSafeErrorResponse(error, options = {}) {
+  const mapped = mapToErrorCode(error, options)
+  return {
+    error: {
+      code: mapped.code,
+      message: mapped.message
+    },
+    status: mapped.status
   }
+}
 
-  const message = extractErrorMessage(body)
-  if (!message) {
-    return false
-  }
-  // 将消息全部转换为小写，进行模糊匹配（避免大小写问题）
-  const lowerMessage = message.toLowerCase()
-  // 检测常见的账户禁用/不可用模式
+/**
+ * 创建安全的 SSE 错误事件
+ * @param {Error|string|object} error - 原始错误
+ * @param {object} options - 选项
+ * @returns {string} - SSE 格式的错误事件
+ */
+function createSafeSSEError(error, options = {}) {
+  const mapped = mapToErrorCode(error, options)
+  return `event: error\ndata: ${JSON.stringify({
+    error: mapped.message,
+    code: mapped.code,
+    timestamp: new Date().toISOString()
+  })}\n\n`
+}
+
+/**
+ * 获取安全的错误消息（用于替换 error.message）
+ * @param {Error|string|object} error - 原始错误
+ * @param {object} options - 选项
+ * @returns {string}
+ */
+function getSafeMessage(error, options = {}) {
+  return mapToErrorCode(error, options).message
+}
+
+// 兼容旧接口
+function sanitizeErrorMessage(message) {
+  if (!message) return 'Service temporarily unavailable'
+  return mapToErrorCode({ message }, { logOriginal: false }).message
+}
+
+function sanitizeUpstreamError(errorData) {
+  return createSafeErrorResponse(errorData, { logOriginal: false })
+}
+
+function extractErrorMessage(body) {
+  return extractOriginalMessage(body)
+}
+
+function isAccountDisabledError(statusCode, body) {
+  if (statusCode !== 400) return false
+  const message = extractOriginalMessage(body)
+  if (!message) return false
+  const lower = message.toLowerCase()
   return (
-    lowerMessage.includes('organization has been disabled') ||
-    lowerMessage.includes('account has been disabled') ||
-    lowerMessage.includes('account is disabled') ||
-    lowerMessage.includes('no account supporting') ||
-    lowerMessage.includes('account not found') ||
-    lowerMessage.includes('invalid account') ||
-    lowerMessage.includes('too many active sessions')
+    lower.includes('organization has been disabled') ||
+    lower.includes('account has been disabled') ||
+    lower.includes('account is disabled') ||
+    lower.includes('no account supporting') ||
+    lower.includes('account not found') ||
+    lower.includes('invalid account') ||
+    lower.includes('too many active sessions')
   )
 }
 
 module.exports = {
+  ERROR_CODES,
+  mapToErrorCode,
+  createSafeErrorResponse,
+  createSafeSSEError,
+  getSafeMessage,
+  // 兼容旧接口
   sanitizeErrorMessage,
   sanitizeUpstreamError,
   extractErrorMessage,
diff --git a/src/utils/featureFlags.js b/src/utils/featureFlags.js
new file mode 100644
index 00000000..c2dd4f07
--- /dev/null
+++ b/src/utils/featureFlags.js
@@ -0,0 +1,46 @@
+let config = {}
+try {
+  // config/config.js 可能在某些环境不存在（例如仅拷贝了 config.example.js）
+  // 为保证可运行，这里做容错处理
+  // eslint-disable-next-line global-require
+  config = require('../../config/config')
+} catch (error) {
+  config = {}
+}
+
+const parseBooleanEnv = (value) => {
+  if (typeof value === 'boolean') {
+    return value
+  }
+  if (typeof value !== 'string') {
+    return false
+  }
+  const normalized = value.trim().toLowerCase()
+  return normalized === 'true' || normalized === '1' || normalized === 'yes' || normalized === 'on'
+}
+
+/**
+ * 是否允许执行"余额脚本"（安全开关）
+ * ⚠️ 安全警告：vm模块非安全沙箱，默认禁用。如需启用请显式设置 BALANCE_SCRIPT_ENABLED=true
+ * 仅在完全信任管理员且了解RCE风险时才启用此功能
+ */
+const isBalanceScriptEnabled = () => {
+  if (
+    process.env.BALANCE_SCRIPT_ENABLED !== undefined &&
+    process.env.BALANCE_SCRIPT_ENABLED !== ''
+  ) {
+    return parseBooleanEnv(process.env.BALANCE_SCRIPT_ENABLED)
+  }
+
+  const fromConfig =
+    config?.accountBalance?.enableBalanceScript ??
+    config?.features?.balanceScriptEnabled ??
+    config?.security?.enableBalanceScript
+
+  // 默认禁用，需显式启用
+  return typeof fromConfig === 'boolean' ? fromConfig : false
+}
+
+module.exports = {
+  isBalanceScriptEnabled
+}
diff --git a/src/utils/geminiSchemaCleaner.js b/src/utils/geminiSchemaCleaner.js
new file mode 100644
index 00000000..fa4d1b33
--- /dev/null
+++ b/src/utils/geminiSchemaCleaner.js
@@ -0,0 +1,265 @@
+function appendHint(description, hint) {
+  if (!hint) {
+    return description || ''
+  }
+  if (!description) {
+    return hint
+  }
+  return `${description} (${hint})`
+}
+
+function getRefHint(refValue) {
+  const ref = String(refValue || '')
+  if (!ref) {
+    return ''
+  }
+  const idx = ref.lastIndexOf('/')
+  const name = idx >= 0 ? ref.slice(idx + 1) : ref
+  return name ? `See: ${name}` : ''
+}
+
+function normalizeType(typeValue) {
+  if (typeof typeValue === 'string' && typeValue) {
+    return { type: typeValue, hint: '' }
+  }
+  if (!Array.isArray(typeValue) || typeValue.length === 0) {
+    return { type: '', hint: '' }
+  }
+  const raw = typeValue.map((t) => (t === null || t === undefined ? '' : String(t))).filter(Boolean)
+  const hasNull = raw.includes('null')
+  const nonNull = raw.filter((t) => t !== 'null')
+  const primary = nonNull[0] || 'string'
+  const hintParts = []
+  if (nonNull.length > 1) {
+    hintParts.push(`Accepts: ${nonNull.join(' | ')}`)
+  }
+  if (hasNull) {
+    hintParts.push('nullable')
+  }
+  return { type: primary, hint: hintParts.join('; ') }
+}
+
+const CONSTRAINT_KEYS = [
+  'minLength',
+  'maxLength',
+  'exclusiveMinimum',
+  'exclusiveMaximum',
+  'pattern',
+  'minItems',
+  'maxItems'
+]
+
+function scoreSchema(schema) {
+  if (!schema || typeof schema !== 'object') {
+    return { score: 0, type: '' }
+  }
+  const t = typeof schema.type === 'string' ? schema.type : ''
+  if (t === 'object' || (schema.properties && typeof schema.properties === 'object')) {
+    return { score: 3, type: t || 'object' }
+  }
+  if (t === 'array' || schema.items) {
+    return { score: 2, type: t || 'array' }
+  }
+  if (t && t !== 'null') {
+    return { score: 1, type: t }
+  }
+  return { score: 0, type: t || 'null' }
+}
+
+function pickBestFromAlternatives(alternatives) {
+  let bestIndex = 0
+  let bestScore = -1
+  const types = []
+  for (let i = 0; i < alternatives.length; i += 1) {
+    const alt = alternatives[i]
+    const { score, type } = scoreSchema(alt)
+    if (type) {
+      types.push(type)
+    }
+    if (score > bestScore) {
+      bestScore = score
+      bestIndex = i
+    }
+  }
+  return { best: alternatives[bestIndex], types: Array.from(new Set(types)).filter(Boolean) }
+}
+
+function cleanJsonSchemaForGemini(schema) {
+  if (schema === null || schema === undefined) {
+    return { type: 'object', properties: {} }
+  }
+  if (typeof schema !== 'object') {
+    return { type: 'object', properties: {} }
+  }
+  if (Array.isArray(schema)) {
+    return { type: 'object', properties: {} }
+  }
+
+  // $ref：Gemini/Antigravity 不支持，转换为 hint
+  if (typeof schema.$ref === 'string' && schema.$ref) {
+    return {
+      type: 'object',
+      description: appendHint(schema.description || '', getRefHint(schema.$ref)),
+      properties: {}
+    }
+  }
+
+  // anyOf / oneOf：选择最可能的 schema，保留类型提示
+  const anyOf = Array.isArray(schema.anyOf) ? schema.anyOf : null
+  const oneOf = Array.isArray(schema.oneOf) ? schema.oneOf : null
+  const alts = anyOf && anyOf.length ? anyOf : oneOf && oneOf.length ? oneOf : null
+  if (alts) {
+    const { best, types } = pickBestFromAlternatives(alts)
+    const cleaned = cleanJsonSchemaForGemini(best)
+    const mergedDescription = appendHint(cleaned.description || '', schema.description || '')
+    const typeHint = types.length > 1 ? `Accepts: ${types.join(' || ')}` : ''
+    return {
+      ...cleaned,
+      description: appendHint(mergedDescription, typeHint)
+    }
+  }
+
+  // allOf：合并 properties/required
+  if (Array.isArray(schema.allOf) && schema.allOf.length) {
+    const merged = {}
+    let mergedDesc = schema.description || ''
+    const mergedReq = new Set()
+    const mergedProps = {}
+    for (const item of schema.allOf) {
+      const cleaned = cleanJsonSchemaForGemini(item)
+      if (cleaned.description) {
+        mergedDesc = appendHint(mergedDesc, cleaned.description)
+      }
+      if (Array.isArray(cleaned.required)) {
+        for (const r of cleaned.required) {
+          if (typeof r === 'string' && r) {
+            mergedReq.add(r)
+          }
+        }
+      }
+      if (cleaned.properties && typeof cleaned.properties === 'object') {
+        Object.assign(mergedProps, cleaned.properties)
+      }
+      if (cleaned.type && !merged.type) {
+        merged.type = cleaned.type
+      }
+      if (cleaned.items && !merged.items) {
+        merged.items = cleaned.items
+      }
+      if (Array.isArray(cleaned.enum) && !merged.enum) {
+        merged.enum = cleaned.enum
+      }
+    }
+    if (Object.keys(mergedProps).length) {
+      merged.type = merged.type || 'object'
+      merged.properties = mergedProps
+      const req = Array.from(mergedReq).filter((r) => mergedProps[r])
+      if (req.length) {
+        merged.required = req
+      }
+    }
+    if (mergedDesc) {
+      merged.description = mergedDesc
+    }
+    return cleanJsonSchemaForGemini(merged)
+  }
+
+  const result = {}
+  const constraintHints = []
+
+  // description
+  if (typeof schema.description === 'string') {
+    result.description = schema.description
+  }
+
+  for (const key of CONSTRAINT_KEYS) {
+    const value = schema[key]
+    if (value === undefined || value === null || typeof value === 'object') {
+      continue
+    }
+    constraintHints.push(`${key}: ${value}`)
+  }
+
+  // const -> enum
+  if (schema.const !== undefined && !Array.isArray(schema.enum)) {
+    result.enum = [schema.const]
+  }
+
+  // enum
+  if (Array.isArray(schema.enum)) {
+    const en = schema.enum.filter(
+      (v) => typeof v === 'string' || typeof v === 'number' || typeof v === 'boolean'
+    )
+    if (en.length) {
+      result.enum = en
+    }
+  }
+
+  // type（flatten 数组 type）
+  const { type: normalizedType, hint: typeHint } = normalizeType(schema.type)
+  if (normalizedType) {
+    result.type = normalizedType
+  }
+  if (typeHint) {
+    result.description = appendHint(result.description || '', typeHint)
+  }
+
+  if (result.enum && result.enum.length > 1 && result.enum.length <= 10) {
+    const list = result.enum.map((item) => String(item)).join(', ')
+    result.description = appendHint(result.description || '', `Allowed: ${list}`)
+  }
+
+  if (constraintHints.length) {
+    result.description = appendHint(result.description || '', constraintHints.join(', '))
+  }
+
+  // additionalProperties：Gemini/Antigravity 不接受布尔值，直接删除并用 hint 记录
+  if (schema.additionalProperties === false) {
+    result.description = appendHint(result.description || '', 'No extra properties allowed')
+  }
+
+  // properties
+  if (
+    schema.properties &&
+    typeof schema.properties === 'object' &&
+    !Array.isArray(schema.properties)
+  ) {
+    const props = {}
+    for (const [name, propSchema] of Object.entries(schema.properties)) {
+      props[name] = cleanJsonSchemaForGemini(propSchema)
+    }
+    result.type = result.type || 'object'
+    result.properties = props
+  }
+
+  // items
+  if (schema.items !== undefined) {
+    result.type = result.type || 'array'
+    result.items = cleanJsonSchemaForGemini(schema.items)
+  }
+
+  // required（最后再清理无效字段）
+  if (Array.isArray(schema.required) && result.properties) {
+    const req = schema.required.filter(
+      (r) =>
+        typeof r === 'string' && r && Object.prototype.hasOwnProperty.call(result.properties, r)
+    )
+    if (req.length) {
+      result.required = req
+    }
+  }
+
+  // 只保留 Gemini 兼容字段：其他（$schema/$id/$defs/definitions/format/constraints/pattern...）一律丢弃
+
+  if (!result.type) {
+    result.type = result.properties ? 'object' : result.items ? 'array' : 'object'
+  }
+  if (result.type === 'object' && !result.properties) {
+    result.properties = {}
+  }
+  return result
+}
+
+module.exports = {
+  cleanJsonSchemaForGemini
+}
diff --git a/src/utils/modelHelper.js b/src/utils/modelHelper.js
index a42ee317..591c1974 100644
--- a/src/utils/modelHelper.js
+++ b/src/utils/modelHelper.js
@@ -5,6 +5,10 @@
  * Supports parsing model strings like "ccr,model_name" to extract vendor type and base model.
  */
 
+// 仅保留原仓库既有的模型前缀：CCR 路由
+// Gemini/Antigravity 采用“路径分流”，避免在 model 字段里混入 vendor 前缀造成混乱
+const SUPPORTED_VENDOR_PREFIXES = ['ccr']
+
 /**
  * Parse vendor-prefixed model string
  * @param {string} modelStr - Model string, potentially with vendor prefix (e.g., "ccr,gemini-2.5-pro")
@@ -19,16 +23,21 @@ function parseVendorPrefixedModel(modelStr) {
   const trimmed = modelStr.trim()
   const lowerTrimmed = trimmed.toLowerCase()
 
-  // Check for ccr prefix (case insensitive)
-  if (lowerTrimmed.startsWith('ccr,')) {
+  for (const vendorPrefix of SUPPORTED_VENDOR_PREFIXES) {
+    if (!lowerTrimmed.startsWith(`${vendorPrefix},`)) {
+      continue
+    }
+
     const parts = trimmed.split(',')
-    if (parts.length >= 2) {
-      // Extract base model (everything after the first comma, rejoined in case model name contains commas)
-      const baseModel = parts.slice(1).join(',').trim()
-      return {
-        vendor: 'ccr',
-        baseModel
-      }
+    if (parts.length < 2) {
+      break
+    }
+
+    // Extract base model (everything after the first comma, rejoined in case model name contains commas)
+    const baseModel = parts.slice(1).join(',').trim()
+    return {
+      vendor: vendorPrefix,
+      baseModel
     }
   }
 
diff --git a/src/utils/projectPaths.js b/src/utils/projectPaths.js
new file mode 100644
index 00000000..c2f30762
--- /dev/null
+++ b/src/utils/projectPaths.js
@@ -0,0 +1,10 @@
+const path = require('path')
+
+// 该文件位于 src/utils 下，向上两级即项目根目录。
+function getProjectRoot() {
+  return path.resolve(__dirname, '..', '..')
+}
+
+module.exports = {
+  getProjectRoot
+}
diff --git a/src/utils/rateLimitHelper.js b/src/utils/rateLimitHelper.js
index 38c38568..45c00c0f 100644
--- a/src/utils/rateLimitHelper.js
+++ b/src/utils/rateLimitHelper.js
@@ -7,9 +7,10 @@ function toNumber(value) {
   return Number.isFinite(num) ? num : 0
 }
 
-async function updateRateLimitCounters(rateLimitInfo, usageSummary, model) {
+// keyId 和 accountType 用于计算倍率成本
+async function updateRateLimitCounters(rateLimitInfo, usageSummary, model, keyId = null, accountType = null) {
   if (!rateLimitInfo) {
-    return { totalTokens: 0, totalCost: 0 }
+    return { totalTokens: 0, totalCost: 0, ratedCost: 0 }
   }
 
   const client = redis.getClient()
@@ -59,11 +60,25 @@ async function updateRateLimitCounters(rateLimitInfo, usageSummary, model) {
     }
   }
 
-  if (totalCost > 0 && rateLimitInfo.costCountKey) {
-    await client.incrbyfloat(rateLimitInfo.costCountKey, totalCost)
+  // 计算倍率成本（用于限流计数）
+  let ratedCost = totalCost
+  if (totalCost > 0 && keyId) {
+    try {
+      const apiKeyService = require('../services/apiKeyService')
+      const serviceRatesService = require('../services/serviceRatesService')
+      const service = serviceRatesService.getService(accountType, model)
+      ratedCost = await apiKeyService.calculateRatedCost(keyId, service, totalCost)
+    } catch (error) {
+      // 倍率计算失败时使用真实成本
+      ratedCost = totalCost
+    }
   }
 
-  return { totalTokens, totalCost }
+  if (ratedCost > 0 && rateLimitInfo.costCountKey) {
+    await client.incrbyfloat(rateLimitInfo.costCountKey, ratedCost)
+  }
+
+  return { totalTokens, totalCost, ratedCost }
 }
 
 module.exports = {
diff --git a/src/utils/safeRotatingAppend.js b/src/utils/safeRotatingAppend.js
new file mode 100644
index 00000000..21afecc6
--- /dev/null
+++ b/src/utils/safeRotatingAppend.js
@@ -0,0 +1,88 @@
+/**
+ * ============================================================================
+ * 安全 JSONL 追加工具（带文件大小限制与自动轮转）
+ * ============================================================================
+ *
+ * 用于所有调试 Dump 模块，避免日志文件无限增长导致 I/O 拥塞。
+ *
+ * 策略：
+ * - 每次写入前检查目标文件大小
+ * - 超过阈值时，将现有文件重命名为 .bak（覆盖旧 .bak）
+ * - 然后写入新文件
+ */
+
+const fs = require('fs/promises')
+const logger = require('./logger')
+
+// 默认文件大小上限：10MB
+const DEFAULT_MAX_FILE_SIZE_BYTES = 10 * 1024 * 1024
+const MAX_FILE_SIZE_ENV = 'DUMP_MAX_FILE_SIZE_BYTES'
+
+/**
+ * 获取文件大小上限（可通过环境变量覆盖）
+ */
+function getMaxFileSize() {
+  const raw = process.env[MAX_FILE_SIZE_ENV]
+  if (raw) {
+    const parsed = Number.parseInt(raw, 10)
+    if (Number.isFinite(parsed) && parsed > 0) {
+      return parsed
+    }
+  }
+  return DEFAULT_MAX_FILE_SIZE_BYTES
+}
+
+/**
+ * 获取文件大小，文件不存在时返回 0
+ */
+async function getFileSize(filepath) {
+  try {
+    const stat = await fs.stat(filepath)
+    return stat.size
+  } catch (e) {
+    // 文件不存在或无法读取
+    return 0
+  }
+}
+
+/**
+ * 安全追加写入 JSONL 文件，支持自动轮转
+ *
+ * @param {string} filepath - 目标文件绝对路径
+ * @param {string} line - 要写入的单行（应以 \n 结尾）
+ * @param {Object} options - 可选配置
+ * @param {number} options.maxFileSize - 文件大小上限（字节），默认从环境变量或 10MB
+ */
+async function safeRotatingAppend(filepath, line, options = {}) {
+  const maxFileSize = options.maxFileSize || getMaxFileSize()
+
+  const currentSize = await getFileSize(filepath)
+
+  // 如果当前文件已达到或超过阈值，轮转
+  if (currentSize >= maxFileSize) {
+    const backupPath = `${filepath}.bak`
+    try {
+      // 先删除旧备份（如果存在）
+      await fs.unlink(backupPath).catch(() => {})
+      // 重命名当前文件为备份
+      await fs.rename(filepath, backupPath)
+    } catch (renameErr) {
+      // 轮转失败时记录警告日志，继续写入原文件
+      logger.warn('⚠️ Log rotation failed, continuing to write to original file', {
+        filepath,
+        backupPath,
+        error: renameErr?.message || String(renameErr)
+      })
+    }
+  }
+
+  // 追加写入
+  await fs.appendFile(filepath, line, { encoding: 'utf8' })
+}
+
+module.exports = {
+  safeRotatingAppend,
+  getMaxFileSize,
+  MAX_FILE_SIZE_ENV,
+  DEFAULT_MAX_FILE_SIZE_BYTES
+}
diff --git a/src/utils/signatureCache.js b/src/utils/signatureCache.js
new file mode 100644
index 00000000..7f691b8e
--- /dev/null
+++ b/src/utils/signatureCache.js
@@ -0,0 +1,183 @@
+/**
+ * Signature Cache - 签名缓存模块
+ *
+ * 用于缓存 Antigravity thinking block 的 thoughtSignature。
+ * Claude Code 客户端可能剥离非标准字段，导致多轮对话时签名丢失。
+ * 此模块按 sessionId + thinkingText 存储签名，便于后续请求恢复。
+ *
+ * 参考实现：
+ * - CLIProxyAPI: internal/cache/signature_cache.go
+ * - antigravity-claude-proxy: src/format/signature-cache.js
+ */
+
+const crypto = require('crypto')
+const logger = require('./logger')
+
+// 配置常量
+const SIGNATURE_CACHE_TTL_MS = 60 * 60 * 1000 // 1 小时（同 CLIProxyAPI）
+const MAX_ENTRIES_PER_SESSION = 100 // 每会话最大缓存条目
+const MIN_SIGNATURE_LENGTH = 50 // 最小有效签名长度
+const TEXT_HASH_LENGTH = 16 // 文本哈希长度（SHA256 前 16 位）
+
+// 主缓存：sessionId -> Map<textHash, { signature, timestamp }>
+const signatureCache = new Map()
+
+/**
+ * 生成文本内容的稳定哈希值
+ * @param {string} text - 待哈希的文本
+ * @returns {string} 16 字符的十六进制哈希
+ */
+function hashText(text) {
+  if (!text || typeof text !== 'string') {
+    return ''
+  }
+  const hash = crypto.createHash('sha256').update(text).digest('hex')
+  return hash.slice(0, TEXT_HASH_LENGTH)
+}
+
+/**
+ * 获取或创建会话缓存
+ * @param {string} sessionId - 会话 ID
+ * @returns {Map} 会话的签名缓存 Map
+ */
+function getOrCreateSessionCache(sessionId) {
+  if (!signatureCache.has(sessionId)) {
+    signatureCache.set(sessionId, new Map())
+  }
+  return signatureCache.get(sessionId)
+}
+
+/**
+ * 检查签名是否有效
+ * @param {string} signature - 待检查的签名
+ * @returns {boolean} 签名是否有效
+ */
+function isValidSignature(signature) {
+  return typeof signature === 'string' && signature.length >= MIN_SIGNATURE_LENGTH
+}
+
+/**
+ * 缓存 thinking 签名
+ * @param {string} sessionId - 会话 ID
+ * @param {string} thinkingText - thinking 内容文本
+ * @param {string} signature - thoughtSignature
+ */
+function cacheSignature(sessionId, thinkingText, signature) {
+  if (!sessionId || !thinkingText || !signature) {
+    return
+  }
+
+  if (!isValidSignature(signature)) {
+    return
+  }
+
+  const sessionCache = getOrCreateSessionCache(sessionId)
+  const textHash = hashText(thinkingText)
+
+  if (!textHash) {
+    return
+  }
+
+  // 淘汰策略：超过限制时删除最老的 1/4 条目
+  if (sessionCache.size >= MAX_ENTRIES_PER_SESSION) {
+    const entries = Array.from(sessionCache.entries())
+    entries.sort((a, b) => a[1].timestamp - b[1].timestamp)
+    const toRemove = Math.max(1, Math.floor(entries.length / 4))
+    for (let i = 0; i < toRemove; i++) {
+      sessionCache.delete(entries[i][0])
+    }
+    logger.debug(
+      `[SignatureCache] Evicted ${toRemove} old entries for session ${sessionId.slice(0, 8)}...`
+    )
+  }
+
+  sessionCache.set(textHash, {
+    signature,
+    timestamp: Date.now()
+  })
+
+  logger.debug(
+    `[SignatureCache] Cached signature for session ${sessionId.slice(0, 8)}..., hash ${textHash}`
+  )
+}
+
+/**
+ * 获取缓存的签名
+ * @param {string} sessionId - 会话 ID
+ * @param {string} thinkingText - thinking 内容文本
+ * @returns {string|null} 缓存的签名，未找到或过期则返回 null
+ */
+function getCachedSignature(sessionId, thinkingText) {
+  if (!sessionId || !thinkingText) {
+    return null
+  }
+
+  const sessionCache = signatureCache.get(sessionId)
+  if (!sessionCache) {
+    return null
+  }
+
+  const textHash = hashText(thinkingText)
+  if (!textHash) {
+    return null
+  }
+
+  const entry = sessionCache.get(textHash)
+  if (!entry) {
+    return null
+  }
+
+  // 检查是否过期
+  if (Date.now() - entry.timestamp > SIGNATURE_CACHE_TTL_MS) {
+    sessionCache.delete(textHash)
+    logger.debug(`[SignatureCache] Entry expired for hash ${textHash}`)
+    return null
+  }
+
+  logger.debug(
+    `[SignatureCache] Cache hit for session ${sessionId.slice(0, 8)}..., hash ${textHash}`
+  )
+  return entry.signature
+}
+
+/**
+ * 清除会话缓存
+ * @param {string} sessionId - 要清除的会话 ID，为空则清除全部
+ */
+function clearSignatureCache(sessionId = null) {
+  if (sessionId) {
+    signatureCache.delete(sessionId)
+    logger.debug(`[SignatureCache] Cleared cache for session ${sessionId.slice(0, 8)}...`)
+  } else {
+    signatureCache.clear()
+    logger.debug('[SignatureCache] Cleared all caches')
+  }
+}
+
+/**
+ * 获取缓存统计信息（调试用）
+ * @returns {Object} { sessionCount, totalEntries }
+ */
+function getCacheStats() {
+  let totalEntries = 0
+  for (const sessionCache of signatureCache.values()) {
+    totalEntries += sessionCache.size
+  }
+  return {
+    sessionCount: signatureCache.size,
+    totalEntries
+  }
+}
+
+module.exports = {
+  cacheSignature,
+  getCachedSignature,
+  clearSignatureCache,
+  getCacheStats,
+  isValidSignature,
+  // 内部函数导出（用于测试或扩展）
+  hashText,
+  MIN_SIGNATURE_LENGTH,
+  MAX_ENTRIES_PER_SESSION,
+  SIGNATURE_CACHE_TTL_MS
+}
diff --git a/src/validators/clients/claudeCodeValidator.js b/src/validators/clients/claudeCodeValidator.js
index 2a49fca2..4788f178 100644
--- a/src/validators/clients/claudeCodeValidator.js
+++ b/src/validators/clients/claudeCodeValidator.js
@@ -62,12 +62,17 @@ class ClaudeCodeValidator {
 
     for (const entry of systemEntries) {
       const rawText = typeof entry?.text === 'string' ? entry.text : ''
-      const { bestScore } = bestSimilarityByTemplates(rawText)
+      const { bestScore, templateId, maskedRaw } = bestSimilarityByTemplates(rawText)
       if (bestScore < threshold) {
         logger.error(
           `Claude system prompt similarity below threshold: score=${bestScore.toFixed(4)}, threshold=${threshold}`
         )
-        logger.warn(`Claude system prompt detail: ${rawText}`)
+        const preview = typeof maskedRaw === 'string' ? maskedRaw.slice(0, 200) : ''
+        logger.warn(
+          `Claude system prompt detail: templateId=${templateId || 'unknown'}, preview=${preview}${
+            maskedRaw && maskedRaw.length > 200 ? '…' : ''
+          }`
+        )
         return false
       }
     }
diff --git a/tests/accountBalanceService.test.js b/tests/accountBalanceService.test.js
new file mode 100644
index 00000000..c2a9c3a8
--- /dev/null
+++ b/tests/accountBalanceService.test.js
@@ -0,0 +1,218 @@
+// Mock logger，避免测试输出污染控制台
+jest.mock('../src/utils/logger', () => ({
+  debug: jest.fn(),
+  info: jest.fn(),
+  warn: jest.fn(),
+  error: jest.fn()
+}))
+
+const accountBalanceServiceModule = require('../src/services/accountBalanceService')
+
+const { AccountBalanceService } = accountBalanceServiceModule
+
+describe('AccountBalanceService', () => {
+  const originalBalanceScriptEnabled = process.env.BALANCE_SCRIPT_ENABLED
+
+  afterEach(() => {
+    if (originalBalanceScriptEnabled === undefined) {
+      delete process.env.BALANCE_SCRIPT_ENABLED
+    } else {
+      process.env.BALANCE_SCRIPT_ENABLED = originalBalanceScriptEnabled
+    }
+  })
+
+  const mockLogger = {
+    debug: jest.fn(),
+    info: jest.fn(),
+    warn: jest.fn(),
+    error: jest.fn()
+  }
+
+  const buildMockRedis = () => ({
+    getLocalBalance: jest.fn().mockResolvedValue(null),
+    setLocalBalance: jest.fn().mockResolvedValue(undefined),
+    getAccountBalance: jest.fn().mockResolvedValue(null),
+    setAccountBalance: jest.fn().mockResolvedValue(undefined),
+    deleteAccountBalance: jest.fn().mockResolvedValue(undefined),
+    getBalanceScriptConfig: jest.fn().mockResolvedValue(null),
+    getAccountUsageStats: jest.fn().mockResolvedValue({
+      total: { requests: 10 },
+      daily: { requests: 2, cost: 20 },
+      monthly: { requests: 5 }
+    }),
+    getDateInTimezone: (date) => new Date(date.getTime() + 8 * 3600 * 1000)
+  })
+
+  it('should normalize platform aliases', () => {
+    const service = new AccountBalanceService({ redis: buildMockRedis(), logger: mockLogger })
+    expect(service.normalizePlatform('claude-official')).toBe('claude')
+    expect(service.normalizePlatform('azure-openai')).toBe('azure_openai')
+    expect(service.normalizePlatform('gemini-api')).toBe('gemini-api')
+  })
+
+  it('should build local quota/balance from dailyQuota and local dailyCost', async () => {
+    const mockRedis = buildMockRedis()
+    const service = new AccountBalanceService({ redis: mockRedis, logger: mockLogger })
+
+    service._computeMonthlyCost = jest.fn().mockResolvedValue(30)
+    service._computeTotalCost = jest.fn().mockResolvedValue(123.45)
+
+    const account = { id: 'acct-1', name: 'A', dailyQuota: '100', quotaResetTime: '00:00' }
+    const result = await service._getAccountBalanceForAccount(account, 'claude-console', {
+      queryApi: false,
+      useCache: true
+    })
+
+    expect(result.success).toBe(true)
+    expect(result.data.source).toBe('local')
+    expect(result.data.balance.amount).toBeCloseTo(80, 6)
+    expect(result.data.quota.percentage).toBeCloseTo(20, 6)
+    expect(result.data.statistics.totalCost).toBeCloseTo(123.45, 6)
+    expect(mockRedis.setLocalBalance).toHaveBeenCalled()
+  })
+
+  it('should use cached balance when account has no dailyQuota', async () => {
+    const mockRedis = buildMockRedis()
+    mockRedis.getAccountBalance.mockResolvedValue({
+      status: 'success',
+      balance: 12.34,
+      currency: 'USD',
+      quota: null,
+      errorMessage: '',
+      lastRefreshAt: '2025-01-01T00:00:00Z',
+      ttlSeconds: 120
+    })
+
+    const service = new AccountBalanceService({ redis: mockRedis, logger: mockLogger })
+    service._computeMonthlyCost = jest.fn().mockResolvedValue(0)
+    service._computeTotalCost = jest.fn().mockResolvedValue(0)
+
+    const account = { id: 'acct-2', name: 'B' }
+    const result = await service._getAccountBalanceForAccount(account, 'openai', {
+      queryApi: false,
+      useCache: true
+    })
+
+    expect(result.data.source).toBe('cache')
+    expect(result.data.balance.amount).toBeCloseTo(12.34, 6)
+    expect(result.data.lastRefreshAt).toBe('2025-01-01T00:00:00Z')
+  })
+
+  it('should not cache provider errors and fallback to local when queryApi=true', async () => {
+    const mockRedis = buildMockRedis()
+    const service = new AccountBalanceService({ redis: mockRedis, logger: mockLogger })
+
+    service._computeMonthlyCost = jest.fn().mockResolvedValue(0)
+    service._computeTotalCost = jest.fn().mockResolvedValue(0)
+
+    service.registerProvider('openai', {
+      queryBalance: () => {
+        throw new Error('boom')
+      }
+    })
+
+    const account = { id: 'acct-3', name: 'C' }
+    const result = await service._getAccountBalanceForAccount(account, 'openai', {
+      queryApi: true,
+      useCache: false
+    })
+
+    expect(mockRedis.setAccountBalance).not.toHaveBeenCalled()
+    expect(result.data.source).toBe('local')
+    expect(result.data.status).toBe('error')
+    expect(result.data.error).toBe('boom')
+  })
+
+  it('should ignore script config when balance script is disabled', async () => {
+    process.env.BALANCE_SCRIPT_ENABLED = 'false'
+
+    const mockRedis = buildMockRedis()
+    mockRedis.getBalanceScriptConfig.mockResolvedValue({
+      scriptBody: '({ request: { url: "http://example.com" }, extractor: function(){ return {} } })'
+    })
+
+    const service = new AccountBalanceService({ redis: mockRedis, logger: mockLogger })
+    service._computeMonthlyCost = jest.fn().mockResolvedValue(0)
+    service._computeTotalCost = jest.fn().mockResolvedValue(0)
+
+    const provider = { queryBalance: jest.fn().mockResolvedValue({ balance: 1, currency: 'USD' }) }
+    service.registerProvider('openai', provider)
+
+    const scriptSpy = jest.spyOn(service, '_getBalanceFromScript')
+
+    const account = { id: 'acct-script-off', name: 'S' }
+    const result = await service._getAccountBalanceForAccount(account, 'openai', {
+      queryApi: true,
+      useCache: false
+    })
+
+    expect(provider.queryBalance).toHaveBeenCalled()
+    expect(scriptSpy).not.toHaveBeenCalled()
+    expect(result.data.source).toBe('api')
+  })
+
+  it('should prefer script when configured and enabled', async () => {
+    process.env.BALANCE_SCRIPT_ENABLED = 'true'
+
+    const mockRedis = buildMockRedis()
+    mockRedis.getBalanceScriptConfig.mockResolvedValue({
+      scriptBody: '({ request: { url: "http://example.com" }, extractor: function(){ return {} } })'
+    })
+
+    const service = new AccountBalanceService({ redis: mockRedis, logger: mockLogger })
+    service._computeMonthlyCost = jest.fn().mockResolvedValue(0)
+    service._computeTotalCost = jest.fn().mockResolvedValue(0)
+
+    const provider = { queryBalance: jest.fn().mockResolvedValue({ balance: 2, currency: 'USD' }) }
+    service.registerProvider('openai', provider)
+
+    jest.spyOn(service, '_getBalanceFromScript').mockResolvedValue({
+      status: 'success',
+      balance: 3,
+      currency: 'USD',
+      quota: null,
+      queryMethod: 'script',
+      rawData: { ok: true },
+      lastRefreshAt: '2025-01-01T00:00:00Z',
+      errorMessage: ''
+    })
+
+    const account = { id: 'acct-script-on', name: 'T' }
+    const result = await service._getAccountBalanceForAccount(account, 'openai', {
+      queryApi: true,
+      useCache: false
+    })
+
+    expect(provider.queryBalance).not.toHaveBeenCalled()
+    expect(result.data.source).toBe('api')
+    expect(result.data.balance.amount).toBeCloseTo(3, 6)
+    expect(result.data.lastRefreshAt).toBe('2025-01-01T00:00:00Z')
+  })
+
+  it('should count low balance once per account in summary', async () => {
+    const mockRedis = buildMockRedis()
+    const service = new AccountBalanceService({ redis: mockRedis, logger: mockLogger })
+
+    service.getSupportedPlatforms = () => ['claude-console']
+    service.getAllAccountsByPlatform = async () => [{ id: 'acct-4', name: 'D' }]
+    service._getAccountBalanceForAccount = async () => ({
+      success: true,
+      data: {
+        accountId: 'acct-4',
+        platform: 'claude-console',
+        balance: { amount: 5, currency: 'USD', formattedAmount: '$5.00' },
+        quota: { percentage: 95 },
+        statistics: { totalCost: 1 },
+        source: 'local',
+        lastRefreshAt: '2025-01-01T00:00:00Z',
+        cacheExpiresAt: null,
+        status: 'success',
+        error: null
+      }
+    })
+
+    const summary = await service.getBalanceSummary()
+    expect(summary.lowBalanceCount).toBe(1)
+    expect(summary.platforms['claude-console'].lowBalanceCount).toBe(1)
+  })
+})
diff --git a/web/admin-spa/index.html b/web/admin-spa/index.html
index 27732008..53328eb7 100644
--- a/web/admin-spa/index.html
+++ b/web/admin-spa/index.html
@@ -5,20 +5,6 @@
   <meta charset="UTF-8">
   <meta name="viewport" content="width=device-width, initial-scale=1.0">
   <title>Claude Relay Service - 管理后台</title>
-
-  <!-- Google Fonts -->
-  <link rel="preconnect" href="https://fonts.googleapis.com">
-  <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
-  <link href="https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap" rel="stylesheet">
-
-  <!-- Font Awesome -->
-  <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css">
-
-  <!-- 预连接到CDN域名，加速资源加载 -->
-  <link rel="preconnect" href="https://cdn.jsdelivr.net" crossorigin>
-  <link rel="preconnect" href="https://cdnjs.cloudflare.com" crossorigin>
-  <link rel="dns-prefetch" href="https://cdn.jsdelivr.net">
-  <link rel="dns-prefetch" href="https://cdnjs.cloudflare.com">
 </head>
 
 <body>
diff --git a/web/admin-spa/package-lock.json b/web/admin-spa/package-lock.json
index 481df56a..9405609e 100644
--- a/web/admin-spa/package-lock.json
+++ b/web/admin-spa/package-lock.json
@@ -1157,6 +1157,7 @@
       "resolved": "https://registry.npmmirror.com/@types/lodash-es/-/lodash-es-4.17.12.tgz",
       "integrity": "sha512-0NgftHUcV4v34VhXm8QBSftKVXtbkBG3ViCjs6+eJ5a6y6Mi/jiFGPc1sC7QK+9BFhWrURE3EOggmWaSxL9OzQ==",
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "@types/lodash": "*"
       }
@@ -1351,6 +1352,7 @@
       "integrity": "sha512-NZyJarBfL7nWwIq+FDL6Zp/yHEhePMNnnJ0y3qfieCrmNvYct8uvtiV41UvlSe6apAfk0fY1FbWx+NwfmpvtTg==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "bin": {
         "acorn": "bin/acorn"
       },
@@ -1587,6 +1589,7 @@
         }
       ],
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "caniuse-lite": "^1.0.30001726",
         "electron-to-chromium": "^1.5.173",
@@ -3060,13 +3063,15 @@
       "version": "4.17.21",
       "resolved": "https://registry.npmmirror.com/lodash/-/lodash-4.17.21.tgz",
       "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==",
-      "license": "MIT"
+      "license": "MIT",
+      "peer": true
     },
     "node_modules/lodash-es": {
       "version": "4.17.21",
       "resolved": "https://registry.npmmirror.com/lodash-es/-/lodash-es-4.17.21.tgz",
       "integrity": "sha512-mKnC+QJ9pWVzv+C4/U3rRsHapFfHvQFoFB92e52xeyGMcX6/OlIl78je1u8vePzYZSkkogMPJ2yjxxsb89cxyw==",
-      "license": "MIT"
+      "license": "MIT",
+      "peer": true
     },
     "node_modules/lodash-unified": {
       "version": "1.0.3",
@@ -3618,6 +3623,7 @@
         }
       ],
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "nanoid": "^3.3.11",
         "picocolors": "^1.1.1",
@@ -3764,6 +3770,7 @@
       "integrity": "sha512-I7AIg5boAr5R0FFtJ6rCfD+LFsWHp81dolrFD8S79U9tb8Az2nGrJncnMSnys+bpQJfRUzqs9hnA81OAA3hCuQ==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "bin": {
         "prettier": "bin/prettier.cjs"
       },
@@ -4028,6 +4035,7 @@
       "integrity": "sha512-33xGNBsDJAkzt0PvninskHlWnTIPgDtTwhg0U38CUoNP/7H6wI2Cz6dUeoNPbjdTdsYTGuiFFASuUOWovH0SyQ==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "@types/estree": "1.0.8"
       },
@@ -4525,6 +4533,7 @@
       "integrity": "sha512-5gTmgEY/sqK6gFXLIsQNH19lWb4ebPDLA4SdLP7dsWkIXHWlG66oPuVvXSGFPppYZz8ZDZq0dYYrbHfBCVUb1Q==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "engines": {
         "node": ">=12"
       },
@@ -4915,6 +4924,7 @@
       "integrity": "sha512-qO3aKv3HoQC8QKiNSTuUM1l9o/XX3+c+VTgLHbJWHZGeTPVAg2XwazI9UWzoxjIJCGCV2zU60uqMzjeLZuULqA==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "esbuild": "^0.21.3",
         "postcss": "^8.4.43",
@@ -5115,6 +5125,7 @@
       "resolved": "https://registry.npmmirror.com/vue/-/vue-3.5.18.tgz",
       "integrity": "sha512-7W4Y4ZbMiQ3SEo+m9lnoNpV9xG7QVMLa+/0RFwwiAVkeYoyGXqWE85jabU4pllJNUzqfLShJ5YLptewhCWUgNA==",
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "@vue/compiler-dom": "3.5.18",
         "@vue/compiler-sfc": "3.5.18",
diff --git a/web/admin-spa/src/assets/fonts/inter/Inter-Bold.woff2 b/web/admin-spa/src/assets/fonts/inter/Inter-Bold.woff2
new file mode 100644
index 00000000..b9e3cb3b
Binary files /dev/null and b/web/admin-spa/src/assets/fonts/inter/Inter-Bold.woff2 differ
diff --git a/web/admin-spa/src/assets/fonts/inter/Inter-Light.woff2 b/web/admin-spa/src/assets/fonts/inter/Inter-Light.woff2
new file mode 100644
index 00000000..f3e012a4
Binary files /dev/null and b/web/admin-spa/src/assets/fonts/inter/Inter-Light.woff2 differ
diff --git a/web/admin-spa/src/assets/fonts/inter/Inter-Medium.woff2 b/web/admin-spa/src/assets/fonts/inter/Inter-Medium.woff2
new file mode 100644
index 00000000..fdfdcc69
Binary files /dev/null and b/web/admin-spa/src/assets/fonts/inter/Inter-Medium.woff2 differ
diff --git a/web/admin-spa/src/assets/fonts/inter/Inter-Regular.woff2 b/web/admin-spa/src/assets/fonts/inter/Inter-Regular.woff2
new file mode 100644
index 00000000..2bcd222e
Binary files /dev/null and b/web/admin-spa/src/assets/fonts/inter/Inter-Regular.woff2 differ
diff --git a/web/admin-spa/src/assets/fonts/inter/Inter-SemiBold.woff2 b/web/admin-spa/src/assets/fonts/inter/Inter-SemiBold.woff2
new file mode 100644
index 00000000..fbae113d
Binary files /dev/null and b/web/admin-spa/src/assets/fonts/inter/Inter-SemiBold.woff2 differ
diff --git a/web/admin-spa/src/assets/fonts/inter/inter.css b/web/admin-spa/src/assets/fonts/inter/inter.css
new file mode 100644
index 00000000..4d5d03bf
--- /dev/null
+++ b/web/admin-spa/src/assets/fonts/inter/inter.css
@@ -0,0 +1,46 @@
+/* Inter 字体本地化 - 仅包含项目使用的字重 (300, 400, 500, 600, 700) */
+
+/* Inter Light - 300 */
+@font-face {
+  font-family: 'Inter';
+  font-style: normal;
+  font-weight: 300;
+  font-display: swap;
+  src: url('./Inter-Light.woff2') format('woff2');
+}
+
+/* Inter Regular - 400 */
+@font-face {
+  font-family: 'Inter';
+  font-style: normal;
+  font-weight: 400;
+  font-display: swap;
+  src: url('./Inter-Regular.woff2') format('woff2');
+}
+
+/* Inter Medium - 500 */
+@font-face {
+  font-family: 'Inter';
+  font-style: normal;
+  font-weight: 500;
+  font-display: swap;
+  src: url('./Inter-Medium.woff2') format('woff2');
+}
+
+/* Inter SemiBold - 600 */
+@font-face {
+  font-family: 'Inter';
+  font-style: normal;
+  font-weight: 600;
+  font-display: swap;
+  src: url('./Inter-SemiBold.woff2') format('woff2');
+}
+
+/* Inter Bold - 700 */
+@font-face {
+  font-family: 'Inter';
+  font-style: normal;
+  font-weight: 700;
+  font-display: swap;
+  src: url('./Inter-Bold.woff2') format('woff2');
+}
diff --git a/web/admin-spa/src/components/accounts/AccountBalanceScriptModal.vue b/web/admin-spa/src/components/accounts/AccountBalanceScriptModal.vue
new file mode 100644
index 00000000..d3f85aa9
--- /dev/null
+++ b/web/admin-spa/src/components/accounts/AccountBalanceScriptModal.vue
@@ -0,0 +1,293 @@
+<template>
+  <el-dialog
+    :append-to-body="true"
+    class="balance-script-dialog"
+    :close-on-click-modal="false"
+    :destroy-on-close="true"
+    :model-value="show"
+    :title="`配置余额脚本 - ${account?.name || ''}`"
+    top="5vh"
+    width="720px"
+    @close="emitClose"
+  >
+    <div class="space-y-4">
+      <div class="grid gap-3 md:grid-cols-2">
+        <div class="space-y-2">
+          <label class="text-sm font-medium text-gray-700 dark:text-gray-200">API Key</label>
+          <input v-model="form.apiKey" class="input-text" placeholder="access token / key" />
+        </div>
+        <div class="space-y-2">
+          <label class="text-sm font-medium text-gray-700 dark:text-gray-200"
+            >请求地址（baseUrl）</label
+          >
+          <input v-model="form.baseUrl" class="input-text" placeholder="https://api.example.com" />
+        </div>
+        <div class="space-y-2">
+          <label class="text-sm font-medium text-gray-700 dark:text-gray-200">Token（可选）</label>
+          <input v-model="form.token" class="input-text" placeholder="Bearer token" />
+        </div>
+        <div class="space-y-2">
+          <label class="text-sm font-medium text-gray-700 dark:text-gray-200"
+            >额外参数 (extra / userId)</label
+          >
+          <input v-model="form.extra" class="input-text" placeholder="用户ID等" />
+        </div>
+        <div class="space-y-2">
+          <label class="text-sm font-medium text-gray-700 dark:text-gray-200">超时时间(秒)</label>
+          <input v-model.number="form.timeoutSeconds" class="input-text" min="1" type="number" />
+        </div>
+        <div class="space-y-2">
+          <label class="text-sm font-medium text-gray-700 dark:text-gray-200"
+            >自动查询间隔(分钟)</label
+          >
+          <input
+            v-model.number="form.autoIntervalMinutes"
+            class="input-text"
+            min="0"
+            type="number"
+          />
+          <p class="text-xs text-gray-500 dark:text-gray-400">0 表示仅手动刷新</p>
+        </div>
+        <div class="text-xs text-gray-500 dark:text-gray-400 md:col-span-2">
+          可用变量：{{ '{' }}{{ '{' }}baseUrl{{ '}' }}{{ '}' }}、{{ '{' }}{{ '{' }}apiKey{{ '}'
+          }}{{ '}' }}、{{ '{' }}{{ '{' }}token{{ '}' }}{{ '}' }}、{{ '{' }}{{ '{' }}accountId{{ '}'
+          }}{{ '}' }}、{{ '{' }}{{ '{' }}platform{{ '}' }}{{ '}' }}、{{ '{' }}{{ '{' }}extra{{ '}'
+          }}{{ '}' }}
+        </div>
+      </div>
+
+      <div>
+        <div class="mb-2 flex items-center justify-between">
+          <div class="text-sm font-semibold text-gray-800 dark:text-gray-100">提取器代码</div>
+          <button
+            class="rounded bg-gray-200 px-2 py-1 text-xs dark:bg-gray-700"
+            @click="applyPreset"
+          >
+            使用示例
+          </button>
+        </div>
+        <textarea
+          v-model="form.scriptBody"
+          class="min-h-[260px] w-full rounded-xl bg-gray-900 font-mono text-sm text-gray-100 shadow-inner focus:outline-none focus:ring-2 focus:ring-indigo-500"
+          spellcheck="false"
+        ></textarea>
+        <div class="mt-1 text-xs text-gray-500 dark:text-gray-400">
+          extractor 可返回：isValid、invalidMessage、remaining、unit、planName、total、used、extra
+        </div>
+      </div>
+
+      <div v-if="testResult" class="rounded-lg bg-gray-50 p-3 text-sm dark:bg-gray-800/60">
+        <div class="flex items-center justify-between">
+          <span class="font-semibold">测试结果</span>
+          <span
+            :class="[
+              'rounded px-2 py-0.5 text-xs',
+              testResult.mapped?.status === 'success'
+                ? 'bg-emerald-100 text-emerald-700 dark:bg-emerald-900/40 dark:text-emerald-200'
+                : 'bg-red-100 text-red-700 dark:bg-red-900/40 dark:text-red-200'
+            ]"
+          >
+            {{ testResult.mapped?.status || 'unknown' }}
+          </span>
+        </div>
+        <div class="mt-2 text-xs text-gray-600 dark:text-gray-300">
+          <div>余额: {{ displayAmount(testResult.mapped?.balance) }}</div>
+          <div>单位: {{ testResult.mapped?.currency || '—' }}</div>
+          <div v-if="testResult.mapped?.planName">套餐: {{ testResult.mapped.planName }}</div>
+          <div v-if="testResult.mapped?.errorMessage" class="text-red-500">
+            错误: {{ testResult.mapped.errorMessage }}
+          </div>
+        </div>
+        <details class="text-xs text-gray-500 dark:text-gray-400">
+          <summary class="cursor-pointer">查看 extractor 输出</summary>
+          <pre class="mt-1 whitespace-pre-wrap break-all">{{
+            formatJson(testResult.extracted)
+          }}</pre>
+        </details>
+        <details class="text-xs text-gray-500 dark:text-gray-400">
+          <summary class="cursor-pointer">查看原始响应</summary>
+          <pre class="mt-1 whitespace-pre-wrap break-all">{{
+            formatJson(testResult.response)
+          }}</pre>
+        </details>
+      </div>
+    </div>
+
+    <template #footer>
+      <div class="flex items-center gap-2">
+        <el-button :loading="testing" @click="testScript">测试脚本</el-button>
+        <el-button :loading="saving" type="primary" @click="saveConfig">保存配置</el-button>
+        <el-button @click="emitClose">取消</el-button>
+      </div>
+    </template>
+  </el-dialog>
+</template>
+
+<script setup>
+import { reactive, ref, watch } from 'vue'
+
+import {
+  getAccountBalanceScriptApi,
+  updateAccountBalanceScriptApi,
+  testAccountBalanceScriptApi
+} from '@/utils/http_apis'
+import { showToast } from '@/utils/tools'
+
+const props = defineProps({
+  show: { type: Boolean, default: false },
+  account: { type: Object, default: () => ({}) }
+})
+
+const emit = defineEmits(['close', 'saved'])
+
+const saving = ref(false)
+const testing = ref(false)
+const testResult = ref(null)
+
+const presetScript = `({
+  request: {
+    url: "{{baseUrl}}/api/user/self",
+    method: "GET",
+    headers: {
+      "Content-Type": "application/json",
+      "Authorization": "Bearer {{apiKey}}",
+      "New-Api-User": "{{extra}}"
+    }
+  },
+  extractor: function (response) {
+    if (response && response.success && response.data) {
+      const quota = response.data.quota || 0;
+      const used = response.data.used_quota || 0;
+      return {
+        planName: response.data.group || "默认套餐",
+        remaining: quota / 500000,
+        used: used / 500000,
+        total: (quota + used) / 500000,
+        unit: "USD"
+      };
+    }
+    return {
+      isValid: false,
+      invalidMessage: (response && response.message) || "查询失败"
+    };
+  }
+})`
+
+const form = reactive({
+  baseUrl: '',
+  apiKey: '',
+  token: '',
+  extra: '',
+  timeoutSeconds: 10,
+  autoIntervalMinutes: 0,
+  scriptBody: ''
+})
+
+const buildDefaultForm = () => ({
+  baseUrl: '',
+  apiKey: '',
+  token: '',
+  extra: '',
+  timeoutSeconds: 10,
+  autoIntervalMinutes: 0,
+  // 默认给出示例脚本，字段保持清空，避免“上一个账户的配置污染当前账户”
+  scriptBody: presetScript
+})
+
+const emitClose = () => emit('close')
+
+const resetForm = () => {
+  Object.assign(form, buildDefaultForm())
+  testResult.value = null
+  saving.value = false
+  testing.value = false
+}
+
+const loadConfig = async () => {
+  if (!props.account?.id || !props.account?.platform) return
+  const res = await getAccountBalanceScriptApi(props.account.id, props.account.platform)
+  if (res?.success && res.data) {
+    Object.assign(form, res.data)
+  }
+}
+
+const saveConfig = async () => {
+  if (!props.account?.id || !props.account?.platform) return
+  saving.value = true
+  const res = await updateAccountBalanceScriptApi(props.account.id, props.account.platform, {
+    ...form
+  })
+  if (res?.success) {
+    showToast('已保存', 'success')
+    emit('saved')
+  } else {
+    showToast(res?.message || '保存失败', 'error')
+  }
+  saving.value = false
+}
+
+const testScript = async () => {
+  if (!props.account?.id || !props.account?.platform) return
+  testing.value = true
+  testResult.value = null
+  const res = await testAccountBalanceScriptApi(props.account.id, props.account.platform, {
+    ...form
+  })
+  if (res?.success) {
+    testResult.value = res.data
+    showToast('测试完成', 'success')
+  } else {
+    showToast(res?.error || '测试失败', 'error')
+  }
+  testing.value = false
+}
+
+const applyPreset = () => {
+  form.scriptBody = presetScript
+}
+
+const displayAmount = (val) => {
+  if (val === null || val === undefined || Number.isNaN(Number(val))) return '—'
+  return Number(val).toFixed(2)
+}
+
+const formatJson = (data) => {
+  try {
+    return JSON.stringify(data, null, 2)
+  } catch (error) {
+    return String(data)
+  }
+}
+
+watch(
+  () => props.show,
+  (val) => {
+    if (val) {
+      resetForm()
+      loadConfig()
+    }
+  }
+)
+</script>
+
+<style scoped>
+:deep(.balance-script-dialog) {
+  max-height: 90vh;
+  display: flex;
+  flex-direction: column;
+}
+
+:deep(.balance-script-dialog .el-dialog__body) {
+  flex: 1 1 auto;
+  min-height: 0;
+  overflow: auto;
+}
+
+:deep(.balance-script-dialog .el-dialog__footer) {
+  border-top: 1px solid rgba(229, 231, 235, 0.7);
+}
+
+.input-text {
+  @apply w-full rounded-lg border border-gray-200 bg-white px-3 py-2 text-sm text-gray-800 shadow-sm transition focus:border-indigo-400 focus:outline-none focus:ring-2 focus:ring-indigo-200 dark:border-gray-700 dark:bg-gray-800 dark:text-gray-100 dark:focus:border-indigo-500 dark:focus:ring-indigo-600;
+}
+</style>
diff --git a/web/admin-spa/src/components/accounts/AccountForm.vue b/web/admin-spa/src/components/accounts/AccountForm.vue
index d6e00ecd..af9b3d24 100644
--- a/web/admin-spa/src/components/accounts/AccountForm.vue
+++ b/web/admin-spa/src/components/accounts/AccountForm.vue
@@ -477,6 +477,36 @@
                           <i class="fas fa-check text-xs text-white"></i>
                         </div>
                       </label>
+                      <label
+                        class="group relative flex cursor-pointer items-center rounded-md border p-2 transition-all"
+                        :class="[
+                          form.platform === 'gemini-antigravity'
+                            ? 'border-purple-500 bg-purple-50 dark:border-purple-400 dark:bg-purple-900/30'
+                            : 'border-gray-300 bg-white hover:border-purple-400 hover:bg-purple-50/50 dark:border-gray-600 dark:bg-gray-700 dark:hover:border-purple-500 dark:hover:bg-purple-900/20'
+                        ]"
+                      >
+                        <input
+                          v-model="form.platform"
+                          class="sr-only"
+                          type="radio"
+                          value="gemini-antigravity"
+                        />
+                        <div class="flex items-center gap-2">
+                          <i class="fas fa-rocket text-sm text-purple-600 dark:text-purple-400"></i>
+                          <div>
+                            <span class="block text-xs font-medium text-gray-900 dark:text-gray-100"
+                              >Antigravity</span
+                            >
+                            <span class="text-xs text-gray-500 dark:text-gray-400">OAuth</span>
+                          </div>
+                        </div>
+                        <div
+                          v-if="form.platform === 'gemini-antigravity'"
+                          class="absolute right-1 top-1 flex h-4 w-4 items-center justify-center rounded-full bg-purple-500"
+                        >
+                          <i class="fas fa-check text-xs text-white"></i>
+                        </div>
+                      </label>
 
                       <label
                         class="group relative flex cursor-pointer items-center rounded-md border p-2 transition-all"
@@ -772,7 +802,7 @@
             </div>
 
             <!-- Gemini 项目 ID 字段 -->
-            <div v-if="form.platform === 'gemini'">
+            <div v-if="form.platform === 'gemini' || form.platform === 'gemini-antigravity'">
               <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
                 >项目 ID (可选)</label
               >
@@ -822,41 +852,194 @@
             </div>
 
             <!-- Bedrock 特定字段 -->
-            <div v-if="form.platform === 'bedrock' && !isEdit" class="space-y-4">
+            <div v-if="form.platform === 'bedrock'" class="space-y-4">
+              <!-- 凭证类型选择器 -->
               <div>
                 <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
-                  >AWS 访问密钥 ID *</label
+                  >凭证类型 *</label
                 >
-                <input
-                  v-model="form.accessKeyId"
-                  class="form-input w-full border-gray-300 dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200 dark:placeholder-gray-400"
-                  :class="{ 'border-red-500': errors.accessKeyId }"
-                  placeholder="请输入 AWS Access Key ID"
-                  required
-                  type="text"
-                />
-                <p v-if="errors.accessKeyId" class="mt-1 text-xs text-red-500">
-                  {{ errors.accessKeyId }}
-                </p>
+                <div v-if="!isEdit" class="flex gap-4">
+                  <label class="flex cursor-pointer items-center">
+                    <input
+                      v-model="form.credentialType"
+                      class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                      type="radio"
+                      value="access_key"
+                    />
+                    <span class="text-sm text-gray-700 dark:text-gray-300"
+                      >AWS Access Key（访问密钥）</span
+                    >
+                  </label>
+                  <label class="flex cursor-pointer items-center">
+                    <input
+                      v-model="form.credentialType"
+                      class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                      type="radio"
+                      value="bearer_token"
+                    />
+                    <span class="text-sm text-gray-700 dark:text-gray-300"
+                      >Bearer Token（长期令牌）</span
+                    >
+                  </label>
+                </div>
+                <div v-else class="flex gap-4">
+                  <label class="flex items-center opacity-60">
+                    <input
+                      v-model="form.credentialType"
+                      class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                      disabled
+                      type="radio"
+                      value="access_key"
+                    />
+                    <span class="text-sm text-gray-700 dark:text-gray-300"
+                      >AWS Access Key（访问密钥）</span
+                    >
+                  </label>
+                  <label class="flex items-center opacity-60">
+                    <input
+                      v-model="form.credentialType"
+                      class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                      disabled
+                      type="radio"
+                      value="bearer_token"
+                    />
+                    <span class="text-sm text-gray-700 dark:text-gray-300"
+                      >Bearer Token（长期令牌）</span
+                    >
+                  </label>
+                </div>
+                <div
+                  class="mt-2 rounded-lg border border-blue-200 bg-blue-50 p-3 dark:border-blue-700 dark:bg-blue-900/30"
+                >
+                  <div class="flex items-start gap-2">
+                    <i class="fas fa-info-circle mt-0.5 text-blue-600 dark:text-blue-400" />
+                    <div class="text-xs text-blue-700 dark:text-blue-300">
+                      <p v-if="form.credentialType === 'access_key'" class="font-medium">
+                        使用 AWS Access Key ID 和 Secret Access Key 进行身份验证（支持临时凭证）
+                      </p>
+                      <p v-else class="font-medium">
+                        使用 AWS Bedrock API Keys 生成的 Bearer Token
+                        进行身份验证，更简单、权限范围更小
+                      </p>
+                      <p v-if="isEdit" class="mt-1 text-xs italic">
+                        💡 编辑模式下凭证类型不可更改，如需切换类型请重新创建账户
+                      </p>
+                    </div>
+                  </div>
+                </div>
               </div>
 
-              <div>
+              <!-- AWS Access Key 字段（仅在 access_key 模式下显示）-->
+              <div v-if="form.credentialType === 'access_key'">
+                <div>
+                  <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
+                    >AWS 访问密钥 ID {{ isEdit ? '' : '*' }}</label
+                  >
+                  <input
+                    v-model="form.accessKeyId"
+                    class="form-input w-full border-gray-300 dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200 dark:placeholder-gray-400"
+                    :class="{ 'border-red-500': errors.accessKeyId }"
+                    :placeholder="isEdit ? '留空则保持原有凭证不变' : '请输入 AWS Access Key ID'"
+                    :required="!isEdit"
+                    type="text"
+                  />
+                  <p v-if="errors.accessKeyId" class="mt-1 text-xs text-red-500">
+                    {{ errors.accessKeyId }}
+                  </p>
+                  <p v-if="isEdit" class="mt-1 text-xs text-gray-500 dark:text-gray-400">
+                    💡 编辑模式下，留空则保持原有 Access Key ID 不变
+                  </p>
+                </div>
+
+                <div>
+                  <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
+                    >AWS 秘密访问密钥 {{ isEdit ? '' : '*' }}</label
+                  >
+                  <input
+                    v-model="form.secretAccessKey"
+                    class="form-input w-full border-gray-300 dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200 dark:placeholder-gray-400"
+                    :class="{ 'border-red-500': errors.secretAccessKey }"
+                    :placeholder="
+                      isEdit ? '留空则保持原有凭证不变' : '请输入 AWS Secret Access Key'
+                    "
+                    :required="!isEdit"
+                    type="password"
+                  />
+                  <p v-if="errors.secretAccessKey" class="mt-1 text-xs text-red-500">
+                    {{ errors.secretAccessKey }}
+                  </p>
+                  <p v-if="isEdit" class="mt-1 text-xs text-gray-500 dark:text-gray-400">
+                    💡 编辑模式下，留空则保持原有 Secret Access Key 不变
+                  </p>
+                </div>
+
+                <div>
+                  <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
+                    >会话令牌 (可选)</label
+                  >
+                  <input
+                    v-model="form.sessionToken"
+                    class="form-input w-full border-gray-300 dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200 dark:placeholder-gray-400"
+                    :placeholder="
+                      isEdit
+                        ? '留空则保持原有 Session Token 不变'
+                        : '如果使用临时凭证，请输入会话令牌'
+                    "
+                    type="password"
+                  />
+                  <p class="mt-1 text-xs text-gray-500 dark:text-gray-400">
+                    仅在使用临时 AWS 凭证时需要填写
+                  </p>
+                </div>
+              </div>
+
+              <!-- Bearer Token 字段（仅在 bearer_token 模式下显示）-->
+              <div v-if="form.credentialType === 'bearer_token'">
                 <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
-                  >AWS 秘密访问密钥 *</label
+                  >Bearer Token {{ isEdit ? '' : '*' }}</label
                 >
                 <input
-                  v-model="form.secretAccessKey"
+                  v-model="form.bearerToken"
                   class="form-input w-full border-gray-300 dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200 dark:placeholder-gray-400"
-                  :class="{ 'border-red-500': errors.secretAccessKey }"
-                  placeholder="请输入 AWS Secret Access Key"
-                  required
+                  :class="{ 'border-red-500': errors.bearerToken }"
+                  :placeholder="
+                    isEdit ? '留空则保持原有 Bearer Token 不变' : '请输入 AWS Bearer Token'
+                  "
+                  :required="!isEdit"
                   type="password"
                 />
-                <p v-if="errors.secretAccessKey" class="mt-1 text-xs text-red-500">
-                  {{ errors.secretAccessKey }}
+                <p v-if="errors.bearerToken" class="mt-1 text-xs text-red-500">
+                  {{ errors.bearerToken }}
                 </p>
+                <p v-if="isEdit" class="mt-1 text-xs text-gray-500 dark:text-gray-400">
+                  💡 编辑模式下，留空则保持原有 Bearer Token 不变
+                </p>
+                <div
+                  class="mt-2 rounded-lg border border-green-200 bg-green-50 p-3 dark:border-green-700 dark:bg-green-900/30"
+                >
+                  <div class="flex items-start gap-2">
+                    <i class="fas fa-key mt-0.5 text-green-600 dark:text-green-400" />
+                    <div class="text-xs text-green-700 dark:text-green-300">
+                      <p class="mb-1 font-medium">Bearer Token 说明：</p>
+                      <ul class="list-inside list-disc space-y-1 text-xs">
+                        <li>输入 AWS Bedrock API Keys 生成的 Bearer Token</li>
+                        <li>Bearer Token 仅限 Bedrock 服务访问，权限范围更小</li>
+                        <li>相比 Access Key 更简单，无需 Secret Key</li>
+                        <li>
+                          参考：<a
+                            class="text-green-600 underline dark:text-green-400"
+                            href="https://aws.amazon.com/cn/blogs/machine-learning/accelerate-ai-development-with-amazon-bedrock-api-keys/"
+                            target="_blank"
+                            >AWS 官方文档</a
+                          >
+                        </li>
+                      </ul>
+                    </div>
+                  </div>
+                </div>
               </div>
 
+              <!-- AWS 区域（两种凭证类型都需要）-->
               <div>
                 <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
                   >AWS 区域 *</label
@@ -872,10 +1055,12 @@
                 <p v-if="errors.region" class="mt-1 text-xs text-red-500">
                   {{ errors.region }}
                 </p>
-                <div class="mt-2 rounded-lg border border-blue-200 bg-blue-50 p-3">
+                <div
+                  class="mt-2 rounded-lg border border-blue-200 bg-blue-50 p-3 dark:border-blue-700 dark:bg-blue-900/30"
+                >
                   <div class="flex items-start gap-2">
-                    <i class="fas fa-info-circle mt-0.5 text-blue-600" />
-                    <div class="text-xs text-blue-700">
+                    <i class="fas fa-info-circle mt-0.5 text-blue-600 dark:text-blue-400" />
+                    <div class="text-xs text-blue-700 dark:text-blue-300">
                       <p class="mb-1 font-medium">常用 AWS 区域参考：</p>
                       <div class="grid grid-cols-2 gap-1 text-xs">
                         <span>• us-east-1 (美国东部)</span>
@@ -885,27 +1070,14 @@
                         <span>• ap-northeast-1 (东京)</span>
                         <span>• eu-central-1 (法兰克福)</span>
                       </div>
-                      <p class="mt-2 text-blue-600">💡 请输入完整的区域代码，如 us-east-1</p>
+                      <p class="mt-2 text-blue-600 dark:text-blue-400">
+                        💡 请输入完整的区域代码，如 us-east-1
+                      </p>
                     </div>
                   </div>
                 </div>
               </div>
 
-              <div>
-                <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
-                  >会话令牌 (可选)</label
-                >
-                <input
-                  v-model="form.sessionToken"
-                  class="form-input w-full border-gray-300 dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200 dark:placeholder-gray-400"
-                  placeholder="如果使用临时凭证，请输入会话令牌"
-                  type="password"
-                />
-                <p class="mt-1 text-xs text-gray-500 dark:text-gray-400">
-                  仅在使用临时 AWS 凭证时需要填写
-                </p>
-              </div>
-
               <div>
                 <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
                   >默认主模型 (可选)</label
@@ -1824,7 +1996,7 @@
                     Token，建议也一并填写以支持自动刷新。
                   </p>
                   <p
-                    v-else-if="form.platform === 'gemini'"
+                    v-else-if="form.platform === 'gemini' || form.platform === 'gemini-antigravity'"
                     class="mb-2 text-sm text-blue-800 dark:text-blue-300"
                   >
                     请输入有效的 Gemini Access Token。如果您有 Refresh
@@ -1861,7 +2033,9 @@
                       文件中的凭证， 请勿使用 Claude 官网 API Keys 页面的密钥。
                     </p>
                     <p
-                      v-else-if="form.platform === 'gemini'"
+                      v-else-if="
+                        form.platform === 'gemini' || form.platform === 'gemini-antigravity'
+                      "
                       class="text-xs text-blue-800 dark:text-blue-300"
                     >
                       请从已登录 Gemini CLI 的机器上获取
@@ -2591,7 +2765,7 @@
           </div>
 
           <!-- Gemini 项目 ID 字段 -->
-          <div v-if="form.platform === 'gemini'">
+          <div v-if="form.platform === 'gemini' || form.platform === 'gemini-antigravity'">
             <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
               >项目 ID (可选)</label
             >
@@ -3805,10 +3979,9 @@
 <script setup>
 import { ref, computed, watch, onMounted } from 'vue'
 import { showToast } from '@/utils/tools'
-import * as httpApi from '@/utils/http_apis'
-import { getModels } from '@/utils/http_apis'
+
+import * as httpApis from '@/utils/http_apis'
 import { useAccountsStore } from '@/stores/accounts'
-import { useConfirm } from '@/composables/useConfirm'
 import ProxyConfig from './ProxyConfig.vue'
 import OAuthFlow from './OAuthFlow.vue'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
@@ -3825,7 +3998,28 @@ const props = defineProps({
 const emit = defineEmits(['close', 'success', 'platform-changed'])
 
 const accountsStore = useAccountsStore()
-const { showConfirmModal, confirmOptions, showConfirm, handleConfirm, handleCancel } = useConfirm()
+
+// 确认弹窗状态
+const showConfirmModal = ref(false)
+const confirmOptions = ref({ title: '', message: '', confirmText: '继续', cancelText: '取消' })
+let confirmResolve = null
+const showConfirm = (title, message, confirmText = '继续', cancelText = '取消') => {
+  return new Promise((resolve) => {
+    confirmOptions.value = { title, message, confirmText, cancelText }
+    confirmResolve = resolve
+    showConfirmModal.value = true
+  })
+}
+const handleConfirm = () => {
+  showConfirmModal.value = false
+  confirmResolve?.(true)
+  confirmResolve = null
+}
+const handleCancel = () => {
+  showConfirmModal.value = false
+  confirmResolve?.(false)
+  confirmResolve = null
+}
 
 // 是否为编辑模式
 const isEdit = computed(() => !!props.account)
@@ -3881,7 +4075,7 @@ const determinePlatformGroup = (platform) => {
     return 'claude'
   } else if (['openai', 'openai-responses', 'azure_openai'].includes(platform)) {
     return 'openai'
-  } else if (['gemini', 'gemini-api'].includes(platform)) {
+  } else if (['gemini', 'gemini-antigravity', 'gemini-api'].includes(platform)) {
     return 'gemini'
   } else if (platform === 'droid') {
     return 'droid'
@@ -4016,7 +4210,8 @@ const form = ref({
   platform: props.account?.platform || 'claude',
   addType: (() => {
     const platform = props.account?.platform || 'claude'
-    if (platform === 'gemini' || platform === 'openai') return 'oauth'
+    if (platform === 'gemini' || platform === 'gemini-antigravity' || platform === 'openai')
+      return 'oauth'
     if (platform === 'claude') return 'oauth'
     return 'manual'
   })(),
@@ -4073,10 +4268,12 @@ const form = ref({
   // 并发控制字段
   maxConcurrentTasks: props.account?.maxConcurrentTasks || 0,
   // Bedrock 特定字段
+  credentialType: props.account?.credentialType || 'access_key', // 'access_key' 或 'bearer_token'
   accessKeyId: props.account?.accessKeyId || '',
   secretAccessKey: props.account?.secretAccessKey || '',
   region: props.account?.region || '',
   sessionToken: props.account?.sessionToken || '',
+  bearerToken: props.account?.bearerToken || '', // Bearer Token 字段
   defaultModel: props.account?.defaultModel || '',
   smallFastModel: props.account?.smallFastModel || '',
   // Azure OpenAI 特定字段
@@ -4117,7 +4314,7 @@ const commonModels = ref([])
 // 加载模型列表
 const loadCommonModels = async () => {
   try {
-    const result = await getModels()
+    const result = await httpApis.getModelsApi()
     if (result.success && result.data?.all) {
       commonModels.value = result.data.all
     }
@@ -4239,6 +4436,7 @@ const errors = ref({
   accessKeyId: '',
   secretAccessKey: '',
   region: '',
+  bearerToken: '',
   azureEndpoint: '',
   deploymentName: ''
 })
@@ -4331,7 +4529,7 @@ const loadAccountUsage = async () => {
   if (!isEdit.value || !props.account?.id) return
 
   try {
-    const response = await httpApi.get(`/admin/claude-console-accounts/${props.account.id}/usage`)
+    const response = await httpApis.getClaudeConsoleAccountUsageApi(props.account.id)
     if (response) {
       // 更新表单中的使用量数据
       form.value.dailyUsage = response.dailyUsage || 0
@@ -4358,7 +4556,7 @@ const selectPlatformGroup = (group) => {
   } else if (group === 'openai') {
     form.value.platform = 'openai'
   } else if (group === 'gemini') {
-    form.value.platform = 'gemini'
+    form.value.platform = 'gemini' // Default to Gemini CLI, user can select Antigravity
   } else if (group === 'droid') {
     form.value.platform = 'droid'
   }
@@ -4395,7 +4593,11 @@ const nextStep = async () => {
   }
 
   // 对于Gemini账户，检查项目 ID
-  if (form.value.platform === 'gemini' && oauthStep.value === 1 && form.value.addType === 'oauth') {
+  if (
+    (form.value.platform === 'gemini' || form.value.platform === 'gemini-antigravity') &&
+    oauthStep.value === 1 &&
+    form.value.addType === 'oauth'
+  ) {
     if (!form.value.projectId || form.value.projectId.trim() === '') {
       // 使用自定义确认弹窗
       const confirmed = await showConfirm(
@@ -4768,9 +4970,14 @@ const handleOAuthSuccess = async (tokenInfoOrList) => {
         hasClaudePro: form.value.subscriptionType === 'claude_pro',
         manuallySet: true // 标记为手动设置
       }
-    } else if (currentPlatform === 'gemini') {
-      // Gemini使用geminiOauth字段
+    } else if (currentPlatform === 'gemini' || currentPlatform === 'gemini-antigravity') {
+      // Gemini/Antigravity使用geminiOauth字段
       data.geminiOauth = tokenInfo.tokens || tokenInfo
+      // 根据 platform 设置 oauthProvider
+      data.oauthProvider =
+        currentPlatform === 'gemini-antigravity'
+          ? 'antigravity'
+          : tokenInfo.oauthProvider || 'gemini-cli'
       if (form.value.projectId) {
         data.projectId = form.value.projectId
       }
@@ -4942,14 +5149,27 @@ const createAccount = async () => {
       hasError = true
     }
   } else if (form.value.platform === 'bedrock') {
-    // Bedrock 验证
-    if (!form.value.accessKeyId || form.value.accessKeyId.trim() === '') {
-      errors.value.accessKeyId = '请填写 AWS 访问密钥 ID'
-      hasError = true
-    }
-    if (!form.value.secretAccessKey || form.value.secretAccessKey.trim() === '') {
-      errors.value.secretAccessKey = '请填写 AWS 秘密访问密钥'
-      hasError = true
+    // Bedrock 验证 - 根据凭证类型进行不同验证
+    if (form.value.credentialType === 'access_key') {
+      // Access Key 模式：创建时必填，编辑时可选（留空则保持原有凭证）
+      if (!isEdit.value) {
+        if (!form.value.accessKeyId || form.value.accessKeyId.trim() === '') {
+          errors.value.accessKeyId = '请填写 AWS 访问密钥 ID'
+          hasError = true
+        }
+        if (!form.value.secretAccessKey || form.value.secretAccessKey.trim() === '') {
+          errors.value.secretAccessKey = '请填写 AWS 秘密访问密钥'
+          hasError = true
+        }
+      }
+    } else if (form.value.credentialType === 'bearer_token') {
+      // Bearer Token 模式：创建时必填，编辑时可选（留空则保持原有凭证）
+      if (!isEdit.value) {
+        if (!form.value.bearerToken || form.value.bearerToken.trim() === '') {
+          errors.value.bearerToken = '请填写 Bearer Token'
+          hasError = true
+        }
+      }
     }
     if (!form.value.region || form.value.region.trim() === '') {
       errors.value.region = '请选择 AWS 区域'
@@ -5192,6 +5412,10 @@ const createAccount = async () => {
       data.rateLimitDuration = 60 // 默认值60，不从用户输入获取
       data.dailyQuota = form.value.dailyQuota || 0
       data.quotaResetTime = form.value.quotaResetTime || '00:00'
+    } else if (form.value.platform === 'gemini-antigravity') {
+      // Antigravity OAuth - set oauthProvider, submission happens below
+      data.oauthProvider = 'antigravity'
+      data.priority = form.value.priority || 50
     } else if (form.value.platform === 'gemini-api') {
       // Gemini API 账户特定数据
       data.baseUrl = form.value.baseUrl || 'https://generativelanguage.googleapis.com'
@@ -5201,12 +5425,21 @@ const createAccount = async () => {
         ? form.value.supportedModels
         : []
     } else if (form.value.platform === 'bedrock') {
-      // Bedrock 账户特定数据 - 构造 awsCredentials 对象
-      data.awsCredentials = {
-        accessKeyId: form.value.accessKeyId,
-        secretAccessKey: form.value.secretAccessKey,
-        sessionToken: form.value.sessionToken || null
+      // Bedrock 账户特定数据
+      data.credentialType = form.value.credentialType || 'access_key'
+
+      // 根据凭证类型构造不同的凭证对象
+      if (form.value.credentialType === 'access_key') {
+        data.awsCredentials = {
+          accessKeyId: form.value.accessKeyId,
+          secretAccessKey: form.value.secretAccessKey,
+          sessionToken: form.value.sessionToken || null
+        }
+      } else if (form.value.credentialType === 'bearer_token') {
+        // Bearer Token 模式：必须传递 Bearer Token
+        data.bearerToken = form.value.bearerToken
       }
+
       data.region = form.value.region
       data.defaultModel = form.value.defaultModel || null
       data.smallFastModel = form.value.smallFastModel || null
@@ -5243,7 +5476,7 @@ const createAccount = async () => {
       result = await accountsStore.createOpenAIAccount(data)
     } else if (form.value.platform === 'azure_openai') {
       result = await accountsStore.createAzureOpenAIAccount(data)
-    } else if (form.value.platform === 'gemini') {
+    } else if (form.value.platform === 'gemini' || form.value.platform === 'gemini-antigravity') {
       result = await accountsStore.createGeminiAccount(data)
     } else if (form.value.platform === 'gemini-api') {
       result = await accountsStore.createGeminiApiAccount(data)
@@ -5534,19 +5767,33 @@ const updateAccount = async () => {
 
     // Bedrock 特定更新
     if (props.account.platform === 'bedrock') {
-      // 只有当有凭证变更时才构造 awsCredentials 对象
-      if (form.value.accessKeyId || form.value.secretAccessKey || form.value.sessionToken) {
-        data.awsCredentials = {}
-        if (form.value.accessKeyId) {
-          data.awsCredentials.accessKeyId = form.value.accessKeyId
+      // 更新凭证类型
+      if (form.value.credentialType) {
+        data.credentialType = form.value.credentialType
+      }
+
+      // 根据凭证类型更新凭证
+      if (form.value.credentialType === 'access_key') {
+        // 只有当有凭证变更时才构造 awsCredentials 对象
+        if (form.value.accessKeyId || form.value.secretAccessKey || form.value.sessionToken) {
+          data.awsCredentials = {}
+          if (form.value.accessKeyId) {
+            data.awsCredentials.accessKeyId = form.value.accessKeyId
+          }
+          if (form.value.secretAccessKey) {
+            data.awsCredentials.secretAccessKey = form.value.secretAccessKey
+          }
+          if (form.value.sessionToken !== undefined) {
+            data.awsCredentials.sessionToken = form.value.sessionToken || null
+          }
         }
-        if (form.value.secretAccessKey) {
-          data.awsCredentials.secretAccessKey = form.value.secretAccessKey
-        }
-        if (form.value.sessionToken !== undefined) {
-          data.awsCredentials.sessionToken = form.value.sessionToken || null
+      } else if (form.value.credentialType === 'bearer_token') {
+        // Bearer Token 模式：更新 Bearer Token（编辑时可选，留空则保留原有凭证）
+        if (form.value.bearerToken && form.value.bearerToken.trim()) {
+          data.bearerToken = form.value.bearerToken
         }
       }
+
       if (form.value.region) {
         data.region = form.value.region
       }
@@ -5734,7 +5981,7 @@ const filteredGroups = computed(() => {
 const loadGroups = async () => {
   loadingGroups.value = true
   try {
-    const response = await httpApi.get('/admin/account-groups')
+    const response = await httpApis.getAccountGroupsApi()
     groups.value = response.data || []
   } catch (error) {
     showToast('加载分组列表失败', 'error')
@@ -6187,7 +6434,7 @@ watch(
             // 否则查找账户所属的分组
             const checkPromises = groups.value.map(async (group) => {
               try {
-                const response = await httpApi.get(`/admin/account-groups/${group.id}/members`)
+                const response = await httpApis.getAccountGroupMembersApi(group.id)
                 const members = response.data || []
                 if (members.some((m) => m.id === newAccount.id)) {
                   foundGroupIds.push(group.id)
@@ -6215,7 +6462,7 @@ watch(
 // 获取统一 User-Agent 信息
 const fetchUnifiedUserAgent = async () => {
   try {
-    const response = await httpApi.get('/admin/claude-code-version')
+    const response = await httpApis.getClaudeCodeVersionApi()
     if (response.success && response.userAgent) {
       unifiedUserAgent.value = response.userAgent
     } else {
@@ -6231,7 +6478,7 @@ const fetchUnifiedUserAgent = async () => {
 const clearUnifiedCache = async () => {
   clearingCache.value = true
   try {
-    const response = await httpApi.post('/admin/claude-code-version/clear')
+    const response = await httpApis.clearClaudeCodeVersionApi()
     if (response.success) {
       unifiedUserAgent.value = ''
       showToast('统一User-Agent缓存已清除', 'success')
diff --git a/web/admin-spa/src/components/accounts/AccountScheduledTestModal.vue b/web/admin-spa/src/components/accounts/AccountScheduledTestModal.vue
index c2436543..8b9f5b1c 100644
--- a/web/admin-spa/src/components/accounts/AccountScheduledTestModal.vue
+++ b/web/admin-spa/src/components/accounts/AccountScheduledTestModal.vue
@@ -220,7 +220,7 @@
 
 <script setup>
 import { ref, watch } from 'vue'
-import { API_PREFIX } from '@/utils/http_apis'
+import { APP_CONFIG } from '@/utils/tools'
 import { showToast } from '@/utils/tools'
 
 const props = defineProps({
@@ -287,7 +287,7 @@ async function loadConfig() {
     // 根据平台获取配置端点
     let endpoint = ''
     if (platform === 'claude') {
-      endpoint = `${API_PREFIX}/admin/claude-accounts/${props.account.id}/test-config`
+      endpoint = `${APP_CONFIG.apiPrefix}/admin/claude-accounts/${props.account.id}/test-config`
     } else {
       // 其他平台暂不支持
       loading.value = false
@@ -344,7 +344,7 @@ async function saveConfig() {
 
     let endpoint = ''
     if (platform === 'claude') {
-      endpoint = `${API_PREFIX}/admin/claude-accounts/${props.account.id}/test-config`
+      endpoint = `${APP_CONFIG.apiPrefix}/admin/claude-accounts/${props.account.id}/test-config`
     } else {
       saving.value = false
       return
diff --git a/web/admin-spa/src/components/accounts/AccountTestModal.vue b/web/admin-spa/src/components/accounts/AccountTestModal.vue
index c9150959..af527156 100644
--- a/web/admin-spa/src/components/accounts/AccountTestModal.vue
+++ b/web/admin-spa/src/components/accounts/AccountTestModal.vue
@@ -68,6 +68,22 @@
                 {{ platformLabel }}
               </span>
             </div>
+            <!-- Bedrock 账号类型 -->
+            <div
+              v-if="props.account?.platform === 'bedrock'"
+              class="flex items-center justify-between text-sm"
+            >
+              <span class="text-gray-500 dark:text-gray-400">账号类型</span>
+              <span
+                :class="[
+                  'inline-flex items-center gap-1.5 rounded-full px-2.5 py-0.5 text-xs font-medium',
+                  credentialTypeBadgeClass
+                ]"
+              >
+                <i :class="credentialTypeIcon" />
+                {{ credentialTypeLabel }}
+              </span>
+            </div>
             <div class="flex items-center justify-between text-sm">
               <span class="text-gray-500 dark:text-gray-400">测试模型</span>
               <select
@@ -183,7 +199,7 @@
 
 <script setup>
 import { ref, computed, watch, onUnmounted } from 'vue'
-import { API_PREFIX } from '@/utils/http_apis'
+import { APP_CONFIG } from '@/utils/tools'
 
 const props = defineProps({
   show: {
@@ -313,6 +329,36 @@ const platformBadgeClass = computed(() => {
   return classes[platform] || 'bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300'
 })
 
+// Bedrock 账号类型相关
+const credentialTypeLabel = computed(() => {
+  if (!props.account || props.account.platform !== 'bedrock') return ''
+  const credentialType = props.account.credentialType
+  if (credentialType === 'access_key') return 'Access Key'
+  if (credentialType === 'bearer_token') return 'Bearer Token'
+  return 'Unknown'
+})
+
+const credentialTypeIcon = computed(() => {
+  if (!props.account || props.account.platform !== 'bedrock') return ''
+  const credentialType = props.account.credentialType
+  if (credentialType === 'access_key') return 'fas fa-key'
+  if (credentialType === 'bearer_token') return 'fas fa-ticket'
+  return 'fas fa-question'
+})
+
+const credentialTypeBadgeClass = computed(() => {
+  if (!props.account || props.account.platform !== 'bedrock')
+    return 'bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300'
+  const credentialType = props.account.credentialType
+  if (credentialType === 'access_key') {
+    return 'bg-blue-100 text-blue-700 dark:bg-blue-500/20 dark:text-blue-300'
+  }
+  if (credentialType === 'bearer_token') {
+    return 'bg-green-100 text-green-700 dark:bg-green-500/20 dark:text-green-300'
+  }
+  return 'bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300'
+})
+
 const statusTitle = computed(() => {
   switch (testStatus.value) {
     case 'idle':
@@ -424,14 +470,14 @@ function getTestEndpoint() {
   if (!props.account) return ''
   const platform = props.account.platform
   const endpoints = {
-    claude: `${API_PREFIX}/admin/claude-accounts/${props.account.id}/test`,
-    'claude-console': `${API_PREFIX}/admin/claude-console-accounts/${props.account.id}/test`,
-    bedrock: `${API_PREFIX}/admin/bedrock-accounts/${props.account.id}/test`,
-    gemini: `${API_PREFIX}/admin/gemini-accounts/${props.account.id}/test`,
-    'openai-responses': `${API_PREFIX}/admin/openai-responses-accounts/${props.account.id}/test`,
-    'azure-openai': `${API_PREFIX}/admin/azure-openai-accounts/${props.account.id}/test`,
-    droid: `${API_PREFIX}/admin/droid-accounts/${props.account.id}/test`,
-    ccr: `${API_PREFIX}/admin/ccr-accounts/${props.account.id}/test`
+    claude: `${APP_CONFIG.apiPrefix}/admin/claude-accounts/${props.account.id}/test`,
+    'claude-console': `${APP_CONFIG.apiPrefix}/admin/claude-console-accounts/${props.account.id}/test`,
+    bedrock: `${APP_CONFIG.apiPrefix}/admin/bedrock-accounts/${props.account.id}/test`,
+    gemini: `${APP_CONFIG.apiPrefix}/admin/gemini-accounts/${props.account.id}/test`,
+    'openai-responses': `${APP_CONFIG.apiPrefix}/admin/openai-responses-accounts/${props.account.id}/test`,
+    'azure-openai': `${APP_CONFIG.apiPrefix}/admin/azure-openai-accounts/${props.account.id}/test`,
+    droid: `${APP_CONFIG.apiPrefix}/admin/droid-accounts/${props.account.id}/test`,
+    ccr: `${APP_CONFIG.apiPrefix}/admin/ccr-accounts/${props.account.id}/test`
   }
   return endpoints[platform] || ''
 }
@@ -571,7 +617,7 @@ function handleClose() {
   emit('close')
 }
 
-// 监听show变化，重置状态
+// 监听show变化，重置状态并设置测试模型
 watch(
   () => props.show,
   (newVal) => {
@@ -580,6 +626,21 @@ watch(
       responseText.value = ''
       errorMessage.value = ''
       testDuration.value = 0
+
+      // 根据平台和账号类型设置测试模型
+      if (props.account?.platform === 'bedrock') {
+        const credentialType = props.account.credentialType
+        if (credentialType === 'bearer_token') {
+          // Bearer Token 模式使用 Sonnet 4.5
+          selectedModel.value = 'us.anthropic.claude-sonnet-4-5-20250929-v1:0'
+        } else {
+          // Access Key 模式使用 Haiku（更快更便宜）
+          selectedModel.value = 'us.anthropic.claude-3-5-haiku-20241022-v1:0'
+        }
+      } else {
+        // 其他平台使用默认模型
+        selectedModel.value = 'claude-sonnet-4-5-20250929'
+      }
     }
   }
 )
diff --git a/web/admin-spa/src/components/accounts/AccountUsageDetailModal.vue b/web/admin-spa/src/components/accounts/AccountUsageDetailModal.vue
index 09da703b..3abe8b97 100644
--- a/web/admin-spa/src/components/accounts/AccountUsageDetailModal.vue
+++ b/web/admin-spa/src/components/accounts/AccountUsageDetailModal.vue
@@ -338,6 +338,8 @@ import { storeToRefs } from 'pinia'
 import Chart from 'chart.js/auto'
 import { useThemeStore } from '@/stores/theme'
 
+import { formatNumber } from '@/utils/tools'
+
 const props = defineProps({
   show: { type: Boolean, default: false },
   account: { type: Object, default: () => ({}) },
@@ -364,7 +366,8 @@ const platformLabelMap = {
   'openai-responses': 'OpenAI Responses',
   gemini: 'Gemini',
   'gemini-api': 'Gemini API',
-  droid: 'Droid'
+  droid: 'Droid',
+  bedrock: 'Claude AWS Bedrock'
 }
 
 const platformLabel = computed(() => platformLabelMap[props.account?.platform] || '未知平台')
@@ -388,13 +391,6 @@ const totalTokens = computed(() => props.summary?.totalTokens || 0)
 const overviewInputTokens = computed(() => props.overview?.total?.inputTokens || 0)
 const overviewOutputTokens = computed(() => props.overview?.total?.outputTokens || 0)
 
-const formatNumber = (value) => {
-  const num = Number(value || 0)
-  if (num >= 1_000_000) return `${(num / 1_000_000).toFixed(2)}M`
-  if (num >= 1_000) return `${(num / 1_000).toFixed(2)}K`
-  return num.toLocaleString()
-}
-
 const formatCost = (value) => {
   const num = Number(value || 0)
   if (Number.isNaN(num)) return '$0.000000'
@@ -410,9 +406,7 @@ const formatDate = (value) => {
   const date = new Date(value)
   if (Number.isNaN(date.getTime())) {
     const parts = value.split('-')
-    if (parts.length === 3) {
-      return `${parts[1]}-${parts[2]}`
-    }
+    if (parts.length === 3) return `${parts[1]}-${parts[2]}`
     return value
   }
   const month = String(date.getMonth() + 1).padStart(2, '0')
diff --git a/web/admin-spa/src/components/accounts/ApiKeyManagementModal.vue b/web/admin-spa/src/components/accounts/ApiKeyManagementModal.vue
index f9dddb4e..2ac87d86 100644
--- a/web/admin-spa/src/components/accounts/ApiKeyManagementModal.vue
+++ b/web/admin-spa/src/components/accounts/ApiKeyManagementModal.vue
@@ -397,7 +397,7 @@
 <script setup>
 import { ref, computed, onMounted } from 'vue'
 import { showToast } from '@/utils/tools'
-import * as httpApi from '@/utils/http_apis'
+import { getDroidAccountByIdApi, updateDroidAccountApi } from '@/utils/http_apis'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
 
 const props = defineProps({
@@ -518,7 +518,7 @@ const errorKeysCount = computed(() => {
 const loadApiKeys = async () => {
   loading.value = true
   try {
-    const response = await httpApi.get(`/admin/droid-accounts/${props.accountId}`)
+    const response = await getDroidAccountByIdApi(props.accountId)
     const account = response.data
 
     // 解析 apiKeys
@@ -613,7 +613,7 @@ const deleteApiKey = async (apiKey) => {
       apiKeyUpdateMode: 'delete'
     }
 
-    await httpApi.put(`/admin/droid-accounts/${props.accountId}`, updateData)
+    await updateDroidAccountApi(props.accountId, updateData)
 
     showToast('API Key 已删除', 'success')
     await loadApiKeys()
@@ -654,7 +654,7 @@ const resetApiKeyStatus = async (apiKey) => {
       apiKeyUpdateMode: 'update'
     }
 
-    await httpApi.put(`/admin/droid-accounts/${props.accountId}`, updateData)
+    await updateDroidAccountApi(props.accountId, updateData)
 
     showToast('API Key 状态已重置', 'success')
     await loadApiKeys()
@@ -695,7 +695,7 @@ const deleteAllErrorKeys = async () => {
       apiKeyUpdateMode: 'delete'
     }
 
-    await httpApi.put(`/admin/droid-accounts/${props.accountId}`, updateData)
+    await updateDroidAccountApi(props.accountId, updateData)
 
     showToast(`成功删除 ${errorKeys.length} 个异常 API Key`, 'success')
     await loadApiKeys()
@@ -742,7 +742,7 @@ const deleteAllKeys = async () => {
       apiKeyUpdateMode: 'delete'
     }
 
-    await httpApi.put(`/admin/droid-accounts/${props.accountId}`, updateData)
+    await updateDroidAccountApi(props.accountId, updateData)
 
     showToast(`成功删除所有 ${keysToDelete.length} 个 API Key`, 'success')
     await loadApiKeys()
diff --git a/web/admin-spa/src/components/accounts/BalanceDisplay.vue b/web/admin-spa/src/components/accounts/BalanceDisplay.vue
new file mode 100644
index 00000000..1afb9e61
--- /dev/null
+++ b/web/admin-spa/src/components/accounts/BalanceDisplay.vue
@@ -0,0 +1,361 @@
+<template>
+  <div class="min-w-[200px] space-y-1">
+    <div v-if="loading" class="flex items-center gap-2">
+      <i class="fas fa-spinner fa-spin text-gray-400 dark:text-gray-500"></i>
+      <span class="text-xs text-gray-500 dark:text-gray-400">加载中...</span>
+    </div>
+
+    <div v-else-if="requestError" class="flex items-center gap-2">
+      <i class="fas fa-exclamation-circle text-red-500"></i>
+      <span class="text-xs text-red-600 dark:text-red-400">{{ requestError }}</span>
+      <button
+        class="text-xs text-blue-500 hover:text-blue-600 dark:text-blue-400"
+        :disabled="refreshing"
+        @click="reload"
+      >
+        重试
+      </button>
+    </div>
+
+    <div v-else-if="balanceData" class="space-y-1">
+      <div v-if="balanceData.status === 'error' && balanceData.error" class="text-xs text-red-500">
+        {{ balanceData.error }}
+      </div>
+
+      <div class="flex items-center justify-between gap-2">
+        <div class="flex items-center gap-2">
+          <i
+            class="fas"
+            :class="
+              balanceData.balance
+                ? 'fa-wallet text-green-600 dark:text-green-400'
+                : 'fa-chart-line text-gray-500 dark:text-gray-400'
+            "
+          ></i>
+          <span class="text-sm font-semibold text-gray-900 dark:text-gray-100">
+            {{ primaryText }}
+          </span>
+          <span class="rounded px-1.5 py-0.5 text-xs" :class="sourceClass">
+            {{ sourceLabel }}
+          </span>
+        </div>
+
+        <button
+          v-if="!hideRefresh"
+          class="text-xs text-gray-500 hover:text-blue-600 disabled:cursor-not-allowed disabled:opacity-40 dark:text-gray-400 dark:hover:text-blue-400"
+          :disabled="refreshing || !canRefresh"
+          :title="refreshTitle"
+          @click="refresh"
+        >
+          <i class="fas fa-sync-alt" :class="{ 'fa-spin': refreshing }"></i>
+        </button>
+      </div>
+
+      <!-- 配额（如适用） -->
+      <div v-if="quotaInfo && isAntigravityQuota" class="space-y-2">
+        <div class="flex items-center justify-between text-xs text-gray-600 dark:text-gray-400">
+          <span>剩余</span>
+          <span>{{ formatQuotaNumber(quotaInfo.remaining) }}</span>
+        </div>
+
+        <div class="space-y-1">
+          <div
+            v-for="row in antigravityRows"
+            :key="row.category"
+            class="flex items-center gap-2 rounded-md bg-gray-50 px-2 py-1.5 dark:bg-gray-700/60"
+          >
+            <span class="h-2 w-2 shrink-0 rounded-full" :class="row.dotClass"></span>
+            <span
+              class="min-w-0 flex-1 truncate text-xs font-medium text-gray-800 dark:text-gray-100"
+              :title="row.category"
+            >
+              {{ row.category }}
+            </span>
+
+            <div class="flex w-[94px] flex-col gap-0.5">
+              <div class="h-1.5 w-full rounded-full bg-gray-200 dark:bg-gray-600">
+                <div
+                  class="h-1.5 rounded-full transition-all"
+                  :class="row.barClass"
+                  :style="{ width: `${row.remainingPercent ?? 0}%` }"
+                ></div>
+              </div>
+              <div
+                class="flex items-center justify-between text-[11px] text-gray-500 dark:text-gray-300"
+              >
+                <span>{{ row.remainingText }}</span>
+                <span v-if="row.resetAt" class="text-gray-400 dark:text-gray-400">{{
+                  formatResetTime(row.resetAt)
+                }}</span>
+              </div>
+            </div>
+          </div>
+        </div>
+      </div>
+
+      <div v-else-if="quotaInfo" class="space-y-1">
+        <div class="flex items-center justify-between text-xs text-gray-600 dark:text-gray-400">
+          <span>已用: {{ formatQuotaNumber(quotaInfo.used) }}</span>
+          <span>剩余: {{ formatQuotaNumber(quotaInfo.remaining) }}</span>
+        </div>
+        <div class="h-1.5 w-full rounded-full bg-gray-200 dark:bg-gray-700">
+          <div
+            class="h-1.5 rounded-full transition-all"
+            :class="quotaBarClass"
+            :style="{ width: `${Math.min(100, quotaInfo.percentage)}%` }"
+          ></div>
+        </div>
+        <div class="flex items-center justify-between text-xs">
+          <span class="text-gray-500 dark:text-gray-400">
+            {{ quotaInfo.percentage.toFixed(1) }}% 已使用
+          </span>
+          <span v-if="quotaInfo.resetAt" class="text-gray-400 dark:text-gray-500">
+            重置: {{ formatResetTime(quotaInfo.resetAt) }}
+          </span>
+        </div>
+      </div>
+
+      <div v-else-if="balanceData.quota?.unlimited" class="flex items-center gap-2">
+        <i class="fas fa-infinity text-blue-500 dark:text-blue-400"></i>
+        <span class="text-xs text-gray-600 dark:text-gray-400">无限制</span>
+      </div>
+
+      <div
+        v-if="balanceData.cacheExpiresAt && balanceData.source === 'cache'"
+        class="text-xs text-gray-400 dark:text-gray-500"
+      >
+        缓存至: {{ formatCacheExpiry(balanceData.cacheExpiresAt) }}
+      </div>
+    </div>
+
+    <div v-else class="text-xs text-gray-400 dark:text-gray-500">暂无余额数据</div>
+  </div>
+</template>
+
+<script setup>
+import { ref, computed, onMounted, watch } from 'vue'
+
+import { getAccountBalanceApi, refreshAccountBalanceApi } from '@/utils/http_apis'
+import { formatNumber } from '@/utils/tools'
+
+const props = defineProps({
+  accountId: { type: String, required: true },
+  platform: { type: String, required: true },
+  initialBalance: { type: Object, default: null },
+  hideRefresh: { type: Boolean, default: false },
+  autoLoad: { type: Boolean, default: true },
+  queryMode: { type: String, default: 'local' } // local | auto | api
+})
+
+const emit = defineEmits(['refreshed', 'error'])
+
+const balanceData = ref(props.initialBalance)
+const loading = ref(false)
+const refreshing = ref(false)
+const requestError = ref(null)
+
+const sourceClass = computed(() => {
+  const source = balanceData.value?.source
+  return {
+    'bg-blue-100 text-blue-700 dark:bg-blue-900/40 dark:text-blue-300': source === 'api',
+    'bg-gray-100 text-gray-600 dark:bg-gray-700/60 dark:text-gray-300': source === 'cache',
+    'bg-yellow-100 text-yellow-700 dark:bg-yellow-900/40 dark:text-yellow-300': source === 'local'
+  }
+})
+
+const sourceLabel = computed(() => {
+  const source = balanceData.value?.source
+  return { api: 'API', cache: '缓存', local: '本地' }[source] || '未知'
+})
+
+const quotaInfo = computed(() => {
+  const quota = balanceData.value?.quota
+  if (!quota || quota.unlimited) return null
+  if (typeof quota.percentage !== 'number' || !Number.isFinite(quota.percentage)) return null
+  return {
+    used: quota.used ?? 0,
+    remaining: quota.remaining ?? 0,
+    percentage: quota.percentage,
+    resetAt: quota.resetAt || null
+  }
+})
+
+const isAntigravityQuota = computed(() => {
+  return balanceData.value?.quota?.type === 'antigravity'
+})
+
+const antigravityRows = computed(() => {
+  if (!isAntigravityQuota.value) return []
+
+  const buckets = balanceData.value?.quota?.buckets
+  const list = Array.isArray(buckets) ? buckets : []
+  const map = new Map(list.map((b) => [b?.category, b]))
+
+  const order = ['Gemini Pro', 'Claude', 'Gemini Flash', 'Gemini Image']
+  const styles = {
+    'Gemini Pro': { dotClass: 'bg-blue-500', barClass: 'bg-blue-500 dark:bg-blue-400' },
+    Claude: { dotClass: 'bg-purple-500', barClass: 'bg-purple-500 dark:bg-purple-400' },
+    'Gemini Flash': { dotClass: 'bg-cyan-500', barClass: 'bg-cyan-500 dark:bg-cyan-400' },
+    'Gemini Image': { dotClass: 'bg-emerald-500', barClass: 'bg-emerald-500 dark:bg-emerald-400' }
+  }
+
+  return order.map((category) => {
+    const raw = map.get(category) || null
+    const remaining = raw?.remaining
+    const remainingPercent = Number.isFinite(Number(remaining))
+      ? Math.max(0, Math.min(100, Number(remaining)))
+      : null
+
+    return {
+      category,
+      remainingPercent,
+      remainingText: remainingPercent === null ? '—' : `${Math.round(remainingPercent)}%`,
+      resetAt: raw?.resetAt || null,
+      dotClass: styles[category]?.dotClass || 'bg-gray-400',
+      barClass: styles[category]?.barClass || 'bg-gray-400'
+    }
+  })
+})
+
+const quotaBarClass = computed(() => {
+  const percentage = quotaInfo.value?.percentage || 0
+  if (percentage >= 90) return 'bg-red-500 dark:bg-red-600'
+  if (percentage >= 70) return 'bg-yellow-500 dark:bg-yellow-600'
+  return 'bg-green-500 dark:bg-green-600'
+})
+
+const canRefresh = computed(() => {
+  // antigravity 配额：允许直接触发 Provider 刷新（无需脚本）
+  if (props.queryMode === 'api' || props.queryMode === 'auto') {
+    return true
+  }
+
+  // 其他平台：仅在“已启用脚本且该账户配置了脚本”时允许刷新，避免误导（非脚本 Provider 多为降级策略）
+  const data = balanceData.value
+  if (!data) return false
+  if (data.scriptEnabled === false) return false
+  return !!data.scriptConfigured
+})
+
+const refreshTitle = computed(() => {
+  if (refreshing.value) return '刷新中...'
+  if (!canRefresh.value) {
+    if (balanceData.value?.scriptEnabled === false) {
+      return '余额脚本功能已禁用'
+    }
+    return '请先配置余额脚本'
+  }
+  if (isAntigravityQuota.value) {
+    return '刷新配额（调用 Antigravity API）'
+  }
+  return '刷新余额（调用脚本配置的余额 API）'
+})
+
+const primaryText = computed(() => {
+  if (balanceData.value?.balance?.formattedAmount) {
+    return balanceData.value.balance.formattedAmount
+  }
+  const dailyCost = Number(balanceData.value?.statistics?.dailyCost || 0)
+  return `今日成本 ${formatCurrency(dailyCost)}`
+})
+
+const load = async () => {
+  if (!props.autoLoad) return
+  if (!props.accountId || !props.platform) return
+
+  loading.value = true
+  requestError.value = null
+
+  const params = {
+    platform: props.platform,
+    queryApi: props.queryMode === 'api' ? true : props.queryMode === 'auto' ? 'auto' : false
+  }
+  const response = await getAccountBalanceApi(props.accountId, params)
+  if (response?.success) {
+    balanceData.value = response.data
+  } else {
+    requestError.value = response?.error || '加载失败'
+  }
+  loading.value = false
+}
+
+const refresh = async () => {
+  if (!props.accountId || !props.platform) return
+  if (refreshing.value) return
+  if (!canRefresh.value) return
+
+  refreshing.value = true
+  requestError.value = null
+
+  const response = await refreshAccountBalanceApi(props.accountId, { platform: props.platform })
+  if (response?.success) {
+    balanceData.value = response.data
+    emit('refreshed', response.data)
+  } else {
+    requestError.value = response?.error || '刷新失败'
+  }
+  refreshing.value = false
+}
+
+const reload = async () => {
+  await load()
+}
+
+const formatQuotaNumber = (num) => {
+  if (num === Infinity) return '∞'
+  const value = Number(num)
+  if (!Number.isFinite(value)) return 'N/A'
+  if (isAntigravityQuota.value) {
+    return `${Math.round(value)}%`
+  }
+  return formatNumber(value)
+}
+
+const formatCurrency = (amount) => {
+  const value = Number(amount)
+  if (!Number.isFinite(value)) return '$0.00'
+  if (value >= 1) return `$${value.toFixed(2)}`
+  if (value >= 0.01) return `$${value.toFixed(3)}`
+  return `$${value.toFixed(6)}`
+}
+
+const formatResetTime = (isoString) => {
+  const date = new Date(isoString)
+  const now = new Date()
+  const diff = date.getTime() - now.getTime()
+  if (!Number.isFinite(diff)) return '未知'
+  if (diff < 0) return '已过期'
+
+  const minutes = Math.floor(diff / (1000 * 60))
+  const hours = Math.floor(minutes / 60)
+  const remainMinutes = minutes % 60
+  if (hours >= 24) {
+    const days = Math.floor(hours / 24)
+    return `${days}天后`
+  }
+  return `${hours}小时${remainMinutes}分钟`
+}
+
+const formatCacheExpiry = (isoString) => {
+  const date = new Date(isoString)
+  if (Number.isNaN(date.getTime())) return '未知'
+  return date.toLocaleTimeString('zh-CN', { hour: '2-digit', minute: '2-digit' })
+}
+
+watch(
+  () => props.initialBalance,
+  (newVal) => {
+    if (newVal) {
+      balanceData.value = newVal
+    }
+  }
+)
+
+onMounted(() => {
+  if (!props.initialBalance) {
+    load()
+  }
+})
+
+defineExpose({ refresh, reload })
+</script>
diff --git a/web/admin-spa/src/components/accounts/CcrAccountForm.vue b/web/admin-spa/src/components/accounts/CcrAccountForm.vue
index c9f22843..f5662e82 100644
--- a/web/admin-spa/src/components/accounts/CcrAccountForm.vue
+++ b/web/admin-spa/src/components/accounts/CcrAccountForm.vue
@@ -259,7 +259,7 @@
 
 <script setup>
 import { ref, computed, watch, onMounted } from 'vue'
-import * as httpApi from '@/utils/http_apis'
+import { updateCcrAccountApi, createCcrAccountApi } from '@/utils/http_apis'
 import { showToast } from '@/utils/tools'
 import ProxyConfig from '@/components/accounts/ProxyConfig.vue'
 
@@ -344,7 +344,7 @@ const submit = async () => {
       if (form.value.apiKey && form.value.apiKey.trim().length > 0) {
         updates.apiKey = form.value.apiKey
       }
-      const res = await httpApi.put(`/admin/ccr-accounts/${props.account.id}`, updates)
+      const res = await updateCcrAccountApi(props.account.id, updates)
       if (res.success) {
         // 不在这里显示 toast，由父组件统一处理
         emit('success')
@@ -367,7 +367,7 @@ const submit = async () => {
         dailyQuota: Number(form.value.dailyQuota || 0),
         quotaResetTime: form.value.quotaResetTime || '00:00'
       }
-      const res = await httpApi.post('/admin/ccr-accounts', payload)
+      const res = await createCcrAccountApi(payload)
       if (res.success) {
         // 不在这里显示 toast，由父组件统一处理
         emit('success')
diff --git a/web/admin-spa/src/components/accounts/GroupManagementModal.vue b/web/admin-spa/src/components/accounts/GroupManagementModal.vue
index 1d9700e4..e0661ffb 100644
--- a/web/admin-spa/src/components/accounts/GroupManagementModal.vue
+++ b/web/admin-spa/src/components/accounts/GroupManagementModal.vue
@@ -11,7 +11,9 @@
             >
               <i class="fas fa-layer-group text-sm text-white sm:text-base" />
             </div>
-            <h3 class="text-lg font-bold text-gray-900 sm:text-xl">账户分组管理</h3>
+            <h3 class="text-lg font-bold text-gray-900 dark:text-gray-100 sm:text-xl">
+              账户分组管理
+            </h3>
           </div>
           <button
             class="p-1 text-gray-400 transition-colors hover:text-gray-600"
@@ -151,7 +153,7 @@
     >
       <div class="modal-content w-full max-w-lg p-4 sm:p-6">
         <div class="mb-4 flex items-center justify-between">
-          <h3 class="text-lg font-bold text-gray-900">编辑分组</h3>
+          <h3 class="text-lg font-bold text-gray-900 dark:text-gray-100">编辑分组</h3>
           <button class="text-gray-400 transition-colors hover:text-gray-600" @click="cancelEdit">
             <i class="fas fa-times" />
           </button>
@@ -303,8 +305,9 @@
 
 <script setup>
 import { ref, computed, onMounted } from 'vue'
-import { showToast } from '@/utils/tools'
-import * as httpApi from '@/utils/http_apis'
+import { showToast, formatDate } from '@/utils/tools'
+
+import * as httpApis from '@/utils/http_apis'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
 
 const emit = defineEmits(['close', 'refresh'])
@@ -362,17 +365,12 @@ const editForm = ref({
 })
 
 // 格式化日期
-const formatDate = (dateStr) => {
-  if (!dateStr) return '-'
-  const date = new Date(dateStr)
-  return date.toLocaleDateString('zh-CN')
-}
 
 // 加载分组列表
 const loadGroups = async () => {
   loading.value = true
   try {
-    const response = await httpApi.get('/admin/account-groups')
+    const response = await httpApis.getAccountGroupsApi()
     groups.value = response.data || []
   } catch (error) {
     showToast('加载分组列表失败', 'error')
@@ -390,7 +388,7 @@ const createGroup = async () => {
 
   creating.value = true
   try {
-    await httpApi.post('/admin/account-groups', {
+    await httpApis.createAccountGroupApi({
       name: createForm.value.name,
       platform: createForm.value.platform,
       description: createForm.value.description
@@ -443,7 +441,7 @@ const updateGroup = async () => {
 
   updating.value = true
   try {
-    await httpApi.put(`/admin/account-groups/${editingGroup.value.id}`, {
+    await httpApis.updateAccountGroupApi(editingGroup.value.id, {
       name: editForm.value.name,
       description: editForm.value.description
     })
@@ -484,7 +482,7 @@ const deleteGroup = (group) => {
 const confirmDelete = async () => {
   if (!deletingGroup.value) return
   try {
-    await httpApi.del(`/admin/account-groups/${deletingGroup.value.id}`)
+    await httpApis.deleteAccountGroupApi(deletingGroup.value.id)
     showToast('分组删除成功', 'success')
     cancelDelete()
     await loadGroups()
diff --git a/web/admin-spa/src/components/accounts/OAuthFlow.vue b/web/admin-spa/src/components/accounts/OAuthFlow.vue
index d90edab6..66178d30 100644
--- a/web/admin-spa/src/components/accounts/OAuthFlow.vue
+++ b/web/admin-spa/src/components/accounts/OAuthFlow.vue
@@ -287,7 +287,7 @@
     </div>
 
     <!-- Gemini OAuth流程 -->
-    <div v-else-if="platform === 'gemini'">
+    <div v-else-if="platform === 'gemini' || platform === 'gemini-antigravity'">
       <div
         class="rounded-lg border border-green-200 bg-green-50 p-6 dark:border-green-700 dark:bg-green-900/30"
       >
@@ -303,6 +303,16 @@
               请按照以下步骤完成 Gemini 账户的授权：
             </p>
 
+            <!-- 授权来源显示（由平台类型决定） -->
+            <div class="mb-4">
+              <p class="text-sm text-green-800 dark:text-green-300">
+                <i class="fas fa-info-circle mr-1"></i>
+                授权类型：<span class="font-semibold">{{
+                  platform === 'gemini-antigravity' ? 'Antigravity OAuth' : 'Gemini CLI OAuth'
+                }}</span>
+              </p>
+            </div>
+
             <div class="space-y-4">
               <!-- 步骤1: 生成授权链接 -->
               <div
@@ -818,6 +828,13 @@ const exchanging = ref(false)
 const authUrl = ref('')
 const authCode = ref('')
 const copied = ref(false)
+// oauthProvider is now derived from platform prop
+const geminiOauthProvider = computed(() => {
+  if (props.platform === 'gemini-antigravity') {
+    return 'antigravity'
+  }
+  return 'gemini-cli'
+})
 const sessionId = ref('') // 保存sessionId用于后续交换
 const userCode = ref('')
 const verificationUri = ref('')
@@ -921,7 +938,11 @@ watch(authCode, (newValue) => {
         console.error('Failed to parse URL:', error)
         showToast('链接格式错误，请检查是否为完整的 URL', 'error')
       }
-    } else if (props.platform === 'gemini' || props.platform === 'openai') {
+    } else if (
+      props.platform === 'gemini' ||
+      props.platform === 'gemini-antigravity' ||
+      props.platform === 'openai'
+    ) {
       // Gemini 和 OpenAI 平台可能使用不同的回调URL
       // 尝试从任何URL中提取code参数
       try {
@@ -972,8 +993,11 @@ const generateAuthUrl = async () => {
       const result = await accountsStore.generateClaudeAuthUrl(proxyConfig)
       authUrl.value = result.authUrl
       sessionId.value = result.sessionId
-    } else if (props.platform === 'gemini') {
-      const result = await accountsStore.generateGeminiAuthUrl(proxyConfig)
+    } else if (props.platform === 'gemini' || props.platform === 'gemini-antigravity') {
+      const result = await accountsStore.generateGeminiAuthUrl({
+        ...proxyConfig,
+        oauthProvider: geminiOauthProvider.value
+      })
       authUrl.value = result.authUrl
       sessionId.value = result.sessionId
     } else if (props.platform === 'openai') {
@@ -996,6 +1020,8 @@ const generateAuthUrl = async () => {
   }
 }
 
+// onGeminiOauthProviderChange removed - oauthProvider is now computed from platform
+
 // 重新生成授权URL
 const regenerateAuthUrl = () => {
   stopCountdown()
@@ -1079,11 +1105,12 @@ const exchangeCode = async () => {
         sessionId: sessionId.value,
         callbackUrl: authCode.value.trim()
       }
-    } else if (props.platform === 'gemini') {
-      // Gemini使用code和sessionId
+    } else if (props.platform === 'gemini' || props.platform === 'gemini-antigravity') {
+      // Gemini/Antigravity使用code和sessionId
       data = {
         code: authCode.value.trim(),
-        sessionId: sessionId.value
+        sessionId: sessionId.value,
+        oauthProvider: geminiOauthProvider.value
       }
     } else if (props.platform === 'openai') {
       // OpenAI使用code和sessionId
@@ -1111,8 +1138,12 @@ const exchangeCode = async () => {
     let tokenInfo
     if (props.platform === 'claude') {
       tokenInfo = await accountsStore.exchangeClaudeCode(data)
-    } else if (props.platform === 'gemini') {
+    } else if (props.platform === 'gemini' || props.platform === 'gemini-antigravity') {
       tokenInfo = await accountsStore.exchangeGeminiCode(data)
+      // 附加 oauthProvider 信息到 tokenInfo
+      if (tokenInfo) {
+        tokenInfo.oauthProvider = geminiOauthProvider.value
+      }
     } else if (props.platform === 'openai') {
       tokenInfo = await accountsStore.exchangeOpenAICode(data)
     } else if (props.platform === 'droid') {
diff --git a/web/admin-spa/src/components/admin/ChangeRoleModal.vue b/web/admin-spa/src/components/admin/ChangeRoleModal.vue
index 4a21675a..e8bd5193 100644
--- a/web/admin-spa/src/components/admin/ChangeRoleModal.vue
+++ b/web/admin-spa/src/components/admin/ChangeRoleModal.vue
@@ -192,7 +192,7 @@
 
 <script setup>
 import { ref, watch } from 'vue'
-import * as httpApi from '@/utils/http_apis'
+import { updateFrontUserRoleApi } from '@/utils/http_apis'
 import { showToast } from '@/utils/tools'
 
 const props = defineProps({
@@ -221,7 +221,7 @@ const handleSubmit = async () => {
   error.value = ''
 
   try {
-    const response = await httpApi.patch(`/users/${props.user.id}/role`, {
+    const response = await updateFrontUserRoleApi(props.user.id, {
       role: selectedRole.value
     })
 
@@ -248,7 +248,3 @@ watch([() => props.show, () => props.user], ([show, user]) => {
   }
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/components/admin/UserUsageStatsModal.vue b/web/admin-spa/src/components/admin/UserUsageStatsModal.vue
index ce5df082..cd3c0888 100644
--- a/web/admin-spa/src/components/admin/UserUsageStatsModal.vue
+++ b/web/admin-spa/src/components/admin/UserUsageStatsModal.vue
@@ -347,8 +347,8 @@
 
 <script setup>
 import { ref, watch } from 'vue'
-import * as httpApi from '@/utils/http_apis'
-import { showToast } from '@/utils/tools'
+import { getFrontUserUsageStatsApi, getFrontUserByIdApi } from '@/utils/http_apis'
+import { showToast, formatNumber, formatDate } from '@/utils/tools'
 
 const props = defineProps({
   show: {
@@ -368,36 +368,14 @@ const selectedPeriod = ref('week')
 const usageStats = ref(null)
 const userDetails = ref(null)
 
-const formatNumber = (num) => {
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  }
-  return num.toString()
-}
-
-const formatDate = (dateString) => {
-  if (!dateString) return null
-  return new Date(dateString).toLocaleDateString('en-US', {
-    year: 'numeric',
-    month: 'short',
-    day: 'numeric',
-    hour: '2-digit',
-    minute: '2-digit'
-  })
-}
-
 const loadUsageStats = async () => {
   if (!props.user) return
 
   loading.value = true
   try {
     const [statsResponse, userResponse] = await Promise.all([
-      httpApi.get(`/users/${props.user.id}/usage-stats`, {
-        params: { period: selectedPeriod.value }
-      }),
-      httpApi.get(`/users/${props.user.id}`)
+      getFrontUserUsageStatsApi(props.user.id, { period: selectedPeriod.value }),
+      getFrontUserByIdApi(props.user.id)
     ])
 
     if (statsResponse.success) {
@@ -422,7 +400,3 @@ watch([() => props.show, () => props.user], ([show, user]) => {
   }
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/components/apikeys/ApiKeyTestModal.vue b/web/admin-spa/src/components/apikeys/ApiKeyTestModal.vue
index 984978be..e7f5fdac 100644
--- a/web/admin-spa/src/components/apikeys/ApiKeyTestModal.vue
+++ b/web/admin-spa/src/components/apikeys/ApiKeyTestModal.vue
@@ -241,8 +241,8 @@
 
 <script setup>
 import { ref, computed, watch, onUnmounted, onMounted } from 'vue'
-import { API_PREFIX } from '@/utils/http_apis'
-import { getModels } from '@/utils/http_apis'
+import { APP_CONFIG } from '@/utils/tools'
+import { getModelsApi } from '@/utils/http_apis'
 
 const props = defineProps({
   show: {
@@ -303,7 +303,7 @@ const modelsFromApi = ref({
 // 加载模型列表
 const loadModels = async () => {
   try {
-    const result = await getModels()
+    const result = await getModelsApi()
     if (result.success && result.data) {
       modelsFromApi.value = {
         claude: result.data.claude || [],
@@ -488,7 +488,7 @@ async function startTest() {
 
   // 使用公开的测试端点，不需要管理员认证
   // apiStats 路由挂载在 /apiStats 下
-  const endpoint = `${API_PREFIX}/apiStats${serviceConfig.value.endpoint}`
+  const endpoint = `${APP_CONFIG.apiPrefix}/apiStats${serviceConfig.value.endpoint}`
 
   try {
     // 使用fetch发送POST请求并处理SSE
diff --git a/web/admin-spa/src/components/apikeys/BatchEditApiKeyModal.vue b/web/admin-spa/src/components/apikeys/BatchEditApiKeyModal.vue
index acca4e1b..c18c4ea5 100644
--- a/web/admin-spa/src/components/apikeys/BatchEditApiKeyModal.vue
+++ b/web/admin-spa/src/components/apikeys/BatchEditApiKeyModal.vue
@@ -448,7 +448,7 @@
 import { ref, reactive, computed, onMounted } from 'vue'
 import { showToast } from '@/utils/tools'
 import { useApiKeysStore } from '@/stores/apiKeys'
-import * as httpApi from '@/utils/http_apis'
+import * as httpApis from '@/utils/http_apis'
 import AccountSelector from '@/components/common/AccountSelector.vue'
 
 const props = defineProps({
@@ -549,6 +549,8 @@ const droidAccountSelectorValue = createAccountSelectorModel('droidAccountId')
 const isServiceSelectable = (service) => {
   if (!form.permissions) return true
   if (form.permissions === 'all') return true
+  if (Array.isArray(form.permissions) && form.permissions.length === 0) return true
+  if (Array.isArray(form.permissions)) return form.permissions.includes(service)
   return form.permissions === service
 }
 
@@ -588,15 +590,15 @@ const refreshAccounts = async () => {
       droidData,
       groupsData
     ] = await Promise.all([
-      httpApi.get('/admin/claude-accounts'),
-      httpApi.get('/admin/claude-console-accounts'),
-      httpApi.get('/admin/gemini-accounts'),
-      httpApi.get('/admin/gemini-api-accounts'), // 获取 Gemini-API 账号
-      httpApi.get('/admin/openai-accounts'),
-      httpApi.get('/admin/openai-responses-accounts'),
-      httpApi.get('/admin/bedrock-accounts'),
-      httpApi.get('/admin/droid-accounts'),
-      httpApi.get('/admin/account-groups')
+      httpApis.getClaudeAccountsApi(),
+      httpApis.getClaudeConsoleAccountsApi(),
+      httpApis.getGeminiAccountsApi(),
+      httpApis.getGeminiApiAccountsApi(), // 获取 Gemini-API 账号
+      httpApis.getOpenAIAccountsApi(),
+      httpApis.getOpenAIResponsesAccountsApi(),
+      httpApis.getBedrockAccountsApi(),
+      httpApis.getDroidAccountsApi(),
+      httpApis.getAccountGroupsApi()
     ])
 
     // 合并Claude OAuth账户和Claude Console账户
@@ -801,7 +803,7 @@ const batchUpdateApiKeys = async () => {
       updates.tagOperation = tagOperation.value
     }
 
-    const result = await httpApi.put('/admin/api-keys/batch', {
+    const result = await httpApis.batchUpdateApiKeysApi({
       keyIds: props.selectedKeys,
       updates
     })
@@ -882,7 +884,3 @@ onMounted(async () => {
   }
 })
 </script>
-
-<style scoped>
-/* 表单样式由全局样式提供 */
-</style>
diff --git a/web/admin-spa/src/components/apikeys/CreateApiKeyModal.vue b/web/admin-spa/src/components/apikeys/CreateApiKeyModal.vue
index e2496bb4..e458468c 100644
--- a/web/admin-spa/src/components/apikeys/CreateApiKeyModal.vue
+++ b/web/admin-spa/src/components/apikeys/CreateApiKeyModal.vue
@@ -461,6 +461,51 @@
             />
           </div>
 
+          <!-- 服务倍率设置 -->
+          <div
+            class="rounded-lg border border-purple-200 bg-gradient-to-r from-purple-50 to-indigo-50 p-3 dark:border-purple-700 dark:from-purple-900/20 dark:to-indigo-900/20 sm:p-4"
+          >
+            <div class="flex items-center justify-between">
+              <div class="flex items-center gap-2">
+                <input
+                  id="enableServiceRates"
+                  v-model="enableServiceRates"
+                  class="h-4 w-4 rounded border-gray-300 bg-gray-100 text-purple-600 focus:ring-purple-500"
+                  type="checkbox"
+                />
+                <label
+                  class="cursor-pointer text-sm font-semibold text-gray-700 dark:text-gray-300"
+                  for="enableServiceRates"
+                >
+                  自定义服务倍率
+                </label>
+              </div>
+              <span class="text-xs text-gray-500 dark:text-gray-400">
+                与全局倍率相乘，用于 VIP 折扣等（如全局1.5 × Key倍率0.8 = 1.2）
+              </span>
+            </div>
+            <div v-if="enableServiceRates" class="mt-3 space-y-2">
+              <div
+                v-for="service in availableServices"
+                :key="service.key"
+                class="flex items-center gap-2"
+              >
+                <span class="w-20 text-xs text-gray-600 dark:text-gray-400">{{
+                  service.label
+                }}</span>
+                <input
+                  v-model.number="form.serviceRates[service.key]"
+                  class="form-input w-24 border-gray-300 text-sm dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200"
+                  min="0"
+                  placeholder="1.0"
+                  step="0.1"
+                  type="number"
+                />
+                <span class="text-xs text-gray-400">默认 1.0</span>
+              </div>
+            </div>
+          </div>
+
           <div>
             <label class="mb-2 block text-sm font-semibold text-gray-700 dark:text-gray-300"
               >过期设置</label
@@ -582,17 +627,8 @@
             <div class="flex flex-wrap gap-4">
               <label class="flex cursor-pointer items-center">
                 <input
-                  :checked="form.permissions === 'all'"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
-                  type="checkbox"
-                  @change="toggleAllServices"
-                />
-                <span class="text-sm font-medium text-gray-700 dark:text-gray-300">全部服务</span>
-              </label>
-              <label class="flex cursor-pointer items-center">
-                <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="claude"
                   @change="updatePermissions"
@@ -601,8 +637,8 @@
               </label>
               <label class="flex cursor-pointer items-center">
                 <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="gemini"
                   @change="updatePermissions"
@@ -611,8 +647,8 @@
               </label>
               <label class="flex cursor-pointer items-center">
                 <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="openai"
                   @change="updatePermissions"
@@ -621,8 +657,8 @@
               </label>
               <label class="flex cursor-pointer items-center">
                 <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="droid"
                   @change="updatePermissions"
@@ -631,7 +667,7 @@
               </label>
             </div>
             <p class="mt-2 text-xs text-gray-500 dark:text-gray-400">
-              控制此 API Key 可以访问哪些服务，可多选
+              不选择任何服务表示允许访问全部服务
             </p>
           </div>
 
@@ -666,7 +702,7 @@
                   v-model="form.claudeAccountId"
                   :accounts="localAccounts.claude"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('claude')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('claude')"
                   :groups="localAccounts.claudeGroups"
                   placeholder="请选择Claude账号"
                   platform="claude"
@@ -680,7 +716,7 @@
                   v-model="form.geminiAccountId"
                   :accounts="localAccounts.gemini"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('gemini')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('gemini')"
                   :groups="localAccounts.geminiGroups"
                   placeholder="请选择Gemini账号"
                   platform="gemini"
@@ -694,7 +730,7 @@
                   v-model="form.openaiAccountId"
                   :accounts="localAccounts.openai"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('openai')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('openai')"
                   :groups="localAccounts.openaiGroups"
                   placeholder="请选择OpenAI账号"
                   platform="openai"
@@ -708,7 +744,7 @@
                   v-model="form.bedrockAccountId"
                   :accounts="localAccounts.bedrock"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('claude')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('claude')"
                   :groups="[]"
                   placeholder="请选择Bedrock账号"
                   platform="bedrock"
@@ -722,7 +758,7 @@
                   v-model="form.droidAccountId"
                   :accounts="localAccounts.droid"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('droid')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('droid')"
                   :groups="localAccounts.droidGroups"
                   placeholder="请选择Droid账号"
                   platform="droid"
@@ -908,7 +944,7 @@ import { ref, reactive, computed, onMounted } from 'vue'
 import { showToast } from '@/utils/tools'
 import { useClientsStore } from '@/stores/clients'
 import { useApiKeysStore } from '@/stores/apiKeys'
-import * as httpApi from '@/utils/http_apis'
+import * as httpApis from '@/utils/http_apis'
 import AccountSelector from '@/components/common/AccountSelector.vue'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
 
@@ -998,12 +1034,25 @@ const unselectedTags = computed(() => {
 // 支持的客户端列表
 const supportedClients = ref([])
 
+// 服务倍率相关
+const enableServiceRates = ref(false)
+const availableServices = [
+  { key: 'claude', label: 'Claude' },
+  { key: 'gemini', label: 'Gemini' },
+  { key: 'codex', label: 'Codex' },
+  { key: 'droid', label: 'Droid' },
+  { key: 'bedrock', label: 'Bedrock' },
+  { key: 'azure', label: 'Azure' },
+  { key: 'ccr', label: 'CCR' }
+]
+
 // 表单数据
 const form = reactive({
   createType: 'single',
   batchCount: 10,
   name: '',
   description: '',
+  serviceRates: {}, // API Key 级别服务倍率
   rateLimitWindow: '',
   rateLimitRequests: '',
   rateLimitCost: '', // 新增：费用限制
@@ -1017,7 +1066,7 @@ const form = reactive({
   expirationMode: 'fixed', // 过期模式：fixed(固定) 或 activation(激活)
   activationDays: 30, // 激活后有效天数
   activationUnit: 'days', // 激活时间单位：hours 或 days
-  permissions: 'all',
+  permissions: [], // 数组格式，空数组表示全部服务
   claudeAccountId: '',
   geminiAccountId: '',
   openaiAccountId: '',
@@ -1031,37 +1080,9 @@ const form = reactive({
   tags: []
 })
 
-// 多选服务
-const allServices = ['claude', 'gemini', 'openai', 'droid']
-const selectedServices = ref([...allServices])
-
-// 切换全部服务
-const toggleAllServices = (event) => {
-  if (event.target.checked) {
-    selectedServices.value = [...allServices]
-    form.permissions = 'all'
-  } else {
-    selectedServices.value = []
-    form.permissions = ''
-  }
-}
-
-// 更新权限
+// 更新权限（数组格式，空数组=全部服务）
 const updatePermissions = () => {
-  if (selectedServices.value.length === allServices.length) {
-    form.permissions = 'all'
-  } else if (selectedServices.value.length === 1) {
-    form.permissions = selectedServices.value[0]
-  } else if (selectedServices.value.length > 1) {
-    form.permissions = selectedServices.value.join(',')
-  } else {
-    form.permissions = ''
-  }
-}
-
-// 检查服务是否启用
-const isServiceEnabled = (service) => {
-  return form.permissions === 'all' || selectedServices.value.includes(service)
+  // form.permissions 已经是数组，由 v-model 自动管理
 }
 
 // 加载支持的客户端和已存在的标签
@@ -1130,15 +1151,15 @@ const refreshAccounts = async () => {
       droidData,
       groupsData
     ] = await Promise.all([
-      httpApi.get('/admin/claude-accounts'),
-      httpApi.get('/admin/claude-console-accounts'),
-      httpApi.get('/admin/gemini-accounts'),
-      httpApi.get('/admin/gemini-api-accounts'), // 获取 Gemini-API 账号
-      httpApi.get('/admin/openai-accounts'),
-      httpApi.get('/admin/openai-responses-accounts'), // 获取 OpenAI-Responses 账号
-      httpApi.get('/admin/bedrock-accounts'),
-      httpApi.get('/admin/droid-accounts'),
-      httpApi.get('/admin/account-groups')
+      httpApis.getClaudeAccountsApi(),
+      httpApis.getClaudeConsoleAccountsApi(),
+      httpApis.getGeminiAccountsApi(),
+      httpApis.getGeminiApiAccountsApi(), // 获取 Gemini-API 账号
+      httpApis.getOpenAIAccountsApi(),
+      httpApis.getOpenAIResponsesAccountsApi(), // 获取 OpenAI-Responses 账号
+      httpApis.getBedrockAccountsApi(),
+      httpApis.getDroidAccountsApi(),
+      httpApis.getAccountGroupsApi()
     ])
 
     // 合并Claude OAuth账户和Claude Console账户
@@ -1431,8 +1452,19 @@ const createApiKey = async () => {
 
   try {
     // 准备提交的数据
+    // 过滤掉空值的服务倍率
+    const filteredServiceRates = {}
+    if (enableServiceRates.value) {
+      for (const [key, value] of Object.entries(form.serviceRates)) {
+        if (value !== null && value !== undefined && value !== '') {
+          filteredServiceRates[key] = value
+        }
+      }
+    }
+
     const baseData = {
       description: form.description || undefined,
+      serviceRates: filteredServiceRates,
       tokenLimit: 0, // 设置为0，清除历史token限制
       rateLimitWindow:
         form.rateLimitWindow !== '' && form.rateLimitWindow !== null
@@ -1514,7 +1546,7 @@ const createApiKey = async () => {
         name: form.name
       }
 
-      const result = await httpApi.post('/admin/api-keys', data)
+      const result = await httpApis.createApiKeyApi(data)
 
       if (result.success) {
         showToast('API Key 创建成功', 'success')
@@ -1532,7 +1564,7 @@ const createApiKey = async () => {
         count: form.batchCount
       }
 
-      const result = await httpApi.post('/admin/api-keys/batch', data)
+      const result = await httpApis.batchCreateApiKeysApi(data)
 
       if (result.success) {
         showToast(`成功创建 ${result.data.length} 个 API Key`, 'success')
@@ -1549,7 +1581,3 @@ const createApiKey = async () => {
   }
 }
 </script>
-
-<style scoped>
-/* 表单样式由全局样式提供 */
-</style>
diff --git a/web/admin-spa/src/components/apikeys/EditApiKeyModal.vue b/web/admin-spa/src/components/apikeys/EditApiKeyModal.vue
index b2596c3d..c17844c6 100644
--- a/web/admin-spa/src/components/apikeys/EditApiKeyModal.vue
+++ b/web/admin-spa/src/components/apikeys/EditApiKeyModal.vue
@@ -47,6 +47,51 @@
             </p>
           </div>
 
+          <!-- 服务倍率设置 -->
+          <div
+            class="rounded-lg border border-purple-200 bg-gradient-to-r from-purple-50 to-indigo-50 p-3 dark:border-purple-700 dark:from-purple-900/20 dark:to-indigo-900/20 sm:p-4"
+          >
+            <div class="flex items-center justify-between">
+              <div class="flex items-center gap-2">
+                <input
+                  id="editEnableServiceRates"
+                  v-model="enableServiceRates"
+                  class="h-4 w-4 rounded border-gray-300 bg-gray-100 text-purple-600 focus:ring-purple-500"
+                  type="checkbox"
+                />
+                <label
+                  class="cursor-pointer text-sm font-semibold text-gray-700 dark:text-gray-300"
+                  for="editEnableServiceRates"
+                >
+                  自定义服务倍率
+                </label>
+              </div>
+              <span class="text-xs text-gray-500 dark:text-gray-400">
+                与全局倍率相乘，用于 VIP 折扣等（如全局1.5 × Key倍率0.8 = 1.2）
+              </span>
+            </div>
+            <div v-if="enableServiceRates" class="mt-3 space-y-2">
+              <div
+                v-for="service in availableServices"
+                :key="service.key"
+                class="flex items-center gap-2"
+              >
+                <span class="w-20 text-xs text-gray-600 dark:text-gray-400">{{
+                  service.label
+                }}</span>
+                <input
+                  v-model.number="form.serviceRates[service.key]"
+                  class="form-input w-24 border-gray-300 text-sm dark:border-gray-600 dark:bg-gray-700 dark:text-gray-200"
+                  min="0"
+                  placeholder="1.0"
+                  step="0.1"
+                  type="number"
+                />
+                <span class="text-xs text-gray-400">默认 1.0</span>
+              </div>
+            </div>
+          </div>
+
           <!-- 所有者选择 -->
           <div>
             <label
@@ -415,17 +460,8 @@
             <div class="flex flex-wrap gap-4">
               <label class="flex cursor-pointer items-center">
                 <input
-                  :checked="form.permissions === 'all'"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
-                  type="checkbox"
-                  @change="toggleAllServices"
-                />
-                <span class="text-sm font-medium text-gray-700 dark:text-gray-300">全部服务</span>
-              </label>
-              <label class="flex cursor-pointer items-center">
-                <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="claude"
                   @change="updatePermissions"
@@ -434,8 +470,8 @@
               </label>
               <label class="flex cursor-pointer items-center">
                 <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="gemini"
                   @change="updatePermissions"
@@ -444,8 +480,8 @@
               </label>
               <label class="flex cursor-pointer items-center">
                 <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="openai"
                   @change="updatePermissions"
@@ -454,8 +490,8 @@
               </label>
               <label class="flex cursor-pointer items-center">
                 <input
-                  v-model="selectedServices"
-                  class="mr-2 text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
+                  v-model="form.permissions"
+                  class="mr-2 rounded text-blue-600 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700"
                   type="checkbox"
                   value="droid"
                   @change="updatePermissions"
@@ -464,7 +500,7 @@
               </label>
             </div>
             <p class="mt-2 text-xs text-gray-500 dark:text-gray-400">
-              控制此 API Key 可以访问哪些服务，可多选
+              不选择任何服务表示允许访问全部服务
             </p>
           </div>
 
@@ -499,7 +535,7 @@
                   v-model="form.claudeAccountId"
                   :accounts="localAccounts.claude"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('claude')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('claude')"
                   :groups="localAccounts.claudeGroups"
                   placeholder="请选择Claude账号"
                   platform="claude"
@@ -513,7 +549,7 @@
                   v-model="form.geminiAccountId"
                   :accounts="localAccounts.gemini"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('gemini')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('gemini')"
                   :groups="localAccounts.geminiGroups"
                   placeholder="请选择Gemini账号"
                   platform="gemini"
@@ -527,7 +563,7 @@
                   v-model="form.openaiAccountId"
                   :accounts="localAccounts.openai"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('openai')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('openai')"
                   :groups="localAccounts.openaiGroups"
                   placeholder="请选择OpenAI账号"
                   platform="openai"
@@ -541,7 +577,7 @@
                   v-model="form.bedrockAccountId"
                   :accounts="localAccounts.bedrock"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('claude')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('claude')"
                   :groups="[]"
                   placeholder="请选择Bedrock账号"
                   platform="bedrock"
@@ -555,7 +591,7 @@
                   v-model="form.droidAccountId"
                   :accounts="localAccounts.droid"
                   default-option-text="使用共享账号池"
-                  :disabled="!isServiceEnabled('droid')"
+                  :disabled="form.permissions.length > 0 && !form.permissions.includes('droid')"
                   :groups="localAccounts.droidGroups"
                   placeholder="请选择Droid账号"
                   platform="droid"
@@ -746,7 +782,7 @@ import { ref, reactive, computed, onMounted } from 'vue'
 import { showToast } from '@/utils/tools'
 import { useClientsStore } from '@/stores/clients'
 import { useApiKeysStore } from '@/stores/apiKeys'
-import * as httpApi from '@/utils/http_apis'
+import * as httpApis from '@/utils/http_apis'
 import AccountSelector from '@/components/common/AccountSelector.vue'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
 
@@ -840,9 +876,22 @@ const unselectedTags = computed(() => {
   return availableTags.value.filter((tag) => !form.tags.includes(tag))
 })
 
+// 服务倍率相关
+const enableServiceRates = ref(false)
+const availableServices = [
+  { key: 'claude', label: 'Claude' },
+  { key: 'gemini', label: 'Gemini' },
+  { key: 'codex', label: 'Codex' },
+  { key: 'droid', label: 'Droid' },
+  { key: 'bedrock', label: 'Bedrock' },
+  { key: 'azure', label: 'Azure' },
+  { key: 'ccr', label: 'CCR' }
+]
+
 // 表单数据
 const form = reactive({
   name: '',
+  serviceRates: {}, // API Key 级别服务倍率
   tokenLimit: '', // 保留用于检测历史数据
   rateLimitWindow: '',
   rateLimitRequests: '',
@@ -851,7 +900,7 @@ const form = reactive({
   dailyCostLimit: '',
   totalCostLimit: '',
   weeklyOpusCostLimit: '',
-  permissions: 'all',
+  permissions: [], // 数组格式，空数组表示全部服务
   claudeAccountId: '',
   geminiAccountId: '',
   openaiAccountId: '',
@@ -867,48 +916,9 @@ const form = reactive({
   ownerId: '' // 新增：所有者ID
 })
 
-// 多选服务
-const allServices = ['claude', 'gemini', 'openai', 'droid']
-const selectedServices = ref([...allServices])
-
-// 切换全部服务
-const toggleAllServices = (event) => {
-  if (event.target.checked) {
-    selectedServices.value = [...allServices]
-    form.permissions = 'all'
-  } else {
-    selectedServices.value = []
-    form.permissions = ''
-  }
-}
-
-// 更新权限
+// 更新权限（数组格式，空数组=全部服务）
 const updatePermissions = () => {
-  if (selectedServices.value.length === allServices.length) {
-    form.permissions = 'all'
-  } else if (selectedServices.value.length === 1) {
-    form.permissions = selectedServices.value[0]
-  } else if (selectedServices.value.length > 1) {
-    form.permissions = selectedServices.value.join(',')
-  } else {
-    form.permissions = ''
-  }
-}
-
-// 检查服务是否启用
-const isServiceEnabled = (service) => {
-  return form.permissions === 'all' || selectedServices.value.includes(service)
-}
-
-// 根据 permissions 初始化 selectedServices
-const initSelectedServices = (permissions) => {
-  if (permissions === 'all') {
-    selectedServices.value = [...allServices]
-  } else if (permissions) {
-    selectedServices.value = permissions.split(',').filter((s) => allServices.includes(s))
-  } else {
-    selectedServices.value = []
-  }
+  // form.permissions 已经是数组，由 v-model 自动管理
 }
 
 // 添加限制的模型
@@ -980,8 +990,19 @@ const updateApiKey = async () => {
 
   try {
     // 准备提交的数据
+    // 过滤掉空值的服务倍率
+    const filteredServiceRates = {}
+    if (enableServiceRates.value) {
+      for (const [key, value] of Object.entries(form.serviceRates)) {
+        if (value !== null && value !== undefined && value !== '') {
+          filteredServiceRates[key] = value
+        }
+      }
+    }
+
     const data = {
       name: form.name, // 添加名称字段
+      serviceRates: filteredServiceRates,
       tokenLimit: 0, // 清除历史token限制
       rateLimitWindow:
         form.rateLimitWindow !== '' && form.rateLimitWindow !== null
@@ -1079,7 +1100,7 @@ const updateApiKey = async () => {
       data.ownerId = form.ownerId
     }
 
-    const result = await httpApi.put(`/admin/api-keys/${props.apiKey.id}`, data)
+    const result = await httpApis.updateApiKeyApi(props.apiKey.id, data)
 
     if (result.success) {
       emit('success')
@@ -1109,15 +1130,15 @@ const refreshAccounts = async () => {
       droidData,
       groupsData
     ] = await Promise.all([
-      httpApi.get('/admin/claude-accounts'),
-      httpApi.get('/admin/claude-console-accounts'),
-      httpApi.get('/admin/gemini-accounts'),
-      httpApi.get('/admin/gemini-api-accounts'),
-      httpApi.get('/admin/openai-accounts'),
-      httpApi.get('/admin/openai-responses-accounts'),
-      httpApi.get('/admin/bedrock-accounts'),
-      httpApi.get('/admin/droid-accounts'),
-      httpApi.get('/admin/account-groups')
+      httpApis.getClaudeAccountsApi(),
+      httpApis.getClaudeConsoleAccountsApi(),
+      httpApis.getGeminiAccountsApi(),
+      httpApis.getGeminiApiAccountsApi(),
+      httpApis.getOpenAIAccountsApi(),
+      httpApis.getOpenAIResponsesAccountsApi(),
+      httpApis.getBedrockAccountsApi(),
+      httpApis.getDroidAccountsApi(),
+      httpApis.getAccountGroupsApi()
     ])
 
     // 合并Claude OAuth账户和Claude Console账户
@@ -1230,7 +1251,7 @@ const refreshAccounts = async () => {
 // 加载用户列表
 const loadUsers = async () => {
   try {
-    const response = await httpApi.get('/admin/users')
+    const response = await httpApis.getUsersApi()
     if (response.success) {
       availableUsers.value = response.data || []
     }
@@ -1314,6 +1335,8 @@ onMounted(async () => {
   // 使用缓存的账号数据，不自动刷新（用户可点击"刷新账号"按钮手动刷新）
 
   form.name = props.apiKey.name
+  form.serviceRates = props.apiKey.serviceRates || {}
+  enableServiceRates.value = Object.keys(form.serviceRates).length > 0
 
   // 处理速率限制迁移：如果有tokenLimit且没有rateLimitCost，提示用户
   form.tokenLimit = props.apiKey.tokenLimit || ''
@@ -1331,8 +1354,32 @@ onMounted(async () => {
   form.dailyCostLimit = props.apiKey.dailyCostLimit || ''
   form.totalCostLimit = props.apiKey.totalCostLimit || ''
   form.weeklyOpusCostLimit = props.apiKey.weeklyOpusCostLimit || ''
-  form.permissions = props.apiKey.permissions || 'all'
-  initSelectedServices(form.permissions)
+  // 处理权限数据，兼容旧格式（字符串）和新格式（数组）
+  // 有效的权限值
+  const VALID_PERMS = ['claude', 'gemini', 'openai', 'droid']
+  let perms = props.apiKey.permissions
+  // 如果是字符串，尝试 JSON.parse（Redis 可能返回 "[]" 或 "[\"gemini\"]"）
+  if (typeof perms === 'string') {
+    if (perms === 'all' || perms === '') {
+      perms = []
+    } else if (perms.startsWith('[')) {
+      try {
+        perms = JSON.parse(perms)
+      } catch {
+        perms = VALID_PERMS.includes(perms) ? [perms] : []
+      }
+    } else if (VALID_PERMS.includes(perms)) {
+      perms = [perms]
+    } else {
+      perms = []
+    }
+  }
+  if (Array.isArray(perms)) {
+    // 过滤掉无效值（如 "[]"）
+    form.permissions = perms.filter((p) => VALID_PERMS.includes(p))
+  } else {
+    form.permissions = []
+  }
   // 处理 Claude 账号（区分 OAuth 和 Console）
   if (props.apiKey.claudeConsoleAccountId) {
     form.claudeAccountId = `console:${props.apiKey.claudeConsoleAccountId}`
@@ -1364,7 +1411,3 @@ onMounted(async () => {
   form.ownerId = props.apiKey.userId || 'admin'
 })
 </script>
-
-<style scoped>
-/* 表单样式由全局样式提供 */
-</style>
diff --git a/web/admin-spa/src/components/apikeys/LimitProgressBar.vue b/web/admin-spa/src/components/apikeys/LimitProgressBar.vue
index a61bd555..6f2975e6 100644
--- a/web/admin-spa/src/components/apikeys/LimitProgressBar.vue
+++ b/web/admin-spa/src/components/apikeys/LimitProgressBar.vue
@@ -218,7 +218,7 @@ const compactBarClass = computed(() => {
     case 'total':
       return 'bg-blue-500 dark:bg-blue-400'
     default:
-      return 'bg-slate-400 dark:bg-slate-500'
+      return 'bg-gray-400 dark:bg-gray-500'
   }
 })
 
diff --git a/web/admin-spa/src/components/apikeys/RecordDetailModal.vue b/web/admin-spa/src/components/apikeys/RecordDetailModal.vue
index dc327ac7..024d053b 100644
--- a/web/admin-spa/src/components/apikeys/RecordDetailModal.vue
+++ b/web/admin-spa/src/components/apikeys/RecordDetailModal.vue
@@ -177,7 +177,7 @@ const formattedTime = computed(() => {
 })
 
 const formattedCosts = computed(() => {
-  const breakdown = props.record?.costBreakdown || {}
+  const breakdown = props.record?.realCostBreakdown || props.record?.costBreakdown || {}
   const formatValue = (value) => {
     const num = typeof value === 'number' ? value : 0
     if (num >= 1) return `$${num.toFixed(2)}`
diff --git a/web/admin-spa/src/components/apikeys/RenewApiKeyModal.vue b/web/admin-spa/src/components/apikeys/RenewApiKeyModal.vue
index 6734a34f..7a228cf3 100644
--- a/web/admin-spa/src/components/apikeys/RenewApiKeyModal.vue
+++ b/web/admin-spa/src/components/apikeys/RenewApiKeyModal.vue
@@ -98,7 +98,7 @@
 <script setup>
 import { ref, reactive, computed } from 'vue'
 import { showToast } from '@/utils/tools'
-import * as httpApi from '@/utils/http_apis'
+import * as httpApis from '@/utils/http_apis'
 
 const props = defineProps({
   apiKey: {
@@ -206,7 +206,7 @@ const renewApiKey = async () => {
       expiresAt: form.renewDuration === 'permanent' ? null : form.newExpiresAt
     }
 
-    const result = await httpApi.put(`/admin/api-keys/${props.apiKey.id}`, data)
+    const result = await httpApis.updateApiKeyApi(props.apiKey.id, data)
 
     if (result.success) {
       showToast('API Key 续期成功', 'success')
@@ -225,7 +225,3 @@ const renewApiKey = async () => {
 // 初始化
 updateRenewExpireAt()
 </script>
-
-<style scoped>
-/* 表单样式由全局样式提供 */
-</style>
diff --git a/web/admin-spa/src/components/apikeys/TagManagementModal.vue b/web/admin-spa/src/components/apikeys/TagManagementModal.vue
new file mode 100644
index 00000000..453d954d
--- /dev/null
+++ b/web/admin-spa/src/components/apikeys/TagManagementModal.vue
@@ -0,0 +1,292 @@
+<template>
+  <Teleport to="body">
+    <Transition name="modal">
+      <div
+        v-if="show"
+        class="fixed inset-0 z-50 flex items-center justify-center bg-black/50 p-4 backdrop-blur-sm"
+        @click.self="handleClose"
+      >
+        <div class="w-full max-w-lg rounded-2xl bg-white shadow-2xl dark:bg-gray-800" @click.stop>
+          <!-- 头部 -->
+          <div
+            class="flex items-center justify-between border-b border-gray-200 px-6 py-4 dark:border-gray-700"
+          >
+            <h3 class="text-lg font-semibold text-gray-900 dark:text-gray-100">
+              <i class="fas fa-tags mr-2 text-purple-500" />
+              标签管理
+            </h3>
+            <button
+              class="rounded-lg p-2 text-gray-400 hover:bg-gray-100 hover:text-gray-600 dark:hover:bg-gray-700 dark:hover:text-gray-300"
+              @click="handleClose"
+            >
+              <i class="fas fa-times" />
+            </button>
+          </div>
+
+          <!-- 内容 -->
+          <div class="max-h-[60vh] overflow-y-auto px-6 py-4">
+            <!-- 新增标签 -->
+            <div class="mb-4 flex gap-2">
+              <input
+                v-model="newTagInput"
+                class="flex-1 rounded-lg border border-gray-300 px-3 py-2 text-sm focus:border-purple-500 focus:outline-none focus:ring-1 focus:ring-purple-500 dark:border-gray-600 dark:bg-gray-700 dark:text-white"
+                placeholder="输入新标签名称"
+                type="text"
+                @keyup.enter="createTag"
+              />
+              <button
+                class="rounded-lg bg-purple-500 px-4 py-2 text-sm font-medium text-white hover:bg-purple-600 disabled:opacity-50"
+                :disabled="!newTagInput.trim() || creating || processing"
+                @click="createTag"
+              >
+                <i v-if="creating" class="fas fa-spinner fa-spin mr-1" />
+                <i v-else class="fas fa-plus mr-1" />
+                新增
+              </button>
+            </div>
+
+            <div v-if="loading" class="py-8 text-center">
+              <i class="fas fa-spinner fa-spin text-2xl text-gray-400" />
+              <p class="mt-2 text-gray-500 dark:text-gray-400">加载中...</p>
+            </div>
+
+            <div v-else-if="tags.length === 0" class="py-8 text-center">
+              <i class="fas fa-tag text-4xl text-gray-300 dark:text-gray-600" />
+              <p class="mt-2 text-gray-500 dark:text-gray-400">暂无标签</p>
+            </div>
+
+            <div v-else class="space-y-2">
+              <div
+                v-for="tag in tags"
+                :key="tag.name"
+                class="flex items-center justify-between rounded-lg border border-gray-200 bg-gray-50 px-4 py-3 dark:border-gray-700 dark:bg-gray-700/50"
+              >
+                <div class="flex items-center gap-3">
+                  <i class="fas fa-tag text-purple-500" />
+                  <span class="font-medium text-gray-700 dark:text-gray-200">{{ tag.name }}</span>
+                  <span
+                    class="rounded-full bg-purple-100 px-2 py-0.5 text-xs text-purple-700 dark:bg-purple-900/30 dark:text-purple-300"
+                  >
+                    {{ tag.count }} 个 Key
+                  </span>
+                </div>
+                <div class="flex gap-1">
+                  <button
+                    class="rounded-lg p-2 text-gray-400 hover:bg-blue-100 hover:text-blue-600 dark:hover:bg-blue-900/30 dark:hover:text-blue-400"
+                    :disabled="processing"
+                    title="重命名"
+                    @click="startRename(tag)"
+                  >
+                    <i class="fas fa-edit" />
+                  </button>
+                  <button
+                    class="rounded-lg p-2 text-gray-400 hover:bg-red-100 hover:text-red-600 dark:hover:bg-red-900/30 dark:hover:text-red-400"
+                    :disabled="processing"
+                    title="删除标签"
+                    @click="confirmDelete(tag)"
+                  >
+                    <i class="fas fa-trash" />
+                  </button>
+                </div>
+              </div>
+            </div>
+          </div>
+
+          <!-- 底部 -->
+          <div class="flex justify-end border-t border-gray-200 px-6 py-4 dark:border-gray-700">
+            <button
+              class="rounded-lg bg-gray-100 px-4 py-2 text-sm font-medium text-gray-700 hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-300 dark:hover:bg-gray-600"
+              @click="handleClose"
+            >
+              关闭
+            </button>
+          </div>
+        </div>
+      </div>
+    </Transition>
+  </Teleport>
+
+  <!-- 删除确认弹窗 -->
+  <ConfirmModal
+    cancel-text="取消"
+    confirm-text="确定删除"
+    :message="`此操作将从 ${confirmingTag?.count || 0} 个 API Key 中移除该标签，不可恢复。`"
+    :show="showDeleteConfirm"
+    :title="`删除标签「${confirmingTag?.name || ''}」`"
+    type="danger"
+    @cancel="showDeleteConfirm = false"
+    @confirm="executeDelete"
+  />
+
+  <!-- 重命名弹窗 -->
+  <Teleport to="body">
+    <div
+      v-if="showRenameModal"
+      class="fixed inset-0 z-50 flex items-center justify-center bg-black/50 p-4 backdrop-blur-sm"
+      @click.self="showRenameModal = false"
+    >
+      <div class="w-full max-w-md rounded-2xl bg-white p-6 shadow-2xl dark:bg-gray-800">
+        <h3 class="mb-4 text-lg font-semibold text-gray-900 dark:text-white">重命名标签</h3>
+        <div class="mb-4">
+          <label class="mb-2 block text-sm font-medium text-gray-700 dark:text-gray-300">
+            新名称
+          </label>
+          <input
+            v-model="newTagName"
+            class="w-full rounded-lg border border-gray-300 px-3 py-2 text-sm focus:border-blue-500 focus:outline-none focus:ring-1 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700 dark:text-white"
+            placeholder="请输入新标签名称"
+            type="text"
+            @keyup.enter="executeRename"
+          />
+        </div>
+        <div class="flex justify-end gap-3">
+          <button
+            class="rounded-lg bg-gray-100 px-4 py-2 text-sm font-medium text-gray-700 hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-300 dark:hover:bg-gray-600"
+            @click="showRenameModal = false"
+          >
+            取消
+          </button>
+          <button
+            class="rounded-lg bg-blue-500 px-4 py-2 text-sm font-medium text-white hover:bg-blue-600 disabled:opacity-50"
+            :disabled="!newTagName.trim() || processing"
+            @click="executeRename"
+          >
+            <i v-if="processing" class="fas fa-spinner fa-spin mr-1" />
+            确定
+          </button>
+        </div>
+      </div>
+    </div>
+  </Teleport>
+</template>
+
+<script setup>
+import { ref, watch } from 'vue'
+import {
+  getApiKeyTagsDetailsApi,
+  createApiKeyTagApi,
+  deleteApiKeyTagApi,
+  renameApiKeyTagApi
+} from '@/utils/http_apis'
+import { showToast } from '@/utils/tools'
+import ConfirmModal from '@/components/common/ConfirmModal.vue'
+
+const props = defineProps({
+  show: { type: Boolean, default: false }
+})
+
+const emit = defineEmits(['close', 'updated'])
+
+const loading = ref(false)
+const processing = ref(false)
+const creating = ref(false)
+const tags = ref([])
+const newTagInput = ref('')
+const showDeleteConfirm = ref(false)
+const showRenameModal = ref(false)
+const confirmingTag = ref(null)
+const renamingTag = ref(null)
+const newTagName = ref('')
+
+const loadTags = async () => {
+  loading.value = true
+  const res = await getApiKeyTagsDetailsApi()
+  loading.value = false
+  if (res.success) {
+    tags.value = res.data
+  }
+}
+
+const createTag = async () => {
+  if (!newTagInput.value.trim()) return
+
+  creating.value = true
+  const res = await createApiKeyTagApi(newTagInput.value.trim())
+  creating.value = false
+
+  if (res.success) {
+    showToast('标签创建成功', 'success')
+    newTagInput.value = ''
+    loadTags()
+    emit('updated')
+  } else {
+    showToast(res.error || '创建失败', 'error')
+  }
+}
+
+const confirmDelete = (tag) => {
+  confirmingTag.value = tag
+  showDeleteConfirm.value = true
+}
+
+const executeDelete = async () => {
+  if (!confirmingTag.value) return
+
+  showDeleteConfirm.value = false
+  processing.value = true
+  const tagName = confirmingTag.value.name
+  const res = await deleteApiKeyTagApi(tagName)
+  processing.value = false
+
+  if (res.success) {
+    showToast(`标签「${tagName}」已删除`, 'success')
+    tags.value = tags.value.filter((t) => t.name !== tagName)
+    confirmingTag.value = null
+    emit('updated')
+  } else {
+    showToast(res.error || '删除失败', 'error')
+  }
+}
+
+const startRename = (tag) => {
+  renamingTag.value = tag
+  newTagName.value = tag.name
+  showRenameModal.value = true
+}
+
+const executeRename = async () => {
+  if (!renamingTag.value || !newTagName.value.trim()) return
+
+  processing.value = true
+  const oldName = renamingTag.value.name
+  const res = await renameApiKeyTagApi(oldName, newTagName.value.trim())
+  processing.value = false
+
+  if (res.success) {
+    showToast('标签已重命名', 'success')
+    showRenameModal.value = false
+    renamingTag.value = null
+    loadTags()
+    emit('updated')
+  } else {
+    showToast(res.error || '重命名失败', 'error')
+  }
+}
+
+const handleClose = () => {
+  confirmingTag.value = null
+  emit('close')
+}
+
+watch(
+  () => props.show,
+  (val) => {
+    if (val) {
+      confirmingTag.value = null
+      newTagInput.value = ''
+      loadTags()
+    }
+  }
+)
+</script>
+
+<style scoped>
+.modal-enter-active,
+.modal-leave-active {
+  transition: opacity 0.2s ease;
+}
+.modal-enter-from,
+.modal-leave-to {
+  opacity: 0;
+}
+</style>
diff --git a/web/admin-spa/src/components/apikeys/UsageDetailModal.vue b/web/admin-spa/src/components/apikeys/UsageDetailModal.vue
index 846263f2..06ac3d36 100644
--- a/web/admin-spa/src/components/apikeys/UsageDetailModal.vue
+++ b/web/admin-spa/src/components/apikeys/UsageDetailModal.vue
@@ -248,6 +248,8 @@ import { computed } from 'vue'
 import LimitProgressBar from './LimitProgressBar.vue'
 import WindowCountdown from './WindowCountdown.vue'
 
+import { formatNumber } from '@/utils/tools'
+
 const props = defineProps({
   show: {
     type: Boolean,
@@ -305,10 +307,6 @@ const opusUsagePercentage = computed(() => {
 })
 
 // 方法
-const formatNumber = (num) => {
-  if (!num && num !== 0) return '0'
-  return num.toLocaleString('zh-CN')
-}
 
 // 格式化Token数量（使用K/M单位）
 const formatTokenCount = (count) => {
@@ -328,7 +326,3 @@ const openTimeline = () => {
   emit('open-timeline', props.apiKey?.id)
 }
 </script>
-
-<style scoped>
-/* 使用项目的通用样式，不需要额外定义 */
-</style>
diff --git a/web/admin-spa/src/components/apistats/AggregatedStatsCard.vue b/web/admin-spa/src/components/apistats/AggregatedStatsCard.vue
index 5b857f8e..276e0806 100644
--- a/web/admin-spa/src/components/apistats/AggregatedStatsCard.vue
+++ b/web/admin-spa/src/components/apistats/AggregatedStatsCard.vue
@@ -69,6 +69,7 @@
 </template>
 
 <script setup>
+import { formatNumber } from '@/utils/tools'
 import { computed } from 'vue'
 import { storeToRefs } from 'pinia'
 import { useApiStatsStore } from '@/stores/apistats'
@@ -146,21 +147,6 @@ const getProgressColor = (index) => {
 }
 
 // 格式化数字
-const formatNumber = (num) => {
-  if (typeof num !== 'number') {
-    num = parseInt(num) || 0
-  }
-
-  if (num === 0) return '0'
-
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  } else {
-    return num.toLocaleString()
-  }
-}
 </script>
 
 <style scoped>
diff --git a/web/admin-spa/src/components/apistats/ApiKeyInput.vue b/web/admin-spa/src/components/apistats/ApiKeyInput.vue
index c59e3ca0..95114786 100644
--- a/web/admin-spa/src/components/apistats/ApiKeyInput.vue
+++ b/web/admin-spa/src/components/apistats/ApiKeyInput.vue
@@ -57,15 +57,23 @@
         <!-- API Key 输入 -->
         <div class="lg:col-span-3">
           <!-- 单 Key 模式输入框 -->
-          <input
-            v-if="!multiKeyMode"
-            v-model="apiKey"
-            class="wide-card-input w-full"
-            :disabled="loading"
-            placeholder="请输入您的 API Key (cr_...)"
-            type="password"
-            @keyup.enter="queryStats"
-          />
+          <div v-if="!multiKeyMode" class="relative">
+            <input
+              v-model="apiKey"
+              class="wide-card-input w-full pr-10"
+              :disabled="loading"
+              placeholder="请输入您的 API Key (cr_...)"
+              :type="showPassword ? 'text' : 'password'"
+              @keyup.enter="queryStats"
+            />
+            <button
+              class="absolute right-3 top-1/2 -translate-y-1/2 text-gray-400 hover:text-gray-600 dark:text-gray-500 dark:hover:text-gray-300"
+              type="button"
+              @click="showPassword = !showPassword"
+            >
+              <i :class="showPassword ? 'fas fa-eye-slash' : 'fas fa-eye'" />
+            </button>
+          </div>
 
           <!-- 多 Key 模式输入框 -->
           <div v-else class="relative">
@@ -125,7 +133,7 @@
 </template>
 
 <script setup>
-import { computed } from 'vue'
+import { computed, ref } from 'vue'
 import { storeToRefs } from 'pinia'
 import { useApiStatsStore } from '@/stores/apistats'
 
@@ -133,6 +141,8 @@ const apiStatsStore = useApiStatsStore()
 const { apiKey, loading, multiKeyMode } = storeToRefs(apiStatsStore)
 const { queryStats, clearInput } = apiStatsStore
 
+const showPassword = ref(false)
+
 // 解析输入的 API Keys
 const parsedApiKeys = computed(() => {
   if (!multiKeyMode.value || !apiKey.value) return []
diff --git a/web/admin-spa/src/components/apistats/LimitConfig.vue b/web/admin-spa/src/components/apistats/LimitConfig.vue
index 5c272454..b1f64e9c 100644
--- a/web/admin-spa/src/components/apistats/LimitConfig.vue
+++ b/web/admin-spa/src/components/apistats/LimitConfig.vue
@@ -102,7 +102,7 @@
       </div>
 
       <!-- 仅在单 Key 模式下显示限制配置 -->
-      <div v-if="!multiKeyMode" class="space-y-4 md:space-y-5">
+      <div v-if="!multiKeyMode && statsData?.limits" class="space-y-4 md:space-y-5">
         <!-- 每日费用限制 -->
         <div>
           <div class="mb-2 flex items-center justify-between">
@@ -272,7 +272,7 @@
               <span
                 v-for="client in statsData.restrictions.allowedClients"
                 :key="client"
-                class="flex items-center gap-1 rounded-full bg-white px-2 py-1 text-xs text-blue-700 shadow-sm dark:bg-slate-900 dark:text-blue-300 md:text-sm"
+                class="flex items-center gap-1 rounded-full bg-white px-2 py-1 text-xs text-blue-700 shadow-sm dark:bg-gray-800 dark:text-blue-300 md:text-sm"
               >
                 <i class="fas fa-id-badge" />
                 {{ client }}
@@ -321,6 +321,7 @@
 </template>
 
 <script setup>
+import { formatNumber } from '@/utils/tools'
 import { computed } from 'vue'
 import { storeToRefs } from 'pinia'
 import { useApiStatsStore } from '@/stores/apistats'
@@ -404,22 +405,6 @@ const getOpusWeeklyCostProgressColor = () => {
 }
 
 // 格式化数字
-const formatNumber = (num) => {
-  if (typeof num !== 'number') {
-    num = parseInt(num) || 0
-  }
-
-  if (num === 0) return '0'
-
-  // 大数字使用简化格式
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  } else {
-    return num.toLocaleString()
-  }
-}
 </script>
 
 <style scoped>
diff --git a/web/admin-spa/src/components/apistats/ModelUsageStats.vue b/web/admin-spa/src/components/apistats/ModelUsageStats.vue
index 45c63813..98775997 100644
--- a/web/admin-spa/src/components/apistats/ModelUsageStats.vue
+++ b/web/admin-spa/src/components/apistats/ModelUsageStats.vue
@@ -53,7 +53,7 @@
               {{ model.formatted?.total || '$0.00' }}
             </span>
             <template v-if="serviceRates?.rates">
-              <span class="ml-2 text-gray-500">折合CC</span>
+              <span class="ml-2 text-gray-500">计费</span>
               <span class="ml-1 font-semibold text-amber-600 dark:text-amber-400">
                 {{ calculateCcCost(model) }}
               </span>
@@ -75,7 +75,7 @@
 import { computed } from 'vue'
 import { storeToRefs } from 'pinia'
 import { useApiStatsStore } from '@/stores/apistats'
-import { copyText } from '@/utils/tools'
+import { copyText, formatNumber } from '@/utils/tools'
 
 const props = defineProps({
   period: {
@@ -136,22 +136,6 @@ const calculateCcCost = (model) => {
 }
 
 // 格式化数字
-const formatNumber = (num) => {
-  if (typeof num !== 'number') {
-    num = parseInt(num) || 0
-  }
-
-  if (num === 0) return '0'
-
-  // 大数字使用简化格式
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  } else {
-    return num.toLocaleString()
-  }
-}
 </script>
 
 <style scoped>
diff --git a/web/admin-spa/src/components/apistats/ServiceCostCards.vue b/web/admin-spa/src/components/apistats/ServiceCostCards.vue
index ba17b756..a1914682 100644
--- a/web/admin-spa/src/components/apistats/ServiceCostCards.vue
+++ b/web/admin-spa/src/components/apistats/ServiceCostCards.vue
@@ -8,7 +8,7 @@
         服务费用统计
       </span>
       <span class="text-xs font-normal text-gray-500 dark:text-gray-400">
-        CC 倍率基准: Claude = 1.0
+        计费 = 官方费用 × 全局倍率 × Key倍率
       </span>
     </h3>
 
@@ -23,11 +23,21 @@
           <span class="text-sm font-semibold text-gray-900 dark:text-gray-100">
             {{ service.label }}
           </span>
-          <span
-            class="rounded-full bg-blue-100 px-2 py-0.5 text-xs font-medium text-blue-700 dark:bg-blue-900/30 dark:text-blue-300"
-          >
-            {{ service.rate }}x
-          </span>
+          <div class="flex items-center gap-1">
+            <span
+              class="rounded-full bg-blue-100 px-2 py-0.5 text-xs font-medium text-blue-700 dark:bg-blue-900/30 dark:text-blue-300"
+              title="全局倍率"
+            >
+              全局 {{ service.globalRate }}x
+            </span>
+            <span
+              v-if="!multiKeyMode"
+              class="rounded-full bg-purple-100 px-2 py-0.5 text-xs font-medium text-purple-700 dark:bg-purple-900/30 dark:text-purple-300"
+              title="Key倍率"
+            >
+              Key {{ service.keyRate }}x
+            </span>
+          </div>
         </div>
 
         <!-- Token 详情 -->
@@ -67,7 +77,7 @@
             </span>
           </div>
           <div class="flex justify-between">
-            <span class="text-gray-600 dark:text-gray-400">折合CC</span>
+            <span class="text-gray-600 dark:text-gray-400">计费费用</span>
             <span class="font-semibold text-amber-600 dark:text-amber-400">
               {{ service.ccCost }}
             </span>
@@ -102,12 +112,13 @@
 </template>
 
 <script setup>
+import { formatNumber } from '@/utils/tools'
 import { computed } from 'vue'
 import { storeToRefs } from 'pinia'
 import { useApiStatsStore } from '@/stores/apistats'
 
 const apiStatsStore = useApiStatsStore()
-const { modelStats, serviceRates } = storeToRefs(apiStatsStore)
+const { modelStats, serviceRates, keyServiceRates, multiKeyMode } = storeToRefs(apiStatsStore)
 
 // 服务标签映射
 const serviceLabels = {
@@ -167,20 +178,23 @@ const serviceStats = computed(() => {
     }
   })
 
-  // 转换为数组并计算 CC 费用
+  // 转换为数组并计算计费费用
   return Object.entries(stats)
     .filter(
       ([, data]) =>
         data.inputTokens > 0 || data.outputTokens > 0 || data.cacheCreateTokens > 0 || data.cost > 0
     )
     .map(([service, data]) => {
-      const rate = serviceRates.value.rates[service] || 1.0
-      const ccCostValue = data.cost * rate
+      const globalRate = serviceRates.value.rates[service] || 1.0
+      // 批量模式下不使用 Key 倍率
+      const keyRate = multiKeyMode.value ? 1.0 : (keyServiceRates.value?.[service] ?? 1.0)
+      const ccCostValue = data.cost * globalRate * keyRate
       const p = data.pricing
       return {
         name: service,
         label: serviceLabels[service] || service,
-        rate: rate,
+        globalRate: globalRate,
+        keyRate: keyRate,
         inputTokens: data.inputTokens,
         outputTokens: data.outputTokens,
         cacheCreateTokens: data.cacheCreateTokens,
@@ -209,13 +223,6 @@ const formatCost = (cost) => {
 }
 
 // 格式化数字
-const formatNumber = (num) => {
-  if (!num) return '0'
-  if (num >= 1e9) return (num / 1e9).toFixed(2) + 'B'
-  if (num >= 1e6) return (num / 1e6).toFixed(2) + 'M'
-  if (num >= 1e3) return (num / 1e3).toFixed(1) + 'K'
-  return num.toLocaleString()
-}
 </script>
 
 <style scoped>
diff --git a/web/admin-spa/src/components/apistats/StatsOverview.vue b/web/admin-spa/src/components/apistats/StatsOverview.vue
index ae0a3f0f..b0529d68 100644
--- a/web/admin-spa/src/components/apistats/StatsOverview.vue
+++ b/web/admin-spa/src/components/apistats/StatsOverview.vue
@@ -92,6 +92,18 @@
             <p class="info-label">权限</p>
             <p class="info-value">{{ formatPermissions(statsData.permissions) }}</p>
           </div>
+          <div v-if="hasServiceRates" class="info-item xl:col-span-2">
+            <p class="info-label">服务倍率</p>
+            <div class="flex flex-wrap gap-2">
+              <span
+                v-for="(rate, service) in statsData.serviceRates"
+                :key="service"
+                class="inline-flex items-center rounded-full bg-purple-100 px-2.5 py-0.5 text-xs font-medium text-purple-800 dark:bg-purple-900/30 dark:text-purple-300"
+              >
+                {{ service }}: {{ rate }}x
+              </span>
+            </div>
+          </div>
           <div class="info-item">
             <p class="info-label">创建时间</p>
             <p class="info-value break-all">{{ formatDate(statsData.createdAt) }}</p>
@@ -272,7 +284,7 @@
             </div>
             <p
               v-else
-              class="rounded-xl bg-slate-100 px-3 py-2 text-xs text-slate-500 dark:bg-slate-800 dark:text-slate-300"
+              class="rounded-xl bg-gray-100 px-3 py-2 text-xs text-gray-500 dark:bg-gray-800 dark:text-gray-300"
             >
               暂无额度使用数据
             </p>
@@ -289,7 +301,7 @@ import { computed } from 'vue'
 import { storeToRefs } from 'pinia'
 import dayjs from 'dayjs'
 import { useApiStatsStore } from '@/stores/apistats'
-import { copyText } from '@/utils/tools'
+import { copyText, formatNumber, formatDate } from '@/utils/tools'
 
 const apiStatsStore = useApiStatsStore()
 const {
@@ -309,21 +321,17 @@ const topContributors = computed(() => {
     .slice(0, 3)
 })
 
+// 是否有自定义服务倍率
+const hasServiceRates = computed(() => {
+  return statsData.value?.serviceRates && Object.keys(statsData.value.serviceRates).length > 0
+})
+
 const calculateContribution = (stat) => {
   if (!aggregatedStats.value || !aggregatedStats.value.usage.allTokens) return 0
   const percentage = ((stat.usage?.allTokens || 0) / aggregatedStats.value.usage.allTokens) * 100
   return percentage.toFixed(1)
 }
 
-const formatDate = (dateString) => {
-  if (!dateString) return '无'
-  try {
-    return dayjs(dateString).format('YYYY年MM月DD日 HH:mm')
-  } catch (error) {
-    return '格式错误'
-  }
-}
-
 const formatExpireDate = (dateString) => {
   if (!dateString) return ''
   const date = new Date(dateString)
@@ -349,21 +357,35 @@ const isApiKeyExpiringSoon = (expiresAt) => {
   return daysUntilExpire > 0 && daysUntilExpire <= 7
 }
 
-const formatNumber = (num) => {
-  if (typeof num !== 'number') num = parseInt(num) || 0
-  if (num === 0) return '0'
-  if (num >= 1_000_000) return (num / 1_000_000).toFixed(1) + 'M'
-  if (num >= 1_000) return (num / 1_000).toFixed(1) + 'K'
-  return num.toLocaleString()
-}
-
 const formatPermissions = (permissions) => {
   const map = {
     claude: 'Claude',
     gemini: 'Gemini',
-    all: '全部模型'
+    codex: 'Codex',
+    droid: 'Droid',
+    bedrock: 'Bedrock',
+    azure: 'Azure',
+    ccr: 'CCR'
   }
-  return map[permissions] || permissions || '未知'
+  // 空值 = 全部服务
+  if (!permissions) return '全部服务'
+  // 尝试解析字符串格式的数组
+  let parsed = permissions
+  if (typeof permissions === 'string') {
+    if (permissions === 'all' || permissions === '[]') return '全部服务'
+    try {
+      parsed = JSON.parse(permissions)
+    } catch {
+      return map[permissions] || permissions
+    }
+  }
+  // 空数组 = 全部服务
+  if (Array.isArray(parsed) && parsed.length === 0) return '全部服务'
+  // 数组格式
+  if (Array.isArray(parsed)) {
+    return parsed.map((p) => map[p] || p).join(', ')
+  }
+  return map[permissions] || permissions
 }
 
 const boundAccountList = computed(() => {
@@ -518,11 +540,9 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 
 <style scoped>
 .card-section {
-  @apply flex h-full flex-col gap-4 rounded-2xl border border-slate-200/70 bg-white/90 p-4 shadow-md dark:border-slate-700/60 dark:bg-slate-900/70 md:p-6;
-}
-
-:global(.dark) .card-section {
-  backdrop-filter: blur(10px);
+  @apply flex h-full flex-col gap-4 rounded-2xl p-4 shadow-md md:p-6;
+  background: var(--surface-color);
+  border: 1px solid var(--border-color);
 }
 
 .section-header {
@@ -534,11 +554,18 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .header-title {
-  @apply text-lg font-semibold text-slate-900 dark:text-slate-100 md:text-xl;
+  @apply text-lg font-semibold md:text-xl;
+  color: var(--text-primary, #1e293b);
+}
+
+:global(.dark) .header-title {
+  color: var(--text-primary, #f1f5f9);
 }
 
 .header-tag {
-  @apply ml-auto rounded-full bg-slate-100 px-2 py-0.5 text-xs font-medium text-slate-500 dark:bg-slate-800 dark:text-slate-300;
+  @apply ml-auto rounded-full px-2 py-0.5 text-xs font-medium;
+  background: rgba(var(--primary-rgb), 0.1);
+  color: var(--primary-color);
 }
 
 .info-grid {
@@ -559,20 +586,43 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .info-item {
-  @apply rounded-xl border border-slate-200 bg-white/70 p-4 dark:border-slate-700 dark:bg-slate-900/60;
+  @apply rounded-xl p-4;
+  background: rgba(var(--primary-rgb), 0.03);
+  border: 1px solid var(--border-color);
   min-height: 86px;
 }
 
+:global(.dark) .info-item {
+  background: rgba(var(--primary-rgb), 0.08);
+}
+
 .info-label {
-  @apply text-xs uppercase tracking-wide text-slate-400;
+  @apply text-xs uppercase tracking-wide;
+  color: var(--text-secondary, #64748b);
+}
+
+:global(.dark) .info-label {
+  color: var(--text-secondary, #94a3b8);
 }
 
 .info-value {
-  @apply mt-2 text-sm text-slate-800 dark:text-slate-100;
+  @apply mt-2 text-sm;
+  color: var(--text-primary, #1e293b);
+}
+
+:global(.dark) .info-value {
+  color: var(--text-primary, #f1f5f9);
 }
 
 .contributor-item {
-  @apply flex items-center justify-between rounded-lg bg-slate-50 px-3 py-2 text-xs text-slate-600 dark:bg-slate-800 dark:text-slate-300;
+  @apply flex items-center justify-between rounded-lg px-3 py-2 text-xs;
+  background: rgba(var(--primary-rgb), 0.05);
+  color: var(--text-secondary, #64748b);
+}
+
+:global(.dark) .contributor-item {
+  background: rgba(var(--primary-rgb), 0.1);
+  color: var(--text-secondary, #cbd5e1);
 }
 
 .metric-grid {
@@ -580,7 +630,13 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .metric-card {
-  @apply rounded-xl border border-slate-200 bg-white/70 p-4 text-center shadow-sm dark:border-slate-700 dark:bg-slate-900/60;
+  @apply rounded-xl p-4 text-center shadow-sm;
+  background: rgba(var(--primary-rgb), 0.03);
+  border: 1px solid var(--border-color);
+}
+
+:global(.dark) .metric-card {
+  background: rgba(var(--primary-rgb), 0.08);
 }
 
 .metric-value {
@@ -588,11 +644,18 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .metric-label {
-  @apply mt-1 text-xs text-slate-500 dark:text-slate-300;
+  @apply mt-1 text-xs;
+  color: var(--text-secondary, #64748b);
+}
+
+:global(.dark) .metric-label {
+  color: var(--text-secondary, #cbd5e1);
 }
 
 .account-card {
-  @apply rounded-2xl border border-slate-200 bg-white/80 p-4 shadow-sm transition-shadow hover:shadow-md dark:border-slate-700 dark:bg-slate-900/60;
+  @apply rounded-2xl p-4 shadow-sm transition-shadow hover:shadow-md;
+  background: var(--surface-color);
+  border: 1px solid var(--border-color);
 }
 
 .account-icon {
@@ -608,15 +671,26 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .account-name {
-  @apply text-sm font-semibold text-slate-900 dark:text-slate-100;
+  @apply text-sm font-semibold;
+  color: var(--text-primary, #1e293b);
+}
+
+:global(.dark) .account-name {
+  color: var(--text-primary, #f1f5f9);
 }
 
 .account-sub {
-  @apply text-xs text-slate-500 dark:text-slate-400;
+  @apply text-xs;
+  color: var(--text-secondary, #64748b);
+}
+
+:global(.dark) .account-sub {
+  color: var(--text-secondary, #94a3b8);
 }
 
 .rate-badge {
-  @apply rounded-full bg-slate-100 px-2 py-0.5 text-xs font-medium dark:bg-slate-800;
+  @apply rounded-full px-2 py-0.5 text-xs font-medium;
+  background: rgba(var(--primary-rgb), 0.1);
 }
 
 .progress-row {
@@ -624,7 +698,12 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .progress-track {
-  @apply h-1.5 flex-1 rounded-full bg-slate-200 dark:bg-slate-700;
+  @apply h-1.5 flex-1 rounded-full;
+  background: rgba(var(--primary-rgb), 0.15);
+}
+
+:global(.dark) .progress-track {
+  background: rgba(var(--primary-rgb), 0.25);
 }
 
 .progress-bar {
@@ -632,11 +711,22 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .progress-value {
-  @apply text-xs font-semibold text-slate-600 dark:text-slate-200;
+  @apply text-xs font-semibold;
+  color: var(--text-secondary, #475569);
+}
+
+:global(.dark) .progress-value {
+  color: var(--text-secondary, #e2e8f0);
 }
 
 .quota-row {
-  @apply rounded-xl border border-slate-200 bg-white/60 p-3 dark:border-slate-700 dark:bg-slate-900/50;
+  @apply rounded-xl p-3;
+  background: rgba(var(--primary-rgb), 0.03);
+  border: 1px solid var(--border-color);
+}
+
+:global(.dark) .quota-row {
+  background: rgba(var(--primary-rgb), 0.08);
 }
 
 .quota-header {
@@ -656,10 +746,20 @@ const getCodexWindowLabel = (type) => (type === 'secondary' ? '周限' : '5h')
 }
 
 .quota-percent {
-  @apply text-xs font-semibold text-slate-600 dark:text-slate-200;
+  @apply text-xs font-semibold;
+  color: var(--text-secondary, #475569);
+}
+
+:global(.dark) .quota-percent {
+  color: var(--text-secondary, #e2e8f0);
 }
 
 .quota-foot {
-  @apply mt-1 text-[11px] text-slate-400 dark:text-slate-300;
+  @apply mt-1 text-[11px];
+  color: var(--text-tertiary, #94a3b8);
+}
+
+:global(.dark) .quota-foot {
+  color: var(--text-tertiary, #cbd5e1);
 }
 </style>
diff --git a/web/admin-spa/src/components/apistats/TokenDistribution.vue b/web/admin-spa/src/components/apistats/TokenDistribution.vue
index a9287560..3e12a540 100644
--- a/web/admin-spa/src/components/apistats/TokenDistribution.vue
+++ b/web/admin-spa/src/components/apistats/TokenDistribution.vue
@@ -61,6 +61,7 @@
 </template>
 
 <script setup>
+import { formatNumber } from '@/utils/tools'
 import { storeToRefs } from 'pinia'
 import { useApiStatsStore } from '@/stores/apistats'
 
@@ -68,22 +69,6 @@ const apiStatsStore = useApiStatsStore()
 const { statsPeriod, currentPeriodData } = storeToRefs(apiStatsStore)
 
 // 格式化数字
-const formatNumber = (num) => {
-  if (typeof num !== 'number') {
-    num = parseInt(num) || 0
-  }
-
-  if (num === 0) return '0'
-
-  // 大数字使用简化格式
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  } else {
-    return num.toLocaleString()
-  }
-}
 </script>
 
 <style scoped>
diff --git a/web/admin-spa/src/components/common/AccountSelector.vue b/web/admin-spa/src/components/common/AccountSelector.vue
index c2fb2874..439cfbba 100644
--- a/web/admin-spa/src/components/common/AccountSelector.vue
+++ b/web/admin-spa/src/components/common/AccountSelector.vue
@@ -297,6 +297,7 @@
 
 <script setup>
 import { ref, computed, watch, nextTick, onMounted, onUnmounted } from 'vue'
+import { formatDate } from '@/utils/tools'
 
 const props = defineProps({
   modelValue: {
@@ -542,23 +543,6 @@ const hasResults = computed(() => {
 })
 
 // 格式化日期
-const formatDate = (dateString) => {
-  if (!dateString) return ''
-  const date = new Date(dateString)
-  const now = new Date()
-  const diffInHours = (now - date) / (1000 * 60 * 60)
-
-  if (diffInHours < 24) {
-    return '今天创建'
-  } else if (diffInHours < 48) {
-    return '昨天创建'
-  } else if (diffInHours < 168) {
-    // 7天内
-    return `${Math.floor(diffInHours / 24)} 天前`
-  } else {
-    return date.toLocaleDateString('zh-CN', { month: '2-digit', day: '2-digit' })
-  }
-}
 
 // 更新下拉菜单位置
 const updateDropdownPosition = () => {
diff --git a/web/admin-spa/src/components/common/ConfirmDialog.vue b/web/admin-spa/src/components/common/ConfirmDialog.vue
deleted file mode 100644
index 96f5db39..00000000
--- a/web/admin-spa/src/components/common/ConfirmDialog.vue
+++ /dev/null
@@ -1,260 +0,0 @@
-<template>
-  <Teleport to="body">
-    <Transition appear name="modal">
-      <div
-        v-if="isVisible"
-        class="modal fixed inset-0 z-[100] flex items-center justify-center p-4"
-        @click.self="handleCancel"
-      >
-        <div class="modal-content mx-auto w-full max-w-md p-6">
-          <div class="mb-6 flex items-start gap-4">
-            <div
-              :class="[
-                'flex h-12 w-12 flex-shrink-0 items-center justify-center rounded-xl',
-                dialogType === 'danger'
-                  ? 'bg-gradient-to-br from-red-500 to-red-600'
-                  : dialogType === 'warning'
-                    ? 'bg-gradient-to-br from-amber-500 to-amber-600'
-                    : 'bg-primary'
-              ]"
-            >
-              <i
-                :class="[
-                  'text-lg text-white',
-                  dialogType === 'danger'
-                    ? 'fas fa-trash-alt'
-                    : dialogType === 'warning'
-                      ? 'fas fa-exclamation-triangle'
-                      : 'fas fa-question-circle'
-                ]"
-              />
-            </div>
-            <div class="flex-1">
-              <h3 class="mb-2 text-lg font-semibold text-gray-900 dark:text-white">
-                {{ title }}
-              </h3>
-              <div class="whitespace-pre-line leading-relaxed text-gray-700 dark:text-gray-400">
-                {{ message }}
-              </div>
-            </div>
-          </div>
-
-          <div class="flex items-center justify-end gap-3">
-            <button
-              class="btn bg-gray-100 px-6 py-3 text-gray-700 hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-300 dark:hover:bg-gray-600"
-              :disabled="isProcessing"
-              @click="handleCancel"
-            >
-              {{ cancelText }}
-            </button>
-            <button
-              :class="[
-                'btn px-6 py-3',
-                dialogType === 'danger'
-                  ? 'btn-danger'
-                  : dialogType === 'warning'
-                    ? 'btn-warning'
-                    : 'btn-primary'
-              ]"
-              :disabled="isProcessing"
-              @click="handleConfirm"
-            >
-              <div v-if="isProcessing" class="loading-spinner mr-2" />
-              {{ confirmText }}
-            </button>
-          </div>
-        </div>
-      </div>
-    </Transition>
-  </Teleport>
-</template>
-
-<script setup>
-import { ref, onMounted, onUnmounted } from 'vue'
-
-// 状态
-const isVisible = ref(false)
-const isProcessing = ref(false)
-const title = ref('')
-const message = ref('')
-const confirmText = ref('确认')
-const cancelText = ref('取消')
-const dialogType = ref('primary') // primary | warning | danger
-let resolvePromise = null
-
-// 显示确认对话框
-const showConfirm = (
-  titleText,
-  messageText,
-  confirmTextParam = '确认',
-  cancelTextParam = '取消',
-  type = 'primary'
-) => {
-  return new Promise((resolve) => {
-    title.value = titleText
-    message.value = messageText
-    confirmText.value = confirmTextParam
-    cancelText.value = cancelTextParam
-    dialogType.value = type
-    isVisible.value = true
-    isProcessing.value = false
-    resolvePromise = resolve
-  })
-}
-
-// 处理确认
-const handleConfirm = () => {
-  if (isProcessing.value) return
-
-  isProcessing.value = true
-
-  // 延迟一点时间以显示loading状态
-  setTimeout(() => {
-    isVisible.value = false
-    isProcessing.value = false
-    if (resolvePromise) {
-      resolvePromise(true)
-      resolvePromise = null
-    }
-  }, 200)
-}
-
-// 处理取消
-const handleCancel = () => {
-  if (isProcessing.value) return
-
-  isVisible.value = false
-  if (resolvePromise) {
-    resolvePromise(false)
-    resolvePromise = null
-  }
-}
-
-// 键盘事件处理
-const handleKeydown = (event) => {
-  if (!isVisible.value) return
-
-  if (event.key === 'Escape') {
-    handleCancel()
-  } else if (event.key === 'Enter' && !event.shiftKey && !event.ctrlKey && !event.altKey) {
-    handleConfirm()
-  }
-}
-
-// 全局方法注册
-onMounted(() => {
-  window.showConfirm = showConfirm
-  document.addEventListener('keydown', handleKeydown)
-})
-
-onUnmounted(() => {
-  if (window.showConfirm === showConfirm) {
-    delete window.showConfirm
-  }
-  document.removeEventListener('keydown', handleKeydown)
-})
-
-// 暴露方法供组件使用
-defineExpose({
-  showConfirm
-})
-</script>
-
-<style scoped>
-.modal {
-  background: rgba(0, 0, 0, 0.5);
-  backdrop-filter: blur(8px);
-}
-
-:global(.dark) .modal {
-  background: rgba(0, 0, 0, 0.7);
-}
-
-.modal-content {
-  background: white;
-  border-radius: 16px;
-  box-shadow: 0 20px 64px rgba(0, 0, 0, 0.15);
-  border: 1px solid #e5e7eb;
-  max-height: 90vh;
-  overflow-y: auto;
-}
-
-:global(.dark) .modal-content {
-  background: var(--bg-gradient-start);
-  border: 1px solid var(--border-color);
-  box-shadow: 0 20px 64px rgba(0, 0, 0, 0.8);
-}
-
-.btn {
-  @apply inline-flex items-center justify-center rounded-lg px-4 py-2 text-sm font-semibold transition-all duration-200 focus:outline-none focus:ring-2 focus:ring-offset-2;
-}
-
-.btn-danger {
-  @apply bg-red-600 text-white hover:bg-red-700 focus:ring-red-500;
-}
-
-.btn-warning {
-  @apply bg-amber-600 text-white hover:bg-amber-700 focus:ring-amber-500;
-}
-
-.btn-primary {
-  background-color: var(--primary-color);
-  @apply text-white hover:opacity-90 focus:ring-indigo-500;
-}
-
-.loading-spinner {
-  @apply h-4 w-4 animate-spin rounded-full border-2 border-gray-300 border-t-white;
-}
-
-/* Modal transitions */
-.modal-enter-active,
-.modal-leave-active {
-  transition: all 0.3s ease;
-}
-
-.modal-enter-from,
-.modal-leave-to {
-  opacity: 0;
-}
-
-.modal-enter-active .modal-content,
-.modal-leave-active .modal-content {
-  transition: transform 0.3s ease;
-}
-
-.modal-enter-from .modal-content,
-.modal-leave-to .modal-content {
-  transform: scale(0.9) translateY(-20px);
-}
-
-/* Scrollbar styling */
-.modal-content::-webkit-scrollbar {
-  width: 6px;
-}
-
-.modal-content::-webkit-scrollbar-track {
-  background: #f1f5f9;
-  border-radius: 3px;
-}
-
-:global(.dark) .modal-content::-webkit-scrollbar-track {
-  background: var(--bg-gradient-mid);
-}
-
-.modal-content::-webkit-scrollbar-thumb {
-  background: #cbd5e1;
-  border-radius: 3px;
-}
-
-:global(.dark) .modal-content::-webkit-scrollbar-thumb {
-  background: var(--bg-gradient-end);
-}
-
-.modal-content::-webkit-scrollbar-thumb:hover {
-  background: #94a3b8;
-}
-
-:global(.dark) .modal-content::-webkit-scrollbar-thumb:hover {
-  background: #6b7280;
-}
-</style>
diff --git a/web/admin-spa/src/components/common/StatCard.vue b/web/admin-spa/src/components/common/StatCard.vue
index 0b19a9e1..2c6878c5 100644
--- a/web/admin-spa/src/components/common/StatCard.vue
+++ b/web/admin-spa/src/components/common/StatCard.vue
@@ -59,7 +59,3 @@ const iconBgClass = computed(() => {
   return colorMap[props.iconColor] || colorMap.primary
 })
 </script>
-
-<style scoped>
-/* 使用全局样式中定义的 .stat-card 和 .stat-icon 类 */
-</style>
diff --git a/web/admin-spa/src/components/dashboard/ModelDistribution.vue b/web/admin-spa/src/components/dashboard/ModelDistribution.vue
index 2b04a044..eff23358 100644
--- a/web/admin-spa/src/components/dashboard/ModelDistribution.vue
+++ b/web/admin-spa/src/components/dashboard/ModelDistribution.vue
@@ -51,7 +51,7 @@
 import { ref, computed, watch, onMounted, onUnmounted } from 'vue'
 import { Chart } from 'chart.js/auto'
 import { useDashboardStore } from '@/stores/dashboard'
-import { useChartConfig } from '@/composables/useChartConfig'
+import { useChartConfig } from '@/utils/useChartConfig'
 import { formatNumber } from '@/utils/tools'
 
 const dashboardStore = useDashboardStore()
@@ -144,7 +144,3 @@ onUnmounted(() => {
   }
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/components/dashboard/UsageTrend.vue b/web/admin-spa/src/components/dashboard/UsageTrend.vue
index d80d1f47..581fe3ca 100644
--- a/web/admin-spa/src/components/dashboard/UsageTrend.vue
+++ b/web/admin-spa/src/components/dashboard/UsageTrend.vue
@@ -38,7 +38,7 @@
 import { ref, onMounted, onUnmounted, watch } from 'vue'
 import { Chart } from 'chart.js/auto'
 import { useDashboardStore } from '@/stores/dashboard'
-import { useChartConfig } from '@/composables/useChartConfig'
+import { useChartConfig } from '@/utils/useChartConfig'
 import { useThemeStore } from '@/stores/theme'
 
 const dashboardStore = useDashboardStore()
@@ -189,7 +189,3 @@ onUnmounted(() => {
   }
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/components/layout/AppHeader.vue b/web/admin-spa/src/components/layout/AppHeader.vue
index e299353c..bb2da91d 100644
--- a/web/admin-spa/src/components/layout/AppHeader.vue
+++ b/web/admin-spa/src/components/layout/AppHeader.vue
@@ -206,13 +206,22 @@
           <label class="mb-3 block text-sm font-semibold text-gray-700 dark:text-gray-300"
             >当前密码</label
           >
-          <input
-            v-model="changePasswordForm.currentPassword"
-            class="form-input w-full"
-            placeholder="请输入当前密码"
-            required
-            type="password"
-          />
+          <div class="relative">
+            <input
+              v-model="changePasswordForm.currentPassword"
+              class="form-input w-full pr-10"
+              placeholder="请输入当前密码"
+              required
+              :type="showCurrentPassword ? 'text' : 'password'"
+            />
+            <button
+              class="absolute right-3 top-1/2 -translate-y-1/2 text-gray-400 hover:text-gray-600 dark:text-gray-500 dark:hover:text-gray-300"
+              type="button"
+              @click="showCurrentPassword = !showCurrentPassword"
+            >
+              <i :class="showCurrentPassword ? 'fas fa-eye-slash' : 'fas fa-eye'" />
+            </button>
+          </div>
         </div>
 
         <div>
@@ -282,7 +291,8 @@ import { ref, reactive, computed, onMounted, onUnmounted } from 'vue'
 import { useRouter } from 'vue-router'
 import { useAuthStore } from '@/stores/auth'
 import { showToast } from '@/utils/tools'
-import * as httpApi from '@/utils/http_apis'
+
+import { checkUpdatesApi, changePasswordApi } from '@/utils/http_apis'
 import LogoTitle from '@/components/common/LogoTitle.vue'
 import ThemeToggle from '@/components/common/ThemeToggle.vue'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
@@ -314,6 +324,7 @@ const userMenuOpen = ref(false)
 // 修改密码模态框
 const showChangePasswordModal = ref(false)
 const changePasswordLoading = ref(false)
+const showCurrentPassword = ref(false)
 const changePasswordForm = reactive({
   currentPassword: '',
   newPassword: '',
@@ -363,7 +374,7 @@ const checkForUpdates = async () => {
   versionInfo.value.checkingUpdate = true
 
   try {
-    const result = await httpApi.get('/admin/check-updates')
+    const result = await checkUpdatesApi()
 
     if (result.success) {
       const data = result.data
@@ -443,7 +454,7 @@ const changePassword = async () => {
   changePasswordLoading.value = true
 
   try {
-    const data = await httpApi.post('/web/auth/change-password', {
+    const data = await changePasswordApi({
       currentPassword: changePasswordForm.currentPassword,
       newPassword: changePasswordForm.newPassword,
       newUsername: changePasswordForm.newUsername || undefined
diff --git a/web/admin-spa/src/components/layout/MainLayout.vue b/web/admin-spa/src/components/layout/MainLayout.vue
index 8ba384ec..7b582e2c 100644
--- a/web/admin-spa/src/components/layout/MainLayout.vue
+++ b/web/admin-spa/src/components/layout/MainLayout.vue
@@ -40,7 +40,6 @@ const tabRouteMap = computed(() => {
     apiKeys: '/api-keys',
     accounts: '/accounts',
     quotaCards: '/quota-cards',
-    tutorial: '/tutorial',
     settings: '/settings'
   }
 
@@ -69,7 +68,6 @@ const initActiveTab = () => {
       ApiKeys: 'apiKeys',
       Accounts: 'accounts',
       QuotaCards: 'quotaCards',
-      Tutorial: 'tutorial',
       Settings: 'settings'
     }
     if (routeName && nameToTabMap[routeName]) {
@@ -136,7 +134,3 @@ const handleTabChange = async (tabKey) => {
 
 // OEM设置已在App.vue中加载，无需重复加载
 </script>
-
-<style scoped>
-/* 使用全局定义的过渡样式 */
-</style>
diff --git a/web/admin-spa/src/components/layout/TabBar.vue b/web/admin-spa/src/components/layout/TabBar.vue
index d2acb4ad..4e481d8b 100644
--- a/web/admin-spa/src/components/layout/TabBar.vue
+++ b/web/admin-spa/src/components/layout/TabBar.vue
@@ -70,15 +70,8 @@ const tabs = computed(() => {
     })
   }
 
-  baseTabs.push(
-    { key: 'tutorial', name: '使用教程', shortName: '教程', icon: 'fas fa-graduation-cap' },
-    { key: 'settings', name: '系统设置', shortName: '设置', icon: 'fas fa-cogs' }
-  )
+  baseTabs.push({ key: 'settings', name: '系统设置', shortName: '设置', icon: 'fas fa-cogs' })
 
   return baseTabs
 })
 </script>
-
-<style scoped>
-/* 使用全局样式中定义的 .tab-btn 类 */
-</style>
diff --git a/web/admin-spa/src/components/tutorial/ClaudeCodeTutorial.vue b/web/admin-spa/src/components/tutorial/ClaudeCodeTutorial.vue
index 2cc8b38a..ed5524a4 100644
--- a/web/admin-spa/src/components/tutorial/ClaudeCodeTutorial.vue
+++ b/web/admin-spa/src/components/tutorial/ClaudeCodeTutorial.vue
@@ -475,7 +475,7 @@
 
 <script setup>
 import { computed } from 'vue'
-import { useTutorialUrls } from '@/composables/useTutorialUrls'
+import { useTutorialUrls } from '@/utils/useTutorialUrls'
 import NodeInstallTutorial from './NodeInstallTutorial.vue'
 
 const props = defineProps({
diff --git a/web/admin-spa/src/components/tutorial/CodexTutorial.vue b/web/admin-spa/src/components/tutorial/CodexTutorial.vue
index cb39c263..3601c160 100644
--- a/web/admin-spa/src/components/tutorial/CodexTutorial.vue
+++ b/web/admin-spa/src/components/tutorial/CodexTutorial.vue
@@ -298,7 +298,7 @@
 
 <script setup>
 import { computed } from 'vue'
-import { useTutorialUrls } from '@/composables/useTutorialUrls'
+import { useTutorialUrls } from '@/utils/useTutorialUrls'
 import NodeInstallTutorial from './NodeInstallTutorial.vue'
 
 const props = defineProps({
diff --git a/web/admin-spa/src/components/tutorial/DroidCliTutorial.vue b/web/admin-spa/src/components/tutorial/DroidCliTutorial.vue
index e5c9400b..b2966e92 100644
--- a/web/admin-spa/src/components/tutorial/DroidCliTutorial.vue
+++ b/web/admin-spa/src/components/tutorial/DroidCliTutorial.vue
@@ -60,7 +60,7 @@
 
 <script setup>
 import { computed } from 'vue'
-import { useTutorialUrls } from '@/composables/useTutorialUrls'
+import { useTutorialUrls } from '@/utils/useTutorialUrls'
 import NodeInstallTutorial from './NodeInstallTutorial.vue'
 
 defineProps({
diff --git a/web/admin-spa/src/components/tutorial/GeminiCliTutorial.vue b/web/admin-spa/src/components/tutorial/GeminiCliTutorial.vue
index 59e4a20e..1a33369f 100644
--- a/web/admin-spa/src/components/tutorial/GeminiCliTutorial.vue
+++ b/web/admin-spa/src/components/tutorial/GeminiCliTutorial.vue
@@ -168,7 +168,7 @@
 </template>
 
 <script setup>
-import { useTutorialUrls } from '@/composables/useTutorialUrls'
+import { useTutorialUrls } from '@/utils/useTutorialUrls'
 import NodeInstallTutorial from './NodeInstallTutorial.vue'
 
 defineProps({
diff --git a/web/admin-spa/src/components/tutorial/NodeInstallTutorial.vue b/web/admin-spa/src/components/tutorial/NodeInstallTutorial.vue
index 4f6352bf..ff34a7b5 100644
--- a/web/admin-spa/src/components/tutorial/NodeInstallTutorial.vue
+++ b/web/admin-spa/src/components/tutorial/NodeInstallTutorial.vue
@@ -58,7 +58,7 @@
             如果你安装了 Chocolatey 或 Scoop，可以使用命令行安装：
           </p>
           <div
-            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-slate-700 dark:bg-slate-900 sm:p-4 sm:text-sm"
+            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-gray-700 dark:bg-gray-900 sm:p-4 sm:text-sm"
           >
             <div class="mb-2"># 使用 Chocolatey</div>
             <div class="whitespace-nowrap text-gray-300">choco install nodejs</div>
@@ -85,7 +85,7 @@
     <!-- macOS -->
     <div v-else-if="platform === 'macos'" class="node-install-section">
       <div
-        class="mb-4 rounded-xl border border-gray-200 bg-gradient-to-r from-gray-50 to-slate-50 p-4 dark:border-gray-700 dark:from-gray-800 dark:to-slate-800 sm:mb-6 sm:p-6"
+        class="mb-4 rounded-xl border border-gray-200 bg-gradient-to-r from-gray-50 to-gray-50 p-4 dark:border-gray-700 dark:from-gray-800 dark:to-gray-800 sm:mb-6 sm:p-6"
       >
         <h5
           class="mb-2 flex items-center text-base font-semibold text-gray-800 dark:text-gray-200 sm:mb-3 sm:text-lg"
@@ -99,7 +99,7 @@
             如果你已经安装了 Homebrew，使用它安装 Node.js 会更方便：
           </p>
           <div
-            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-slate-700 dark:bg-slate-900 sm:p-4 sm:text-sm"
+            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-gray-700 dark:bg-gray-900 sm:p-4 sm:text-sm"
           >
             <div class="mb-2"># 更新 Homebrew</div>
             <div class="whitespace-nowrap text-gray-300">brew update</div>
@@ -167,7 +167,7 @@
             nvm 可以方便地管理多个 Node.js 版本：
           </p>
           <div
-            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-slate-700 dark:bg-slate-900 sm:p-4 sm:text-sm"
+            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-gray-700 dark:bg-gray-900 sm:p-4 sm:text-sm"
           >
             <div class="mb-2"># 安装 nvm</div>
             <div class="whitespace-nowrap text-gray-300">
@@ -182,7 +182,7 @@
         <div class="mb-4">
           <p class="mb-3 text-gray-700 dark:text-gray-300">方法二：使用包管理器</p>
           <div
-            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-slate-700 dark:bg-slate-900 sm:p-4 sm:text-sm"
+            class="overflow-x-auto rounded-lg bg-gray-900 p-3 font-mono text-xs text-green-400 dark:border dark:border-gray-700 dark:bg-gray-900 sm:p-4 sm:text-sm"
           >
             <div class="mb-2"># Ubuntu/Debian</div>
             <div class="whitespace-nowrap text-gray-300">
diff --git a/web/admin-spa/src/components/user/CreateApiKeyModal.vue b/web/admin-spa/src/components/user/CreateApiKeyModal.vue
index f05f07cd..db1e8734 100644
--- a/web/admin-spa/src/components/user/CreateApiKeyModal.vue
+++ b/web/admin-spa/src/components/user/CreateApiKeyModal.vue
@@ -259,7 +259,3 @@ watch(
   }
 )
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/components/user/UserApiKeysManager.vue b/web/admin-spa/src/components/user/UserApiKeysManager.vue
index 273c9f12..6343a6be 100644
--- a/web/admin-spa/src/components/user/UserApiKeysManager.vue
+++ b/web/admin-spa/src/components/user/UserApiKeysManager.vue
@@ -249,7 +249,7 @@
 <script setup>
 import { ref, computed, onMounted } from 'vue'
 import { useUserStore } from '@/stores/user'
-import { showToast } from '@/utils/tools'
+import { showToast, formatNumber, formatDate } from '@/utils/tools'
 import CreateApiKeyModal from './CreateApiKeyModal.vue'
 import ViewApiKeyModal from './ViewApiKeyModal.vue'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
@@ -280,26 +280,6 @@ const activeApiKeysCount = computed(() => {
   return apiKeys.value.filter((key) => !(key.isDeleted === 'true' || key.deletedAt)).length
 })
 
-const formatNumber = (num) => {
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  }
-  return num.toString()
-}
-
-const formatDate = (dateString) => {
-  if (!dateString) return null
-  return new Date(dateString).toLocaleDateString('en-US', {
-    year: 'numeric',
-    month: 'short',
-    day: 'numeric',
-    hour: '2-digit',
-    minute: '2-digit'
-  })
-}
-
 const loadApiKeys = async () => {
   loading.value = true
   try {
@@ -348,7 +328,3 @@ onMounted(() => {
   loadApiKeys()
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/components/user/UserUsageStats.vue b/web/admin-spa/src/components/user/UserUsageStats.vue
index e9491f2b..3e1309d2 100644
--- a/web/admin-spa/src/components/user/UserUsageStats.vue
+++ b/web/admin-spa/src/components/user/UserUsageStats.vue
@@ -351,7 +351,7 @@
 <script setup>
 import { ref, onMounted } from 'vue'
 import { useUserStore } from '@/stores/user'
-import { showToast } from '@/utils/tools'
+import { showToast, formatNumber } from '@/utils/tools'
 
 const userStore = useUserStore()
 
@@ -360,15 +360,6 @@ const selectedPeriod = ref('week')
 const usageStats = ref(null)
 const userApiKeys = ref([])
 
-const formatNumber = (num) => {
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  }
-  return num.toString()
-}
-
 const loadUsageStats = async () => {
   loading.value = true
   try {
@@ -391,7 +382,3 @@ onMounted(() => {
   loadUsageStats()
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/components/user/ViewApiKeyModal.vue b/web/admin-spa/src/components/user/ViewApiKeyModal.vue
index 4169915d..345cff72 100644
--- a/web/admin-spa/src/components/user/ViewApiKeyModal.vue
+++ b/web/admin-spa/src/components/user/ViewApiKeyModal.vue
@@ -197,7 +197,7 @@
 
 <script setup>
 import { ref } from 'vue'
-import { showToast } from '@/utils/tools'
+import { showToast, formatNumber, formatDate } from '@/utils/tools'
 
 defineProps({
   show: {
@@ -214,26 +214,6 @@ const emit = defineEmits(['close'])
 
 const showFullKey = ref(false)
 
-const formatNumber = (num) => {
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  }
-  return num.toString()
-}
-
-const formatDate = (dateString) => {
-  if (!dateString) return null
-  return new Date(dateString).toLocaleDateString('en-US', {
-    year: 'numeric',
-    month: 'short',
-    day: 'numeric',
-    hour: '2-digit',
-    minute: '2-digit'
-  })
-}
-
 const copyToClipboard = async (text) => {
   try {
     await navigator.clipboard.writeText(text)
@@ -244,7 +224,3 @@ const copyToClipboard = async (text) => {
   }
 }
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/composables/useConfirm.js b/web/admin-spa/src/composables/useConfirm.js
deleted file mode 100644
index d08fbdde..00000000
--- a/web/admin-spa/src/composables/useConfirm.js
+++ /dev/null
@@ -1,49 +0,0 @@
-import { ref } from 'vue'
-
-const showConfirmModal = ref(false)
-const confirmOptions = ref({
-  title: '',
-  message: '',
-  confirmText: '继续',
-  cancelText: '取消'
-})
-const confirmResolve = ref(null)
-
-export function useConfirm() {
-  const showConfirm = (title, message, confirmText = '继续', cancelText = '取消') => {
-    return new Promise((resolve) => {
-      confirmOptions.value = {
-        title,
-        message,
-        confirmText,
-        cancelText
-      }
-      confirmResolve.value = resolve
-      showConfirmModal.value = true
-    })
-  }
-
-  const handleConfirm = () => {
-    showConfirmModal.value = false
-    if (confirmResolve.value) {
-      confirmResolve.value(true)
-      confirmResolve.value = null
-    }
-  }
-
-  const handleCancel = () => {
-    showConfirmModal.value = false
-    if (confirmResolve.value) {
-      confirmResolve.value(false)
-      confirmResolve.value = null
-    }
-  }
-
-  return {
-    showConfirmModal,
-    confirmOptions,
-    showConfirm,
-    handleConfirm,
-    handleCancel
-  }
-}
diff --git a/web/admin-spa/src/config/app.js b/web/admin-spa/src/config/app.js
deleted file mode 100644
index db53ea5c..00000000
--- a/web/admin-spa/src/config/app.js
+++ /dev/null
@@ -1,13 +0,0 @@
-export const APP_CONFIG = {
-  basePath: import.meta.env.VITE_APP_BASE_URL || (import.meta.env.DEV ? '/admin/' : '/web/admin/'),
-  apiPrefix: import.meta.env.DEV ? '/webapi' : ''
-}
-
-export function getAppUrl(path = '') {
-  if (path && !path.startsWith('/')) path = '/' + path
-  return APP_CONFIG.basePath + (path.startsWith('#') ? path : '#' + path)
-}
-
-export function getLoginUrl() {
-  return getAppUrl('/login')
-}
diff --git a/web/admin-spa/src/main.js b/web/admin-spa/src/main.js
index 79181b6b..b3e44a96 100644
--- a/web/admin-spa/src/main.js
+++ b/web/admin-spa/src/main.js
@@ -4,6 +4,7 @@ import ElementPlus from 'element-plus'
 import zhCn from 'element-plus/dist/locale/zh-cn.mjs'
 import 'element-plus/dist/index.css'
 import 'element-plus/theme-chalk/dark/css-vars.css'
+import './assets/fonts/inter/inter.css'
 import App from './App.vue'
 import router from './router'
 import { useUserStore } from './stores/user'
diff --git a/web/admin-spa/src/router/index.js b/web/admin-spa/src/router/index.js
index 14fb6834..9ddff493 100644
--- a/web/admin-spa/src/router/index.js
+++ b/web/admin-spa/src/router/index.js
@@ -1,8 +1,7 @@
 import { createRouter, createWebHistory } from 'vue-router'
 import { useAuthStore } from '@/stores/auth'
 import { useUserStore } from '@/stores/user'
-import { APP_CONFIG } from '@/config/app'
-import { showToast } from '@/utils/tools'
+import { APP_CONFIG, showToast } from '@/utils/tools'
 
 // 路由懒加载
 const LoginView = () => import('@/views/LoginView.vue')
@@ -15,7 +14,6 @@ const ApiKeysView = () => import('@/views/ApiKeysView.vue')
 const ApiKeyUsageRecordsView = () => import('@/views/ApiKeyUsageRecordsView.vue')
 const AccountsView = () => import('@/views/AccountsView.vue')
 const AccountUsageRecordsView = () => import('@/views/AccountUsageRecordsView.vue')
-const TutorialView = () => import('@/views/TutorialView.vue')
 const SettingsView = () => import('@/views/SettingsView.vue')
 const ApiStatsView = () => import('@/views/ApiStatsView.vue')
 const QuotaCardsView = () => import('@/views/QuotaCardsView.vue')
@@ -125,18 +123,6 @@ const routes = [
       }
     ]
   },
-  {
-    path: '/tutorial',
-    component: MainLayout,
-    meta: { requiresAuth: true },
-    children: [
-      {
-        path: '',
-        name: 'Tutorial',
-        component: TutorialView
-      }
-    ]
-  },
   {
     path: '/settings',
     component: MainLayout,
diff --git a/web/admin-spa/src/stores/accounts.js b/web/admin-spa/src/stores/accounts.js
index d07d407c..aa4d9504 100644
--- a/web/admin-spa/src/stores/accounts.js
+++ b/web/admin-spa/src/stores/accounts.js
@@ -1,9 +1,24 @@
 import { defineStore } from 'pinia'
 import { ref } from 'vue'
-import * as httpApi from '@/utils/http_apis'
+
+import * as httpApis from '@/utils/http_apis'
+
+// 平台配置映射
+const PLATFORM_CONFIG = {
+  claude: { endpoint: 'claude-accounts', stateKey: 'claudeAccounts' },
+  'claude-console': { endpoint: 'claude-console-accounts', stateKey: 'claudeConsoleAccounts' },
+  bedrock: { endpoint: 'bedrock-accounts', stateKey: 'bedrockAccounts' },
+  gemini: { endpoint: 'gemini-accounts', stateKey: 'geminiAccounts' },
+  openai: { endpoint: 'openai-accounts', stateKey: 'openaiAccounts' },
+  azure_openai: { endpoint: 'azure-openai-accounts', stateKey: 'azureOpenaiAccounts' },
+  'openai-responses': {
+    endpoint: 'openai-responses-accounts',
+    stateKey: 'openaiResponsesAccounts'
+  },
+  droid: { endpoint: 'droid-accounts', stateKey: 'droidAccounts' }
+}
 
 export const useAccountsStore = defineStore('accounts', () => {
-  // 状态
   const claudeAccounts = ref([])
   const claudeConsoleAccounts = ref([])
   const bedrockAccounts = ref([])
@@ -17,825 +32,227 @@ export const useAccountsStore = defineStore('accounts', () => {
   const sortBy = ref('')
   const sortOrder = ref('asc')
 
-  // Actions
-
-  // 获取Claude账户列表
-  const fetchClaudeAccounts = async () => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getClaudeAccounts()
-      if (response.success) {
-        claudeAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取Claude账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+  // 状态映射
+  const stateMap = {
+    claudeAccounts,
+    claudeConsoleAccounts,
+    bedrockAccounts,
+    geminiAccounts,
+    openaiAccounts,
+    azureOpenaiAccounts,
+    openaiResponsesAccounts,
+    droidAccounts
   }
 
-  // 获取Claude Console账户列表
-  const fetchClaudeConsoleAccounts = async () => {
+  // 通用获取账户
+  const fetchAccounts = async (apiFunc, stateRef) => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getClaudeConsoleAccounts()
-      if (response.success) {
-        claudeConsoleAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取Claude Console账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await apiFunc()
+    if (res.success) stateRef.value = res.data || []
+    else error.value = res.message
+    loading.value = false
   }
 
-  // 获取Bedrock账户列表
-  const fetchBedrockAccounts = async () => {
+  // 通用创建/更新账户
+  const mutateAccount = async (apiFunc, fetchFunc, ...args) => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getBedrockAccounts()
-      if (response.success) {
-        bedrockAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取Bedrock账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await apiFunc(...args)
+    if (res.success) await fetchFunc()
+    else error.value = res.message
+    loading.value = false
+    return res
   }
 
-  // 获取Gemini账户列表
-  const fetchGeminiAccounts = async () => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getGeminiAccounts()
-      if (response.success) {
-        geminiAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取Gemini账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
+  // 获取各平台账户
+  const fetchClaudeAccounts = () => fetchAccounts(httpApis.getClaudeAccountsApi, claudeAccounts)
+  const fetchClaudeConsoleAccounts = () =>
+    fetchAccounts(httpApis.getClaudeConsoleAccountsApi, claudeConsoleAccounts)
+  const fetchBedrockAccounts = () => fetchAccounts(httpApis.getBedrockAccountsApi, bedrockAccounts)
+  const fetchGeminiAccounts = () => fetchAccounts(httpApis.getGeminiAccountsApi, geminiAccounts)
+  const fetchOpenAIAccounts = () => fetchAccounts(httpApis.getOpenAIAccountsApi, openaiAccounts)
+  const fetchAzureOpenAIAccounts = () =>
+    fetchAccounts(httpApis.getAzureOpenAIAccountsApi, azureOpenaiAccounts)
+  const fetchOpenAIResponsesAccounts = () =>
+    fetchAccounts(httpApis.getOpenAIResponsesAccountsApi, openaiResponsesAccounts)
+  const fetchDroidAccounts = () => fetchAccounts(httpApis.getDroidAccountsApi, droidAccounts)
 
-  // 获取OpenAI账户列表
-  const fetchOpenAIAccounts = async () => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getOpenAIAccounts()
-      if (response.success) {
-        openaiAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取OpenAI账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 获取Azure OpenAI账户列表
-  const fetchAzureOpenAIAccounts = async () => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getAzureOpenAIAccounts()
-      if (response.success) {
-        azureOpenaiAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取Azure OpenAI账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 获取OpenAI-Responses账户列表
-  const fetchOpenAIResponsesAccounts = async () => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getOpenAIResponsesAccounts()
-      if (response.success) {
-        openaiResponsesAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取OpenAI-Responses账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 获取Droid账户列表
-  const fetchDroidAccounts = async () => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.getDroidAccounts()
-      if (response.success) {
-        droidAccounts.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取Droid账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 获取所有账户
   const fetchAllAccounts = async () => {
     loading.value = true
-    error.value = null
-    try {
-      await Promise.all([
-        fetchClaudeAccounts(),
-        fetchClaudeConsoleAccounts(),
-        fetchBedrockAccounts(),
-        fetchGeminiAccounts(),
-        fetchOpenAIAccounts(),
-        fetchAzureOpenAIAccounts(),
-        fetchOpenAIResponsesAccounts(),
-        fetchDroidAccounts()
-      ])
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    await Promise.all([
+      fetchClaudeAccounts(),
+      fetchClaudeConsoleAccounts(),
+      fetchBedrockAccounts(),
+      fetchGeminiAccounts(),
+      fetchOpenAIAccounts(),
+      fetchAzureOpenAIAccounts(),
+      fetchOpenAIResponsesAccounts(),
+      fetchDroidAccounts()
+    ])
+    loading.value = false
   }
 
-  // 创建Claude账户
-  const createClaudeAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createClaudeAccount(data)
-      if (response.success) {
-        await fetchClaudeAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建Claude账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
+  // 创建账户
+  const createClaudeAccount = (data) =>
+    mutateAccount(httpApis.createClaudeAccountApi, fetchClaudeAccounts, data)
+  const createClaudeConsoleAccount = (data) =>
+    mutateAccount(httpApis.createClaudeConsoleAccountApi, fetchClaudeConsoleAccounts, data)
+  const createBedrockAccount = (data) =>
+    mutateAccount(httpApis.createBedrockAccountApi, fetchBedrockAccounts, data)
+  const createGeminiAccount = (data) =>
+    mutateAccount(httpApis.createGeminiAccountApi, fetchGeminiAccounts, data)
+  const createOpenAIAccount = (data) =>
+    mutateAccount(httpApis.createOpenAIAccountApi, fetchOpenAIAccounts, data)
+  const createDroidAccount = (data) =>
+    mutateAccount(httpApis.createDroidAccountApi, fetchDroidAccounts, data)
+  const createAzureOpenAIAccount = (data) =>
+    mutateAccount(httpApis.createAzureOpenAIAccountApi, fetchAzureOpenAIAccounts, data)
+  const createOpenAIResponsesAccount = (data) =>
+    mutateAccount(httpApis.createOpenAIResponsesAccountApi, fetchOpenAIResponsesAccounts, data)
+  const createGeminiApiAccount = (data) =>
+    mutateAccount(httpApis.createGeminiApiAccountApi, fetchGeminiAccounts, data)
 
-  // 创建Claude Console账户
-  const createClaudeConsoleAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createClaudeConsoleAccount(data)
-      if (response.success) {
-        await fetchClaudeConsoleAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建Claude Console账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 创建Bedrock账户
-  const createBedrockAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createBedrockAccount(data)
-      if (response.success) {
-        await fetchBedrockAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建Bedrock账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 创建Gemini账户
-  const createGeminiAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createGeminiAccount(data)
-      if (response.success) {
-        await fetchGeminiAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建Gemini账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 创建OpenAI账户
-  const createOpenAIAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createOpenAIAccount(data)
-      if (response.success) {
-        await fetchOpenAIAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建OpenAI账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 创建Droid账户
-  const createDroidAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createDroidAccount(data)
-      if (response.success) {
-        await fetchDroidAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建Droid账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新Droid账户
-  const updateDroidAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateDroidAccount(id, data)
-      if (response.success) {
-        await fetchDroidAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '更新Droid账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 创建Azure OpenAI账户
-  const createAzureOpenAIAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createAzureOpenAIAccount(data)
-      if (response.success) {
-        await fetchAzureOpenAIAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建Azure OpenAI账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 创建OpenAI-Responses账户
-  const createOpenAIResponsesAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createOpenAIResponsesAccount(data)
-      if (response.success) {
-        await fetchOpenAIResponsesAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建OpenAI-Responses账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 创建Gemini API账户
-  const createGeminiApiAccount = async (data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.createGeminiApiAccount(data)
-      if (response.success) {
-        await fetchGeminiAccounts()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建Gemini API账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新Claude账户
-  const updateClaudeAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateClaudeAccount(id, data)
-      if (response.success) {
-        await fetchClaudeAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新Claude账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新Claude Console账户
-  const updateClaudeConsoleAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateClaudeConsoleAccount(id, data)
-      if (response.success) {
-        await fetchClaudeConsoleAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新Claude Console账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新Bedrock账户
-  const updateBedrockAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateBedrockAccount(id, data)
-      if (response.success) {
-        await fetchBedrockAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新Bedrock账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新Gemini账户
-  const updateGeminiAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateGeminiAccount(id, data)
-      if (response.success) {
-        await fetchGeminiAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新Gemini账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新OpenAI账户
-  const updateOpenAIAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateOpenAIAccount(id, data)
-      if (response.success) {
-        await fetchOpenAIAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新OpenAI账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新Azure OpenAI账户
-  const updateAzureOpenAIAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateAzureOpenAIAccount(id, data)
-      if (response.success) {
-        await fetchAzureOpenAIAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新Azure OpenAI账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新OpenAI-Responses账户
-  const updateOpenAIResponsesAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateOpenAIResponsesAccount(id, data)
-      if (response.success) {
-        await fetchOpenAIResponsesAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新OpenAI-Responses账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
-
-  // 更新Gemini API账户
-  const updateGeminiApiAccount = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.updateGeminiApiAccount(id, data)
-      if (response.success) {
-        await fetchGeminiAccounts()
-        return response
-      } else {
-        throw new Error(response.message || '更新Gemini API账户失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
+  // 更新账户
+  const updateClaudeAccount = (id, data) =>
+    mutateAccount(httpApis.updateClaudeAccountApi, fetchClaudeAccounts, id, data)
+  const updateClaudeConsoleAccount = (id, data) =>
+    mutateAccount(httpApis.updateClaudeConsoleAccountApi, fetchClaudeConsoleAccounts, id, data)
+  const updateBedrockAccount = (id, data) =>
+    mutateAccount(httpApis.updateBedrockAccountApi, fetchBedrockAccounts, id, data)
+  const updateGeminiAccount = (id, data) =>
+    mutateAccount(httpApis.updateGeminiAccountApi, fetchGeminiAccounts, id, data)
+  const updateOpenAIAccount = (id, data) =>
+    mutateAccount(httpApis.updateOpenAIAccountApi, fetchOpenAIAccounts, id, data)
+  const updateAzureOpenAIAccount = (id, data) =>
+    mutateAccount(httpApis.updateAzureOpenAIAccountApi, fetchAzureOpenAIAccounts, id, data)
+  const updateOpenAIResponsesAccount = (id, data) =>
+    mutateAccount(httpApis.updateOpenAIResponsesAccountApi, fetchOpenAIResponsesAccounts, id, data)
+  const updateGeminiApiAccount = (id, data) =>
+    mutateAccount(httpApis.updateGeminiApiAccountApi, fetchGeminiAccounts, id, data)
+  const updateDroidAccount = (id, data) =>
+    mutateAccount(httpApis.updateDroidAccountApi, fetchDroidAccounts, id, data)
 
   // 切换账户状态
   const toggleAccount = async (platform, id) => {
+    const config = PLATFORM_CONFIG[platform]
+    if (!config) return { success: false, message: '未知平台' }
     loading.value = true
-    error.value = null
-    try {
-      let endpoint
-      if (platform === 'claude') {
-        endpoint = `/admin/claude-accounts/${id}/toggle`
-      } else if (platform === 'claude-console') {
-        endpoint = `/admin/claude-console-accounts/${id}/toggle`
-      } else if (platform === 'bedrock') {
-        endpoint = `/admin/bedrock-accounts/${id}/toggle`
-      } else if (platform === 'gemini') {
-        endpoint = `/admin/gemini-accounts/${id}/toggle`
-      } else if (platform === 'openai') {
-        endpoint = `/admin/openai-accounts/${id}/toggle`
-      } else if (platform === 'azure_openai') {
-        endpoint = `/admin/azure-openai-accounts/${id}/toggle`
-      } else if (platform === 'openai-responses') {
-        endpoint = `/admin/openai-responses-accounts/${id}/toggle`
-      } else {
-        endpoint = `/admin/openai-accounts/${id}/toggle`
-      }
-
-      const response = await httpApi.toggleAccountStatus(endpoint)
-      if (response.success) {
-        if (platform === 'claude') {
-          await fetchClaudeAccounts()
-        } else if (platform === 'claude-console') {
-          await fetchClaudeConsoleAccounts()
-        } else if (platform === 'bedrock') {
-          await fetchBedrockAccounts()
-        } else if (platform === 'gemini') {
-          await fetchGeminiAccounts()
-        } else if (platform === 'openai') {
-          await fetchOpenAIAccounts()
-        } else if (platform === 'azure_openai') {
-          await fetchAzureOpenAIAccounts()
-        } else if (platform === 'openai-responses') {
-          await fetchOpenAIResponsesAccounts()
-        } else {
-          await fetchOpenAIAccounts()
-        }
-        return response
-      } else {
-        throw new Error(response.message || '切换状态失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await httpApis.toggleAccountStatusApi(`/admin/${config.endpoint}/${id}/toggle`)
+    if (res.success)
+      await fetchAccounts(
+        httpApis[
+          `get${config.stateKey.charAt(0).toUpperCase() + config.stateKey.slice(1).replace('Accounts', '')}AccountsApi`
+        ],
+        stateMap[config.stateKey]
+      )
+    else error.value = res.message
+    loading.value = false
+    return res
   }
 
   // 删除账户
   const deleteAccount = async (platform, id) => {
+    const config = PLATFORM_CONFIG[platform]
+    if (!config) return { success: false, message: '未知平台' }
     loading.value = true
-    error.value = null
-    try {
-      let endpoint
-      if (platform === 'claude') {
-        endpoint = `/admin/claude-accounts/${id}`
-      } else if (platform === 'claude-console') {
-        endpoint = `/admin/claude-console-accounts/${id}`
-      } else if (platform === 'bedrock') {
-        endpoint = `/admin/bedrock-accounts/${id}`
-      } else if (platform === 'gemini') {
-        endpoint = `/admin/gemini-accounts/${id}`
-      } else if (platform === 'openai') {
-        endpoint = `/admin/openai-accounts/${id}`
-      } else if (platform === 'azure_openai') {
-        endpoint = `/admin/azure-openai-accounts/${id}`
-      } else if (platform === 'openai-responses') {
-        endpoint = `/admin/openai-responses-accounts/${id}`
-      } else {
-        endpoint = `/admin/openai-accounts/${id}`
+    const res = await httpApis.deleteAccountByEndpointApi(`/admin/${config.endpoint}/${id}`)
+    if (res.success) {
+      const fetchMap = {
+        claude: fetchClaudeAccounts,
+        'claude-console': fetchClaudeConsoleAccounts,
+        bedrock: fetchBedrockAccounts,
+        gemini: fetchGeminiAccounts,
+        openai: fetchOpenAIAccounts,
+        azure_openai: fetchAzureOpenAIAccounts,
+        'openai-responses': fetchOpenAIResponsesAccounts,
+        droid: fetchDroidAccounts
       }
-
-      const response = await httpApi.deleteAccountByEndpoint(endpoint)
-      if (response.success) {
-        if (platform === 'claude') {
-          await fetchClaudeAccounts()
-        } else if (platform === 'claude-console') {
-          await fetchClaudeConsoleAccounts()
-        } else if (platform === 'bedrock') {
-          await fetchBedrockAccounts()
-        } else if (platform === 'gemini') {
-          await fetchGeminiAccounts()
-        } else if (platform === 'openai') {
-          await fetchOpenAIAccounts()
-        } else if (platform === 'azure_openai') {
-          await fetchAzureOpenAIAccounts()
-        } else if (platform === 'openai-responses') {
-          await fetchOpenAIResponsesAccounts()
-        } else {
-          await fetchOpenAIAccounts()
-        }
-        return response
-      } else {
-        throw new Error(response.message || '删除失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
+      await fetchMap[platform]()
+    } else {
+      error.value = res.message
     }
+    loading.value = false
+    return res
   }
 
   // 刷新Claude Token
   const refreshClaudeToken = async (id) => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await httpApi.refreshClaudeAccount(id)
-      if (response.success) {
-        await fetchClaudeAccounts()
-        return response
-      } else {
-        throw new Error(response.message || 'Token刷新失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await httpApis.refreshClaudeAccountApi(id)
+    if (res.success) await fetchClaudeAccounts()
+    else error.value = res.message
+    loading.value = false
+    return res
   }
 
-  // 生成Claude OAuth URL
+  // OAuth 相关
   const generateClaudeAuthUrl = async (proxyConfig) => {
-    try {
-      const response = await httpApi.generateClaudeAuthUrl(proxyConfig)
-      if (response.success) {
-        return response.data // 返回整个对象，包含authUrl和sessionId
-      } else {
-        throw new Error(response.message || '生成授权URL失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.generateClaudeAuthUrlApi(proxyConfig)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 交换Claude OAuth Code
   const exchangeClaudeCode = async (data) => {
-    try {
-      const response = await httpApi.exchangeClaudeCode(data)
-      if (response.success) {
-        return response.data
-      } else {
-        throw new Error(response.message || '交换授权码失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.exchangeClaudeCodeApi(data)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 生成Claude Setup Token URL
   const generateClaudeSetupTokenUrl = async (proxyConfig) => {
-    try {
-      const response = await httpApi.generateClaudeSetupTokenUrl(proxyConfig)
-      if (response.success) {
-        return response.data // 返回整个对象，包含authUrl和sessionId
-      } else {
-        throw new Error(response.message || '生成Setup Token URL失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.generateClaudeSetupTokenUrlApi(proxyConfig)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 交换Claude Setup Token Code
   const exchangeClaudeSetupTokenCode = async (data) => {
-    try {
-      const response = await httpApi.exchangeClaudeSetupToken(data)
-      if (response.success) {
-        return response.data
-      } else {
-        throw new Error(response.message || '交换Setup Token授权码失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.exchangeClaudeSetupTokenApi(data)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // Cookie自动授权 - 普通OAuth
   const oauthWithCookie = async (payload) => {
-    try {
-      const response = await httpApi.claudeOAuthWithCookie(payload)
-      if (response.success) {
-        return response.data
-      } else {
-        throw new Error(response.message || 'Cookie授权失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.claudeOAuthWithCookieApi(payload)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // Cookie自动授权 - Setup Token
   const oauthSetupTokenWithCookie = async (payload) => {
-    try {
-      const response = await httpApi.claudeSetupTokenWithCookie(payload)
-      if (response.success) {
-        return response.data
-      } else {
-        throw new Error(response.message || 'Cookie授权失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.claudeSetupTokenWithCookieApi(payload)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 生成Gemini OAuth URL
   const generateGeminiAuthUrl = async (proxyConfig) => {
-    try {
-      const response = await httpApi.generateGeminiAuthUrl(proxyConfig)
-      if (response.success) {
-        return response.data // 返回整个对象，包含authUrl和sessionId
-      } else {
-        throw new Error(response.message || '生成授权URL失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.generateGeminiAuthUrlApi(proxyConfig)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 交换Gemini OAuth Code
   const exchangeGeminiCode = async (data) => {
-    try {
-      const response = await httpApi.exchangeGeminiCode(data)
-      if (response.success) {
-        return response.data
-      } else {
-        throw new Error(response.message || '交换授权码失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    }
+    const res = await httpApis.exchangeGeminiCodeApi(data)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 生成OpenAI OAuth URL
   const generateOpenAIAuthUrl = async (proxyConfig) => {
-    const response = await httpApi.generateOpenAIAuthUrl(proxyConfig)
-    if (response.success) return response.data
-    error.value = response.message || '生成授权URL失败'
-    return null
+    const res = await httpApis.generateOpenAIAuthUrlApi(proxyConfig)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 生成Droid OAuth URL
-  const generateDroidAuthUrl = async (proxyConfig) => {
-    error.value = null
-    const response = await httpApi.generateDroidAuthUrl(proxyConfig)
-    if (response.success) return response.data
-    error.value = response.message || '生成授权URL失败'
-    return null
-  }
-
-  // 交换OpenAI OAuth Code
   const exchangeOpenAICode = async (data) => {
-    const response = await httpApi.exchangeOpenAICode(data)
-    if (response.success) return response.data
-    error.value = response.message || '交换授权码失败'
-    return null
+    const res = await httpApis.exchangeOpenAICodeApi(data)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 交换Droid OAuth Code
-  const exchangeDroidCode = async (data) => {
-    error.value = null
-    return await httpApi.exchangeDroidCode(data)
+  const generateDroidAuthUrl = async (proxyConfig) => {
+    const res = await httpApis.generateDroidAuthUrlApi(proxyConfig)
+    if (!res.success) error.value = res.message
+    return res.success ? res.data : null
   }
 
-  // 排序账户
+  const exchangeDroidCode = (data) => httpApis.exchangeDroidCodeApi(data)
+
   const sortAccounts = (field) => {
     if (sortBy.value === field) {
       sortOrder.value = sortOrder.value === 'asc' ? 'desc' : 'asc'
@@ -845,7 +262,6 @@ export const useAccountsStore = defineStore('accounts', () => {
     }
   }
 
-  // 重置store
   const reset = () => {
     claudeAccounts.value = []
     claudeConsoleAccounts.value = []
@@ -862,7 +278,6 @@ export const useAccountsStore = defineStore('accounts', () => {
   }
 
   return {
-    // State
     claudeAccounts,
     claudeConsoleAccounts,
     bedrockAccounts,
@@ -875,8 +290,6 @@ export const useAccountsStore = defineStore('accounts', () => {
     error,
     sortBy,
     sortOrder,
-
-    // Actions
     fetchClaudeAccounts,
     fetchClaudeConsoleAccounts,
     fetchBedrockAccounts,
diff --git a/web/admin-spa/src/stores/apiKeys.js b/web/admin-spa/src/stores/apiKeys.js
index 2a95052c..96f3ac81 100644
--- a/web/admin-spa/src/stores/apiKeys.js
+++ b/web/admin-spa/src/stores/apiKeys.js
@@ -1,14 +1,7 @@
 import { defineStore } from 'pinia'
 import { ref } from 'vue'
-import {
-  getApiKeys,
-  createApiKey as apiCreateApiKey,
-  updateApiKey as apiUpdateApiKey,
-  toggleApiKey as apiToggleApiKey,
-  deleteApiKey as apiDeleteApiKey,
-  getApiKeyStats,
-  getApiKeyTags
-} from '@/utils/http_apis'
+
+import * as httpApis from '@/utils/http_apis'
 
 export const useApiKeysStore = defineStore('apiKeys', () => {
   const apiKeys = ref([])
@@ -20,129 +13,58 @@ export const useApiKeysStore = defineStore('apiKeys', () => {
 
   const fetchApiKeys = async () => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await getApiKeys()
-      if (response.success) {
-        apiKeys.value = response.data || []
-      } else {
-        throw new Error(response.message || '获取API Keys失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await httpApis.getApiKeysApi()
+    if (res.success) apiKeys.value = res.data || []
+    else error.value = res.message
+    loading.value = false
   }
 
   const createApiKey = async (data) => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await apiCreateApiKey(data)
-      if (response.success) {
-        await fetchApiKeys()
-        return response.data
-      } else {
-        throw new Error(response.message || '创建API Key失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await httpApis.createApiKeyApi(data)
+    if (res.success) await fetchApiKeys()
+    else error.value = res.message
+    loading.value = false
+    return res
   }
 
   const updateApiKey = async (id, data) => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await apiUpdateApiKey(id, data)
-      if (response.success) {
-        await fetchApiKeys()
-        return response
-      } else {
-        throw new Error(response.message || '更新API Key失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await httpApis.updateApiKeyApi(id, data)
+    if (res.success) await fetchApiKeys()
+    else error.value = res.message
+    loading.value = false
+    return res
   }
 
   const toggleApiKey = async (id) => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await apiToggleApiKey(id)
-      if (response.success) {
-        await fetchApiKeys()
-        return response
-      } else {
-        throw new Error(response.message || '切换状态失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await httpApis.toggleApiKeyApi(id)
+    if (res.success) await fetchApiKeys()
+    else error.value = res.message
+    loading.value = false
+    return res
   }
 
-  const renewApiKey = async (id, data) => {
-    loading.value = true
-    error.value = null
-    try {
-      const response = await apiUpdateApiKey(id, data)
-      if (response.success) {
-        await fetchApiKeys()
-        return response
-      } else {
-        throw new Error(response.message || '续期失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
-  }
+  const renewApiKey = (id, data) => updateApiKey(id, data)
 
   const deleteApiKey = async (id) => {
     loading.value = true
-    error.value = null
-    try {
-      const response = await apiDeleteApiKey(id)
-      if (response.success) {
-        await fetchApiKeys()
-        return response
-      } else {
-        throw new Error(response.message || '删除失败')
-      }
-    } catch (err) {
-      error.value = err.message
-      throw err
-    } finally {
-      loading.value = false
-    }
+    const res = await httpApis.deleteApiKeyApi(id)
+    if (res.success) await fetchApiKeys()
+    else error.value = res.message
+    loading.value = false
+    return res
   }
 
   const fetchApiKeyStats = async (id, timeRange = 'all') => {
-    try {
-      const response = await getApiKeyStats(id, { timeRange })
-      if (response.success) {
-        return response.stats
-      } else {
-        throw new Error(response.message || '获取统计失败')
-      }
-    } catch (err) {
-      console.error('获取API Key统计失败:', err)
-      return null
-    }
+    const res = await httpApis.getApiKeyStatsApi(id, { timeRange })
+    return res.success ? res.stats : null
+  }
+
+  const fetchTags = async () => {
+    const res = await httpApis.getApiKeyTagsApi()
+    return res.success ? res.data || [] : []
   }
 
   const sortApiKeys = (field) => {
@@ -154,20 +76,6 @@ export const useApiKeysStore = defineStore('apiKeys', () => {
     }
   }
 
-  const fetchTags = async () => {
-    try {
-      const response = await getApiKeyTags()
-      if (response.success) {
-        return response.data || []
-      } else {
-        throw new Error(response.message || '获取标签失败')
-      }
-    } catch (err) {
-      console.error('获取标签失败:', err)
-      return []
-    }
-  }
-
   const reset = () => {
     apiKeys.value = []
     loading.value = false
diff --git a/web/admin-spa/src/stores/apistats.js b/web/admin-spa/src/stores/apistats.js
index 06a8e612..377fbb40 100644
--- a/web/admin-spa/src/stores/apistats.js
+++ b/web/admin-spa/src/stores/apistats.js
@@ -1,6 +1,7 @@
 import { defineStore } from 'pinia'
 import { ref, computed } from 'vue'
-import * as httpApi from '@/utils/http_apis'
+
+import * as httpApis from '@/utils/http_apis'
 
 export const useApiStatsStore = defineStore('apistats', () => {
   // 状态
@@ -36,6 +37,9 @@ export const useApiStatsStore = defineStore('apistats', () => {
   // 服务倍率配置
   const serviceRates = ref(null)
 
+  // Key 级别的服务倍率
+  const keyServiceRates = ref({})
+
   // 计算属性
   const currentPeriodData = computed(() => {
     const defaultData = {
@@ -124,17 +128,20 @@ export const useApiStatsStore = defineStore('apistats', () => {
 
     try {
       // 获取 API Key ID
-      const idResult = await httpApi.getKeyId(trimmedKey)
+      const idResult = await httpApis.getKeyIdApi(trimmedKey)
 
       if (idResult.success) {
         apiId.value = idResult.data.id
 
         // 使用 apiId 查询统计数据
-        const statsResult = await httpApi.getUserStats(apiId.value)
+        const statsResult = await httpApis.getUserStatsApi(apiId.value)
 
         if (statsResult.success) {
           statsData.value = statsResult.data
 
+          // 保存 Key 级别的服务倍率
+          keyServiceRates.value = statsResult.data.serviceRates || {}
+
           // 同时加载今日和本月的统计数据
           await loadAllPeriodStats()
 
@@ -182,9 +189,9 @@ export const useApiStatsStore = defineStore('apistats', () => {
 
     try {
       const [dailyResult, monthlyResult, alltimeResult] = await Promise.all([
-        httpApi.getUserModelStats(apiId.value, 'daily'),
-        httpApi.getUserModelStats(apiId.value, 'monthly'),
-        httpApi.getUserModelStats(apiId.value, 'alltime')
+        httpApis.getUserModelStatsApi(apiId.value, 'daily'),
+        httpApis.getUserModelStatsApi(apiId.value, 'monthly'),
+        httpApis.getUserModelStatsApi(apiId.value, 'alltime')
       ])
 
       dailyModelStats.value = dailyResult.success ? dailyResult.data || [] : []
@@ -207,7 +214,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
   // 加载指定时间段的统计数据
   async function loadPeriodStats(period) {
     try {
-      const result = await httpApi.getUserModelStats(apiId.value, period)
+      const result = await httpApis.getUserModelStatsApi(apiId.value, period)
 
       if (result.success) {
         // 计算汇总数据
@@ -258,7 +265,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
     modelStatsLoading.value = true
 
     try {
-      const result = await httpApi.getUserModelStats(apiId.value, period)
+      const result = await httpApis.getUserModelStatsApi(apiId.value, period)
 
       if (result.success) {
         modelStats.value = result.data || []
@@ -310,11 +317,14 @@ export const useApiStatsStore = defineStore('apistats', () => {
     modelStats.value = []
 
     try {
-      const result = await httpApi.getUserStats(apiId.value)
+      const result = await httpApis.getUserStatsApi(apiId.value)
 
       if (result.success) {
         statsData.value = result.data
 
+        // 保存 Key 级别的服务倍率
+        keyServiceRates.value = result.data.serviceRates || {}
+
         // 调试：打印返回的限制数据
         console.log('API Stats - Full response:', result.data)
         console.log('API Stats - limits data:', result.data.limits)
@@ -343,7 +353,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
   async function loadOemSettings() {
     oemLoading.value = true
     try {
-      const result = await httpApi.getOemSettings()
+      const result = await httpApis.getOemSettingsApi()
       if (result && result.success && result.data) {
         oemSettings.value = { ...oemSettings.value, ...result.data }
       }
@@ -363,7 +373,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
   // 加载服务倍率配置
   async function loadServiceRates() {
     try {
-      const result = await httpApi.getServiceRates()
+      const result = await httpApis.getServiceRatesApi()
       if (result && result.success && result.data) {
         serviceRates.value = result.data
       }
@@ -428,10 +438,11 @@ export const useApiStatsStore = defineStore('apistats', () => {
     modelStats.value = []
     apiKeys.value = keys
     apiIds.value = []
+    keyServiceRates.value = {} // 多 Key 模式清理 Key 倍率
 
     try {
       // 批量获取 API Key IDs
-      const idResults = await Promise.allSettled(keys.map((key) => httpApi.getKeyId(key)))
+      const idResults = await Promise.allSettled(keys.map((key) => httpApis.getKeyIdApi(key)))
 
       const validIds = []
       const validKeys = []
@@ -453,7 +464,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
       apiKeys.value = validKeys
 
       // 批量查询统计数据
-      const batchResult = await httpApi.getBatchStats(validIds)
+      const batchResult = await httpApis.getBatchStatsApi(validIds)
 
       if (batchResult.success) {
         aggregatedStats.value = batchResult.data.aggregated
@@ -489,7 +500,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
     modelStatsLoading.value = true
 
     try {
-      const result = await httpApi.getBatchModelStats(apiIds.value, period)
+      const result = await httpApis.getBatchModelStatsApi(apiIds.value, period)
 
       if (result.success) {
         modelStats.value = result.data || []
@@ -546,6 +557,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
     error.value = ''
     statsPeriod.value = 'daily'
     apiId.value = null
+    keyServiceRates.value = {}
     // 清除多 Key 模式数据
     apiKeys.value = []
     apiIds.value = []
@@ -587,6 +599,7 @@ export const useApiStatsStore = defineStore('apistats', () => {
     individualStats,
     invalidKeys,
     serviceRates,
+    keyServiceRates,
 
     // Computed
     currentPeriodData,
diff --git a/web/admin-spa/src/stores/auth.js b/web/admin-spa/src/stores/auth.js
index 85fad26c..57b500fe 100644
--- a/web/admin-spa/src/stores/auth.js
+++ b/web/admin-spa/src/stores/auth.js
@@ -1,7 +1,8 @@
 import { defineStore } from 'pinia'
 import { ref, computed } from 'vue'
 import router from '@/router'
-import { login as apiLogin, getAuthUser, getOemSettings } from '@/utils/http_apis'
+
+import { loginApi, getAuthUserApi, getOemSettingsApi } from '@/utils/http_apis'
 
 export const useAuthStore = defineStore('auth', () => {
   // 状态
@@ -29,7 +30,7 @@ export const useAuthStore = defineStore('auth', () => {
     loginError.value = ''
 
     try {
-      const result = await apiLogin(credentials)
+      const result = await loginApi(credentials)
 
       if (result.success) {
         authToken.value = result.token
@@ -66,7 +67,7 @@ export const useAuthStore = defineStore('auth', () => {
 
   async function verifyToken() {
     try {
-      const userResult = await getAuthUser()
+      const userResult = await getAuthUserApi()
       if (!userResult.success || !userResult.user) {
         logout()
         return
@@ -80,7 +81,7 @@ export const useAuthStore = defineStore('auth', () => {
   async function loadOemSettings() {
     oemLoading.value = true
     try {
-      const result = await getOemSettings()
+      const result = await getOemSettingsApi()
       if (result.success && result.data) {
         oemSettings.value = { ...oemSettings.value, ...result.data }
 
diff --git a/web/admin-spa/src/stores/clients.js b/web/admin-spa/src/stores/clients.js
index 4bdca338..fa8cabff 100644
--- a/web/admin-spa/src/stores/clients.js
+++ b/web/admin-spa/src/stores/clients.js
@@ -1,5 +1,5 @@
 import { defineStore } from 'pinia'
-import { getSupportedClients } from '@/utils/http_apis'
+import { getSupportedClientsApi } from '@/utils/http_apis'
 
 export const useClientsStore = defineStore('clients', {
   state: () => ({
@@ -10,31 +10,14 @@ export const useClientsStore = defineStore('clients', {
 
   actions: {
     async loadSupportedClients() {
-      if (this.supportedClients.length > 0) {
-        return this.supportedClients
-      }
+      if (this.supportedClients.length > 0) return this.supportedClients
 
       this.loading = true
-      this.error = null
-
-      try {
-        const response = await getSupportedClients()
-
-        if (response.success) {
-          this.supportedClients = response.data || []
-        } else {
-          this.error = response.message || '加载支持的客户端失败'
-          console.error('Failed to load supported clients:', this.error)
-        }
-
-        return this.supportedClients
-      } catch (error) {
-        this.error = error.message || '加载支持的客户端失败'
-        console.error('Error loading supported clients:', error)
-        return []
-      } finally {
-        this.loading = false
-      }
+      const res = await getSupportedClientsApi()
+      if (res.success) this.supportedClients = res.data || []
+      else this.error = res.message
+      this.loading = false
+      return this.supportedClients
     }
   }
 })
diff --git a/web/admin-spa/src/stores/dashboard.js b/web/admin-spa/src/stores/dashboard.js
index 271d20b2..8223b2b1 100644
--- a/web/admin-spa/src/stores/dashboard.js
+++ b/web/admin-spa/src/stores/dashboard.js
@@ -1,6 +1,7 @@
 import { defineStore } from 'pinia'
 import { ref, computed } from 'vue'
-import { getDashboard, getUsageCosts, getUsageStats } from '@/utils/http_apis'
+
+import { getDashboardApi, getUsageCostsApi, getUsageStatsApi } from '@/utils/http_apis'
 import { showToast } from '@/utils/tools'
 
 export const useDashboardStore = defineStore('dashboard', () => {
@@ -51,7 +52,6 @@ export const useDashboardStore = defineStore('dashboard', () => {
     totalCosts: { totalCost: 0, formatted: { totalCost: '$0.000000' } }
   })
 
-  const modelStats = ref([])
   const trendData = ref([])
   const dashboardModelStats = ref([])
   const apiKeysTrendData = ref({
@@ -136,9 +136,6 @@ export const useDashboardStore = defineStore('dashboard', () => {
   const apiKeysTrendMetric = ref('requests') // 'requests' 或 'tokens'
   const accountUsageGroup = ref('claude') // claude | openai | gemini
 
-  // 默认时间
-  const defaultTime = ref([new Date(2000, 1, 1, 0, 0, 0), new Date(2000, 2, 1, 23, 59, 59)])
-
   // 计算属性
   const formattedUptime = computed(() => {
     const seconds = dashboardData.value.uptime
@@ -155,22 +152,11 @@ export const useDashboardStore = defineStore('dashboard', () => {
     }
   })
 
-  // 辅助函数：基于系统时区计算时间
-  // function getDateInSystemTimezone(date = new Date()) {
-  //   const offset = dashboardData.value.systemTimezone || 8
-  //   // 将本地时间转换为UTC时间，然后加上系统时区偏移
-  //   const utcTime = date.getTime() + date.getTimezoneOffset() * 60000
-  //   return new Date(utcTime + offset * 3600000)
-  // }
-
   // 辅助函数：获取系统时区某一天的起止UTC时间
   // 输入：一个本地时间的日期对象（如用户选择的日期）
   // 输出：该日期在系统时区的0点/23:59对应的UTC时间
   function getSystemTimezoneDay(localDate, startOfDay = true) {
     // 固定使用UTC+8，因为后端系统时区是UTC+8
-    // const systemTz = 8
-
-    // 获取本地日期的年月日（这是用户想要查看的日期）
     const year = localDate.getFullYear()
     const month = localDate.getMonth()
     const day = localDate.getDate()
@@ -178,16 +164,46 @@ export const useDashboardStore = defineStore('dashboard', () => {
     if (startOfDay) {
       // 系统时区（UTC+8）的 YYYY-MM-DD 00:00:00
       // 对应的UTC时间是前一天的16:00
-      // 例如：UTC+8的2025-07-29 00:00:00 = UTC的2025-07-28 16:00:00
       return new Date(Date.UTC(year, month, day - 1, 16, 0, 0, 0))
     } else {
       // 系统时区（UTC+8）的 YYYY-MM-DD 23:59:59
       // 对应的UTC时间是当天的15:59:59
-      // 例如：UTC+8的2025-07-29 23:59:59 = UTC的2025-07-29 15:59:59
       return new Date(Date.UTC(year, month, day, 15, 59, 59, 999))
     }
   }
 
+  // 公共函数：根据预设计算时间范围
+  function getPresetTimeRange(preset) {
+    const now = new Date()
+    switch (preset) {
+      case 'today': {
+        return { start: getSystemTimezoneDay(now, true), end: getSystemTimezoneDay(now, false) }
+      }
+      case 'last24h': {
+        return { start: new Date(now.getTime() - 24 * 60 * 60 * 1000), end: new Date(now) }
+      }
+      case 'yesterday': {
+        const yesterday = new Date()
+        yesterday.setDate(yesterday.getDate() - 1)
+        return {
+          start: getSystemTimezoneDay(yesterday, true),
+          end: getSystemTimezoneDay(yesterday, false)
+        }
+      }
+      case 'dayBefore': {
+        const dayBefore = new Date()
+        dayBefore.setDate(dayBefore.getDate() - 2)
+        return {
+          start: getSystemTimezoneDay(dayBefore, true),
+          end: getSystemTimezoneDay(dayBefore, false)
+        }
+      }
+      default: {
+        return { start: new Date(now.getTime() - 24 * 60 * 60 * 1000), end: new Date(now) }
+      }
+    }
+  }
+
   const persistDatePreferences = (
     preset = dateFilter.value.preset,
     granularity = trendGranularity.value
@@ -221,9 +237,9 @@ export const useDashboardStore = defineStore('dashboard', () => {
       }
 
       const [dashboardResponse, todayCostsResponse, totalCostsResponse] = await Promise.all([
-        getDashboard(),
-        getUsageCosts(costsParams.today),
-        getUsageCosts(costsParams.all)
+        getDashboardApi(),
+        getUsageCostsApi(costsParams.today),
+        getUsageCostsApi(costsParams.all)
       ])
 
       if (dashboardResponse.success) {
@@ -302,68 +318,25 @@ export const useDashboardStore = defineStore('dashboard', () => {
       let url = '/admin/usage-trend?'
 
       if (granularity === 'hour') {
-        // 小时粒度，计算时间范围
         url += `granularity=hour`
 
         if (dateFilter.value.customRange && dateFilter.value.customRange.length === 2) {
-          // 使用自定义时间范围 - 直接按系统时区字符串传递，避免额外时区偏移导致窗口错位
           url += `&startDate=${encodeURIComponent(dateFilter.value.customRange[0])}`
           url += `&endDate=${encodeURIComponent(dateFilter.value.customRange[1])}`
+        } else if (dateFilter.value.type === 'preset') {
+          const { start, end } = getPresetTimeRange(dateFilter.value.preset)
+          url += `&startDate=${encodeURIComponent(start.toISOString())}`
+          url += `&endDate=${encodeURIComponent(end.toISOString())}`
         } else {
-          // 使用预设计算时间范围，与loadApiKeysTrend保持一致
           const now = new Date()
-          let startTime, endTime
-
-          if (dateFilter.value.type === 'preset') {
-            switch (dateFilter.value.preset) {
-              case 'today': {
-                // 今日：使用系统时区的当日0点-23:59
-                startTime = getSystemTimezoneDay(now, true)
-                endTime = getSystemTimezoneDay(now, false)
-                break
-              }
-              case 'last24h': {
-                // 近24小时：从当前时间往前推24小时
-                endTime = new Date(now)
-                startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-                break
-              }
-              case 'yesterday': {
-                const yesterday = new Date()
-                yesterday.setDate(yesterday.getDate() - 1)
-                startTime = getSystemTimezoneDay(yesterday, true)
-                endTime = getSystemTimezoneDay(yesterday, false)
-                break
-              }
-              case 'dayBefore': {
-                // 前天：基于系统时区的前天
-                const dayBefore = new Date()
-                dayBefore.setDate(dayBefore.getDate() - 2)
-                startTime = getSystemTimezoneDay(dayBefore, true)
-                endTime = getSystemTimezoneDay(dayBefore, false)
-                break
-              }
-              default: {
-                // 默认近24小时
-                startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-                endTime = now
-              }
-            }
-          } else {
-            // 默认使用days参数计算
-            startTime = new Date(now.getTime() - days * 24 * 60 * 60 * 1000)
-            endTime = now
-          }
-
-          url += `&startDate=${encodeURIComponent(startTime.toISOString())}`
-          url += `&endDate=${encodeURIComponent(endTime.toISOString())}`
+          url += `&startDate=${encodeURIComponent(new Date(now.getTime() - days * 24 * 60 * 60 * 1000).toISOString())}`
+          url += `&endDate=${encodeURIComponent(now.toISOString())}`
         }
       } else {
-        // 天粒度，传递天数
         url += `granularity=day&days=${days}`
       }
 
-      const response = await getUsageStats(url)
+      const response = await getUsageStatsApi(url)
       if (response.success) {
         trendData.value = response.data
       }
@@ -377,78 +350,37 @@ export const useDashboardStore = defineStore('dashboard', () => {
     try {
       let url = `/admin/model-stats?period=${period}`
 
-      // 如果是自定义时间范围或小时粒度，传递具体的时间参数
       if (dateFilter.value.type === 'custom' || currentGranularity === 'hour') {
         if (dateFilter.value.customRange && dateFilter.value.customRange.length === 2) {
-          // 按系统时区字符串直传，避免额外时区转换
           url += `&startDate=${encodeURIComponent(dateFilter.value.customRange[0])}`
           url += `&endDate=${encodeURIComponent(dateFilter.value.customRange[1])}`
         } else if (currentGranularity === 'hour' && dateFilter.value.type === 'preset') {
-          // 小时粒度的预设时间范围
-          const now = new Date()
-          let startTime, endTime
-
-          switch (dateFilter.value.preset) {
-            case 'today': {
-              startTime = getSystemTimezoneDay(now, true)
-              endTime = getSystemTimezoneDay(now, false)
-              break
-            }
-            case 'last24h': {
-              endTime = new Date(now)
-              startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-              break
-            }
-            case 'yesterday': {
-              const yesterday = new Date()
-              yesterday.setDate(yesterday.getDate() - 1)
-              startTime = getSystemTimezoneDay(yesterday, true)
-              endTime = getSystemTimezoneDay(yesterday, false)
-              break
-            }
-            case 'dayBefore': {
-              const dayBefore = new Date()
-              dayBefore.setDate(dayBefore.getDate() - 2)
-              startTime = getSystemTimezoneDay(dayBefore, true)
-              endTime = getSystemTimezoneDay(dayBefore, false)
-              break
-            }
-            default: {
-              startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-              endTime = now
-            }
-          }
-
-          url += `&startDate=${encodeURIComponent(startTime.toISOString())}`
-          url += `&endDate=${encodeURIComponent(endTime.toISOString())}`
+          const { start, end } = getPresetTimeRange(dateFilter.value.preset)
+          url += `&startDate=${encodeURIComponent(start.toISOString())}`
+          url += `&endDate=${encodeURIComponent(end.toISOString())}`
         }
       } else if (dateFilter.value.type === 'preset' && currentGranularity === 'day') {
-        // 天粒度的预设时间范围，需要传递startDate和endDate参数
         const now = new Date()
-        let startDate, endDate
-
         const option = dateFilter.value.presetOptions.find(
           (opt) => opt.value === dateFilter.value.preset
         )
         if (option) {
+          let startDate, endDate
           if (dateFilter.value.preset === 'today') {
-            // 今日：从系统时区的今天0点到23:59
             startDate = getSystemTimezoneDay(now, true)
             endDate = getSystemTimezoneDay(now, false)
           } else {
-            // 7天或30天：从N天前的0点到今天的23:59
             const daysAgo = new Date()
             daysAgo.setDate(daysAgo.getDate() - (option.days - 1))
             startDate = getSystemTimezoneDay(daysAgo, true)
             endDate = getSystemTimezoneDay(now, false)
           }
-
           url += `&startDate=${encodeURIComponent(startDate.toISOString())}`
           url += `&endDate=${encodeURIComponent(endDate.toISOString())}`
         }
       }
 
-      const response = await getUsageStats(url)
+      const response = await getUsageStatsApi(url)
       if (response.success) {
         dashboardModelStats.value = response.data
       }
@@ -464,64 +396,21 @@ export const useDashboardStore = defineStore('dashboard', () => {
       let days = 7
 
       if (currentGranularity === 'hour') {
-        // 小时粒度，计算时间范围
         url += `granularity=hour`
 
         if (dateFilter.value.customRange && dateFilter.value.customRange.length === 2) {
-          // 使用自定义时间范围 - 按系统时区字符串直传
           url += `&startDate=${encodeURIComponent(dateFilter.value.customRange[0])}`
           url += `&endDate=${encodeURIComponent(dateFilter.value.customRange[1])}`
+        } else if (dateFilter.value.type === 'preset') {
+          const { start, end } = getPresetTimeRange(dateFilter.value.preset)
+          url += `&startDate=${encodeURIComponent(start.toISOString())}`
+          url += `&endDate=${encodeURIComponent(end.toISOString())}`
         } else {
-          // 使用预设计算时间范围，与setDateFilterPreset保持一致
           const now = new Date()
-          let startTime, endTime
-
-          if (dateFilter.value.type === 'preset') {
-            switch (dateFilter.value.preset) {
-              case 'today': {
-                startTime = getSystemTimezoneDay(now, true)
-                endTime = getSystemTimezoneDay(now, false)
-                break
-              }
-              case 'last24h': {
-                // 近24小时：从当前时间往前推24小时
-                endTime = new Date(now)
-                startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-                break
-              }
-              case 'yesterday': {
-                // 昨天：基于系统时区的昨天
-                const yesterday = new Date()
-                yesterday.setDate(yesterday.getDate() - 1)
-                startTime = getSystemTimezoneDay(yesterday, true)
-                endTime = getSystemTimezoneDay(yesterday, false)
-                break
-              }
-              case 'dayBefore': {
-                // 前天：基于系统时区的前天
-                const dayBefore = new Date()
-                dayBefore.setDate(dayBefore.getDate() - 2)
-                startTime = getSystemTimezoneDay(dayBefore, true)
-                endTime = getSystemTimezoneDay(dayBefore, false)
-                break
-              }
-              default: {
-                // 默认近24小时
-                startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-                endTime = now
-              }
-            }
-          } else {
-            // 默认近24小时
-            startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-            endTime = now
-          }
-
-          url += `&startDate=${encodeURIComponent(startTime.toISOString())}`
-          url += `&endDate=${encodeURIComponent(endTime.toISOString())}`
+          url += `&startDate=${encodeURIComponent(new Date(now.getTime() - 24 * 60 * 60 * 1000).toISOString())}`
+          url += `&endDate=${encodeURIComponent(now.toISOString())}`
         }
       } else {
-        // 天粒度，传递天数
         days =
           dateFilter.value.type === 'preset'
             ? dateFilter.value.preset === 'today'
@@ -535,7 +424,7 @@ export const useDashboardStore = defineStore('dashboard', () => {
 
       url += `&metric=${metric}`
 
-      const response = await getUsageStats(url)
+      const response = await getUsageStatsApi(url)
       if (response.success) {
         apiKeysTrendData.value = {
           data: response.data || [],
@@ -560,49 +449,14 @@ export const useDashboardStore = defineStore('dashboard', () => {
         if (dateFilter.value.customRange && dateFilter.value.customRange.length === 2) {
           url += `&startDate=${encodeURIComponent(dateFilter.value.customRange[0])}`
           url += `&endDate=${encodeURIComponent(dateFilter.value.customRange[1])}`
+        } else if (dateFilter.value.type === 'preset') {
+          const { start, end } = getPresetTimeRange(dateFilter.value.preset)
+          url += `&startDate=${encodeURIComponent(start.toISOString())}`
+          url += `&endDate=${encodeURIComponent(end.toISOString())}`
         } else {
           const now = new Date()
-          let startTime
-          let endTime
-
-          if (dateFilter.value.type === 'preset') {
-            switch (dateFilter.value.preset) {
-              case 'today': {
-                startTime = getSystemTimezoneDay(now, true)
-                endTime = getSystemTimezoneDay(now, false)
-                break
-              }
-              case 'last24h': {
-                endTime = new Date(now)
-                startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-                break
-              }
-              case 'yesterday': {
-                const yesterday = new Date()
-                yesterday.setDate(yesterday.getDate() - 1)
-                startTime = getSystemTimezoneDay(yesterday, true)
-                endTime = getSystemTimezoneDay(yesterday, false)
-                break
-              }
-              case 'dayBefore': {
-                const dayBefore = new Date()
-                dayBefore.setDate(dayBefore.getDate() - 2)
-                startTime = getSystemTimezoneDay(dayBefore, true)
-                endTime = getSystemTimezoneDay(dayBefore, false)
-                break
-              }
-              default: {
-                startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-                endTime = now
-              }
-            }
-          } else {
-            startTime = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-            endTime = now
-          }
-
-          url += `&startDate=${encodeURIComponent(startTime.toISOString())}`
-          url += `&endDate=${encodeURIComponent(endTime.toISOString())}`
+          url += `&startDate=${encodeURIComponent(new Date(now.getTime() - 24 * 60 * 60 * 1000).toISOString())}`
+          url += `&endDate=${encodeURIComponent(now.toISOString())}`
         }
       } else {
         days =
@@ -618,7 +472,7 @@ export const useDashboardStore = defineStore('dashboard', () => {
 
       url += `&group=${group}`
 
-      const response = await getUsageStats(url)
+      const response = await getUsageStatsApi(url)
       if (response.success) {
         accountUsageTrendData.value = {
           data: response.data || [],
@@ -643,40 +497,12 @@ export const useDashboardStore = defineStore('dashboard', () => {
 
     const option = dateFilter.value.presetOptions.find((opt) => opt.value === normalizedPreset)
     const now = new Date()
-    let startDate
-    let endDate
+    let startDate, endDate
 
     if (trendGranularity.value === 'hour') {
-      switch (normalizedPreset) {
-        case 'today': {
-          startDate = getSystemTimezoneDay(now, true)
-          endDate = getSystemTimezoneDay(now, false)
-          break
-        }
-        case 'last24h': {
-          endDate = new Date(now)
-          startDate = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-          break
-        }
-        case 'yesterday': {
-          const yesterday = new Date()
-          yesterday.setDate(yesterday.getDate() - 1)
-          startDate = getSystemTimezoneDay(yesterday, true)
-          endDate = getSystemTimezoneDay(yesterday, false)
-          break
-        }
-        case 'dayBefore': {
-          const dayBefore = new Date()
-          dayBefore.setDate(dayBefore.getDate() - 2)
-          startDate = getSystemTimezoneDay(dayBefore, true)
-          endDate = getSystemTimezoneDay(dayBefore, false)
-          break
-        }
-        default: {
-          endDate = new Date(now)
-          startDate = new Date(now.getTime() - 24 * 60 * 60 * 1000)
-        }
-      }
+      const range = getPresetTimeRange(normalizedPreset)
+      startDate = range.start
+      endDate = range.end
     } else {
       startDate = new Date(now)
       endDate = new Date(now)
@@ -891,7 +717,6 @@ export const useDashboardStore = defineStore('dashboard', () => {
     loading,
     dashboardData,
     costsData,
-    modelStats,
     trendData,
     dashboardModelStats,
     apiKeysTrendData,
@@ -900,7 +725,6 @@ export const useDashboardStore = defineStore('dashboard', () => {
     trendGranularity,
     apiKeysTrendMetric,
     accountUsageGroup,
-    defaultTime,
 
     // 计算属性
     formattedUptime,
diff --git a/web/admin-spa/src/stores/settings.js b/web/admin-spa/src/stores/settings.js
index 63a85814..b8b4f44d 100644
--- a/web/admin-spa/src/stores/settings.js
+++ b/web/admin-spa/src/stores/settings.js
@@ -1,6 +1,7 @@
 import { defineStore } from 'pinia'
 import { ref } from 'vue'
-import { getOemSettings, updateOemSettings } from '@/utils/http_apis'
+
+import { getOemSettingsApi, updateOemSettingsApi } from '@/utils/http_apis'
 
 export const useSettingsStore = defineStore('settings', () => {
   // 状态
@@ -19,40 +20,24 @@ export const useSettingsStore = defineStore('settings', () => {
   // Actions
   const loadOemSettings = async () => {
     loading.value = true
-    try {
-      const result = await getOemSettings()
-
-      if (result && result.success) {
-        oemSettings.value = { ...oemSettings.value, ...result.data }
-        applyOemSettings()
-      }
-
-      return result
-    } catch (error) {
-      console.error('Failed to load OEM settings:', error)
-      throw error
-    } finally {
-      loading.value = false
+    const res = await getOemSettingsApi()
+    if (res.success) {
+      oemSettings.value = { ...oemSettings.value, ...res.data }
+      applyOemSettings()
     }
+    loading.value = false
+    return res
   }
 
   const saveOemSettings = async (settings) => {
     saving.value = true
-    try {
-      const result = await updateOemSettings(settings)
-
-      if (result && result.success) {
-        oemSettings.value = { ...oemSettings.value, ...result.data }
-        applyOemSettings()
-      }
-
-      return result
-    } catch (error) {
-      console.error('Failed to save OEM settings:', error)
-      throw error
-    } finally {
-      saving.value = false
+    const res = await updateOemSettingsApi(settings)
+    if (res.success) {
+      oemSettings.value = { ...oemSettings.value, ...res.data }
+      applyOemSettings()
     }
+    saving.value = false
+    return res
   }
 
   const resetOemSettings = async () => {
diff --git a/web/admin-spa/src/stores/user.js b/web/admin-spa/src/stores/user.js
index f9b6ffde..0b4dbb4d 100644
--- a/web/admin-spa/src/stores/user.js
+++ b/web/admin-spa/src/stores/user.js
@@ -1,9 +1,9 @@
 import { defineStore } from 'pinia'
 import axios from 'axios'
 import { showToast } from '@/utils/tools'
-import { API_PREFIX } from '@/utils/http_apis'
+import { APP_CONFIG } from '@/utils/tools'
 
-const API_BASE = `${API_PREFIX}/users`
+const API_BASE = `${APP_CONFIG.apiPrefix}/users`
 
 export const useUserStore = defineStore('user', {
   state: () => ({
diff --git a/web/admin-spa/src/utils/http_apis.js b/web/admin-spa/src/utils/http_apis.js
index b73107ae..db4950a3 100644
--- a/web/admin-spa/src/utils/http_apis.js
+++ b/web/admin-spa/src/utils/http_apis.js
@@ -1,262 +1,336 @@
-import axios from 'axios'
-import { APP_CONFIG, getLoginUrl } from '@/config/app'
-
-export const API_PREFIX = APP_CONFIG.apiPrefix
-
-const axiosInstance = axios.create({
-  baseURL: APP_CONFIG.apiPrefix,
-  timeout: 30000,
-  headers: { 'Content-Type': 'application/json' }
-})
-
-axiosInstance.interceptors.request.use((config) => {
-  const token = localStorage.getItem('authToken')
-  if (token) config.headers['Authorization'] = `Bearer ${token}`
-  return config
-})
-
-axiosInstance.interceptors.response.use(
-  (response) => response.data,
-  (error) => {
-    if (error.response?.status === 401) {
-      const path = window.location.pathname + window.location.hash
-      if (!path.includes('/login') && !path.endsWith('/')) {
-        localStorage.removeItem('authToken')
-        window.location.href = getLoginUrl()
-      }
-    }
-    return Promise.reject(error)
-  }
-)
-
-// 通用请求函数 - 只会 resolve，调用方无需 try-catch
-const request = async (config) => {
-  try {
-    return await axiosInstance(config)
-  } catch (error) {
-    console.error('Request failed:', error)
-    const data = error.response?.data
-    if (data && typeof data.success !== 'undefined') return data
-    const status = error.response?.status
-    const messages = {
-      401: '未授权，请重新登录',
-      403: '无权限访问',
-      404: '请求的资源不存在',
-      500: '服务器内部错误'
-    }
-    return { success: false, message: messages[status] || error.message || '请求失败' }
-  }
-}
-
-const get = (url, config) => request({ method: 'get', url, ...config })
-const post = (url, data, config) => request({ method: 'post', url, data, ...config })
-const put = (url, data, config) => request({ method: 'put', url, data, ...config })
-const patch = (url, data, config) => request({ method: 'patch', url, data, ...config })
-const del = (url, config) => request({ method: 'delete', url, ...config })
+import request from '@/utils/request'
 
 // 模型
-export const getModels = () => get('/apiStats/models')
-export const getModelsByService = (service) => get('/apiStats/models', { params: { service } })
-
-// API Key 测试
-export const testClaudeApiKey = (data) => post('/apiStats/api-key/test', data)
-export const testGeminiApiKey = (data) => post('/apiStats/api-key/test-gemini', data)
-export const testOpenAIApiKey = (data) => post('/apiStats/api-key/test-openai', data)
+export const getModelsApi = () => request({ url: '/apiStats/models', method: 'GET' })
 
 // API Stats
-export const getKeyId = (apiKey) => post('/apiStats/api/get-key-id', { apiKey })
-export const getUserStats = (apiId) => post('/apiStats/api/user-stats', { apiId })
-export const getUserModelStats = (apiId, period = 'daily') =>
-  post('/apiStats/api/user-model-stats', { apiId, period })
-export const getBatchStats = (apiIds) => post('/apiStats/api/batch-stats', { apiIds })
-export const getBatchModelStats = (apiIds, period = 'daily') =>
-  post('/apiStats/api/batch-model-stats', { apiIds, period })
+export const getKeyIdApi = (apiKey) =>
+  request({ url: '/apiStats/api/get-key-id', method: 'POST', data: { apiKey } })
+export const getUserStatsApi = (apiId) =>
+  request({ url: '/apiStats/api/user-stats', method: 'POST', data: { apiId } })
+export const getUserModelStatsApi = (apiId, period = 'daily') =>
+  request({ url: '/apiStats/api/user-model-stats', method: 'POST', data: { apiId, period } })
+export const getBatchStatsApi = (apiIds) =>
+  request({ url: '/apiStats/api/batch-stats', method: 'POST', data: { apiIds } })
+export const getBatchModelStatsApi = (apiIds, period = 'daily') =>
+  request({ url: '/apiStats/api/batch-model-stats', method: 'POST', data: { apiIds, period } })
 
 // 认证
-export const login = (credentials) => post('/web/auth/login', credentials)
-export const getAuthUser = () => get('/web/auth/user')
+export const loginApi = (data) => request({ url: '/web/auth/login', method: 'POST', data })
+export const getAuthUserApi = () => request({ url: '/web/auth/user', method: 'GET' })
+export const changePasswordApi = (data) =>
+  request({ url: '/web/auth/change-password', method: 'POST', data })
 
 // OEM 设置
-export const getOemSettings = () => get('/admin/oem-settings')
-export const updateOemSettings = (data) => put('/admin/oem-settings', data)
+export const getOemSettingsApi = () => request({ url: '/admin/oem-settings', method: 'GET' })
+export const updateOemSettingsApi = (data) =>
+  request({ url: '/admin/oem-settings', method: 'PUT', data })
 
 // 服务倍率配置（公开接口）
-export const getServiceRates = () => get('/apiStats/service-rates')
+export const getServiceRatesApi = () => request({ url: '/apiStats/service-rates', method: 'GET' })
+
+// 额度卡兑换（公开接口）
+export const redeemCardByApiIdApi = (data) =>
+  request({ url: '/apiStats/api/redeem-card', method: 'POST', data })
+export const getRedemptionHistoryByApiIdApi = (apiId, params = {}) =>
+  request({ url: '/apiStats/api/redemption-history', method: 'GET', params: { apiId, ...params } })
 
 // 仪表板
-export const getDashboard = () => get('/admin/dashboard')
-export const getUsageCosts = (period) => get(`/admin/usage-costs?period=${period}`)
-export const getUsageStats = (url) => get(url)
+export const getDashboardApi = () => request({ url: '/admin/dashboard', method: 'GET' })
+export const getUsageCostsApi = (period) =>
+  request({ url: `/admin/usage-costs?period=${period}`, method: 'GET' })
+export const getUsageStatsApi = (url) => request({ url, method: 'GET' })
 
 // 客户端
-export const getSupportedClients = () => get('/admin/supported-clients')
+export const getSupportedClientsApi = () =>
+  request({ url: '/admin/supported-clients', method: 'GET' })
 
 // API Keys
-export const getApiKeys = () => get('/admin/api-keys')
-export const getApiKeysWithParams = (params) => get(`/admin/api-keys?${params}`)
-export const createApiKey = (data) => post('/admin/api-keys', data)
-export const updateApiKey = (id, data) => put(`/admin/api-keys/${id}`, data)
-export const toggleApiKey = (id) => put(`/admin/api-keys/${id}/toggle`)
-export const deleteApiKey = (id) => del(`/admin/api-keys/${id}`)
-export const getApiKeyStats = (id, params) => get(`/admin/api-keys/${id}/stats`, { params })
-export const getApiKeyTags = () => get('/admin/api-keys/tags')
-export const getApiKeyUsedModels = () => get('/admin/api-keys/used-models')
-export const getApiKeysBatchStats = (data) => post('/admin/api-keys/batch-stats', data)
-export const getApiKeysBatchLastUsage = (data) => post('/admin/api-keys/batch-last-usage', data)
-export const getDeletedApiKeys = () => get('/admin/api-keys/deleted')
-export const getApiKeysCostSortStatus = () => get('/admin/api-keys/cost-sort-status')
-export const restoreApiKey = (id) => post(`/admin/api-keys/${id}/restore`)
-export const permanentDeleteApiKey = (id) => del(`/admin/api-keys/${id}/permanent`)
-export const clearAllDeletedApiKeys = () => del('/admin/api-keys/deleted/clear-all')
-export const batchDeleteApiKeys = (data) => del('/admin/api-keys/batch', { data })
-export const updateApiKeyExpiration = (id, data) =>
-  request({ method: 'patch', url: `/admin/api-keys/${id}/expiration`, data })
+export const getApiKeysApi = () => request({ url: '/admin/api-keys', method: 'GET' })
+export const getApiKeysWithParamsApi = (params) =>
+  request({ url: `/admin/api-keys?${params}`, method: 'GET' })
+export const createApiKeyApi = (data) => request({ url: '/admin/api-keys', method: 'POST', data })
+export const updateApiKeyApi = (id, data) =>
+  request({ url: `/admin/api-keys/${id}`, method: 'PUT', data })
+export const toggleApiKeyApi = (id) =>
+  request({ url: `/admin/api-keys/${id}/toggle`, method: 'PUT' })
+export const deleteApiKeyApi = (id) => request({ url: `/admin/api-keys/${id}`, method: 'DELETE' })
+export const getApiKeyStatsApi = (id, params) =>
+  request({ url: `/admin/api-keys/${id}/stats`, method: 'GET', params })
+export const getApiKeyModelStatsApi = (id, params) =>
+  request({ url: `/admin/api-keys/${id}/model-stats`, method: 'GET', params })
+export const getApiKeyTagsApi = () => request({ url: '/admin/api-keys/tags', method: 'GET' })
+export const getApiKeyTagsDetailsApi = () =>
+  request({ url: '/admin/api-keys/tags/details', method: 'GET' })
+export const createApiKeyTagApi = (name) =>
+  request({ url: '/admin/api-keys/tags', method: 'POST', data: { name } })
+export const deleteApiKeyTagApi = (tagName) =>
+  request({ url: `/admin/api-keys/tags/${encodeURIComponent(tagName)}`, method: 'DELETE' })
+export const renameApiKeyTagApi = (tagName, newName) =>
+  request({
+    url: `/admin/api-keys/tags/${encodeURIComponent(tagName)}`,
+    method: 'PUT',
+    data: { newName }
+  })
+export const getApiKeyUsedModelsApi = () =>
+  request({ url: '/admin/api-keys/used-models', method: 'GET' })
+export const getApiKeysBatchStatsApi = (data) =>
+  request({ url: '/admin/api-keys/batch-stats', method: 'POST', data })
+export const getApiKeysBatchLastUsageApi = (data) =>
+  request({ url: '/admin/api-keys/batch-last-usage', method: 'POST', data })
+export const getDeletedApiKeysApi = () => request({ url: '/admin/api-keys/deleted', method: 'GET' })
+export const getApiKeysCostSortStatusApi = () =>
+  request({ url: '/admin/api-keys/cost-sort-status', method: 'GET' })
+export const restoreApiKeyApi = (id) =>
+  request({ url: `/admin/api-keys/${id}/restore`, method: 'POST' })
+export const permanentDeleteApiKeyApi = (id) =>
+  request({ url: `/admin/api-keys/${id}/permanent`, method: 'DELETE' })
+export const clearAllDeletedApiKeysApi = () =>
+  request({ url: '/admin/api-keys/deleted/clear-all', method: 'DELETE' })
+export const batchDeleteApiKeysApi = (data) =>
+  request({ url: '/admin/api-keys/batch', method: 'DELETE', data })
+export const updateApiKeyExpirationApi = (id, data) =>
+  request({ url: `/admin/api-keys/${id}/expiration`, method: 'PATCH', data })
+export const batchCreateApiKeysApi = (data) =>
+  request({ url: '/admin/api-keys/batch', method: 'POST', data })
+export const batchUpdateApiKeysApi = (data) =>
+  request({ url: '/admin/api-keys/batch', method: 'PUT', data })
+export const getApiKeyUsageRecordsApi = (id, params) =>
+  request({ url: `/admin/api-keys/${id}/usage-records`, method: 'GET', params })
 
 // Claude 账户
-export const getClaudeAccounts = () => get('/admin/claude-accounts')
-export const createClaudeAccount = (data) => post('/admin/claude-accounts', data)
-export const updateClaudeAccount = (id, data) => put(`/admin/claude-accounts/${id}`, data)
-export const deleteClaudeAccount = (id) => del(`/admin/claude-accounts/${id}`)
-export const refreshClaudeAccount = (id) => post(`/admin/claude-accounts/${id}/refresh`)
-export const generateClaudeAuthUrl = (data) =>
-  post('/admin/claude-accounts/generate-auth-url', data)
-export const exchangeClaudeCode = (data) => post('/admin/claude-accounts/exchange-code', data)
-export const generateClaudeSetupTokenUrl = (data) =>
-  post('/admin/claude-accounts/generate-setup-token-url', data)
-export const exchangeClaudeSetupToken = (data) =>
-  post('/admin/claude-accounts/exchange-setup-token', data)
-export const claudeOAuthWithCookie = (data) =>
-  post('/admin/claude-accounts/oauth-with-cookie', data)
-export const claudeSetupTokenWithCookie = (data) =>
-  post('/admin/claude-accounts/setup-token-with-cookie', data)
-export const generateClaudeWorkosAuthUrl = (data) =>
-  post('/admin/claude-accounts/generate-workos-auth-url', data)
+export const getClaudeAccountsApi = () => request({ url: '/admin/claude-accounts', method: 'GET' })
+export const createClaudeAccountApi = (data) =>
+  request({ url: '/admin/claude-accounts', method: 'POST', data })
+export const updateClaudeAccountApi = (id, data) =>
+  request({ url: `/admin/claude-accounts/${id}`, method: 'PUT', data })
+export const refreshClaudeAccountApi = (id) =>
+  request({ url: `/admin/claude-accounts/${id}/refresh`, method: 'POST' })
+export const generateClaudeAuthUrlApi = (data) =>
+  request({ url: '/admin/claude-accounts/generate-auth-url', method: 'POST', data })
+export const exchangeClaudeCodeApi = (data) =>
+  request({ url: '/admin/claude-accounts/exchange-code', method: 'POST', data })
+export const generateClaudeSetupTokenUrlApi = (data) =>
+  request({ url: '/admin/claude-accounts/generate-setup-token-url', method: 'POST', data })
+export const exchangeClaudeSetupTokenApi = (data) =>
+  request({ url: '/admin/claude-accounts/exchange-setup-token', method: 'POST', data })
+export const claudeOAuthWithCookieApi = (data) =>
+  request({ url: '/admin/claude-accounts/oauth-with-cookie', method: 'POST', data })
+export const claudeSetupTokenWithCookieApi = (data) =>
+  request({ url: '/admin/claude-accounts/setup-token-with-cookie', method: 'POST', data })
 
 // Claude Console 账户
-export const getClaudeConsoleAccounts = () => get('/admin/claude-console-accounts')
-export const createClaudeConsoleAccount = (data) => post('/admin/claude-console-accounts', data)
-export const updateClaudeConsoleAccount = (id, data) =>
-  put(`/admin/claude-console-accounts/${id}`, data)
-export const deleteClaudeConsoleAccount = (id) => del(`/admin/claude-console-accounts/${id}`)
+export const getClaudeConsoleAccountsApi = () =>
+  request({ url: '/admin/claude-console-accounts', method: 'GET' })
+export const createClaudeConsoleAccountApi = (data) =>
+  request({ url: '/admin/claude-console-accounts', method: 'POST', data })
+export const updateClaudeConsoleAccountApi = (id, data) =>
+  request({ url: `/admin/claude-console-accounts/${id}`, method: 'PUT', data })
 
 // Bedrock 账户
-export const getBedrockAccounts = () => get('/admin/bedrock-accounts')
-export const createBedrockAccount = (data) => post('/admin/bedrock-accounts', data)
-export const updateBedrockAccount = (id, data) => put(`/admin/bedrock-accounts/${id}`, data)
-export const deleteBedrockAccount = (id) => del(`/admin/bedrock-accounts/${id}`)
+export const getBedrockAccountsApi = () =>
+  request({ url: '/admin/bedrock-accounts', method: 'GET' })
+export const createBedrockAccountApi = (data) =>
+  request({ url: '/admin/bedrock-accounts', method: 'POST', data })
+export const updateBedrockAccountApi = (id, data) =>
+  request({ url: `/admin/bedrock-accounts/${id}`, method: 'PUT', data })
 
 // Gemini 账户
-export const getGeminiAccounts = () => get('/admin/gemini-accounts')
-export const createGeminiAccount = (data) => post('/admin/gemini-accounts', data)
-export const updateGeminiAccount = (id, data) => put(`/admin/gemini-accounts/${id}`, data)
-export const deleteGeminiAccount = (id) => del(`/admin/gemini-accounts/${id}`)
-export const generateGeminiAuthUrl = (data) =>
-  post('/admin/gemini-accounts/generate-auth-url', data)
-export const exchangeGeminiCode = (data) => post('/admin/gemini-accounts/exchange-code', data)
+export const getGeminiAccountsApi = () => request({ url: '/admin/gemini-accounts', method: 'GET' })
+export const createGeminiAccountApi = (data) =>
+  request({ url: '/admin/gemini-accounts', method: 'POST', data })
+export const updateGeminiAccountApi = (id, data) =>
+  request({ url: `/admin/gemini-accounts/${id}`, method: 'PUT', data })
+export const generateGeminiAuthUrlApi = (data) =>
+  request({ url: '/admin/gemini-accounts/generate-auth-url', method: 'POST', data })
+export const exchangeGeminiCodeApi = (data) =>
+  request({ url: '/admin/gemini-accounts/exchange-code', method: 'POST', data })
 
 // Gemini API 账户
-export const createGeminiApiAccount = (data) => post('/admin/gemini-api-accounts', data)
-export const updateGeminiApiAccount = (id, data) => put(`/admin/gemini-api-accounts/${id}`, data)
+export const getGeminiApiAccountsApi = () =>
+  request({ url: '/admin/gemini-api-accounts', method: 'GET' })
+export const createGeminiApiAccountApi = (data) =>
+  request({ url: '/admin/gemini-api-accounts', method: 'POST', data })
+export const updateGeminiApiAccountApi = (id, data) =>
+  request({ url: `/admin/gemini-api-accounts/${id}`, method: 'PUT', data })
 
 // OpenAI 账户
-export const getOpenAIAccounts = () => get('/admin/openai-accounts')
-export const createOpenAIAccount = (data) => post('/admin/openai-accounts', data)
-export const updateOpenAIAccount = (id, data) => put(`/admin/openai-accounts/${id}`, data)
-export const deleteOpenAIAccount = (id) => del(`/admin/openai-accounts/${id}`)
-export const generateOpenAIAuthUrl = (data) =>
-  post('/admin/openai-accounts/generate-auth-url', data)
-export const exchangeOpenAICode = (data) => post('/admin/openai-accounts/exchange-code', data)
+export const getOpenAIAccountsApi = () => request({ url: '/admin/openai-accounts', method: 'GET' })
+export const createOpenAIAccountApi = (data) =>
+  request({ url: '/admin/openai-accounts', method: 'POST', data })
+export const updateOpenAIAccountApi = (id, data) =>
+  request({ url: `/admin/openai-accounts/${id}`, method: 'PUT', data })
+export const generateOpenAIAuthUrlApi = (data) =>
+  request({ url: '/admin/openai-accounts/generate-auth-url', method: 'POST', data })
+export const exchangeOpenAICodeApi = (data) =>
+  request({ url: '/admin/openai-accounts/exchange-code', method: 'POST', data })
 
 // OpenAI Responses 账户
-export const getOpenAIResponsesAccounts = () => get('/admin/openai-responses-accounts')
-export const createOpenAIResponsesAccount = (data) => post('/admin/openai-responses-accounts', data)
-export const updateOpenAIResponsesAccount = (id, data) =>
-  put(`/admin/openai-responses-accounts/${id}`, data)
-export const deleteOpenAIResponsesAccount = (id) => del(`/admin/openai-responses-accounts/${id}`)
+export const getOpenAIResponsesAccountsApi = () =>
+  request({ url: '/admin/openai-responses-accounts', method: 'GET' })
+export const createOpenAIResponsesAccountApi = (data) =>
+  request({ url: '/admin/openai-responses-accounts', method: 'POST', data })
+export const updateOpenAIResponsesAccountApi = (id, data) =>
+  request({ url: `/admin/openai-responses-accounts/${id}`, method: 'PUT', data })
 
 // Azure OpenAI 账户
-export const getAzureOpenAIAccounts = () => get('/admin/azure-openai-accounts')
-export const createAzureOpenAIAccount = (data) => post('/admin/azure-openai-accounts', data)
-export const updateAzureOpenAIAccount = (id, data) =>
-  put(`/admin/azure-openai-accounts/${id}`, data)
-export const deleteAzureOpenAIAccount = (id) => del(`/admin/azure-openai-accounts/${id}`)
+export const getAzureOpenAIAccountsApi = () =>
+  request({ url: '/admin/azure-openai-accounts', method: 'GET' })
+export const createAzureOpenAIAccountApi = (data) =>
+  request({ url: '/admin/azure-openai-accounts', method: 'POST', data })
+export const updateAzureOpenAIAccountApi = (id, data) =>
+  request({ url: `/admin/azure-openai-accounts/${id}`, method: 'PUT', data })
 
 // Droid 账户
-export const getDroidAccounts = () => get('/admin/droid-accounts')
-export const createDroidAccount = (data) => post('/admin/droid-accounts', data)
-export const updateDroidAccount = (id, data) => put(`/admin/droid-accounts/${id}`, data)
-export const deleteDroidAccount = (id) => del(`/admin/droid-accounts/${id}`)
-export const generateDroidAuthUrl = (data) => post('/admin/droid-accounts/generate-auth-url', data)
-export const exchangeDroidCode = (data) => post('/admin/droid-accounts/exchange-code', data)
+export const getDroidAccountsApi = () => request({ url: '/admin/droid-accounts', method: 'GET' })
+export const createDroidAccountApi = (data) =>
+  request({ url: '/admin/droid-accounts', method: 'POST', data })
+export const updateDroidAccountApi = (id, data) =>
+  request({ url: `/admin/droid-accounts/${id}`, method: 'PUT', data })
+export const generateDroidAuthUrlApi = (data) =>
+  request({ url: '/admin/droid-accounts/generate-auth-url', method: 'POST', data })
+export const exchangeDroidCodeApi = (data) =>
+  request({ url: '/admin/droid-accounts/exchange-code', method: 'POST', data })
+export const getDroidAccountByIdApi = (id) =>
+  request({ url: `/admin/droid-accounts/${id}`, method: 'GET' })
 
 // CCR 账户
-export const getCcrAccounts = () => get('/admin/ccr-accounts')
-export const createCcrAccount = (data) => post('/admin/ccr-accounts', data)
-export const updateCcrAccount = (id, data) => put(`/admin/ccr-accounts/${id}`, data)
-export const deleteCcrAccount = (id) => del(`/admin/ccr-accounts/${id}`)
-
-// Gemini API 账户
-export const getGeminiApiAccounts = () => get('/admin/gemini-api-accounts')
+export const getCcrAccountsApi = () => request({ url: '/admin/ccr-accounts', method: 'GET' })
+export const createCcrAccountApi = (data) =>
+  request({ url: '/admin/ccr-accounts', method: 'POST', data })
+export const updateCcrAccountApi = (id, data) =>
+  request({ url: `/admin/ccr-accounts/${id}`, method: 'PUT', data })
 
 // 账户通用操作
-export const toggleAccountStatus = (endpoint) => put(endpoint)
-export const deleteAccountByEndpoint = (endpoint) => del(endpoint)
-export const testAccountByEndpoint = (endpoint) => post(endpoint)
-export const updateAccountByEndpoint = (endpoint, data) => put(endpoint, data)
+export const toggleAccountStatusApi = (endpoint) => request({ url: endpoint, method: 'PUT' })
+export const deleteAccountByEndpointApi = (endpoint) => request({ url: endpoint, method: 'DELETE' })
+export const testAccountByEndpointApi = (endpoint) => request({ url: endpoint, method: 'POST' })
+export const updateAccountByEndpointApi = (endpoint, data) =>
+  request({ url: endpoint, method: 'PUT', data })
 
 // 账户使用统计
-export const getClaudeAccountsUsage = () => get('/admin/claude-accounts/usage')
-export const getAccountsBindingCounts = () => get('/admin/accounts/binding-counts')
-export const getAccountUsageHistory = (id, platform, days = 30) =>
-  get(`/admin/accounts/${id}/usage-history?platform=${platform}&days=${days}`)
+export const getClaudeAccountsUsageApi = () =>
+  request({ url: '/admin/claude-accounts/usage', method: 'GET' })
+export const getAccountsBindingCountsApi = () =>
+  request({ url: '/admin/accounts/binding-counts', method: 'GET' })
+export const getAccountUsageHistoryApi = (id, platform, days = 30) =>
+  request({
+    url: `/admin/accounts/${id}/usage-history?platform=${platform}&days=${days}`,
+    method: 'GET'
+  })
+export const getClaudeConsoleAccountUsageApi = (id) =>
+  request({ url: `/admin/claude-console-accounts/${id}/usage`, method: 'GET' })
+export const getAccountUsageRecordsByIdApi = (id, params) =>
+  request({ url: `/admin/accounts/${id}/usage-records`, method: 'GET', params })
 
 // 账户组
-export const getAccountGroups = () => get('/admin/account-groups')
-export const createAccountGroup = (data) => post('/admin/account-groups', data)
-export const updateAccountGroup = (id, data) => put(`/admin/account-groups/${id}`, data)
-export const deleteAccountGroup = (id) => del(`/admin/account-groups/${id}`)
+export const getAccountGroupsApi = () => request({ url: '/admin/account-groups', method: 'GET' })
+export const createAccountGroupApi = (data) =>
+  request({ url: '/admin/account-groups', method: 'POST', data })
+export const updateAccountGroupApi = (id, data) =>
+  request({ url: `/admin/account-groups/${id}`, method: 'PUT', data })
+export const deleteAccountGroupApi = (id) =>
+  request({ url: `/admin/account-groups/${id}`, method: 'DELETE' })
+export const getAccountGroupMembersApi = (id) =>
+  request({ url: `/admin/account-groups/${id}/members`, method: 'GET' })
 
-// 用户管理
-export const getUsers = () => get('/admin/users')
-export const createUser = (data) => post('/admin/users', data)
-export const updateUser = (id, data) => put(`/admin/users/${id}`, data)
-export const deleteUser = (id) => del(`/admin/users/${id}`)
-export const updateUserRole = (id, data) => put(`/admin/users/${id}/role`, data)
-export const getUserUsageStats = (id, params) => get(`/admin/users/${id}/usage-stats`, { params })
-
-// 使用记录
-export const getApiKeyUsageRecords = (id, params) =>
-  get(`/admin/api-keys/${id}/usage-records`, { params })
-export const getAccountUsageRecords = (type, id, params) =>
-  get(`/admin/${type}-accounts/${id}/usage-records`, { params })
-
-// 系统日志
-export const getSystemLogs = (params) => get('/admin/logs', { params })
+// 用户管理（管理员）
+export const getUsersApi = () => request({ url: '/admin/users', method: 'GET' })
 
 // 配额卡片
-export const getQuotaCards = () => get('/admin/quota-cards')
-export const createQuotaCard = (data) => post('/admin/quota-cards', data)
-export const updateQuotaCard = (id, data) => put(`/admin/quota-cards/${id}`, data)
-export const deleteQuotaCard = (id) => del(`/admin/quota-cards/${id}`)
-export const redeemQuotaCard = (data) => post('/admin/quota-cards/redeem', data)
+export const createQuotaCardApi = (data) =>
+  request({ url: '/admin/quota-cards', method: 'POST', data })
+export const deleteQuotaCardApi = (id) =>
+  request({ url: `/admin/quota-cards/${id}`, method: 'DELETE' })
+export const getQuotaCardsWithParamsApi = (params) =>
+  request({ url: '/admin/quota-cards', method: 'GET', params })
+export const getQuotaCardsStatsApi = () =>
+  request({ url: '/admin/quota-cards/stats', method: 'GET' })
+export const getRedemptionsApi = () => request({ url: '/admin/redemptions', method: 'GET' })
+export const revokeRedemptionApi = (id, data) =>
+  request({ url: `/admin/redemptions/${id}/revoke`, method: 'POST', data })
+export const getQuotaCardLimitsApi = () =>
+  request({ url: '/admin/quota-cards/limits', method: 'GET' })
+export const updateQuotaCardLimitsApi = (data) =>
+  request({ url: '/admin/quota-cards/limits', method: 'PUT', data })
 
-// 账户测试
-export const testAccount = (type, id) => post(`/admin/${type}-accounts/${id}/test`)
-export const getAccountTestHistory = (type, id) => get(`/admin/${type}-accounts/${id}/test-history`)
+// 账户余额
+export const getAccountBalanceApi = (id, params) =>
+  request({ url: `/admin/accounts/${id}/balance`, method: 'GET', params })
+export const refreshAccountBalanceApi = (id, data) =>
+  request({ url: `/admin/accounts/${id}/balance/refresh`, method: 'POST', data })
+export const getBalanceSummaryApi = () =>
+  request({ url: '/admin/accounts/balance/summary', method: 'GET' })
+export const getBalanceByPlatformApi = (platform, params) =>
+  request({ url: `/admin/accounts/balance/platform/${platform}`, method: 'GET', params })
 
-// 定时测试
-export const getScheduledTests = () => get('/admin/scheduled-tests')
-export const createScheduledTest = (data) => post('/admin/scheduled-tests', data)
-export const updateScheduledTest = (id, data) => put(`/admin/scheduled-tests/${id}`, data)
-export const deleteScheduledTest = (id) => del(`/admin/scheduled-tests/${id}`)
+// 账户余额脚本
+export const getAccountBalanceScriptApi = (id, platform) =>
+  request({ url: `/admin/accounts/${id}/balance/script?platform=${platform}`, method: 'GET' })
+export const updateAccountBalanceScriptApi = (id, platform, data) =>
+  request({ url: `/admin/accounts/${id}/balance/script?platform=${platform}`, method: 'PUT', data })
+export const testAccountBalanceScriptApi = (id, platform, data) =>
+  request({
+    url: `/admin/accounts/${id}/balance/script/test?platform=${platform}`,
+    method: 'POST',
+    data
+  })
 
-// 统一 User-Agent
-export const getUnifiedUserAgent = () => get('/admin/unified-user-agent')
+// 默认余额脚本
+export const getDefaultBalanceScriptApi = () =>
+  request({ url: '/admin/balance-scripts/default', method: 'GET' })
+export const updateDefaultBalanceScriptApi = (data) =>
+  request({ url: '/admin/balance-scripts/default', method: 'PUT', data })
+export const testDefaultBalanceScriptApi = (data) =>
+  request({ url: '/admin/balance-scripts/default/test', method: 'POST', data })
 
-// 账户 API Keys 管理
-export const getAccountApiKeys = (type, id) => get(`/admin/${type}-accounts/${id}/api-keys`)
-export const updateAccountApiKeys = (type, id, data) =>
-  put(`/admin/${type}-accounts/${id}/api-keys`, data)
+// 前台用户管理
+export const getFrontUsersApi = (params) => request({ url: '/users', method: 'GET', params })
+export const getFrontUsersStatsOverviewApi = () =>
+  request({ url: '/users/stats/overview', method: 'GET' })
+export const getFrontUserByIdApi = (id) => request({ url: `/users/${id}`, method: 'GET' })
+export const updateFrontUserStatusApi = (id, data) =>
+  request({ url: `/users/${id}/status`, method: 'PATCH', data })
+export const disableFrontUserKeysApi = (id) =>
+  request({ url: `/users/${id}/disable-keys`, method: 'POST' })
+export const getFrontUserUsageStatsApi = (id, params) =>
+  request({ url: `/users/${id}/usage-stats`, method: 'GET', params })
+export const updateFrontUserRoleApi = (id, data) =>
+  request({ url: `/users/${id}/role`, method: 'PATCH', data })
 
-export default { get, post, put, patch, del, request }
-export { get, post, put, patch, del }
+// Webhook 配置
+export const getWebhookConfigApi = (config) =>
+  request({ url: '/admin/webhook/config', method: 'GET', ...config })
+export const updateWebhookConfigApi = (data, config) =>
+  request({ url: '/admin/webhook/config', method: 'POST', data, ...config })
+export const createWebhookPlatformApi = (data, config) =>
+  request({ url: '/admin/webhook/platforms', method: 'POST', data, ...config })
+export const deleteWebhookPlatformApi = (id, config) =>
+  request({ url: `/admin/webhook/platforms/${id}`, method: 'DELETE', ...config })
+export const updateWebhookPlatformApi = (id, data, config) =>
+  request({ url: `/admin/webhook/platforms/${id}`, method: 'PUT', data, ...config })
+export const toggleWebhookPlatformApi = (id, config) =>
+  request({ url: `/admin/webhook/platforms/${id}/toggle`, method: 'POST', ...config })
+export const testWebhookApi = (data, config) =>
+  request({ url: '/admin/webhook/test', method: 'POST', data, ...config })
+export const testWebhookNotificationApi = (config) =>
+  request({ url: '/admin/webhook/test-notification', method: 'POST', ...config })
+
+// Claude Relay 配置
+export const getClaudeRelayConfigApi = (config) =>
+  request({ url: '/admin/claude-relay-config', method: 'GET', ...config })
+export const updateClaudeRelayConfigApi = (data, config) =>
+  request({ url: '/admin/claude-relay-config', method: 'PUT', data, ...config })
+
+// 服务倍率配置（管理端）
+export const getAdminServiceRatesApi = (config) =>
+  request({ url: '/admin/service-rates', method: 'GET', ...config })
+export const updateAdminServiceRatesApi = (data, config) =>
+  request({ url: '/admin/service-rates', method: 'PUT', data, ...config })
+
+// 系统
+export const checkUpdatesApi = () => request({ url: '/admin/check-updates', method: 'GET' })
+export const getClaudeCodeVersionApi = () =>
+  request({ url: '/admin/claude-code-version', method: 'GET' })
+export const clearClaudeCodeVersionApi = () =>
+  request({ url: '/admin/claude-code-version/clear', method: 'POST' })
diff --git a/web/admin-spa/src/utils/request.js b/web/admin-spa/src/utils/request.js
new file mode 100644
index 00000000..2f883724
--- /dev/null
+++ b/web/admin-spa/src/utils/request.js
@@ -0,0 +1,57 @@
+import axios from 'axios'
+
+import { APP_CONFIG, getLoginUrl } from '@/utils/tools'
+
+const axiosInstance = axios.create({
+  baseURL: APP_CONFIG.apiPrefix,
+  timeout: 30000,
+  headers: { 'Content-Type': 'application/json' }
+})
+
+axiosInstance.interceptors.request.use((config) => {
+  const token = localStorage.getItem('authToken')
+  if (token) config.headers['Authorization'] = `Bearer ${token}`
+  return config
+})
+
+axiosInstance.interceptors.response.use(
+  (response) => response.data,
+  (error) => {
+    if (error.response?.status === 401) {
+      const path = window.location.pathname + window.location.hash
+      // api-stats 和 user-login 是公开页面，401 是业务错误不是认证错误
+      const isPublicPage = path.includes('/api-stats') || path.includes('/user-login')
+      if (!path.includes('/login') && !path.endsWith('/') && !isPublicPage) {
+        localStorage.removeItem('authToken')
+        window.location.href = getLoginUrl()
+      }
+    }
+    return Promise.reject(error)
+  }
+)
+
+// 通用请求函数 - 只会 resolve，调用方无需 try-catch
+const request = async (config) => {
+  try {
+    return await axiosInstance(config)
+  } catch (error) {
+    console.error('Request failed:', error)
+    const data = error.response?.data
+    // 如果后端返回了数据，直接返回（可能是 { success, message } 或 { error, message } 格式）
+    if (data) {
+      if (typeof data.success !== 'undefined') return data
+      // 处理 { error, message } 格式的响应
+      if (data.error || data.message) return { success: false, message: data.message || data.error }
+    }
+    const status = error.response?.status
+    const messages = {
+      401: '未授权，请重新登录',
+      403: '无权限访问',
+      404: '请求的资源不存在',
+      500: '服务器内部错误'
+    }
+    return { success: false, message: messages[status] || error.message || '请求失败' }
+  }
+}
+
+export default request
diff --git a/web/admin-spa/src/utils/tools.js b/web/admin-spa/src/utils/tools.js
index 7314b10b..6de7da57 100644
--- a/web/admin-spa/src/utils/tools.js
+++ b/web/admin-spa/src/utils/tools.js
@@ -1,3 +1,16 @@
+// App 配置
+export const APP_CONFIG = {
+  basePath: import.meta.env.VITE_APP_BASE_URL || (import.meta.env.DEV ? '/admin/' : '/web/admin/'),
+  apiPrefix: import.meta.env.DEV ? '/webapi' : ''
+}
+
+export const getAppUrl = (path = '') => {
+  if (path && !path.startsWith('/')) path = '/' + path
+  return APP_CONFIG.basePath + (path.startsWith('#') ? path : '#' + path)
+}
+
+export const getLoginUrl = () => getAppUrl('/login')
+
 // Toast 通知管理
 let toastContainer = null
 let toastId = 0
@@ -108,10 +121,12 @@ export const formatDate = (date, format = 'YYYY-MM-DD HH:mm:ss') => {
 // 相对时间格式化
 export const formatRelativeTime = (date) => {
   if (!date) return ''
-  const diffMs = new Date() - new Date(date)
+  const d = new Date(date)
+  const diffMs = new Date() - d
   const diffMins = Math.floor(diffMs / 60000)
   const diffHours = Math.floor(diffMins / 60)
   const diffDays = Math.floor(diffHours / 24)
+  if (diffDays >= 7) return d.toLocaleDateString('zh-CN')
   if (diffDays > 0) return `${diffDays}天前`
   if (diffHours > 0) return `${diffHours}小时前`
   if (diffMins > 0) return `${diffMins}分钟前`
@@ -126,3 +141,24 @@ export const formatBytes = (bytes, decimals = 2) => {
   const i = Math.floor(Math.log(bytes) / Math.log(k))
   return parseFloat((bytes / Math.pow(k, i)).toFixed(decimals < 0 ? 0 : decimals)) + ' ' + sizes[i]
 }
+
+// 日期时间格式化 (简化版)
+export const formatDateTime = (date) => {
+  if (!date) return ''
+  return new Date(date).toLocaleString('zh-CN', {
+    year: 'numeric',
+    month: '2-digit',
+    day: '2-digit',
+    hour: '2-digit',
+    minute: '2-digit',
+    second: '2-digit'
+  })
+}
+
+// 金额格式化
+export const formatCost = (value) => {
+  const num = Number(value || 0)
+  if (num === 0) return '$0.00'
+  if (num < 0.01) return `$${num.toFixed(6)}`
+  return `$${num.toFixed(2)}`
+}
diff --git a/web/admin-spa/src/composables/useChartConfig.js b/web/admin-spa/src/utils/useChartConfig.js
similarity index 100%
rename from web/admin-spa/src/composables/useChartConfig.js
rename to web/admin-spa/src/utils/useChartConfig.js
diff --git a/web/admin-spa/src/composables/useTutorialUrls.js b/web/admin-spa/src/utils/useTutorialUrls.js
similarity index 100%
rename from web/admin-spa/src/composables/useTutorialUrls.js
rename to web/admin-spa/src/utils/useTutorialUrls.js
diff --git a/web/admin-spa/src/views/AccountUsageRecordsView.vue b/web/admin-spa/src/views/AccountUsageRecordsView.vue
index 4b4d1a33..6835b0f1 100644
--- a/web/admin-spa/src/views/AccountUsageRecordsView.vue
+++ b/web/admin-spa/src/views/AccountUsageRecordsView.vue
@@ -301,9 +301,8 @@
 import { computed, onMounted, reactive, ref, watch } from 'vue'
 import dayjs from 'dayjs'
 import { useRoute, useRouter } from 'vue-router'
-import * as httpApi from '@/utils/http_apis'
-import { showToast } from '@/utils/tools'
-import { formatNumber } from '@/utils/tools'
+import { getAccountUsageRecordsByIdApi } from '@/utils/http_apis'
+import { showToast, formatNumber, formatDate } from '@/utils/tools'
 import RecordDetailModal from '@/components/apikeys/RecordDetailModal.vue'
 
 const route = useRoute()
@@ -368,11 +367,6 @@ const dateRangeHint = computed(() => {
   return `${formatDate(filters.dateRange[0])} ~ ${formatDate(filters.dateRange[1])}`
 })
 
-const formatDate = (value) => {
-  if (!value) return '--'
-  return dayjs(value).format('YYYY-MM-DD HH:mm:ss')
-}
-
 const formatCost = (value) => {
   const num = typeof value === 'number' ? value : 0
   if (num >= 1) return `$${num.toFixed(2)}`
@@ -437,9 +431,7 @@ const syncResponseState = (data) => {
 const fetchRecords = async (page = pagination.currentPage) => {
   loading.value = true
   try {
-    const response = await httpApi.get(`/admin/accounts/${accountId.value}/usage-records`, {
-      params: buildParams(page)
-    })
+    const response = await getAccountUsageRecordsByIdApi(accountId.value, buildParams(page))
     syncResponseState(response.data || {})
   } catch (error) {
     showToast(`加载请求记录失败：${error.message || '未知错误'}`, 'error')
@@ -492,8 +484,9 @@ const exportCsv = async () => {
     const maxPages = 50 // 50 * 200 = 10000，超过后端 5000 上限已足够
 
     while (page <= totalPages && page <= maxPages) {
-      const response = await httpApi.get(`/admin/accounts/${accountId.value}/usage-records`, {
-        params: { ...buildParams(page), pageSize: 200 }
+      const response = await getAccountUsageRecordsByIdApi(accountId.value, {
+        ...buildParams(page),
+        pageSize: 200
       })
       const payload = response.data || {}
       aggregated.push(...(payload.records || []))
diff --git a/web/admin-spa/src/views/AccountsView.vue b/web/admin-spa/src/views/AccountsView.vue
index e5b8cb10..7147b3fd 100644
--- a/web/admin-spa/src/views/AccountsView.vue
+++ b/web/admin-spa/src/views/AccountsView.vue
@@ -141,6 +141,28 @@
               </el-tooltip>
             </div>
 
+            <!-- 刷新余额按钮 -->
+            <div class="relative">
+              <el-tooltip :content="refreshBalanceTooltip" effect="dark" placement="bottom">
+                <button
+                  class="group relative flex items-center justify-center gap-2 rounded-lg border border-gray-200 bg-white px-4 py-2 text-sm font-medium text-gray-700 shadow-sm transition-all duration-200 hover:border-gray-300 hover:shadow-md disabled:cursor-not-allowed disabled:opacity-50 dark:border-gray-600 dark:bg-gray-800 dark:text-gray-300 dark:hover:border-gray-500 sm:w-auto"
+                  :disabled="accountsLoading || refreshingBalances || !canRefreshVisibleBalances"
+                  @click="refreshVisibleBalances"
+                >
+                  <div
+                    class="absolute -inset-0.5 rounded-lg bg-gradient-to-r from-blue-500 to-indigo-500 opacity-0 blur transition duration-300 group-hover:opacity-20"
+                  ></div>
+                  <i
+                    :class="[
+                      'fas relative text-blue-500',
+                      refreshingBalances ? 'fa-spinner fa-spin' : 'fa-wallet'
+                    ]"
+                  />
+                  <span class="relative">刷新余额</span>
+                </button>
+              </el-tooltip>
+            </div>
+
             <!-- 选择/取消选择按钮 -->
             <button
               class="flex items-center gap-2 rounded-lg border border-gray-200 bg-white px-4 py-2 text-sm font-medium text-gray-700 shadow-sm transition-all duration-200 hover:border-gray-300 hover:bg-gray-50 hover:shadow-md dark:border-gray-600 dark:bg-gray-800 dark:text-gray-300 dark:hover:bg-gray-700"
@@ -279,6 +301,11 @@
                 >
                   今日使用
                 </th>
+                <th
+                  class="min-w-[220px] px-3 py-4 text-left text-xs font-bold uppercase tracking-wider text-gray-700 dark:text-gray-300"
+                >
+                  余额/配额
+                </th>
                 <th
                   class="min-w-[210px] px-3 py-4 text-left text-xs font-bold uppercase tracking-wider text-gray-700 dark:text-gray-300"
                 >
@@ -763,9 +790,9 @@
                     </div>
                     <div class="flex items-center gap-2">
                       <div class="h-2 w-2 rounded-full bg-purple-500" />
-                      <span class="text-xs text-gray-600 dark:text-gray-300"
-                        >{{ formatNumber(account.usage.daily.allTokens || 0) }}M</span
-                      >
+                      <span class="text-xs text-gray-600 dark:text-gray-300">{{
+                        formatNumber(account.usage.daily.allTokens || 0)
+                      }}</span>
                     </div>
                     <div class="flex items-center gap-2">
                       <div class="h-2 w-2 rounded-full bg-green-500" />
@@ -782,6 +809,31 @@
                   </div>
                   <div v-else class="text-xs text-gray-400">暂无数据</div>
                 </td>
+                <td class="whitespace-nowrap px-3 py-4">
+                  <BalanceDisplay
+                    :account-id="account.id"
+                    :initial-balance="account.balanceInfo"
+                    :platform="account.platform"
+                    :query-mode="
+                      account.platform === 'gemini' && account.oauthProvider === 'antigravity'
+                        ? 'auto'
+                        : 'local'
+                    "
+                    @error="(error) => handleBalanceError(account.id, error)"
+                    @refreshed="(data) => handleBalanceRefreshed(account.id, data)"
+                  />
+                  <div class="mt-1 text-xs">
+                    <button
+                      v-if="
+                        !(account.platform === 'gemini' && account.oauthProvider === 'antigravity')
+                      "
+                      class="text-blue-500 hover:underline dark:text-blue-300"
+                      @click="openBalanceScriptModal(account)"
+                    >
+                      配置余额脚本
+                    </button>
+                  </div>
+                </td>
                 <td class="whitespace-nowrap px-3 py-4">
                   <div v-if="account.platform === 'claude'" class="space-y-2">
                     <!-- OAuth 账户：显示三窗口 OAuth usage -->
@@ -903,7 +955,7 @@
                         <div class="flex items-center gap-1">
                           <div class="h-1.5 w-1.5 rounded-full bg-purple-500" />
                           <span class="font-medium text-gray-900 dark:text-gray-100">
-                            {{ formatNumber(account.usage.sessionWindow.totalTokens) }}M
+                            {{ formatNumber(account.usage.sessionWindow.totalTokens) }}
                           </span>
                         </div>
                         <div class="flex items-center gap-1">
@@ -1415,7 +1467,7 @@
                 <div class="flex items-center gap-1.5">
                   <div class="h-1.5 w-1.5 rounded-full bg-purple-500" />
                   <p class="text-xs text-gray-600 dark:text-gray-400">
-                    {{ formatNumber(account.usage?.daily?.allTokens || 0) }}M
+                    {{ formatNumber(account.usage?.daily?.allTokens || 0) }}
                   </p>
                 </div>
                 <div class="flex items-center gap-1.5">
@@ -1432,7 +1484,7 @@
                 <div class="flex items-center gap-1.5">
                   <div class="h-1.5 w-1.5 rounded-full bg-purple-500" />
                   <p class="text-sm font-semibold text-gray-900 dark:text-gray-100">
-                    {{ formatNumber(account.usage.sessionWindow.totalTokens) }}M
+                    {{ formatNumber(account.usage.sessionWindow.totalTokens) }}
                   </p>
                 </div>
                 <div class="flex items-center gap-1.5">
@@ -1446,6 +1498,32 @@
             </div>
           </div>
 
+          <!-- 余额/配额 -->
+          <div class="mb-3">
+            <p class="mb-1 text-xs text-gray-500 dark:text-gray-400">余额/配额</p>
+            <BalanceDisplay
+              :account-id="account.id"
+              :initial-balance="account.balanceInfo"
+              :platform="account.platform"
+              :query-mode="
+                account.platform === 'gemini' && account.oauthProvider === 'antigravity'
+                  ? 'auto'
+                  : 'local'
+              "
+              @error="(error) => handleBalanceError(account.id, error)"
+              @refreshed="(data) => handleBalanceRefreshed(account.id, data)"
+            />
+            <div class="mt-1 text-xs">
+              <button
+                v-if="!(account.platform === 'gemini' && account.oauthProvider === 'antigravity')"
+                class="text-blue-500 hover:underline dark:text-blue-300"
+                @click="openBalanceScriptModal(account)"
+              >
+                配置余额脚本
+              </button>
+            </div>
+          </div>
+
           <!-- 状态信息 -->
           <div class="mb-3 space-y-2">
             <!-- 会话窗口 -->
@@ -1927,6 +2005,13 @@
       @saved="handleScheduledTestSaved"
     />
 
+    <AccountBalanceScriptModal
+      :account="selectedAccountForScript"
+      :show="showBalanceScriptModal"
+      @close="closeBalanceScriptModal"
+      @saved="handleBalanceScriptSaved"
+    />
+
     <!-- 账户统计弹窗 -->
     <el-dialog
       v-model="showAccountStatsModal"
@@ -2078,10 +2163,9 @@
 
 <script setup>
 import { ref, computed, onMounted, onUnmounted, watch, nextTick } from 'vue'
-import { showToast } from '@/utils/tools'
-import { copyText } from '@/utils/tools'
-import * as httpApi from '@/utils/http_apis'
-import { useConfirm } from '@/composables/useConfirm'
+import { showToast, copyText, formatNumber, formatRelativeTime } from '@/utils/tools'
+
+import * as httpApis from '@/utils/http_apis'
 import AccountForm from '@/components/accounts/AccountForm.vue'
 import CcrAccountForm from '@/components/accounts/CcrAccountForm.vue'
 import AccountUsageDetailModal from '@/components/accounts/AccountUsageDetailModal.vue'
@@ -2092,13 +2176,35 @@ import ConfirmModal from '@/components/common/ConfirmModal.vue'
 import CustomDropdown from '@/components/common/CustomDropdown.vue'
 import ActionDropdown from '@/components/common/ActionDropdown.vue'
 import GroupManagementModal from '@/components/accounts/GroupManagementModal.vue'
+import BalanceDisplay from '@/components/accounts/BalanceDisplay.vue'
+import AccountBalanceScriptModal from '@/components/accounts/AccountBalanceScriptModal.vue'
 
-// 使用确认弹窗
-const { showConfirmModal, confirmOptions, showConfirm, handleConfirm, handleCancel } = useConfirm()
+// 确认弹窗状态
+const showConfirmModal = ref(false)
+const confirmOptions = ref({ title: '', message: '', confirmText: '继续', cancelText: '取消' })
+let confirmResolve = null
+const showConfirm = (title, message, confirmText = '继续', cancelText = '取消') => {
+  return new Promise((resolve) => {
+    confirmOptions.value = { title, message, confirmText, cancelText }
+    confirmResolve = resolve
+    showConfirmModal.value = true
+  })
+}
+const handleConfirm = () => {
+  showConfirmModal.value = false
+  confirmResolve?.(true)
+  confirmResolve = null
+}
+const handleCancel = () => {
+  showConfirmModal.value = false
+  confirmResolve?.(false)
+  confirmResolve = null
+}
 
 // 数据状态
 const accounts = ref([])
 const accountsLoading = ref(false)
+const refreshingBalances = ref(false)
 const accountsSortBy = ref('name')
 const accountsSortOrder = ref('asc')
 const apiKeys = ref([]) // 保留用于其他功能（如删除账户时显示绑定信息）
@@ -2145,7 +2251,8 @@ const supportedUsagePlatforms = [
   'openai-responses',
   'gemini',
   'droid',
-  'gemini-api'
+  'gemini-api',
+  'bedrock'
 ]
 
 // 过期时间编辑弹窗状态
@@ -2237,16 +2344,16 @@ const platformGroupMap = {
 
 // 平台请求处理器
 const platformRequestHandlers = {
-  claude: () => httpApi.getClaudeAccounts(),
-  'claude-console': () => httpApi.getClaudeConsoleAccounts(),
-  bedrock: () => httpApi.getBedrockAccounts(),
-  gemini: () => httpApi.getGeminiAccounts(),
-  openai: () => httpApi.getOpenAIAccounts(),
-  azure_openai: () => httpApi.getAzureOpenAIAccounts(),
-  'openai-responses': () => httpApi.getOpenAIResponsesAccounts(),
-  ccr: () => httpApi.getCcrAccounts(),
-  droid: () => httpApi.getDroidAccounts(),
-  'gemini-api': () => httpApi.getGeminiApiAccounts()
+  claude: () => httpApis.getClaudeAccountsApi(),
+  'claude-console': () => httpApis.getClaudeConsoleAccountsApi(),
+  bedrock: () => httpApis.getBedrockAccountsApi(),
+  gemini: () => httpApis.getGeminiAccountsApi(),
+  openai: () => httpApis.getOpenAIAccountsApi(),
+  azure_openai: () => httpApis.getAzureOpenAIAccountsApi(),
+  'openai-responses': () => httpApis.getOpenAIResponsesAccountsApi(),
+  ccr: () => httpApis.getCcrAccountsApi(),
+  droid: () => httpApis.getDroidAccountsApi(),
+  'gemini-api': () => httpApis.getGeminiApiAccountsApi()
 }
 
 const allPlatformKeys = Object.keys(platformRequestHandlers)
@@ -2464,7 +2571,7 @@ const openAccountUsageModal = async (account) => {
   accountUsageOverview.value = {}
   accountUsageGeneratedAt.value = ''
 
-  const response = await httpApi.getAccountUsageHistory(account.id, account.platform, 30)
+  const response = await httpApis.getAccountUsageHistoryApi(account.id, account.platform, 30)
   if (response.success) {
     const data = response.data || {}
     accountUsageHistory.value = data.history || []
@@ -2532,6 +2639,43 @@ const handleScheduledTestSaved = () => {
   showToast('定时测试配置已保存', 'success')
 }
 
+// 余额脚本配置
+const showBalanceScriptModal = ref(false)
+const selectedAccountForScript = ref(null)
+
+const openBalanceScriptModal = (account) => {
+  selectedAccountForScript.value = account
+  showBalanceScriptModal.value = true
+}
+
+const closeBalanceScriptModal = () => {
+  showBalanceScriptModal.value = false
+  selectedAccountForScript.value = null
+}
+
+const handleBalanceScriptSaved = async () => {
+  showToast('余额脚本已保存', 'success')
+  const account = selectedAccountForScript.value
+  closeBalanceScriptModal()
+
+  if (!account?.id || !account?.platform) {
+    return
+  }
+
+  // 重新拉取一次余额信息，用于刷新 scriptConfigured 状态（启用"刷新余额"按钮）
+  try {
+    const res = await httpApis.getAccountBalanceApi(account.id, {
+      platform: account.platform,
+      queryApi: false
+    })
+    if (res?.success && res.data) {
+      handleBalanceRefreshed(account.id, res.data)
+    }
+  } catch (error) {
+    console.debug('Failed to reload balance after saving script:', error)
+  }
+}
+
 // 计算排序后的账户列表
 const sortedAccounts = computed(() => {
   let sourceAccounts = accounts.value
@@ -2802,6 +2946,104 @@ const paginatedAccounts = computed(() => {
   return sortedAccounts.value.slice(start, end)
 })
 
+const canRefreshVisibleBalances = computed(() => {
+  const targets = paginatedAccounts.value
+  if (!Array.isArray(targets) || targets.length === 0) {
+    return false
+  }
+
+  return targets.some((account) => {
+    const info = account?.balanceInfo
+    return info?.scriptEnabled !== false && !!info?.scriptConfigured
+  })
+})
+
+const refreshBalanceTooltip = computed(() => {
+  if (accountsLoading.value) return '正在加载账户...'
+  if (refreshingBalances.value) return '刷新中...'
+  if (!canRefreshVisibleBalances.value) return '当前页未配置余额脚本，无法刷新'
+  return '刷新当前页余额（仅对已配置余额脚本的账户生效）'
+})
+
+// 余额刷新成功回调
+const handleBalanceRefreshed = (accountId, balanceInfo) => {
+  accounts.value = accounts.value.map((account) => {
+    if (account.id !== accountId) return account
+    return { ...account, balanceInfo }
+  })
+}
+
+// 余额请求错误回调（仅提示，不中断页面）
+const handleBalanceError = (_accountId, error) => {
+  const message = error?.message || '余额查询失败'
+  showToast(message, 'error')
+}
+
+// 批量刷新当前页余额（触发查询）
+const refreshVisibleBalances = async () => {
+  if (refreshingBalances.value) return
+
+  const targets = paginatedAccounts.value
+  if (!targets || targets.length === 0) {
+    return
+  }
+
+  const eligibleTargets = targets.filter((account) => {
+    const info = account?.balanceInfo
+    return info?.scriptEnabled !== false && !!info?.scriptConfigured
+  })
+
+  if (eligibleTargets.length === 0) {
+    showToast('当前页没有配置余额脚本的账户', 'warning')
+    return
+  }
+
+  const skippedCount = targets.length - eligibleTargets.length
+
+  refreshingBalances.value = true
+  try {
+    const results = await Promise.all(
+      eligibleTargets.map(async (account) => {
+        try {
+          const response = await httpApis.refreshAccountBalanceApi(account.id, {
+            platform: account.platform
+          })
+          return { id: account.id, success: !!response?.success, data: response?.data || null }
+        } catch (error) {
+          return { id: account.id, success: false, error: error?.message || '刷新失败' }
+        }
+      })
+    )
+
+    const updatedMap = results.reduce((map, item) => {
+      if (item.success && item.data) {
+        map[item.id] = item.data
+      }
+      return map
+    }, {})
+
+    const successCount = results.filter((r) => r.success).length
+    const failCount = results.length - successCount
+
+    const skippedText = skippedCount > 0 ? `，跳过 ${skippedCount} 个未配置脚本` : ''
+    if (Object.keys(updatedMap).length > 0) {
+      accounts.value = accounts.value.map((account) => {
+        const balanceInfo = updatedMap[account.id]
+        if (!balanceInfo) return account
+        return { ...account, balanceInfo }
+      })
+    }
+
+    if (failCount === 0) {
+      showToast(`成功刷新 ${successCount} 个账户余额${skippedText}`, 'success')
+    } else {
+      showToast(`刷新完成：${successCount} 成功，${failCount} 失败${skippedText}`, 'warning')
+    }
+  } finally {
+    refreshingBalances.value = false
+  }
+}
+
 const updateSelectAllState = () => {
   const currentIds = paginatedAccounts.value.map((account) => account.id)
   const selectedInCurrentPage = currentIds.filter((id) =>
@@ -2852,6 +3094,52 @@ const cleanupSelectedAccounts = () => {
   updateSelectAllState()
 }
 
+// 异步加载余额缓存（按平台批量拉取，避免逐行请求）
+const loadBalanceCacheForAccounts = async () => {
+  const current = accounts.value
+  if (!Array.isArray(current) || current.length === 0) {
+    return
+  }
+
+  const platforms = Array.from(new Set(current.map((acc) => acc.platform).filter(Boolean)))
+  if (platforms.length === 0) {
+    return
+  }
+
+  const responses = await Promise.all(
+    platforms.map(async (platform) => {
+      try {
+        const res = await httpApis.getBalanceByPlatformApi(platform, { queryApi: false })
+        return { platform, success: !!res?.success, data: res?.data || [] }
+      } catch (error) {
+        console.debug(`Failed to load balance cache for ${platform}:`, error)
+        return { platform, success: false, data: [] }
+      }
+    })
+  )
+
+  const balanceMap = responses.reduce((map, item) => {
+    if (!item.success) return map
+    const list = Array.isArray(item.data) ? item.data : []
+    list.forEach((entry) => {
+      const accountId = entry?.data?.accountId
+      if (accountId) {
+        map[accountId] = entry.data
+      }
+    })
+    return map
+  }, {})
+
+  if (Object.keys(balanceMap).length === 0) {
+    return
+  }
+
+  accounts.value = accounts.value.map((account) => ({
+    ...account,
+    balanceInfo: balanceMap[account.id] || account.balanceInfo || null
+  }))
+}
+
 // 加载账户列表
 const loadAccounts = async (forceReload = false) => {
   accountsLoading.value = true
@@ -3026,6 +3314,11 @@ const loadAccounts = async (forceReload = false) => {
         console.debug('Claude usage loading failed:', err)
       })
     }
+
+    // 异步加载余额缓存（按平台批量）
+    loadBalanceCacheForAccounts().catch((err) => {
+      console.debug('Balance cache loading failed:', err)
+    })
   } catch (error) {
     showToast('加载账户失败', 'error')
   } finally {
@@ -3035,7 +3328,7 @@ const loadAccounts = async (forceReload = false) => {
 
 // 异步加载 Claude 账户的 Usage 数据
 const loadClaudeUsage = async () => {
-  const response = await httpApi.getClaudeAccountsUsage()
+  const response = await httpApis.getClaudeAccountsUsageApi()
   if (response.success && response.data) {
     const usageMap = response.data
     accounts.value = accounts.value.map((account) => {
@@ -3077,16 +3370,6 @@ const handleDropdownSort = (field) => {
 }
 
 // 格式化数字（与原版保持一致）
-const formatNumber = (num) => {
-  if (num === null || num === undefined) return '0'
-  const number = Number(num)
-  if (number >= 1000000) {
-    return (number / 1000000).toFixed(2)
-  } else if (number >= 1000) {
-    return (number / 1000000).toFixed(4)
-  }
-  return (number / 1000000).toFixed(6)
-}
 
 // 格式化最后使用时间
 const formatLastUsed = (dateString) => {
@@ -3112,7 +3395,7 @@ const clearSearch = () => {
 // 加载绑定计数（轻量级接口，用于显示"绑定: X 个API Key"）
 const loadBindingCounts = async (forceReload = false) => {
   if (!forceReload && bindingCountsLoaded.value) return
-  const response = await httpApi.getAccountsBindingCounts()
+  const response = await httpApis.getAccountsBindingCountsApi()
   if (response.success) {
     bindingCounts.value = response.data || {}
     bindingCountsLoaded.value = true
@@ -3122,7 +3405,7 @@ const loadBindingCounts = async (forceReload = false) => {
 // 加载API Keys列表（保留用于其他功能，如删除账户时显示绑定信息）
 const loadApiKeys = async (forceReload = false) => {
   if (!forceReload && apiKeysLoaded.value) return
-  const response = await httpApi.getApiKeys()
+  const response = await httpApis.getApiKeysApi()
   if (response.success) {
     apiKeys.value = response.data?.items || response.data || []
     apiKeysLoaded.value = true
@@ -3132,7 +3415,7 @@ const loadApiKeys = async (forceReload = false) => {
 // 加载账户分组列表（缓存版本）
 const loadAccountGroups = async (forceReload = false) => {
   if (!forceReload && groupsLoaded.value) return
-  const response = await httpApi.getAccountGroups()
+  const response = await httpApis.getAccountGroupsApi()
   if (response.success) {
     accountGroups.value = response.data || []
     groupsLoaded.value = true
@@ -3421,7 +3704,7 @@ const resolveAccountDeleteEndpoint = (account) => {
 const performAccountDeletion = async (account) => {
   const endpoint = resolveAccountDeleteEndpoint(account)
   if (!endpoint) return { success: false, message: '不支持的账户类型' }
-  const data = await httpApi.deleteAccountByEndpoint(endpoint)
+  const data = await httpApis.deleteAccountByEndpointApi(endpoint)
   if (data.success) return { success: true, data }
   return { success: false, message: data.message || '删除失败' }
 }
@@ -3591,7 +3874,7 @@ const resetAccountStatus = async (account) => {
       return
     }
 
-    const data = await httpApi.testAccountByEndpoint(endpoint)
+    const data = await httpApis.testAccountByEndpointApi(endpoint)
     if (data.success) {
       showToast('账户状态已重置', 'success')
       loadAccounts(true)
@@ -3637,7 +3920,7 @@ const toggleSchedulable = async (account) => {
     return
   }
 
-  const data = await httpApi.toggleAccountStatus(endpoint)
+  const data = await httpApis.toggleAccountStatusApi(endpoint)
   if (data.success) {
     account.schedulable = data.schedulable
     showToast(data.schedulable ? '已启用调度' : '已禁用调度', 'success')
@@ -4009,9 +4292,6 @@ const getAccountStatusDotClass = (account) => {
 // }
 
 // 格式化相对时间
-const formatRelativeTime = (dateString) => {
-  return formatLastUsed(dateString)
-}
 
 // 获取会话窗口进度条的样式类
 const getSessionProgressBarClass = (status, account = null) => {
@@ -4442,7 +4722,9 @@ const handleSaveAccountExpiry = async ({ accountId, expiresAt }) => {
         return
     }
 
-    const data = await httpApi.updateAccountByEndpoint(endpoint, { expiresAt: expiresAt || null })
+    const data = await httpApis.updateAccountByEndpointApi(endpoint, {
+      expiresAt: expiresAt || null
+    })
     if (data.success) {
       showToast('账户到期时间已更新', 'success')
       account.expiresAt = expiresAt || null
diff --git a/web/admin-spa/src/views/ApiKeyUsageRecordsView.vue b/web/admin-spa/src/views/ApiKeyUsageRecordsView.vue
index c755fb09..9f7fd3e4 100644
--- a/web/admin-spa/src/views/ApiKeyUsageRecordsView.vue
+++ b/web/admin-spa/src/views/ApiKeyUsageRecordsView.vue
@@ -295,9 +295,8 @@
 import { computed, onMounted, reactive, ref, watch } from 'vue'
 import dayjs from 'dayjs'
 import { useRoute, useRouter } from 'vue-router'
-import * as httpApi from '@/utils/http_apis'
-import { showToast } from '@/utils/tools'
-import { formatNumber } from '@/utils/tools'
+import { getApiKeyUsageRecordsApi } from '@/utils/http_apis'
+import { showToast, formatNumber, formatDate } from '@/utils/tools'
 import RecordDetailModal from '@/components/apikeys/RecordDetailModal.vue'
 
 const route = useRoute()
@@ -345,11 +344,6 @@ const dateRangeHint = computed(() => {
   return `${formatDate(filters.dateRange[0])} ~ ${formatDate(filters.dateRange[1])}`
 })
 
-const formatDate = (value) => {
-  if (!value) return '--'
-  return dayjs(value).format('YYYY-MM-DD HH:mm:ss')
-}
-
 const formatCost = (value) => {
   const num = typeof value === 'number' ? value : 0
   if (num >= 1) return `$${num.toFixed(2)}`
@@ -410,9 +404,7 @@ const syncResponseState = (data) => {
 const fetchRecords = async (page = pagination.currentPage) => {
   loading.value = true
   try {
-    const response = await httpApi.get(`/admin/api-keys/${keyId.value}/usage-records`, {
-      params: buildParams(page)
-    })
+    const response = await getApiKeyUsageRecordsApi(keyId.value, buildParams(page))
     syncResponseState(response.data || {})
   } catch (error) {
     showToast(`加载请求记录失败：${error.message || '未知错误'}`, 'error')
@@ -465,8 +457,9 @@ const exportCsv = async () => {
     const maxPages = 50 // 50 * 200 = 10000，超过后端 5000 上限已足够
 
     while (page <= totalPages && page <= maxPages) {
-      const response = await httpApi.get(`/admin/api-keys/${keyId.value}/usage-records`, {
-        params: { ...buildParams(page), pageSize: 200 }
+      const response = await getApiKeyUsageRecordsApi(keyId.value, {
+        ...buildParams(page),
+        pageSize: 200
       })
       const payload = response.data || {}
       aggregated.push(...(payload.records || []))
diff --git a/web/admin-spa/src/views/ApiKeysView.vue b/web/admin-spa/src/views/ApiKeysView.vue
index ccc2f3ae..a68ca4e4 100644
--- a/web/admin-spa/src/views/ApiKeysView.vue
+++ b/web/admin-spa/src/views/ApiKeysView.vue
@@ -221,6 +221,18 @@
                 <span class="relative">导出数据</span>
               </button>
 
+              <!-- 管理标签按钮 -->
+              <button
+                class="group relative flex items-center justify-center gap-2 rounded-lg border border-gray-200 bg-white px-4 py-2 text-sm font-medium text-gray-700 shadow-sm transition-all duration-200 hover:border-gray-300 hover:shadow-md dark:border-gray-600 dark:bg-gray-800 dark:text-gray-200 dark:hover:border-gray-500 sm:w-auto"
+                @click="showTagManagementModal = true"
+              >
+                <div
+                  class="absolute -inset-0.5 rounded-lg bg-gradient-to-r from-purple-500 to-pink-500 opacity-0 blur transition duration-300 group-hover:opacity-20"
+                ></div>
+                <i class="fas fa-tags relative text-purple-500" />
+                <span class="relative">管理标签</span>
+              </button>
+
               <!-- 批量编辑按钮 - 移到刷新按钮旁边 -->
               <button
                 v-if="selectedApiKeys.length > 0"
@@ -2118,6 +2130,12 @@
       @open-timeline="openTimeline"
     />
 
+    <TagManagementModal
+      :show="showTagManagementModal"
+      @close="showTagManagementModal = false"
+      @updated="loadApiKeys"
+    />
+
     <ConfirmModal
       :cancel-text="confirmModalConfig.cancelText"
       :confirm-text="confirmModalConfig.confirmText"
@@ -2134,9 +2152,9 @@
 <script setup>
 import { ref, reactive, computed, onMounted, onUnmounted, watch } from 'vue'
 import { useRouter } from 'vue-router'
-import { showToast } from '@/utils/tools'
-import { copyText } from '@/utils/tools'
-import * as httpApi from '@/utils/http_apis'
+import { showToast, copyText, formatNumber, formatDate } from '@/utils/tools'
+
+import * as httpApis from '@/utils/http_apis'
 import { useAuthStore } from '@/stores/auth'
 import * as XLSX from 'xlsx-js-style'
 import CreateApiKeyModal from '@/components/apikeys/CreateApiKeyModal.vue'
@@ -2147,6 +2165,7 @@ import BatchApiKeyModal from '@/components/apikeys/BatchApiKeyModal.vue'
 import BatchEditApiKeyModal from '@/components/apikeys/BatchEditApiKeyModal.vue'
 import ExpiryEditModal from '@/components/apikeys/ExpiryEditModal.vue'
 import UsageDetailModal from '@/components/apikeys/UsageDetailModal.vue'
+import TagManagementModal from '@/components/apikeys/TagManagementModal.vue'
 import LimitProgressBar from '@/components/apikeys/LimitProgressBar.vue'
 import CustomDropdown from '@/components/common/CustomDropdown.vue'
 import ActionDropdown from '@/components/common/ActionDropdown.vue'
@@ -2315,6 +2334,7 @@ const showRenewApiKeyModal = ref(false)
 const showNewApiKeyModal = ref(false)
 const showBatchApiKeyModal = ref(false)
 const showBatchEditModal = ref(false)
+const showTagManagementModal = ref(false)
 const editingApiKey = ref(null)
 const renewingApiKey = ref(null)
 const newApiKeyData = ref(null)
@@ -2445,15 +2465,15 @@ const loadAccounts = async (forceRefresh = false) => {
       droidData,
       groupsData
     ] = await Promise.all([
-      httpApi.getClaudeAccounts(),
-      httpApi.getClaudeConsoleAccounts(),
-      httpApi.getGeminiAccounts(),
-      httpApi.getGeminiApiAccounts(),
-      httpApi.getOpenAIAccounts(),
-      httpApi.getOpenAIResponsesAccounts(),
-      httpApi.getBedrockAccounts(),
-      httpApi.getDroidAccounts(),
-      httpApi.getAccountGroups()
+      httpApis.getClaudeAccountsApi(),
+      httpApis.getClaudeConsoleAccountsApi(),
+      httpApis.getGeminiAccountsApi(),
+      httpApis.getGeminiApiAccountsApi(),
+      httpApis.getOpenAIAccountsApi(),
+      httpApis.getOpenAIResponsesAccountsApi(),
+      httpApis.getBedrockAccountsApi(),
+      httpApis.getDroidAccountsApi(),
+      httpApis.getAccountGroupsApi()
     ])
 
     // 合并Claude OAuth账户和Claude Console账户
@@ -2559,7 +2579,7 @@ const loadAccounts = async (forceRefresh = false) => {
 // 加载已使用的模型列表
 const loadUsedModels = async () => {
   try {
-    const data = await httpApi.get('/admin/api-keys/used-models')
+    const data = await httpApis.getApiKeyUsedModelsApi()
     if (data.success) {
       availableModels.value = data.data || []
     }
@@ -2648,7 +2668,7 @@ const loadApiKeys = async (clearStatsCache = true) => {
       params.set('timeRange', globalDateFilter.preset)
     }
 
-    const data = await httpApi.getApiKeysWithParams(params.toString())
+    const data = await httpApis.getApiKeysWithParamsApi(params.toString())
     if (data.success) {
       // 更新数据
       apiKeys.value = data.data?.items || []
@@ -2729,7 +2749,7 @@ const loadPageStats = async () => {
       requestBody.endDate = endDate
     }
 
-    const response = await httpApi.post('/admin/api-keys/batch-stats', requestBody)
+    const response = await httpApis.getApiKeysBatchStatsApi(requestBody)
 
     if (response.success && response.data) {
       // 更新缓存
@@ -2783,7 +2803,7 @@ const loadPageLastUsage = async () => {
   keyIds.forEach((id) => lastUsageLoading.value.add(id))
 
   try {
-    const response = await httpApi.post('/admin/api-keys/batch-last-usage', { keyIds })
+    const response = await httpApis.getApiKeysBatchLastUsageApi({ keyIds })
 
     if (response.success && response.data) {
       // 更新缓存
@@ -2814,7 +2834,7 @@ const loadDeletedApiKeys = async () => {
   activeTab.value = 'deleted'
   deletedApiKeysLoading.value = true
   try {
-    const data = await httpApi.get('/admin/api-keys/deleted')
+    const data = await httpApis.getDeletedApiKeysApi()
     if (data.success) {
       deletedApiKeys.value = data.apiKeys || []
     }
@@ -2893,7 +2913,7 @@ let costSortStatusTimer = null
 // 获取费用排序索引状态
 const fetchCostSortStatus = async () => {
   try {
-    const data = await httpApi.get('/admin/api-keys/cost-sort-status')
+    const data = await httpApis.getApiKeysCostSortStatusApi()
     if (data.success) {
       costSortStatus.value = data.data || {}
 
@@ -2924,10 +2944,6 @@ const scheduleNextCostSortStatusRefresh = () => {
 }
 
 // 格式化数字
-const formatNumber = (num) => {
-  if (!num && num !== 0) return '0'
-  return num.toLocaleString('zh-CN')
-}
 
 // 格式化Token数量
 const formatTokenCount = (count) => {
@@ -3227,22 +3243,18 @@ const loadApiKeyModelStats = async (keyId, forceReload = false) => {
   const filter = getApiKeyDateFilter(keyId)
 
   try {
-    let url = `/admin/api-keys/${keyId}/model-stats`
-    const params = new URLSearchParams()
+    const params = {}
 
     if (filter.customStart && filter.customEnd) {
-      params.append('startDate', filter.customStart)
-      params.append('endDate', filter.customEnd)
-      params.append('period', 'custom')
+      params.startDate = filter.customStart
+      params.endDate = filter.customEnd
+      params.period = 'custom'
     } else {
-      const period =
+      params.period =
         filter.preset === 'today' ? 'daily' : filter.preset === '7days' ? 'daily' : 'monthly'
-      params.append('period', period)
     }
 
-    url += '?' + params.toString()
-
-    const data = await httpApi.get(url)
+    const data = await httpApis.getApiKeyModelStatsApi(keyId, params)
     if (data.success) {
       apiKeyModelStats.value[keyId] = data.data || []
     }
@@ -3906,7 +3918,7 @@ const toggleApiKeyStatus = async (key) => {
   if (!confirmed) return
 
   try {
-    const data = await httpApi.updateApiKey(key.id, { isActive: !key.isActive })
+    const data = await httpApis.updateApiKeyApi(key.id, { isActive: !key.isActive })
 
     if (data.success) {
       showToast(`API Key 已${key.isActive ? '禁用' : '激活'}`, 'success')
@@ -3937,7 +3949,7 @@ const deleteApiKey = async (keyId) => {
   if (!confirmed) return
 
   try {
-    const data = await httpApi.deleteApiKey(keyId)
+    const data = await httpApis.deleteApiKeyApi(keyId)
     if (data.success) {
       showToast('API Key 已删除', 'success')
       // 从选中列表中移除
@@ -3968,7 +3980,7 @@ const restoreApiKey = async (keyId) => {
   if (!confirmed) return
 
   try {
-    const data = await httpApi.restoreApiKey(keyId)
+    const data = await httpApis.restoreApiKeyApi(keyId)
     if (data.success) {
       showToast('API Key 已成功恢复', 'success')
       // 刷新已删除列表
@@ -3996,7 +4008,7 @@ const permanentDeleteApiKey = async (keyId) => {
   if (!confirmed) return
 
   try {
-    const data = await httpApi.permanentDeleteApiKey(keyId)
+    const data = await httpApis.permanentDeleteApiKeyApi(keyId)
     if (data.success) {
       showToast('API Key 已彻底删除', 'success')
       // 刷新已删除列表
@@ -4028,7 +4040,7 @@ const clearAllDeletedApiKeys = async () => {
   if (!confirmed) return
 
   try {
-    const data = await httpApi.del('/admin/api-keys/deleted/clear-all')
+    const data = await httpApis.clearAllDeletedApiKeysApi()
     if (data.success) {
       showToast(data.message || '已清空所有已删除的 API Keys', 'success')
 
@@ -4070,9 +4082,7 @@ const batchDeleteApiKeys = async () => {
   const keyIds = [...selectedApiKeys.value]
 
   try {
-    const data = await httpApi.del('/admin/api-keys/batch', {
-      data: { keyIds }
-    })
+    const data = await httpApis.batchDeleteApiKeysApi({ keyIds })
 
     if (data.success) {
       const { successCount, failedCount, errors } = data.data
@@ -4152,7 +4162,7 @@ const closeExpiryEdit = () => {
 const handleSaveExpiry = async ({ keyId, expiresAt, activateNow }) => {
   try {
     // 使用新的PATCH端点来修改过期时间
-    const data = await httpApi.updateApiKeyExpiration(keyId, {
+    const data = await httpApis.updateApiKeyExpirationApi(keyId, {
       expiresAt: expiresAt || null,
       activateNow: activateNow || false
     })
@@ -4190,21 +4200,6 @@ const handleSaveExpiry = async ({ keyId, expiresAt, activateNow }) => {
   }
 }
 
-// 格式化日期时间
-const formatDate = (dateString) => {
-  if (!dateString) return ''
-  const date = new Date(dateString)
-  return date
-    .toLocaleDateString('zh-CN', {
-      year: 'numeric',
-      month: '2-digit',
-      day: '2-digit',
-      hour: '2-digit',
-      minute: '2-digit'
-    })
-    .replace(/\//g, '-')
-}
-
 // 格式化时间窗口倒计时
 const formatWindowTime = (seconds) => {
   if (seconds === null || seconds === undefined) return '--:--'
@@ -4472,18 +4467,12 @@ const exportToExcel = () => {
         过期时间: key.expiresAt ? formatDate(key.expiresAt) : '',
 
         // 权限配置
-        服务权限:
-          key.permissions === 'all'
-            ? '全部服务'
-            : key.permissions === 'claude'
-              ? '仅Claude'
-              : key.permissions === 'gemini'
-                ? '仅Gemini'
-                : key.permissions === 'openai'
-                  ? '仅OpenAI'
-                  : key.permissions === 'droid'
-                    ? '仅Droid'
-                    : key.permissions || '',
+        服务权限: (() => {
+          const p = key.permissions
+          if (!p || p === 'all') return '全部服务'
+          if (Array.isArray(p)) return p.length === 0 ? '全部服务' : p.join(', ')
+          return p
+        })(),
 
         // 限制配置
         令牌限制: key.tokenLimit === '0' || key.tokenLimit === 0 ? '无限制' : key.tokenLimit || '',
diff --git a/web/admin-spa/src/views/ApiStatsView.vue b/web/admin-spa/src/views/ApiStatsView.vue
index 30ed6889..e3da7112 100644
--- a/web/admin-spa/src/views/ApiStatsView.vue
+++ b/web/admin-spa/src/views/ApiStatsView.vue
@@ -11,7 +11,13 @@
         <LogoTitle
           :loading="oemLoading"
           :logo-src="oemSettings.siteIconData || oemSettings.siteIcon"
-          :subtitle="currentTab === 'stats' ? 'API Key 使用统计' : '使用教程'"
+          :subtitle="
+            currentTab === 'stats'
+              ? 'API Key 使用统计'
+              : currentTab === 'quota'
+                ? '额度卡'
+                : '使用教程'
+          "
           :title="oemSettings.siteName"
         />
         <div class="flex items-center gap-2 md:gap-4">
@@ -52,7 +58,7 @@
     <div class="mb-4 sm:mb-6 md:mb-8">
       <div class="flex justify-center">
         <div
-          class="inline-flex w-full max-w-md rounded-full border border-white/20 bg-white/10 p-1 shadow-lg backdrop-blur-xl sm:w-auto"
+          class="inline-flex w-full max-w-2xl flex-wrap justify-center gap-1 rounded-full border border-white/20 bg-white/10 p-1 shadow-lg backdrop-blur-xl sm:w-auto sm:flex-nowrap"
         >
           <button
             :class="['tab-pill-button', currentTab === 'stats' ? 'active' : '']"
@@ -61,6 +67,13 @@
             <i class="fas fa-chart-line mr-1 md:mr-2" />
             <span class="text-sm md:text-base">统计查询</span>
           </button>
+          <button
+            :class="['tab-pill-button', currentTab === 'quota' ? 'active' : '']"
+            @click="switchToQuota"
+          >
+            <i class="fas fa-ticket-alt mr-1 md:mr-2" />
+            <span class="text-sm md:text-base">额度卡</span>
+          </button>
           <button
             :class="['tab-pill-button', currentTab === 'tutorial' ? 'active' : '']"
             @click="currentTab = 'tutorial'"
@@ -221,6 +234,239 @@
       </div>
     </div>
 
+    <!-- 额度卡内容（含二级 tab） -->
+    <div v-if="currentTab === 'quota'" class="tab-content">
+      <div class="glass-strong rounded-2xl p-4 shadow-xl sm:rounded-3xl sm:p-6 md:p-8">
+        <!-- 二级 Tab -->
+        <div
+          class="mb-4 flex gap-2 border-b border-gray-200 pb-4 dark:border-gray-700 md:mb-6 md:pb-6"
+        >
+          <button
+            :class="[
+              'rounded-lg px-4 py-2 text-sm font-medium transition-all',
+              quotaSubTab === 'redeem'
+                ? 'bg-blue-500 text-white'
+                : 'bg-gray-100 text-gray-600 hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-300 dark:hover:bg-gray-600'
+            ]"
+            @click="quotaSubTab = 'redeem'"
+          >
+            <i class="fas fa-ticket-alt mr-2" />
+            兑换额度卡
+          </button>
+          <button
+            :class="[
+              'rounded-lg px-4 py-2 text-sm font-medium transition-all',
+              quotaSubTab === 'history'
+                ? 'bg-blue-500 text-white'
+                : 'bg-gray-100 text-gray-600 hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-300 dark:hover:bg-gray-600'
+            ]"
+            @click="switchToHistorySubTab"
+          >
+            <i class="fas fa-history mr-2" />
+            兑换记录
+          </button>
+        </div>
+
+        <!-- 兑换额度卡子内容 -->
+        <div v-if="quotaSubTab === 'redeem'">
+          <!-- 需要先输入 API Key -->
+          <div v-if="!apiId" class="py-8 text-center">
+            <div class="mb-4 text-gray-500 dark:text-gray-400">
+              <i class="fas fa-key mb-4 block text-4xl opacity-50" />
+              <p>请先在「统计查询」页面输入您的 API Key</p>
+            </div>
+            <button
+              class="rounded-xl bg-gradient-to-r from-blue-500 to-cyan-500 px-6 py-2.5 font-medium text-white transition-all hover:from-blue-600 hover:to-cyan-600"
+              @click="currentTab = 'stats'"
+            >
+              前往输入 API Key
+            </button>
+          </div>
+
+          <!-- 兑换表单 -->
+          <div v-else>
+            <div class="mb-6 rounded-xl bg-blue-50 p-4 dark:bg-blue-900/20">
+              <p class="text-sm text-blue-700 dark:text-blue-300">
+                <i class="fas fa-info-circle mr-2" />
+                当前 API Key: <span class="font-medium">{{ statsData?.name || apiId }}</span>
+              </p>
+            </div>
+
+            <div class="space-y-4">
+              <div>
+                <label class="mb-2 block text-sm font-medium text-gray-700 dark:text-gray-300">
+                  额度卡卡号
+                </label>
+                <input
+                  v-model="redeemCode"
+                  class="w-full rounded-xl border border-gray-300 bg-white px-4 py-3 text-gray-900 placeholder-gray-400 transition-all focus:border-blue-500 focus:outline-none focus:ring-2 focus:ring-blue-500/20 dark:border-gray-600 dark:bg-gray-700 dark:text-gray-100 dark:placeholder-gray-500"
+                  placeholder="请输入额度卡卡号"
+                  type="text"
+                  @keyup.enter="handleRedeem"
+                />
+              </div>
+
+              <button
+                class="w-full rounded-xl bg-gradient-to-r from-green-500 to-emerald-500 px-6 py-3 font-medium text-white transition-all hover:from-green-600 hover:to-emerald-600 disabled:cursor-not-allowed disabled:opacity-50"
+                :disabled="!redeemCode.trim() || redeemLoading"
+                @click="handleRedeem"
+              >
+                <i v-if="redeemLoading" class="fas fa-spinner fa-spin mr-2" />
+                <i v-else class="fas fa-check-circle mr-2" />
+                {{ redeemLoading ? '兑换中...' : '立即兑换' }}
+              </button>
+            </div>
+
+            <!-- 兑换结果 -->
+            <div v-if="redeemResult" class="mt-6">
+              <div
+                :class="[
+                  'rounded-xl p-4',
+                  redeemResult.success
+                    ? redeemResult.hasWarnings
+                      ? 'bg-yellow-50 text-yellow-700 dark:bg-yellow-900/20 dark:text-yellow-300'
+                      : 'bg-green-50 text-green-700 dark:bg-green-900/20 dark:text-green-300'
+                    : 'bg-red-50 text-red-700 dark:bg-red-900/20 dark:text-red-300'
+                ]"
+              >
+                <div class="flex items-start gap-3">
+                  <i
+                    :class="[
+                      'mt-0.5 text-lg',
+                      redeemResult.success
+                        ? redeemResult.hasWarnings
+                          ? 'fas fa-exclamation-triangle'
+                          : 'fas fa-check-circle'
+                        : 'fas fa-times-circle'
+                    ]"
+                  />
+                  <div>
+                    <p class="font-medium">
+                      {{
+                        redeemResult.success
+                          ? redeemResult.hasWarnings
+                            ? '兑换成功（部分截断）'
+                            : '兑换成功'
+                          : '兑换失败'
+                      }}
+                    </p>
+                    <p class="mt-1 text-sm opacity-90">{{ redeemResult.message }}</p>
+                    <div v-if="redeemResult.success && redeemResult.data" class="mt-2 text-sm">
+                      <p v-if="redeemResult.data.quotaAdded">
+                        额度增加:
+                        <span class="font-medium">${{ redeemResult.data.quotaAdded }}</span>
+                      </p>
+                      <p v-if="redeemResult.data.timeAdded">
+                        有效期延长:
+                        <span class="font-medium"
+                          >{{ redeemResult.data.timeAdded
+                          }}{{
+                            redeemResult.data.timeUnit === 'days'
+                              ? '天'
+                              : redeemResult.data.timeUnit === 'hours'
+                                ? '小时'
+                                : '月'
+                          }}</span
+                        >
+                      </p>
+                    </div>
+                  </div>
+                </div>
+              </div>
+            </div>
+          </div>
+        </div>
+
+        <!-- 兑换记录子内容 -->
+        <div v-if="quotaSubTab === 'history'">
+          <!-- 需要先输入 API Key -->
+          <div v-if="!apiId" class="py-8 text-center">
+            <div class="mb-4 text-gray-500 dark:text-gray-400">
+              <i class="fas fa-key mb-4 block text-4xl opacity-50" />
+              <p>请先在「统计查询」页面输入您的 API Key</p>
+            </div>
+            <button
+              class="rounded-xl bg-gradient-to-r from-blue-500 to-cyan-500 px-6 py-2.5 font-medium text-white transition-all hover:from-blue-600 hover:to-cyan-600"
+              @click="currentTab = 'stats'"
+            >
+              前往输入 API Key
+            </button>
+          </div>
+
+          <!-- 记录列表 -->
+          <div v-else>
+            <div v-if="historyLoading" class="py-8 text-center">
+              <i class="fas fa-spinner fa-spin text-2xl text-gray-400" />
+              <p class="mt-2 text-gray-500 dark:text-gray-400">加载中...</p>
+            </div>
+
+            <div v-else-if="redemptionHistory.length === 0" class="py-8 text-center">
+              <i class="fas fa-inbox text-4xl text-gray-300 dark:text-gray-600" />
+              <p class="mt-2 text-gray-500 dark:text-gray-400">暂无兑换记录</p>
+            </div>
+
+            <div v-else class="space-y-3">
+              <div
+                v-for="record in redemptionHistory"
+                :key="record.id"
+                class="rounded-xl border border-gray-200 bg-white p-4 dark:border-gray-700 dark:bg-gray-800"
+              >
+                <div class="flex items-start justify-between gap-4">
+                  <div class="min-w-0 flex-1">
+                    <div class="mb-1 flex items-center gap-2">
+                      <span
+                        :class="[
+                          'inline-flex items-center rounded-full px-2 py-0.5 text-xs font-medium',
+                          record.cardType === 'quota'
+                            ? 'bg-blue-100 text-blue-700 dark:bg-blue-900/30 dark:text-blue-300'
+                            : record.cardType === 'time'
+                              ? 'bg-purple-100 text-purple-700 dark:bg-purple-900/30 dark:text-purple-300'
+                              : 'bg-green-100 text-green-700 dark:bg-green-900/30 dark:text-green-300'
+                        ]"
+                      >
+                        {{
+                          record.cardType === 'quota'
+                            ? '额度卡'
+                            : record.cardType === 'time'
+                              ? '时间卡'
+                              : '组合卡'
+                        }}
+                      </span>
+                      <span
+                        v-if="record.status === 'revoked'"
+                        class="inline-flex items-center rounded-full bg-red-100 px-2 py-0.5 text-xs font-medium text-red-700 dark:bg-red-900/30 dark:text-red-300"
+                      >
+                        已撤销
+                      </span>
+                    </div>
+                    <p class="text-sm text-gray-600 dark:text-gray-300">
+                      <span v-if="record.quotaAdded">额度 +${{ record.quotaAdded }}</span>
+                      <span v-if="record.quotaAdded && record.timeAdded"> · </span>
+                      <span v-if="record.timeAdded"
+                        >有效期 +{{ record.timeAmount
+                        }}{{
+                          record.timeUnit === 'days'
+                            ? '天'
+                            : record.timeUnit === 'hours'
+                              ? '小时'
+                              : '月'
+                        }}</span
+                      >
+                    </p>
+                  </div>
+                  <div
+                    class="whitespace-nowrap text-right text-xs text-gray-500 dark:text-gray-400"
+                  >
+                    {{ formatDateTime(record.redeemedAt) }}
+                  </div>
+                </div>
+              </div>
+            </div>
+          </div>
+        </div>
+      </div>
+    </div>
+
     <!-- API Key 测试弹窗 -->
     <ApiKeyTestModal
       :api-key-name="statsData?.name || ''"
@@ -284,6 +530,8 @@ import { useRoute } from 'vue-router'
 import { storeToRefs } from 'pinia'
 import { useApiStatsStore } from '@/stores/apistats'
 import { useThemeStore } from '@/stores/theme'
+import { redeemCardByApiIdApi, getRedemptionHistoryByApiIdApi } from '@/utils/http_apis'
+import { formatDateTime, showToast } from '@/utils/tools'
 import LogoTitle from '@/components/common/LogoTitle.vue'
 import ThemeToggle from '@/components/common/ThemeToggle.vue'
 import ApiKeyInput from '@/components/apistats/ApiKeyInput.vue'
@@ -338,25 +586,116 @@ const showNotice = ref(false)
 const dontShowAgain = ref(false)
 const NOTICE_STORAGE_KEY = 'apiStatsNoticeRead'
 
-// 检查是否可以测试 Claude（权限包含 claude 或 all）
+// 额度卡兑换相关状态
+const quotaSubTab = ref('redeem')
+const redeemCode = ref('')
+const redeemLoading = ref(false)
+const redeemResult = ref(null)
+const redemptionHistory = ref([])
+const historyLoading = ref(false)
+
+// 兑换额度卡
+const handleRedeem = async () => {
+  if (!redeemCode.value.trim() || !apiId.value) return
+
+  redeemLoading.value = true
+  redeemResult.value = null
+
+  const res = await redeemCardByApiIdApi({
+    apiId: apiId.value,
+    code: redeemCode.value.trim()
+  })
+
+  redeemLoading.value = false
+
+  if (res.success) {
+    const warnings = res.data?.warnings || []
+    const hasWarnings = warnings.length > 0
+    redeemResult.value = {
+      success: true,
+      message: hasWarnings ? warnings.join('；') : '额度卡兑换成功！',
+      data: res.data,
+      hasWarnings
+    }
+    redeemCode.value = ''
+    showToast(
+      hasWarnings ? '兑换成功（部分截断）' : '兑换成功',
+      hasWarnings ? 'warning' : 'success'
+    )
+    // 刷新统计数据
+    loadStatsWithApiId()
+  } else {
+    redeemResult.value = {
+      success: false,
+      message: res.error || res.message || '兑换失败'
+    }
+    showToast(res.error || res.message || '兑换失败', 'error')
+  }
+}
+
+// 加载兑换记录
+const loadRedemptionHistory = async () => {
+  if (!apiId.value) return
+
+  historyLoading.value = true
+  const res = await getRedemptionHistoryByApiIdApi(apiId.value)
+  historyLoading.value = false
+
+  if (res.success) {
+    redemptionHistory.value = res.data?.records || res.data || []
+  }
+}
+
+// 切换到额度卡 Tab
+const switchToQuota = () => {
+  currentTab.value = 'quota'
+  // 如果子标签是记录，刷新数据
+  if (quotaSubTab.value === 'history') {
+    loadRedemptionHistory()
+  }
+}
+
+// 切换到兑换记录子 Tab
+const switchToHistorySubTab = () => {
+  quotaSubTab.value = 'history'
+  loadRedemptionHistory()
+}
+
+// 解析 permissions（可能是 JSON 字符串或数组）
+const parsePermissions = (permissions) => {
+  if (!permissions) return []
+  if (Array.isArray(permissions)) return permissions
+  if (typeof permissions === 'string') {
+    if (permissions === 'all') return []
+    try {
+      const parsed = JSON.parse(permissions)
+      return Array.isArray(parsed) ? parsed : []
+    } catch {
+      return []
+    }
+  }
+  return []
+}
+
+// 检查是否可以测试 Claude（权限包含 claude 或全部）
 const canTestClaude = computed(() => {
-  const permissions = statsData.value?.permissions
-  if (!permissions) return true // 默认允许
-  return permissions === 'all' || permissions.includes('claude')
+  const permissions = parsePermissions(statsData.value?.permissions)
+  if (permissions.length === 0) return true
+  return permissions.includes('claude')
 })
 
 // 检查是否可以测试 Gemini
 const canTestGemini = computed(() => {
-  const permissions = statsData.value?.permissions
-  if (!permissions) return true
-  return permissions === 'all' || permissions.includes('gemini')
+  const permissions = parsePermissions(statsData.value?.permissions)
+  if (permissions.length === 0) return true
+  return permissions.includes('gemini')
 })
 
 // 检查是否可以测试 OpenAI
 const canTestOpenAI = computed(() => {
-  const permissions = statsData.value?.permissions
-  if (!permissions) return true
-  return permissions === 'all' || permissions.includes('openai')
+  const permissions = parsePermissions(statsData.value?.permissions)
+  if (permissions.length === 0) return true
+  return permissions.includes('openai')
 })
 
 // 检查是否有任何测试权限
@@ -366,18 +705,15 @@ const hasAnyTestPermission = computed(() => {
 
 // 可用服务文本
 const availableServicesText = computed(() => {
-  const permissions = statsData.value?.permissions
-  if (!permissions || permissions === 'all') return '全部服务'
+  const permissions = parsePermissions(statsData.value?.permissions)
+  if (permissions.length === 0) return '全部服务'
   const serviceNames = {
     claude: 'Claude',
     gemini: 'Gemini',
     openai: 'OpenAI',
     droid: 'Droid'
   }
-  return permissions
-    .split(',')
-    .map((s) => serviceNames[s.trim()] || s.trim())
-    .join(', ')
+  return permissions.map((s) => serviceNames[s] || s).join(', ')
 })
 
 // 切换测试菜单
diff --git a/web/admin-spa/src/views/BalanceScriptsView.vue b/web/admin-spa/src/views/BalanceScriptsView.vue
new file mode 100644
index 00000000..fac5c69a
--- /dev/null
+++ b/web/admin-spa/src/views/BalanceScriptsView.vue
@@ -0,0 +1,302 @@
+<template>
+  <div class="space-y-6">
+    <div class="flex flex-col gap-4 lg:flex-row">
+      <div class="glass-strong flex-1 rounded-2xl p-4 shadow-lg">
+        <div class="mb-3 flex items-center justify-between">
+          <div>
+            <div class="text-lg font-semibold text-gray-900 dark:text-gray-100">脚本余额配置</div>
+            <div class="text-xs text-gray-500 dark:text-gray-400">
+              使用自定义脚本 + 模板变量适配任意余额接口
+            </div>
+          </div>
+          <div class="flex gap-2">
+            <button
+              class="rounded-lg bg-gray-100 px-3 py-2 text-sm font-medium text-gray-700 transition hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-200 dark:hover:bg-gray-600"
+              @click="loadConfig"
+            >
+              重新加载
+            </button>
+            <button
+              class="rounded-lg bg-indigo-600 px-4 py-2 text-sm font-semibold text-white transition hover:bg-indigo-700"
+              :disabled="saving"
+              @click="saveConfig"
+            >
+              <span v-if="saving">保存中...</span>
+              <span v-else>保存配置</span>
+            </button>
+          </div>
+        </div>
+
+        <div class="grid gap-4 md:grid-cols-2">
+          <div class="space-y-2">
+            <label class="text-sm font-medium text-gray-700 dark:text-gray-200">API Key</label>
+            <input v-model="form.apiKey" class="input-text" placeholder="sk-xxxx" type="text" />
+          </div>
+          <div class="space-y-2">
+            <label class="text-sm font-medium text-gray-700 dark:text-gray-200">
+              请求地址（baseUrl）
+            </label>
+            <input
+              v-model="form.baseUrl"
+              class="input-text"
+              placeholder="https://api.example.com"
+              type="text"
+            />
+          </div>
+          <div class="space-y-2">
+            <label class="text-sm font-medium text-gray-700 dark:text-gray-200"
+              >Token（可选）</label
+            >
+            <input v-model="form.token" class="input-text" placeholder="Bearer token" type="text" />
+          </div>
+          <div class="grid grid-cols-2 gap-3">
+            <div class="space-y-2">
+              <label class="text-sm font-medium text-gray-700 dark:text-gray-200"
+                >超时时间(秒)</label
+              >
+              <input
+                v-model.number="form.timeoutSeconds"
+                class="input-text"
+                min="1"
+                type="number"
+              />
+            </div>
+            <div class="space-y-2">
+              <label class="text-sm font-medium text-gray-700 dark:text-gray-200">
+                自动查询间隔(分钟)
+              </label>
+              <input
+                v-model.number="form.autoIntervalMinutes"
+                class="input-text"
+                min="0"
+                type="number"
+              />
+            </div>
+          </div>
+          <div class="md:col-span-2">
+            <label class="text-sm font-medium text-gray-700 dark:text-gray-200">模板变量</label>
+            <p class="text-xs text-gray-500 dark:text-gray-400">
+              可用变量：{{ '{' }}{{ '{' }}baseUrl{{ '}' }}{{ '}' }}、{{ '{' }}{{ '{' }}apiKey{{ '}'
+              }}{{ '}' }}、{{ '{' }}{{ '{' }}token{{ '}' }}{{ '}' }}、{{ '{' }}{{ '{' }}accountId{{
+                '}'
+              }}{{ '}' }}、{{ '{' }}{{ '{' }}platform{{ '}' }}{{ '}' }}、{{ '{' }}{{ '{' }}extra{{
+                '}'
+              }}{{ '}' }}
+            </p>
+          </div>
+        </div>
+      </div>
+
+      <div class="glass-strong w-full max-w-xl rounded-2xl p-4 shadow-lg">
+        <div class="mb-3 flex items-center justify-between">
+          <div>
+            <div class="text-lg font-semibold text-gray-900 dark:text-gray-100">测试脚本</div>
+            <div class="text-xs text-gray-500 dark:text-gray-400">
+              填入账号上下文（可选），调试 extractor 输出
+            </div>
+          </div>
+          <button
+            class="rounded-lg bg-blue-600 px-4 py-2 text-sm font-semibold text-white transition hover:bg-blue-700"
+            :disabled="testing"
+            @click="testScript"
+          >
+            <span v-if="testing">测试中...</span>
+            <span v-else>测试脚本</span>
+          </button>
+        </div>
+        <div class="grid gap-3">
+          <div class="space-y-1">
+            <label class="text-sm font-medium text-gray-700 dark:text-gray-200">平台</label>
+            <input v-model="testForm.platform" class="input-text" placeholder="例如 claude" />
+          </div>
+          <div class="space-y-1">
+            <label class="text-sm font-medium text-gray-700 dark:text-gray-200">账号ID</label>
+            <input v-model="testForm.accountId" class="input-text" placeholder="账号标识，可选" />
+          </div>
+          <div class="space-y-1">
+            <label class="text-sm font-medium text-gray-700 dark:text-gray-200"
+              >额外参数 (extra)</label
+            >
+            <input v-model="testForm.extra" class="input-text" placeholder="可选" />
+          </div>
+        </div>
+
+        <div v-if="testResult" class="mt-4 space-y-2 rounded-xl bg-gray-50 p-3 dark:bg-gray-800/60">
+          <div class="flex items-center justify-between text-sm">
+            <span class="font-semibold text-gray-800 dark:text-gray-100">测试结果</span>
+            <span
+              :class="[
+                'rounded px-2 py-0.5 text-xs',
+                testResult.mapped?.status === 'success'
+                  ? 'bg-emerald-100 text-emerald-700 dark:bg-emerald-900/40 dark:text-emerald-200'
+                  : 'bg-red-100 text-red-700 dark:bg-red-900/40 dark:text-red-200'
+              ]"
+            >
+              {{ testResult.mapped?.status || 'unknown' }}
+            </span>
+          </div>
+          <div class="text-xs text-gray-600 dark:text-gray-300">
+            <div>余额: {{ displayAmount(testResult.mapped?.balance) }}</div>
+            <div>单位: {{ testResult.mapped?.currency || '—' }}</div>
+            <div v-if="testResult.mapped?.planName">套餐: {{ testResult.mapped.planName }}</div>
+            <div v-if="testResult.mapped?.errorMessage" class="text-red-500">
+              错误: {{ testResult.mapped.errorMessage }}
+            </div>
+            <div v-if="testResult.mapped?.quota">
+              配额: {{ JSON.stringify(testResult.mapped.quota) }}
+            </div>
+          </div>
+          <details class="text-xs text-gray-500 dark:text-gray-400">
+            <summary class="cursor-pointer">查看 extractor 输出</summary>
+            <pre class="mt-2 overflow-auto rounded bg-black/70 p-2 text-[11px] text-gray-100"
+              >{{ formatJson(testResult.extracted) }}
+</pre
+            >
+          </details>
+          <details class="text-xs text-gray-500 dark:text-gray-400">
+            <summary class="cursor-pointer">查看原始响应</summary>
+            <pre class="mt-2 overflow-auto rounded bg-black/70 p-2 text-[11px] text-gray-100"
+              >{{ formatJson(testResult.response) }}
+</pre
+            >
+          </details>
+        </div>
+      </div>
+    </div>
+
+    <div class="glass-strong rounded-2xl p-4 shadow-lg">
+      <div class="mb-2 flex items-center justify-between">
+        <div>
+          <div class="text-lg font-semibold text-gray-900 dark:text-gray-100">提取器代码</div>
+          <div class="text-xs text-gray-500 dark:text-gray-400">
+            返回对象需包含 request、extractor；支持模板变量替换
+          </div>
+        </div>
+        <button
+          class="rounded-lg bg-gray-100 px-3 py-2 text-sm font-medium text-gray-700 transition hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-200 dark:hover:bg-gray-600"
+          @click="applyPreset"
+        >
+          使用示例模板
+        </button>
+      </div>
+      <textarea
+        v-model="form.scriptBody"
+        class="min-h-[320px] w-full rounded-xl bg-gray-900 font-mono text-sm text-gray-100 shadow-inner focus:outline-none focus:ring-2 focus:ring-indigo-500"
+        spellcheck="false"
+      ></textarea>
+      <div class="mt-2 text-xs text-gray-500 dark:text-gray-400">
+        extractor
+        返回字段（可选）：isValid、invalidMessage、remaining、unit、planName、total、used、extra
+      </div>
+    </div>
+  </div>
+</template>
+
+<script setup>
+import { onMounted, reactive, ref } from 'vue'
+
+import {
+  getDefaultBalanceScriptApi,
+  updateDefaultBalanceScriptApi,
+  testDefaultBalanceScriptApi
+} from '@/utils/http_apis'
+import { showToast } from '@/utils/tools'
+
+const form = reactive({
+  baseUrl: '',
+  apiKey: '',
+  token: '',
+  timeoutSeconds: 10,
+  autoIntervalMinutes: 0,
+  scriptBody: ''
+})
+
+const testForm = reactive({
+  platform: '',
+  accountId: '',
+  extra: ''
+})
+
+const saving = ref(false)
+const testing = ref(false)
+const testResult = ref(null)
+
+const presetScript = `({
+  request: {
+    url: "{{baseUrl}}/user/balance",
+    method: "GET",
+    headers: {
+      "Authorization": "Bearer {{apiKey}}",
+      "User-Agent": "cc-switch/1.0"
+    }
+  },
+  extractor: function(response) {
+    return {
+      isValid: response.is_active || true,
+      remaining: response.balance,
+      unit: "USD",
+      planName: response.plan || "默认套餐"
+    };
+  }
+})`
+
+const loadConfig = async () => {
+  const res = await getDefaultBalanceScriptApi()
+  if (res?.success && res.data) {
+    Object.assign(form, res.data)
+  }
+}
+
+const saveConfig = async () => {
+  saving.value = true
+  const res = await updateDefaultBalanceScriptApi({ ...form })
+  if (res?.success) {
+    showToast('配置已保存', 'success')
+  } else {
+    showToast(res?.message || '保存失败', 'error')
+  }
+  saving.value = false
+}
+
+const testScript = async () => {
+  testing.value = true
+  testResult.value = null
+  const payload = { ...form, ...testForm, scriptBody: form.scriptBody }
+  const res = await testDefaultBalanceScriptApi(payload)
+  if (res?.success) {
+    testResult.value = res.data
+    showToast('测试完成', 'success')
+  } else {
+    showToast(res?.error || '测试失败', 'error')
+  }
+  testing.value = false
+}
+
+const applyPreset = () => {
+  form.scriptBody = presetScript
+}
+
+const displayAmount = (val) => {
+  if (val === null || val === undefined || Number.isNaN(Number(val))) return '—'
+  return Number(val).toFixed(2)
+}
+
+const formatJson = (data) => {
+  try {
+    return JSON.stringify(data, null, 2)
+  } catch (error) {
+    return String(data)
+  }
+}
+
+onMounted(() => {
+  applyPreset()
+  loadConfig()
+})
+</script>
+
+<style scoped>
+.input-text {
+  @apply w-full rounded-lg border border-gray-200 bg-white px-3 py-2 text-sm text-gray-800 shadow-sm transition focus:border-indigo-400 focus:outline-none focus:ring-2 focus:ring-indigo-200 dark:border-gray-700 dark:bg-gray-800 dark:text-gray-100 dark:focus:border-indigo-500 dark:focus:ring-indigo-600;
+}
+</style>
diff --git a/web/admin-spa/src/views/DashboardView.vue b/web/admin-spa/src/views/DashboardView.vue
index c61e633f..39caf0cb 100644
--- a/web/admin-spa/src/views/DashboardView.vue
+++ b/web/admin-spa/src/views/DashboardView.vue
@@ -196,6 +196,105 @@
       </div>
     </div>
 
+    <!-- 账户余额/配额汇总 -->
+    <div class="mb-4 grid grid-cols-1 gap-3 sm:mb-6 sm:grid-cols-2 sm:gap-4 md:mb-8 md:gap-6">
+      <div class="stat-card">
+        <div class="flex items-center justify-between">
+          <div>
+            <p class="mb-1 text-xs font-semibold text-gray-600 dark:text-gray-400 sm:text-sm">
+              账户余额/配额
+            </p>
+            <p class="text-2xl font-bold text-gray-900 dark:text-gray-100 sm:text-3xl">
+              {{ formatCurrencyUsd(balanceSummary.totalBalance || 0) }}
+            </p>
+            <p class="mt-1 text-xs text-gray-500 dark:text-gray-400">
+              低余额: {{ balanceSummary.lowBalanceCount || 0 }} | 总成本:
+              {{ formatCurrencyUsd(balanceSummary.totalCost || 0) }}
+            </p>
+          </div>
+          <div class="stat-icon flex-shrink-0 bg-gradient-to-br from-emerald-500 to-green-600">
+            <i class="fas fa-wallet" />
+          </div>
+        </div>
+
+        <div class="mt-3 flex items-center justify-between gap-3">
+          <p class="text-xs text-gray-500 dark:text-gray-400">
+            更新时间: {{ formatLastUpdate(balanceSummaryUpdatedAt) }}
+          </p>
+          <button
+            class="flex items-center gap-2 rounded-lg border border-gray-200 bg-white px-3 py-1.5 text-xs font-medium text-gray-700 shadow-sm transition-all duration-200 hover:border-gray-300 hover:shadow-md disabled:cursor-not-allowed disabled:opacity-50 dark:border-gray-600 dark:bg-gray-800 dark:text-gray-300 dark:hover:border-gray-500"
+            :disabled="loadingBalanceSummary"
+            @click="loadBalanceSummary"
+          >
+            <i :class="['fas', loadingBalanceSummary ? 'fa-spinner fa-spin' : 'fa-sync-alt']" />
+            刷新
+          </button>
+        </div>
+      </div>
+
+      <div class="card p-4 sm:p-6">
+        <div class="mb-3 flex items-center justify-between">
+          <h3 class="text-sm font-semibold text-gray-900 dark:text-gray-100">低余额账户</h3>
+          <span class="text-xs text-gray-500 dark:text-gray-400">
+            {{ lowBalanceAccounts.length }} 个
+          </span>
+        </div>
+
+        <div
+          v-if="loadingBalanceSummary"
+          class="py-6 text-center text-sm text-gray-500 dark:text-gray-400"
+        >
+          正在加载...
+        </div>
+        <div
+          v-else-if="lowBalanceAccounts.length === 0"
+          class="py-6 text-center text-sm text-green-600 dark:text-green-400"
+        >
+          全部正常
+        </div>
+        <div v-else class="max-h-64 space-y-2 overflow-y-auto">
+          <div
+            v-for="account in lowBalanceAccounts"
+            :key="account.accountId"
+            class="rounded-lg border border-red-200 bg-red-50 p-3 dark:border-red-900/60 dark:bg-red-900/20"
+          >
+            <div class="flex items-center justify-between gap-2">
+              <div class="truncate text-sm font-medium text-gray-900 dark:text-gray-100">
+                {{ account.name || account.accountId }}
+              </div>
+              <span
+                class="rounded bg-gray-100 px-2 py-0.5 text-xs text-gray-600 dark:bg-gray-700 dark:text-gray-300"
+              >
+                {{ getBalancePlatformLabel(account.platform) }}
+              </span>
+            </div>
+            <div class="mt-1 text-xs text-gray-600 dark:text-gray-400">
+              <span v-if="account.balance">余额: {{ account.balance.formattedAmount }}</span>
+              <span v-else
+                >今日成本: {{ formatCurrencyUsd(account.statistics?.dailyCost || 0) }}</span
+              >
+            </div>
+            <div v-if="account.quota && typeof account.quota.percentage === 'number'" class="mt-2">
+              <div
+                class="mb-1 flex items-center justify-between text-xs text-gray-600 dark:text-gray-400"
+              >
+                <span>配额使用</span>
+                <span class="text-red-600 dark:text-red-400">
+                  {{ account.quota.percentage.toFixed(1) }}%
+                </span>
+              </div>
+              <div class="h-2 w-full rounded-full bg-gray-200 dark:bg-gray-700">
+                <div
+                  class="h-2 rounded-full bg-red-500"
+                  :style="{ width: `${Math.min(100, account.quota.percentage)}%` }"
+                ></div>
+              </div>
+            </div>
+          </div>
+        </div>
+      </div>
+    </div>
+
     <!-- Token统计和性能指标 -->
     <div
       class="mb-4 grid grid-cols-1 gap-3 sm:mb-6 sm:grid-cols-2 sm:gap-4 md:mb-8 md:gap-6 lg:grid-cols-4"
@@ -679,9 +778,13 @@
 <script setup>
 import { ref, onMounted, onUnmounted, watch, nextTick, computed } from 'vue'
 import { storeToRefs } from 'pinia'
+import Chart from 'chart.js/auto'
+
 import { useDashboardStore } from '@/stores/dashboard'
 import { useThemeStore } from '@/stores/theme'
-import Chart from 'chart.js/auto'
+import { formatNumber, showToast } from '@/utils/tools'
+
+import { getBalanceSummaryApi } from '@/utils/http_apis'
 
 const dashboardStore = useDashboardStore()
 const themeStore = useThemeStore()
@@ -698,8 +801,7 @@ const {
   formattedUptime,
   dateFilter,
   trendGranularity,
-  apiKeysTrendMetric,
-  defaultTime
+  apiKeysTrendMetric
 } = storeToRefs(dashboardStore)
 
 const {
@@ -713,6 +815,9 @@ const {
   disabledDate
 } = dashboardStore
 
+// 日期选择器默认时间
+const defaultTime = [new Date(2000, 1, 1, 0, 0, 0), new Date(2000, 2, 1, 23, 59, 59)]
+
 // Chart 实例
 const modelUsageChart = ref(null)
 const usageTrendChart = ref(null)
@@ -732,6 +837,94 @@ const accountGroupOptions = [
 
 const accountTrendUpdating = ref(false)
 
+// 余额/配额汇总
+const balanceSummary = ref({
+  totalBalance: 0,
+  totalCost: 0,
+  lowBalanceCount: 0,
+  platforms: {}
+})
+const loadingBalanceSummary = ref(false)
+const balanceSummaryUpdatedAt = ref(null)
+
+const getBalancePlatformLabel = (platform) => {
+  const map = {
+    claude: 'Claude',
+    'claude-console': 'Claude Console',
+    gemini: 'Gemini',
+    'gemini-api': 'Gemini API',
+    openai: 'OpenAI',
+    'openai-responses': 'OpenAI Responses',
+    azure_openai: 'Azure OpenAI',
+    bedrock: 'Bedrock',
+    droid: 'Droid',
+    ccr: 'CCR'
+  }
+  return map[platform] || platform
+}
+
+const lowBalanceAccounts = computed(() => {
+  const result = []
+  const platforms = balanceSummary.value?.platforms || {}
+
+  Object.entries(platforms).forEach(([platform, data]) => {
+    const list = Array.isArray(data?.accounts) ? data.accounts : []
+    list.forEach((entry) => {
+      const accountData = entry?.data
+      if (!accountData) return
+
+      const amount = accountData.balance?.amount
+      const percentage = accountData.quota?.percentage
+
+      const isLowBalance = typeof amount === 'number' && amount < 10
+      const isHighUsage = typeof percentage === 'number' && percentage > 90
+
+      if (isLowBalance || isHighUsage) {
+        result.push({
+          ...accountData,
+          name: entry?.name || accountData.accountId,
+          platform: accountData.platform || platform
+        })
+      }
+    })
+  })
+
+  return result
+})
+
+const formatCurrencyUsd = (amount) => {
+  const value = Number(amount)
+  if (!Number.isFinite(value)) return '$0.00'
+  if (value >= 1) return `$${value.toFixed(2)}`
+  if (value >= 0.01) return `$${value.toFixed(3)}`
+  return `$${value.toFixed(6)}`
+}
+
+const formatLastUpdate = (isoString) => {
+  if (!isoString) return '未知'
+  const date = new Date(isoString)
+  if (Number.isNaN(date.getTime())) return '未知'
+  return date.toLocaleTimeString('zh-CN', { hour: '2-digit', minute: '2-digit' })
+}
+
+const loadBalanceSummary = async () => {
+  loadingBalanceSummary.value = true
+  const response = await getBalanceSummaryApi()
+  if (response?.success) {
+    balanceSummary.value = response.data || {
+      totalBalance: 0,
+      totalCost: 0,
+      lowBalanceCount: 0,
+      platforms: {}
+    }
+    balanceSummaryUpdatedAt.value = new Date().toISOString()
+  } else if (response?.message) {
+    console.debug('加载余额汇总失败:', response.message)
+    showToast('加载余额汇总失败', 'error')
+  }
+  loadingBalanceSummary.value = false
+}
+
 // 自动刷新相关
 const autoRefreshEnabled = ref(false)
 const autoRefreshInterval = ref(30) // 秒
@@ -753,16 +946,6 @@ const chartColors = computed(() => ({
   legend: isDarkMode.value ? '#e5e7eb' : '#374151'
 }))
 
-// 格式化数字
-function formatNumber(num) {
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(2) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(2) + 'K'
-  }
-  return num.toString()
-}
-
 function formatCostValue(cost) {
   if (!Number.isFinite(cost)) {
     return '$0.000000'
@@ -1488,7 +1671,7 @@ async function refreshAllData() {
 
   isRefreshing.value = true
   try {
-    await Promise.all([loadDashboardData(), refreshChartsData()])
+    await Promise.all([loadDashboardData(), refreshChartsData(), loadBalanceSummary()])
   } finally {
     isRefreshing.value = false
   }
diff --git a/web/admin-spa/src/views/LoginView.vue b/web/admin-spa/src/views/LoginView.vue
index 62138897..3aeb08e0 100644
--- a/web/admin-spa/src/views/LoginView.vue
+++ b/web/admin-spa/src/views/LoginView.vue
@@ -121,7 +121,3 @@ const handleLogin = async () => {
   await authStore.login(loginForm.value)
 }
 </script>
-
-<style scoped>
-/* 组件特定样式已经在全局样式中定义 */
-</style>
diff --git a/web/admin-spa/src/views/QuotaCardsView.vue b/web/admin-spa/src/views/QuotaCardsView.vue
index cede2901..d9eb5bda 100644
--- a/web/admin-spa/src/views/QuotaCardsView.vue
+++ b/web/admin-spa/src/views/QuotaCardsView.vue
@@ -88,6 +88,52 @@
           </div>
         </div>
 
+        <!-- Limits Config Card -->
+        <div
+          class="rounded-lg border border-gray-200 bg-gray-50 p-4 dark:border-gray-700 dark:bg-gray-800/50"
+        >
+          <div class="flex flex-wrap items-center gap-4">
+            <div class="flex items-center gap-2">
+              <span class="text-sm font-medium text-gray-700 dark:text-gray-300">兑换上限保护</span>
+              <label class="relative inline-flex cursor-pointer items-center">
+                <input
+                  v-model="limitsConfig.enabled"
+                  class="peer sr-only"
+                  type="checkbox"
+                  @change="saveLimitsConfig"
+                />
+                <div
+                  class="peer h-5 w-9 rounded-full bg-gray-300 after:absolute after:left-[2px] after:top-[2px] after:h-4 after:w-4 after:rounded-full after:bg-white after:transition-all after:content-[''] peer-checked:bg-blue-600 peer-checked:after:translate-x-full dark:bg-gray-600"
+                />
+              </label>
+            </div>
+            <div class="flex items-center gap-2">
+              <span class="text-sm text-gray-600 dark:text-gray-400">最大额度</span>
+              <input
+                v-model.number="limitsConfig.maxTotalCostLimit"
+                class="w-24 rounded border border-gray-300 bg-white px-2 py-1 text-sm dark:border-gray-600 dark:bg-gray-700 dark:text-white"
+                :disabled="!limitsConfig.enabled"
+                min="0"
+                type="number"
+                @change="saveLimitsConfig"
+              />
+              <span class="text-sm text-gray-500 dark:text-gray-400">$</span>
+            </div>
+            <div class="flex items-center gap-2">
+              <span class="text-sm text-gray-600 dark:text-gray-400">最大有效期</span>
+              <input
+                v-model.number="limitsConfig.maxExpiryDays"
+                class="w-20 rounded border border-gray-300 bg-white px-2 py-1 text-sm dark:border-gray-600 dark:bg-gray-700 dark:text-white"
+                :disabled="!limitsConfig.enabled"
+                min="0"
+                type="number"
+                @change="saveLimitsConfig"
+              />
+              <span class="text-sm text-gray-500 dark:text-gray-400">天</span>
+            </div>
+          </div>
+        </div>
+
         <!-- Tab Navigation -->
         <div class="border-b border-gray-200 dark:border-gray-700">
           <nav aria-label="Tabs" class="-mb-px flex space-x-8">
@@ -233,7 +279,7 @@
               </td>
               <td class="whitespace-nowrap px-4 py-3 text-sm text-gray-900 dark:text-white">
                 <span v-if="card.type === 'quota' || card.type === 'combo'"
-                  >{{ card.quotaAmount }} CC</span
+                  >${{ card.quotaAmount }}</span
                 >
                 <span v-if="card.type === 'combo'"> + </span>
                 <span v-if="card.type === 'time' || card.type === 'combo'">
@@ -410,7 +456,7 @@
                 </span>
               </td>
               <td class="whitespace-nowrap px-4 py-3 text-sm text-gray-900 dark:text-white">
-                <span v-if="redemption.quotaAdded > 0">{{ redemption.quotaAdded }} CC</span>
+                <span v-if="redemption.quotaAdded > 0">${{ redemption.quotaAdded }}</span>
                 <span v-if="redemption.quotaAdded > 0 && redemption.timeAdded > 0"> + </span>
                 <span v-if="redemption.timeAdded > 0">
                   {{ redemption.timeAdded }}
@@ -505,7 +551,7 @@
 
             <div v-if="newCard.type === 'quota' || newCard.type === 'combo'">
               <label class="mb-1 block text-sm font-medium text-gray-700 dark:text-gray-300"
-                >额度数量 (CC)</label
+                >额度数量 (美元)</label
               >
               <input
                 v-model.number="newCard.quotaAmount"
@@ -630,7 +676,7 @@
               </div>
               <span class="text-xs text-gray-500 dark:text-gray-400">
                 <template v-if="card.type === 'quota' || card.type === 'combo'">
-                  {{ card.quotaAmount }} CC
+                  ${{ card.quotaAmount }}
                 </template>
                 <template v-if="card.type === 'combo'"> + </template>
                 <template v-if="card.type === 'time' || card.type === 'combo'">
@@ -675,6 +721,44 @@
         </div>
       </div>
     </Teleport>
+    <!-- Revoke Modal -->
+    <Teleport to="body">
+      <div
+        v-if="showRevokeModal"
+        class="fixed inset-0 z-50 flex items-center justify-center bg-black/50 p-4 backdrop-blur-sm"
+        @click.self="showRevokeModal = false"
+      >
+        <div class="w-full max-w-md rounded-2xl bg-white p-6 shadow-2xl dark:bg-gray-800">
+          <h3 class="mb-4 text-lg font-semibold text-gray-900 dark:text-white">撤销核销</h3>
+          <div class="mb-4">
+            <label class="mb-2 block text-sm font-medium text-gray-700 dark:text-gray-300">
+              撤销原因（可选）
+            </label>
+            <input
+              v-model="revokeReason"
+              class="w-full rounded-lg border border-gray-300 px-3 py-2 text-sm focus:border-blue-500 focus:outline-none focus:ring-1 focus:ring-blue-500 dark:border-gray-600 dark:bg-gray-700 dark:text-white"
+              placeholder="请输入撤销原因"
+              type="text"
+            />
+          </div>
+          <div class="flex justify-end gap-3">
+            <button
+              class="rounded-lg bg-gray-100 px-4 py-2 text-sm font-medium text-gray-700 hover:bg-gray-200 dark:bg-gray-700 dark:text-gray-300 dark:hover:bg-gray-600"
+              @click="showRevokeModal = false"
+            >
+              取消
+            </button>
+            <button
+              class="rounded-lg bg-red-500 px-4 py-2 text-sm font-medium text-white hover:bg-red-600"
+              @click="executeRevoke"
+            >
+              确认撤销
+            </button>
+          </div>
+        </div>
+      </div>
+    </Teleport>
+
     <!-- Confirm Modal -->
     <ConfirmModal
       :cancel-text="confirmModalConfig.cancelText"
@@ -692,9 +776,9 @@
 <script setup>
 import { ref, computed, onMounted } from 'vue'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
-import * as httpApi from '@/utils/http_apis'
-import { showToast } from '@/utils/tools'
-import { copyText } from '@/utils/tools'
+
+import * as httpApis from '@/utils/http_apis'
+import { showToast, copyText, formatDate } from '@/utils/tools'
 
 const loading = ref(false)
 const creating = ref(false)
@@ -710,6 +794,9 @@ const confirmModalConfig = ref({
 })
 const confirmResolve = ref(null)
 const createdCards = ref([])
+const showRevokeModal = ref(false)
+const revokeReason = ref('')
+const revokingRedemption = ref(null)
 const activeTab = ref('cards')
 const selectedCards = ref([])
 
@@ -732,6 +819,12 @@ const stats = ref({
   expired: 0
 })
 
+const limitsConfig = ref({
+  enabled: true,
+  maxExpiryDays: 90,
+  maxTotalCostLimit: 1000
+})
+
 const cards = ref([])
 const redemptions = ref([])
 
@@ -777,11 +870,6 @@ const newCard = ref({
   note: ''
 })
 
-const formatDate = (dateStr) => {
-  if (!dateStr) return '-'
-  return new Date(dateStr).toLocaleString('zh-CN')
-}
-
 const showConfirm = (
   title,
   message,
@@ -806,23 +894,30 @@ const handleCancelModal = () => {
 
 const loadCards = async () => {
   loading.value = true
-  try {
-    const offset = (currentPage.value - 1) * pageSize.value
-    const [cardsData, statsData, redemptionsData] = await Promise.all([
-      httpApi.get(`/admin/quota-cards?limit=${pageSize.value}&offset=${offset}`),
-      httpApi.get('/admin/quota-cards/stats'),
-      httpApi.get('/admin/redemptions')
-    ])
+  const offset = (currentPage.value - 1) * pageSize.value
+  const [cardsData, statsData, redemptionsData] = await Promise.all([
+    httpApis.getQuotaCardsWithParamsApi({ limit: pageSize.value, offset }),
+    httpApis.getQuotaCardsStatsApi(),
+    httpApis.getRedemptionsApi()
+  ])
 
-    cards.value = cardsData.data?.cards || []
-    totalCards.value = cardsData.data?.total || 0
-    stats.value = statsData.data || stats.value
-    redemptions.value = redemptionsData.data?.redemptions || []
-  } catch (error) {
-    console.error('Failed to load cards:', error)
-    showToast('加载卡片数据失败', 'error')
-  } finally {
-    loading.value = false
+  // 单独获取 limits 配置，兼容老后端
+  const limitsData = await httpApis.getQuotaCardLimitsApi().catch(() => ({ data: null }))
+
+  cards.value = cardsData.data?.cards || []
+  totalCards.value = cardsData.data?.total || 0
+  stats.value = statsData.data || stats.value
+  redemptions.value = redemptionsData.data?.redemptions || []
+  if (limitsData.data) {
+    limitsConfig.value = limitsData.data
+  }
+  loading.value = false
+}
+
+const saveLimitsConfig = async () => {
+  const result = await httpApis.updateQuotaCardLimitsApi(limitsConfig.value)
+  if (result.success) {
+    showToast('配置已保存', 'success')
   }
 }
 
@@ -845,8 +940,8 @@ const changePageSize = () => {
 
 const createCard = async () => {
   creating.value = true
-  try {
-    const result = await httpApi.post('/admin/quota-cards', newCard.value)
+  const result = await httpApis.createQuotaCardApi(newCard.value)
+  if (result.success) {
     showCreateModal.value = false
 
     // 处理返回的卡片数据
@@ -866,12 +961,10 @@ const createCard = async () => {
 
     showToast(`成功创建 ${createdCards.value.length} 张卡片`, 'success')
     loadCards()
-  } catch (error) {
-    console.error('Failed to create card:', error)
-    showToast(error.message || '创建卡片失败', 'error')
-  } finally {
-    creating.value = false
+  } else {
+    showToast(result.message || '创建卡片失败', 'error')
   }
+  creating.value = false
 }
 
 // 下载卡片
@@ -882,7 +975,7 @@ const downloadCards = () => {
     .map((card) => {
       let label = ''
       if (card.type === 'quota' || card.type === 'combo') {
-        label += `${card.quotaAmount}CC`
+        label += `$${card.quotaAmount}`
       }
       if (card.type === 'combo') {
         label += '_'
@@ -936,14 +1029,9 @@ const deleteCard = async (card) => {
   )
   if (!confirmed) return
 
-  try {
-    await httpApi.del(`/admin/quota-cards/${card.id}`)
-    showToast('卡片已删除', 'success')
-    loadCards()
-  } catch (error) {
-    console.error('Failed to delete card:', error)
-    showToast(error.message || '删除卡片失败', 'error')
-  }
+  await httpApis.deleteQuotaCardApi(card.id)
+  showToast('卡片已删除', 'success')
+  loadCards()
 }
 
 const deleteSelectedCards = async () => {
@@ -956,29 +1044,25 @@ const deleteSelectedCards = async () => {
   )
   if (!confirmed) return
 
-  try {
-    await Promise.all(selectedCards.value.map((id) => httpApi.del(`/admin/quota-cards/${id}`)))
-    showToast(`已删除 ${selectedCards.value.length} 张卡片`, 'success')
-    selectedCards.value = []
-    loadCards()
-  } catch (error) {
-    console.error('Failed to delete cards:', error)
-    showToast(error.message || '批量删除失败', 'error')
-  }
+  await Promise.all(selectedCards.value.map((id) => httpApis.deleteQuotaCardApi(id)))
+  showToast(`已删除 ${selectedCards.value.length} 张卡片`, 'success')
+  selectedCards.value = []
+  loadCards()
 }
 
-const revokeRedemption = async (redemption) => {
-  const reason = prompt('撤销原因（可选）：')
-  if (reason === null) return
+const revokeRedemption = (redemption) => {
+  revokingRedemption.value = redemption
+  revokeReason.value = ''
+  showRevokeModal.value = true
+}
 
-  try {
-    await httpApi.post(`/admin/redemptions/${redemption.id}/revoke`, { reason })
-    showToast('核销已撤销', 'success')
-    loadCards()
-  } catch (error) {
-    console.error('Failed to revoke redemption:', error)
-    showToast(error.message || '撤销核销失败', 'error')
-  }
+const executeRevoke = async () => {
+  if (!revokingRedemption.value) return
+  await httpApis.revokeRedemptionApi(revokingRedemption.value.id, { reason: revokeReason.value })
+  showToast('核销已撤销', 'success')
+  showRevokeModal.value = false
+  revokingRedemption.value = null
+  loadCards()
 }
 
 onMounted(() => {
diff --git a/web/admin-spa/src/views/SettingsView.vue b/web/admin-spa/src/views/SettingsView.vue
index 2a694e0f..f1efa1d5 100644
--- a/web/admin-spa/src/views/SettingsView.vue
+++ b/web/admin-spa/src/views/SettingsView.vue
@@ -1124,10 +1124,10 @@
                     服务倍率说明
                   </h3>
                   <p class="mt-2 text-sm text-gray-600 dark:text-gray-400">
-                    服务倍率用于计算不同服务消耗的虚拟额度（CC）。以
+                    服务倍率用于计算不同服务的计费费用。以
                     <strong>{{ serviceRates.baseService || 'claude' }}</strong>
-                    为基准（倍率 1.0），其他服务按倍率换算。例如：Gemini 倍率 0.5 表示消耗 1 USD
-                    只扣除 0.5 CC 额度。
+                    为基准（倍率 1.0），其他服务按倍率换算。例如：Gemini 倍率 0.5 表示消耗 $1 只扣除
+                    $0.5 额度。
                   </p>
                 </div>
               </div>
@@ -1804,7 +1804,8 @@ import { ref, onMounted, onBeforeUnmount, watch, computed } from 'vue'
 import { storeToRefs } from 'pinia'
 import { showToast } from '@/utils/tools'
 import { useSettingsStore } from '@/stores/settings'
-import * as httpApi from '@/utils/http_apis'
+
+import * as httpApis from '@/utils/http_apis'
 import ConfirmModal from '@/components/common/ConfirmModal.vue'
 
 // 定义组件名称，用于keep-alive排除
@@ -2140,7 +2141,7 @@ onBeforeUnmount(() => {
 const loadWebhookConfig = async () => {
   if (!isMounted.value) return
   try {
-    const response = await httpApi.get('/admin/webhook/config', {
+    const response = await httpApis.getWebhookConfigApi({
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2173,7 +2174,7 @@ const saveWebhookConfig = async () => {
       }
     }
 
-    const response = await httpApi.post('/admin/webhook/config', payload, {
+    const response = await httpApis.updateWebhookConfigApi(payload, {
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2193,7 +2194,7 @@ const loadClaudeConfig = async () => {
   if (!isMounted.value) return
   claudeConfigLoading.value = true
   try {
-    const response = await httpApi.get('/admin/claude-relay-config', {
+    const response = await httpApis.getClaudeRelayConfigApi({
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2246,7 +2247,7 @@ const saveClaudeConfig = async () => {
       concurrentRequestQueueTimeoutMs: claudeConfig.value.concurrentRequestQueueTimeoutMs
     }
 
-    const response = await httpApi.put('/admin/claude-relay-config', payload, {
+    const response = await httpApis.updateClaudeRelayConfigApi(payload, {
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2270,7 +2271,7 @@ const loadServiceRates = async () => {
   if (!isMounted.value) return
   serviceRatesLoading.value = true
   try {
-    const response = await httpApi.get('/admin/service-rates', {
+    const response = await httpApis.getAdminServiceRatesApi({
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2297,8 +2298,7 @@ const saveServiceRates = async () => {
   if (!isMounted.value) return
   serviceRatesSaving.value = true
   try {
-    const response = await httpApi.put(
-      '/admin/service-rates',
+    const response = await httpApis.updateAdminServiceRatesApi(
       {
         rates: serviceRates.value.rates,
         baseService: serviceRates.value.baseService
@@ -2473,14 +2473,16 @@ const savePlatform = async () => {
     let response
     if (editingPlatform.value) {
       // 更新平台
-      response = await httpApi.put(
-        `/admin/webhook/platforms/${editingPlatform.value.id}`,
+      response = await httpApis.updateWebhookPlatformApi(
+        editingPlatform.value.id,
         platformForm.value,
-        { signal: abortController.value.signal }
+        {
+          signal: abortController.value.signal
+        }
       )
     } else {
       // 添加平台
-      response = await httpApi.post('/admin/webhook/platforms', platformForm.value, {
+      response = await httpApis.createWebhookPlatformApi(platformForm.value, {
         signal: abortController.value.signal
       })
     }
@@ -2545,7 +2547,7 @@ const deletePlatform = async (id) => {
   }
 
   try {
-    const response = await httpApi.del(`/admin/webhook/platforms/${id}`, {
+    const response = await httpApis.deleteWebhookPlatformApi(id, {
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2565,13 +2567,9 @@ const togglePlatform = async (id) => {
   if (!isMounted.value) return
 
   try {
-    const response = await httpApi.post(
-      `/admin/webhook/platforms/${id}/toggle`,
-      {},
-      {
-        signal: abortController.value.signal
-      }
-    )
+    const response = await httpApis.toggleWebhookPlatformApi(id, {
+      signal: abortController.value.signal
+    })
     if (response.success && isMounted.value) {
       showToast(response.message, 'success')
       await loadWebhookConfig()
@@ -2620,7 +2618,7 @@ const testPlatform = async (platform) => {
       testData.url = platform.url
     }
 
-    const response = await httpApi.post('/admin/webhook/test', testData, {
+    const response = await httpApis.testWebhookApi(testData, {
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2643,7 +2641,7 @@ const testPlatformForm = async () => {
 
   testingConnection.value = true
   try {
-    const response = await httpApi.post('/admin/webhook/test', platformForm.value, {
+    const response = await httpApis.testWebhookApi(platformForm.value, {
       signal: abortController.value.signal
     })
     if (response.success && isMounted.value) {
@@ -2666,13 +2664,9 @@ const sendTestNotification = async () => {
   if (!isMounted.value) return
 
   try {
-    const response = await httpApi.post(
-      '/admin/webhook/test-notification',
-      {},
-      {
-        signal: abortController.value.signal
-      }
-    )
+    const response = await httpApis.testWebhookNotificationApi({
+      signal: abortController.value.signal
+    })
     if (response.success && isMounted.value) {
       showToast('测试通知已发送', 'success')
     }
diff --git a/web/admin-spa/src/views/UserDashboardView.vue b/web/admin-spa/src/views/UserDashboardView.vue
index 4aa8a063..55bfa176 100644
--- a/web/admin-spa/src/views/UserDashboardView.vue
+++ b/web/admin-spa/src/views/UserDashboardView.vue
@@ -340,7 +340,7 @@ import { ref, onMounted } from 'vue'
 import { useRouter } from 'vue-router'
 import { useUserStore } from '@/stores/user'
 import { useThemeStore } from '@/stores/theme'
-import { showToast } from '@/utils/tools'
+import { showToast, formatNumber, formatDate } from '@/utils/tools'
 import ThemeToggle from '@/components/common/ThemeToggle.vue'
 import UserApiKeysManager from '@/components/user/UserApiKeysManager.vue'
 import UserUsageStats from '@/components/user/UserUsageStats.vue'
@@ -354,26 +354,6 @@ const activeTab = ref('overview')
 const userProfile = ref(null)
 const apiKeysStats = ref({ active: 0, deleted: 0 })
 
-const formatNumber = (num) => {
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  }
-  return num.toString()
-}
-
-const formatDate = (dateString) => {
-  if (!dateString) return null
-  return new Date(dateString).toLocaleDateString('en-US', {
-    year: 'numeric',
-    month: 'short',
-    day: 'numeric',
-    hour: '2-digit',
-    minute: '2-digit'
-  })
-}
-
 const handleTabChange = (tab) => {
   activeTab.value = tab
   // Refresh API keys stats when switching to overview tab
@@ -430,7 +410,3 @@ onMounted(() => {
   loadApiKeysStats()
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/views/UserLoginView.vue b/web/admin-spa/src/views/UserLoginView.vue
index 5f68ce3f..4c9d5060 100644
--- a/web/admin-spa/src/views/UserLoginView.vue
+++ b/web/admin-spa/src/views/UserLoginView.vue
@@ -195,7 +195,3 @@ onMounted(() => {
   themeStore.initTheme()
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>
diff --git a/web/admin-spa/src/views/UserManagementView.vue b/web/admin-spa/src/views/UserManagementView.vue
index 2c7c6984..72cc90d6 100644
--- a/web/admin-spa/src/views/UserManagementView.vue
+++ b/web/admin-spa/src/views/UserManagementView.vue
@@ -476,8 +476,9 @@
 
 <script setup>
 import { ref, computed, onMounted } from 'vue'
-import * as httpApi from '@/utils/http_apis'
-import { showToast } from '@/utils/tools'
+
+import * as httpApis from '@/utils/http_apis'
+import { showToast, formatNumber, formatDate } from '@/utils/tools'
 import { debounce } from 'lodash-es'
 import UserUsageStatsModal from '@/components/admin/UserUsageStatsModal.vue'
 import ChangeRoleModal from '@/components/admin/ChangeRoleModal.vue'
@@ -531,26 +532,6 @@ const filteredUsers = computed(() => {
   return filtered
 })
 
-const formatNumber = (num) => {
-  if (num >= 1000000) {
-    return (num / 1000000).toFixed(1) + 'M'
-  } else if (num >= 1000) {
-    return (num / 1000).toFixed(1) + 'K'
-  }
-  return num.toString()
-}
-
-const formatDate = (dateString) => {
-  if (!dateString) return null
-  return new Date(dateString).toLocaleDateString('en-US', {
-    year: 'numeric',
-    month: 'short',
-    day: 'numeric',
-    hour: '2-digit',
-    minute: '2-digit'
-  })
-}
-
 const loadUsers = async () => {
   loading.value = true
   try {
@@ -564,8 +545,8 @@ const loadUsers = async () => {
     }
 
     const [usersResponse, statsResponse] = await Promise.all([
-      httpApi.get('/users', { params }),
-      httpApi.get('/users/stats/overview')
+      httpApis.getFrontUsersApi(params),
+      httpApis.getFrontUsersStatsOverviewApi()
     ])
 
     if (usersResponse.success) {
@@ -631,7 +612,7 @@ const handleConfirmAction = async () => {
 
   try {
     if (action === 'toggleStatus') {
-      const response = await httpApi.patch(`/users/${user.id}/status`, {
+      const response = await httpApis.updateFrontUserStatusApi(user.id, {
         isActive: !user.isActive
       })
 
@@ -643,7 +624,7 @@ const handleConfirmAction = async () => {
         showToast(`User ${user.isActive ? 'disabled' : 'enabled'} successfully`, 'success')
       }
     } else if (action === 'disableKeys') {
-      const response = await httpApi.post(`/users/${user.id}/disable-keys`)
+      const response = await httpApis.disableFrontUserKeysApi(user.id)
 
       if (response.success) {
         showToast(`Disabled ${response.disabledCount} API keys`, 'success')
@@ -669,7 +650,3 @@ onMounted(() => {
   loadUsers()
 })
 </script>
-
-<style scoped>
-/* 组件特定样式 */
-</style>