diff --git a/app.php b/app.php
new file mode 100644
index 0000000..b4b9480
--- /dev/null
+++ b/app.php
@@ -0,0 +1,1904 @@
+<?php
+declare(strict_types=1);
+
+@date_default_timezone_set("UTC");
+if (session_status() !== PHP_SESSION_ACTIVE) {
+    session_start();
+}
+
+require_once __DIR__ . "/db/config.php";
+
+function schema_has_column(PDO $pdo, string $table, string $column): bool
+{
+    $statement = $pdo->prepare(
+        "SELECT COUNT(*)
+         FROM INFORMATION_SCHEMA.COLUMNS
+         WHERE TABLE_SCHEMA = DATABASE()
+           AND TABLE_NAME = ?
+           AND COLUMN_NAME = ?"
+    );
+    $statement->execute([$table, $column]);
+
+    return (int) $statement->fetchColumn() > 0;
+}
+
+function ensure_schema(): void
+{
+    static $ensured = false;
+    if ($ensured) {
+        return;
+    }
+
+    $pdo = db();
+    $pdo->exec(
+        "CREATE TABLE IF NOT EXISTS users (
+            id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+            email VARCHAR(190) NOT NULL UNIQUE,
+            password_hash VARCHAR(255) NOT NULL,
+            user_code CHAR(6) NOT NULL UNIQUE,
+            vip_level TINYINT UNSIGNED NOT NULL DEFAULT 0,
+            email_verified_at DATETIME NULL,
+            last_login_at DATETIME NULL,
+            created_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP
+        ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci"
+    );
+
+    $pdo->exec(
+        "CREATE TABLE IF NOT EXISTS wallets (
+            id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+            user_id INT UNSIGNED NOT NULL UNIQUE,
+            available_balance DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            frozen_balance DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            updated_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
+            CONSTRAINT fk_wallet_user FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
+        ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci"
+    );
+
+    $pdo->exec(
+        "CREATE TABLE IF NOT EXISTS task_orders (
+            id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+            user_id INT UNSIGNED NOT NULL,
+            task_slug VARCHAR(64) NOT NULL,
+            task_title VARCHAR(120) NOT NULL,
+            task_type VARCHAR(80) NOT NULL,
+            platform_name VARCHAR(80) NOT NULL,
+            reward_usdt DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            vip_required TINYINT UNSIGNED NOT NULL DEFAULT 0,
+            countdown_seconds INT UNSIGNED NOT NULL DEFAULT 60,
+            status VARCHAR(32) NOT NULL DEFAULT 'claimed',
+            proof_note TEXT NULL,
+            claimed_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+            submitted_at DATETIME NULL,
+            reviewed_at DATETIME NULL,
+            review_note VARCHAR(255) NULL,
+            CONSTRAINT fk_task_order_user FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE,
+            INDEX idx_task_orders_user_status (user_id, status),
+            INDEX idx_task_orders_status_review (status, reviewed_at)
+        ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci"
+    );
+
+    $pdo->exec(
+        "CREATE TABLE IF NOT EXISTS wallet_logs (
+            id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+            user_id INT UNSIGNED NOT NULL,
+            entry_type VARCHAR(32) NOT NULL,
+            amount DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            frozen_amount DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            available_after DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            frozen_after DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            note VARCHAR(255) NOT NULL,
+            created_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+            CONSTRAINT fk_wallet_log_user FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE,
+            INDEX idx_wallet_logs_user_created (user_id, created_at)
+        ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci"
+    );
+
+    $pdo->exec(
+        "CREATE TABLE IF NOT EXISTS vip_orders (
+            id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+            user_id INT UNSIGNED NOT NULL,
+            from_level TINYINT UNSIGNED NOT NULL DEFAULT 0,
+            to_level TINYINT UNSIGNED NOT NULL,
+            price_usdt DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            status VARCHAR(32) NOT NULL DEFAULT 'completed',
+            available_after DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+            note VARCHAR(255) NOT NULL,
+            created_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+            completed_at DATETIME NULL,
+            CONSTRAINT fk_vip_order_user FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE,
+            INDEX idx_vip_orders_user_created (user_id, created_at),
+            INDEX idx_vip_orders_status_created (status, created_at)
+        ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci"
+    );
+
+    $pdo->exec(
+        "CREATE TABLE IF NOT EXISTS email_verification_codes (
+            id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+            email VARCHAR(190) NOT NULL,
+            purpose VARCHAR(32) NOT NULL DEFAULT 'signup',
+            password_hash VARCHAR(255) NOT NULL,
+            code_hash VARCHAR(255) NOT NULL,
+            attempt_count TINYINT UNSIGNED NOT NULL DEFAULT 0,
+            max_attempts TINYINT UNSIGNED NOT NULL DEFAULT 5,
+            expires_at DATETIME NOT NULL,
+            verified_at DATETIME NULL,
+            consumed_at DATETIME NULL,
+            ip_address VARCHAR(64) NULL,
+            meta_note VARCHAR(255) NULL,
+            created_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+            INDEX idx_email_codes_email_purpose (email, purpose, created_at),
+            INDEX idx_email_codes_status (purpose, consumed_at, expires_at)
+        ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci"
+    );
+
+    if (!schema_has_column($pdo, 'users', 'email_verified_at')) {
+        $pdo->exec("ALTER TABLE users ADD COLUMN email_verified_at DATETIME NULL AFTER vip_level");
+    }
+    if (!schema_has_column($pdo, 'users', 'last_login_at')) {
+        $pdo->exec("ALTER TABLE users ADD COLUMN last_login_at DATETIME NULL AFTER email_verified_at");
+    }
+
+    $ensured = true;
+}
+
+ensure_schema();
+
+function h($value): string
+{
+    return htmlspecialchars((string) $value, ENT_QUOTES | ENT_SUBSTITUTE, "UTF-8");
+}
+
+function project_name(): string
+{
+    $name = trim((string) ($_SERVER["PROJECT_NAME"] ?? ""));
+    return $name !== "" ? $name : "Atlas Rebate";
+}
+
+function project_description(): string
+{
+    $description = trim((string) ($_SERVER["PROJECT_DESCRIPTION"] ?? ""));
+    return $description !== ""
+        ? $description
+        : "Mobile-first rebate operations slice with email onboarding, task execution, manual review, and wallet ledger.";
+}
+
+function asset_version(string $relativePath): string
+{
+    $absolutePath = __DIR__ . "/" . ltrim($relativePath, "/");
+    return file_exists($absolutePath) ? (string) filemtime($absolutePath) : (string) time();
+}
+
+function app_url(string $path, array $query = []): string
+{
+    return $query ? $path . "?" . http_build_query($query) : $path;
+}
+
+function redirect(string $url): void
+{
+    header("Location: " . $url);
+    exit;
+}
+
+function format_usdt($amount): string
+{
+    return number_format((float) $amount, 2) . " USDT";
+}
+
+function format_delta($amount): string
+{
+    $amount = (float) $amount;
+    $prefix = $amount > 0 ? "+" : "";
+    return $prefix . number_format($amount, 2);
+}
+
+function format_datetime(?string $value): string
+{
+    if (!$value) {
+        return "—";
+    }
+
+    $timestamp = strtotime($value);
+    if ($timestamp === false) {
+        return h($value);
+    }
+
+    return date("Y-m-d H:i", $timestamp);
+}
+
+function client_ip(): string
+{
+    return (string) ($_SERVER["REMOTE_ADDR"] ?? "0.0.0.0");
+}
+
+function text_length(string $value): int
+{
+    return function_exists("mb_strlen") ? mb_strlen($value) : strlen($value);
+}
+
+function csrf_token(): string
+{
+    if (empty($_SESSION["csrf_token"])) {
+        $_SESSION["csrf_token"] = bin2hex(random_bytes(16));
+    }
+
+    return (string) $_SESSION["csrf_token"];
+}
+
+function verify_csrf_or_fail(): void
+{
+    $token = (string) ($_POST["csrf_token"] ?? "");
+    $sessionToken = (string) ($_SESSION["csrf_token"] ?? "");
+
+    if ($token === "" || $sessionToken === "" || !hash_equals($sessionToken, $token)) {
+        throw new RuntimeException("请求已失效，请刷新页面后重试。");
+    }
+}
+
+function flash(string $tone, string $message): void
+{
+    $_SESSION["flash_messages"][] = [
+        "tone" => $tone,
+        "message" => $message,
+    ];
+}
+
+function pull_flashes(): array
+{
+    $messages = $_SESSION["flash_messages"] ?? [];
+    unset($_SESSION["flash_messages"]);
+    return is_array($messages) ? $messages : [];
+}
+
+function vip_catalog(): array
+{
+    return [
+        0 => [
+            "level" => 0,
+            "name" => "VIP0",
+            "price" => 0,
+            "reward" => 24,
+            "daily_tasks" => 2,
+            "benefit" => "新手演示任务、自动钱包、资金流水可视化",
+        ],
+        1 => [
+            "level" => 1,
+            "name" => "VIP1",
+            "price" => 1000,
+            "reward" => 200,
+            "daily_tasks" => 2,
+            "benefit" => "1000 USDT 开通，单任务佣金 200 USDT",
+        ],
+        2 => [
+            "level" => 2,
+            "name" => "VIP2",
+            "price" => 3000,
+            "reward" => 600,
+            "daily_tasks" => 2,
+            "benefit" => "3000 USDT 开通，单任务佣金 600 USDT",
+        ],
+        3 => [
+            "level" => 3,
+            "name" => "VIP3",
+            "price" => 5000,
+            "reward" => 1000,
+            "daily_tasks" => 2,
+            "benefit" => "5000 USDT 开通，单任务佣金 1000 USDT",
+        ],
+        4 => [
+            "level" => 4,
+            "name" => "VIP4",
+            "price" => 10000,
+            "reward" => 2000,
+            "daily_tasks" => 2,
+            "benefit" => "10000 USDT 开通，单任务佣金 2000 USDT",
+        ],
+    ];
+}
+
+function vip_info(int $vipLevel): array
+{
+    $catalog = vip_catalog();
+    return $catalog[$vipLevel] ?? $catalog[0];
+}
+
+function task_catalog(): array
+{
+    return [
+        "watch-video" => [
+            "slug" => "watch-video",
+            "title" => "观看 YouTube 视频",
+            "platform" => "YouTube",
+            "type" => "视频",
+            "reward" => 18,
+            "vip_required" => 0,
+            "countdown" => 60,
+            "summary" => "打开视频并保持活跃，倒计时结束后提交完成备注。",
+            "steps" => [
+                "点击开始任务后进入倒计时。",
+                "保持页面停留并完成观看动作。",
+                "倒计时结束后提交一句完成备注。",
+            ],
+        ],
+        "social-like" => [
+            "slug" => "social-like",
+            "title" => "点赞 TikTok 视频",
+            "platform" => "TikTok",
+            "type" => "点赞",
+            "reward" => 24,
+            "vip_required" => 0,
+            "countdown" => 60,
+            "summary" => "适合新用户演示完整闭环：领取、计时、提交、审核入账。",
+            "steps" => [
+                "领取任务并进入倒计时。",
+                "模拟完成点赞或互动行为。",
+                "提交完成说明，等待后台审核。",
+            ],
+        ],
+        "follow-brand" => [
+            "slug" => "follow-brand",
+            "title" => "关注 Instagram 博主",
+            "platform" => "Instagram",
+            "type" => "社媒",
+            "reward" => 200,
+            "vip_required" => 1,
+            "countdown" => 90,
+            "summary" => "VIP1 开始解锁，高佣金任务与更强审核优先级。",
+            "steps" => [
+                "确认当前账号已开通对应 VIP。",
+                "完成关注动作并保持页面停留。",
+                "提交账户备注供后台核对。",
+            ],
+        ],
+        "comment-flow" => [
+            "slug" => "comment-flow",
+            "title" => "发布社媒评论",
+            "platform" => "Community Feed",
+            "type" => "社媒",
+            "reward" => 600,
+            "vip_required" => 2,
+            "countdown" => 110,
+            "summary" => "VIP2 解锁的中高客单价任务，用于验证冻结佣金逻辑。",
+            "steps" => [
+                "领取后完成评论发布。",
+                "保留评论内容关键词。",
+                "在系统里提交评论摘要。",
+            ],
+        ],
+        "site-browse" => [
+            "slug" => "site-browse",
+            "title" => "浏览网站 60 秒",
+            "platform" => "Website",
+            "type" => "网站",
+            "reward" => 1000,
+            "vip_required" => 3,
+            "countdown" => 140,
+            "summary" => "VIP3 任务，适合做高佣金站点浏览与停留验证。",
+            "steps" => [
+                "进入指定站点浏览多个页面。",
+                "保持页面活跃直到倒计时结束。",
+                "填写浏览到的产品或栏目名称。",
+            ],
+        ],
+        "app-download" => [
+            "slug" => "app-download",
+            "title" => "下载应用体验",
+            "platform" => "App Center",
+            "type" => "应用",
+            "reward" => 2000,
+            "vip_required" => 4,
+            "countdown" => 180,
+            "summary" => "VIP4 顶级任务，高收益、高风控、人工复核。",
+            "steps" => [
+                "下载并打开指定应用。",
+                "完成首次启动与页面停留。",
+                "提交设备备注或体验摘要。",
+            ],
+        ],
+    ];
+}
+
+function task_by_slug(string $slug): ?array
+{
+    $catalog = task_catalog();
+    return $catalog[$slug] ?? null;
+}
+
+function generate_unique_user_code(): string
+{
+    $pdo = db();
+    $statement = $pdo->prepare("SELECT id FROM users WHERE user_code = ? LIMIT 1");
+
+    for ($i = 0; $i < 50; $i++) {
+        $candidate = str_pad((string) random_int(0, 999999), 6, "0", STR_PAD_LEFT);
+        $statement->execute([$candidate]);
+        if (!$statement->fetchColumn()) {
+            return $candidate;
+        }
+    }
+
+    throw new RuntimeException("未能生成唯一 6 位数字 ID，请重试。");
+}
+
+function fetch_user(int $userId): ?array
+{
+    $statement = db()->prepare(
+        "SELECT u.*, w.available_balance, w.frozen_balance, w.updated_at AS wallet_updated_at
+         FROM users u
+         INNER JOIN wallets w ON w.user_id = u.id
+         WHERE u.id = ?
+         LIMIT 1"
+    );
+    $statement->execute([$userId]);
+    $user = $statement->fetch();
+
+    return $user ?: null;
+}
+
+function current_user(): ?array
+{
+    static $resolved = false;
+    static $user = null;
+
+    if ($resolved) {
+        return $user;
+    }
+
+    $resolved = true;
+
+    if (empty($_SESSION["user_id"])) {
+        return null;
+    }
+
+    $user = fetch_user((int) $_SESSION["user_id"]);
+    if (!$user) {
+        unset($_SESSION["user_id"]);
+    }
+
+    return $user;
+}
+
+function safe_redirect_target(?string $target): string
+{
+    $target = trim((string) $target);
+    if ($target === '') {
+        return 'index.php';
+    }
+
+    $target = str_replace(["
", "
+"], '', $target);
+
+    if (preg_match('/^[a-zA-Z][a-zA-Z0-9+.-]*:/', $target) || str_starts_with($target, '//')) {
+        return 'index.php';
+    }
+
+    if (str_contains($target, '..')) {
+        return 'index.php';
+    }
+
+    if (str_starts_with($target, '/')) {
+        $target = ltrim($target, '/');
+    }
+
+    return $target !== '' ? $target : 'index.php';
+}
+
+function current_request_target(): string
+{
+    return safe_redirect_target((string) ($_SERVER['REQUEST_URI'] ?? 'index.php'));
+}
+
+function auth_page_url(string $page, ?string $redirectTarget = null, array $query = []): string
+{
+    if ($redirectTarget !== null && trim($redirectTarget) !== '') {
+        $query['redirect'] = safe_redirect_target($redirectTarget);
+    }
+
+    return app_url($page, $query);
+}
+
+function start_page_url(?string $redirectTarget = null, array $query = []): string
+{
+    return auth_page_url('start.php', $redirectTarget, $query);
+}
+
+function register_page_url(?string $redirectTarget = null, array $query = []): string
+{
+    return auth_page_url('register.php', $redirectTarget, $query);
+}
+
+function login_page_url(?string $redirectTarget = null, array $query = []): string
+{
+    return auth_page_url('login.php', $redirectTarget, $query);
+}
+
+function verify_page_url(string $email, ?string $redirectTarget = null, array $query = []): string
+{
+    $query['email'] = normalize_email($email);
+    return auth_page_url('verify.php', $redirectTarget, $query);
+}
+
+function require_user(): array
+{
+    $user = current_user();
+    if (!$user) {
+        flash('warning', '请先使用邮箱登录后再继续。');
+        redirect(login_page_url(current_request_target()));
+    }
+
+    return $user;
+}
+
+function set_logged_in_user(int $userId): void
+{
+    $_SESSION['user_id'] = $userId;
+}
+
+function logout_current_user(): void
+{
+    unset($_SESSION['user_id']);
+}
+
+function normalize_email(string $email): string
+{
+    return strtolower(trim($email));
+}
+
+function validate_email_or_fail(string $email): string
+{
+    $email = normalize_email($email);
+    if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
+        throw new RuntimeException('请输入有效邮箱地址。');
+    }
+
+    return $email;
+}
+
+function ensure_password_strength(string $password): void
+{
+    if (text_length($password) < 6) {
+        throw new RuntimeException('密码至少需要 6 位字符。');
+    }
+}
+
+function verification_code_ttl_minutes(): int
+{
+    return 10;
+}
+
+function generate_email_code(): string
+{
+    return str_pad((string) random_int(0, 999999), 6, '0', STR_PAD_LEFT);
+}
+
+function mask_email(string $email): string
+{
+    $email = normalize_email($email);
+    if (!str_contains($email, '@')) {
+        return $email;
+    }
+
+    [$local, $domain] = explode('@', $email, 2);
+    $visible = substr($local, 0, min(2, strlen($local)));
+    $masked = $visible . str_repeat('*', max(2, strlen($local) - strlen($visible)));
+
+    return $masked . '@' . $domain;
+}
+
+function send_signup_verification_email(string $email, string $code): array
+{
+    require_once __DIR__ . '/mail/MailService.php';
+
+    $siteName = h(project_name());
+    $safeCode = h($code);
+    $ttlMinutes = verification_code_ttl_minutes();
+    $subject = project_name() . ' 邮箱验证码';
+    $html = '<div style="font-family:Inter,Arial,sans-serif;color:#111827;line-height:1.7">'
+        . '<p style="margin:0 0 12px;font-size:14px;color:#6b7280">' . $siteName . '</p>'
+        . '<h1 style="margin:0 0 12px;font-size:24px;color:#111827">你的邮箱验证码</h1>'
+        . '<p style="margin:0 0 16px">请在 ' . $ttlMinutes . ' 分钟内输入下面这组 6 位数字：</p>'
+        . '<div style="margin:0 0 18px;padding:18px 20px;border-radius:16px;background:#111827;color:#ffffff;font-size:30px;font-weight:800;letter-spacing:8px;text-align:center">' . $safeCode . '</div>'
+        . '<p style="margin:0;color:#6b7280">如果这不是你本人操作，请直接忽略这封邮件。</p>'
+        . '</div>';
+    $text = project_name() . ' 邮箱验证码：' . $code . '。请在 ' . $ttlMinutes . ' 分钟内完成验证。若非本人操作请忽略。';
+
+    return MailService::sendMail($email, $subject, $html, $text);
+}
+
+function mail_delivery_error_message(array $mailResult): string
+{
+    $detail = strtolower((string) ($mailResult['error'] ?? ''));
+    if ($detail === '') {
+        return '验证码发送失败，请稍后重试。';
+    }
+    if (str_contains($detail, 'recipient')) {
+        return '验证码发送失败：当前收件地址无效，请重新输入邮箱。';
+    }
+
+    return '验证码发送失败：当前 SMTP 未配置或连接失败，请先在平台环境变量里配置 MAIL_/SMTP_ 参数。';
+}
+
+function create_user_account_record(PDO $pdo, string $email, string $passwordHash, ?string $emailVerifiedAt = null): int
+{
+    $email = validate_email_or_fail($email);
+
+    $check = $pdo->prepare('SELECT id FROM users WHERE email = ? LIMIT 1');
+    $check->execute([$email]);
+    if ($check->fetchColumn()) {
+        throw new RuntimeException('该邮箱已注册，请直接登录。');
+    }
+
+    $userCode = generate_unique_user_code();
+    $insertUser = $pdo->prepare(
+        'INSERT INTO users (email, password_hash, user_code, vip_level, email_verified_at, last_login_at) VALUES (?, ?, ?, 0, ?, NULL)'
+    );
+    $insertUser->execute([$email, $passwordHash, $userCode, $emailVerifiedAt]);
+    $userId = (int) $pdo->lastInsertId();
+
+    $insertWallet = $pdo->prepare(
+        'INSERT INTO wallets (user_id, available_balance, frozen_balance) VALUES (?, 0.00, 0.00)'
+    );
+    $insertWallet->execute([$userId]);
+
+    insert_wallet_log(
+        $pdo,
+        $userId,
+        'wallet_opened',
+        0,
+        0,
+        '邮箱注册成功，系统已自动创建钱包与 VIP0。',
+        0,
+        0
+    );
+
+    return $userId;
+}
+
+function register_user(string $email, string $password): array
+{
+    $email = validate_email_or_fail($email);
+    ensure_password_strength($password);
+
+    $pdo = db();
+    $pdo->beginTransaction();
+    try {
+        $userId = create_user_account_record(
+            $pdo,
+            $email,
+            password_hash($password, PASSWORD_DEFAULT),
+            date('Y-m-d H:i:s')
+        );
+
+        $pdo->commit();
+        set_logged_in_user($userId);
+
+        return fetch_user($userId) ?? [];
+    } catch (Throwable $exception) {
+        if ($pdo->inTransaction()) {
+            $pdo->rollBack();
+        }
+        throw $exception;
+    }
+}
+
+function latest_signup_verification(string $email, bool $pendingOnly = false): ?array
+{
+    $email = validate_email_or_fail($email);
+    $sql = 'SELECT * FROM email_verification_codes WHERE email = ? AND purpose = ?';
+    if ($pendingOnly) {
+        $sql .= ' AND consumed_at IS NULL';
+    }
+    $sql .= ' ORDER BY id DESC LIMIT 1';
+
+    $statement = db()->prepare($sql);
+    $statement->execute([$email, 'signup']);
+    $record = $statement->fetch();
+
+    return $record ?: null;
+}
+
+function issue_signup_verification_from_hash(string $email, string $passwordHash): array
+{
+    $email = validate_email_or_fail($email);
+
+    $code = generate_email_code();
+    $expiresAt = date('Y-m-d H:i:s', time() + (verification_code_ttl_minutes() * 60));
+    $pdo = db();
+    $pdo->beginTransaction();
+
+    try {
+        $resetPending = $pdo->prepare(
+            "UPDATE email_verification_codes
+             SET consumed_at = NOW(), meta_note = 'superseded by new signup code'
+             WHERE email = ? AND purpose = 'signup' AND consumed_at IS NULL AND verified_at IS NULL"
+        );
+        $resetPending->execute([$email]);
+
+        $insert = $pdo->prepare(
+            'INSERT INTO email_verification_codes (
+                email,
+                purpose,
+                password_hash,
+                code_hash,
+                expires_at,
+                ip_address,
+                meta_note
+            ) VALUES (?, ?, ?, ?, ?, ?, ?)' 
+        );
+        $insert->execute([
+            $email,
+            'signup',
+            $passwordHash,
+            password_hash($code, PASSWORD_DEFAULT),
+            $expiresAt,
+            client_ip(),
+            'signup verification pending',
+        ]);
+        $verificationId = (int) $pdo->lastInsertId();
+        $pdo->commit();
+    } catch (Throwable $exception) {
+        if ($pdo->inTransaction()) {
+            $pdo->rollBack();
+        }
+        throw $exception;
+    }
+
+    $mailResult = send_signup_verification_email($email, $code);
+    if (empty($mailResult['success'])) {
+        $cleanup = db()->prepare(
+            "UPDATE email_verification_codes
+             SET consumed_at = NOW(), meta_note = 'mail delivery failed'
+             WHERE id = ? AND consumed_at IS NULL"
+        );
+        $cleanup->execute([$verificationId]);
+        error_log('Signup verification mail failed for ' . $email . ': ' . (string) ($mailResult['error'] ?? 'unknown'));
+        throw new RuntimeException(mail_delivery_error_message($mailResult));
+    }
+
+    $_SESSION['last_signup_email'] = $email;
+
+    return [
+        'id' => $verificationId,
+        'email' => $email,
+        'expires_at' => $expiresAt,
+    ];
+}
+
+function begin_signup_verification(string $email, string $password): array
+{
+    $email = validate_email_or_fail($email);
+    ensure_password_strength($password);
+
+    $check = db()->prepare('SELECT id FROM users WHERE email = ? LIMIT 1');
+    $check->execute([$email]);
+    if ($check->fetchColumn()) {
+        throw new RuntimeException('该邮箱已注册，请直接登录。');
+    }
+
+    return issue_signup_verification_from_hash($email, password_hash($password, PASSWORD_DEFAULT));
+}
+
+function resend_signup_verification(string $email): array
+{
+    $email = validate_email_or_fail($email);
+
+    $check = db()->prepare('SELECT id FROM users WHERE email = ? LIMIT 1');
+    $check->execute([$email]);
+    if ($check->fetchColumn()) {
+        throw new RuntimeException('该邮箱已注册，请直接登录。');
+    }
+
+    $latest = latest_signup_verification($email, false);
+    if (!$latest || empty($latest['password_hash'])) {
+        throw new RuntimeException('未找到待验证的注册记录，请先返回注册页填写邮箱和密码。');
+    }
+
+    return issue_signup_verification_from_hash($email, (string) $latest['password_hash']);
+}
+
+function complete_signup_verification(string $email, string $code): array
+{
+    $email = validate_email_or_fail($email);
+    $code = trim($code);
+    if (!preg_match('/^\d{6}$/', $code)) {
+        throw new RuntimeException('请输入 6 位数字验证码。');
+    }
+
+    $pdo = db();
+    $pdo->beginTransaction();
+    try {
+        $statement = $pdo->prepare(
+            "SELECT *
+             FROM email_verification_codes
+             WHERE email = ?
+               AND purpose = 'signup'
+               AND consumed_at IS NULL
+             ORDER BY id DESC
+             LIMIT 1
+             FOR UPDATE"
+        );
+        $statement->execute([$email]);
+        $record = $statement->fetch();
+
+        if (!$record) {
+            throw new RuntimeException('验证码记录不存在，请返回注册页重新发送。');
+        }
+
+        if ((string) ($record['verified_at'] ?? '') !== '') {
+            throw new RuntimeException('该验证码已经使用过，请直接登录。');
+        }
+
+        if (strtotime((string) $record['expires_at']) < time()) {
+            $expired = $pdo->prepare(
+                "UPDATE email_verification_codes
+                 SET consumed_at = NOW(), meta_note = 'code expired'
+                 WHERE id = ?"
+            );
+            $expired->execute([(int) $record['id']]);
+            $pdo->commit();
+            throw new RuntimeException('验证码已过期，请重新发送。');
+        }
+
+        $maxAttempts = (int) ($record['max_attempts'] ?? 5);
+        $attemptCount = (int) ($record['attempt_count'] ?? 0);
+        if ($attemptCount >= $maxAttempts) {
+            $locked = $pdo->prepare(
+                "UPDATE email_verification_codes
+                 SET consumed_at = NOW(), meta_note = 'max attempts reached'
+                 WHERE id = ? AND consumed_at IS NULL"
+            );
+            $locked->execute([(int) $record['id']]);
+            $pdo->commit();
+            throw new RuntimeException('验证码错误次数过多，请重新发送验证码。');
+        }
+
+        if (!password_verify($code, (string) $record['code_hash'])) {
+            $attemptCount++;
+            if ($attemptCount >= $maxAttempts) {
+                $failed = $pdo->prepare(
+                    "UPDATE email_verification_codes
+                     SET attempt_count = ?, consumed_at = NOW(), meta_note = 'max attempts reached'
+                     WHERE id = ?"
+                );
+                $failed->execute([$attemptCount, (int) $record['id']]);
+                $pdo->commit();
+                throw new RuntimeException('验证码错误次数过多，请重新发送验证码。');
+            }
+
+            $failed = $pdo->prepare(
+                "UPDATE email_verification_codes
+                 SET attempt_count = ?, meta_note = 'verification code mismatch'
+                 WHERE id = ?"
+            );
+            $failed->execute([$attemptCount, (int) $record['id']]);
+            $pdo->commit();
+            throw new RuntimeException('验证码错误，请重新输入。');
+        }
+
+        $userCheck = $pdo->prepare('SELECT id FROM users WHERE email = ? LIMIT 1');
+        $userCheck->execute([$email]);
+        if ($userCheck->fetchColumn()) {
+            $duplicate = $pdo->prepare(
+                "UPDATE email_verification_codes
+                 SET consumed_at = NOW(), meta_note = 'email already registered'
+                 WHERE id = ?"
+            );
+            $duplicate->execute([(int) $record['id']]);
+            $pdo->commit();
+            throw new RuntimeException('该邮箱已注册，请直接登录。');
+        }
+
+        $userId = create_user_account_record(
+            $pdo,
+            $email,
+            (string) $record['password_hash'],
+            date('Y-m-d H:i:s')
+        );
+
+        $verified = $pdo->prepare(
+            "UPDATE email_verification_codes
+             SET verified_at = NOW(), consumed_at = NOW(), meta_note = 'signup completed'
+             WHERE id = ?"
+        );
+        $verified->execute([(int) $record['id']]);
+
+        $pdo->commit();
+        unset($_SESSION['last_signup_email']);
+
+        return fetch_user($userId) ?? [];
+    } catch (Throwable $exception) {
+        if ($pdo->inTransaction()) {
+            $pdo->rollBack();
+        }
+        throw $exception;
+    }
+}
+
+function authenticate_user(string $email, string $password): array
+{
+    $email = validate_email_or_fail($email);
+
+    $statement = db()->prepare('SELECT * FROM users WHERE email = ? LIMIT 1');
+    $statement->execute([$email]);
+    $record = $statement->fetch();
+
+    if (!$record || !password_verify($password, (string) $record['password_hash'])) {
+        throw new RuntimeException('邮箱或密码错误，请重试。');
+    }
+
+    $update = db()->prepare(
+        'UPDATE users
+         SET last_login_at = NOW(), email_verified_at = COALESCE(email_verified_at, NOW())
+         WHERE id = ?'
+    );
+    $update->execute([(int) $record['id']]);
+
+    set_logged_in_user((int) $record['id']);
+    return fetch_user((int) $record['id']) ?? [];
+}
+
+function wallet_snapshot(int $userId): array
+{
+    $statement = db()->prepare(
+        "SELECT available_balance, frozen_balance FROM wallets WHERE user_id = ? LIMIT 1"
+    );
+    $statement->execute([$userId]);
+    $wallet = $statement->fetch();
+
+    return $wallet ?: ["available_balance" => 0, "frozen_balance" => 0];
+}
+
+function insert_wallet_log(
+    PDO $pdo,
+    int $userId,
+    string $entryType,
+    float $amount,
+    float $frozenAmount,
+    string $note,
+    float $availableAfter,
+    float $frozenAfter
+): void {
+    $statement = $pdo->prepare(
+        "INSERT INTO wallet_logs (
+            user_id,
+            entry_type,
+            amount,
+            frozen_amount,
+            available_after,
+            frozen_after,
+            note
+        ) VALUES (?, ?, ?, ?, ?, ?, ?)"
+    );
+    $statement->execute([
+        $userId,
+        $entryType,
+        number_format($amount, 2, ".", ""),
+        number_format($frozenAmount, 2, ".", ""),
+        number_format($availableAfter, 2, ".", ""),
+        number_format($frozenAfter, 2, ".", ""),
+        $note,
+    ]);
+}
+
+function get_dashboard_stats(int $userId): array
+{
+    $wallet = wallet_snapshot($userId);
+    $pdo = db();
+
+    $todayStatement = $pdo->prepare(
+        "SELECT COALESCE(SUM(amount), 0) AS today_earnings
+         FROM wallet_logs
+         WHERE user_id = ?
+           AND entry_type = 'task_credit'
+           AND DATE(created_at) = CURDATE()"
+    );
+    $todayStatement->execute([$userId]);
+    $todayEarnings = (float) ($todayStatement->fetchColumn() ?: 0);
+
+    $monthStatement = $pdo->prepare(
+        "SELECT COALESCE(SUM(amount), 0) AS month_earnings
+         FROM wallet_logs
+         WHERE user_id = ?
+           AND entry_type = 'task_credit'
+           AND DATE_FORMAT(created_at, '%Y-%m') = DATE_FORMAT(CURDATE(), '%Y-%m')"
+    );
+    $monthStatement->execute([$userId]);
+    $monthEarnings = (float) ($monthStatement->fetchColumn() ?: 0);
+
+    $todayTaskStatement = $pdo->prepare(
+        "SELECT COUNT(*)
+         FROM task_orders
+         WHERE user_id = ?
+           AND DATE(claimed_at) = CURDATE()"
+    );
+    $todayTaskStatement->execute([$userId]);
+    $todayTasks = (int) ($todayTaskStatement->fetchColumn() ?: 0);
+
+    $activeStatement = $pdo->prepare(
+        "SELECT COUNT(*) FROM task_orders WHERE user_id = ? AND status IN ('claimed', 'pending_review')"
+    );
+    $activeStatement->execute([$userId]);
+    $activeOrders = (int) ($activeStatement->fetchColumn() ?: 0);
+
+    $completedStatement = $pdo->prepare(
+        "SELECT COUNT(*) FROM task_orders WHERE user_id = ? AND status = 'approved'"
+    );
+    $completedStatement->execute([$userId]);
+    $completedOrders = (int) ($completedStatement->fetchColumn() ?: 0);
+
+    $totalBalance = (float) $wallet["available_balance"] + (float) $wallet["frozen_balance"];
+
+    return [
+        "available_balance" => (float) $wallet["available_balance"],
+        "frozen_balance" => (float) $wallet["frozen_balance"],
+        "total_balance" => $totalBalance,
+        "today_earnings" => $todayEarnings,
+        "month_earnings" => $monthEarnings,
+        "today_tasks" => $todayTasks,
+        "active_orders" => $activeOrders,
+        "completed_orders" => $completedOrders,
+    ];
+}
+
+function get_user_orders(int $userId, int $limit = 12): array
+{
+    $statement = db()->prepare(
+        "SELECT * FROM task_orders WHERE user_id = ? ORDER BY id DESC LIMIT ?"
+    );
+    $statement->bindValue(1, $userId, PDO::PARAM_INT);
+    $statement->bindValue(2, $limit, PDO::PARAM_INT);
+    $statement->execute();
+    return $statement->fetchAll() ?: [];
+}
+
+function get_user_orders_for_task(int $userId, string $taskSlug, int $limit = 6): array
+{
+    $statement = db()->prepare(
+        "SELECT * FROM task_orders WHERE user_id = ? AND task_slug = ? ORDER BY id DESC LIMIT ?"
+    );
+    $statement->bindValue(1, $userId, PDO::PARAM_INT);
+    $statement->bindValue(2, $taskSlug, PDO::PARAM_STR);
+    $statement->bindValue(3, $limit, PDO::PARAM_INT);
+    $statement->execute();
+    return $statement->fetchAll() ?: [];
+}
+
+function get_wallet_logs(int $userId, int $limit = 20): array
+{
+    $statement = db()->prepare(
+        "SELECT * FROM wallet_logs WHERE user_id = ? ORDER BY id DESC LIMIT ?"
+    );
+    $statement->bindValue(1, $userId, PDO::PARAM_INT);
+    $statement->bindValue(2, $limit, PDO::PARAM_INT);
+    $statement->execute();
+    return $statement->fetchAll() ?: [];
+}
+
+function get_user_vip_orders(int $userId, int $limit = 12): array
+{
+    $statement = db()->prepare(
+        "SELECT *
+         FROM vip_orders
+         WHERE user_id = ?
+         ORDER BY COALESCE(completed_at, created_at) DESC, id DESC
+         LIMIT ?"
+    );
+    $statement->bindValue(1, $userId, PDO::PARAM_INT);
+    $statement->bindValue(2, $limit, PDO::PARAM_INT);
+    $statement->execute();
+    return $statement->fetchAll() ?: [];
+}
+
+function get_vip_order_by_id(int $vipOrderId, ?int $userId = null): ?array
+{
+    $sql = "SELECT * FROM vip_orders WHERE id = ?";
+    $params = [$vipOrderId];
+
+    if ($userId !== null) {
+        $sql .= " AND user_id = ?";
+        $params[] = $userId;
+    }
+
+    $sql .= " LIMIT 1";
+    $statement = db()->prepare($sql);
+    $statement->execute($params);
+    $order = $statement->fetch();
+    return $order ?: null;
+}
+
+function purchase_vip_upgrade(int $userId, int $targetLevel): array
+{
+    $catalog = vip_catalog();
+    if ($targetLevel <= 0 || !isset($catalog[$targetLevel])) {
+        throw new RuntimeException("请选择有效的 VIP 等级。");
+    }
+
+    $pdo = db();
+    $pdo->beginTransaction();
+
+    try {
+        $userStatement = $pdo->prepare(
+            "SELECT * FROM users WHERE id = ? LIMIT 1 FOR UPDATE"
+        );
+        $userStatement->execute([$userId]);
+        $user = $userStatement->fetch();
+
+        if (!$user) {
+            throw new RuntimeException("用户不存在，请重新登录后再试。");
+        }
+
+        $currentLevel = (int) $user["vip_level"];
+        if ($targetLevel <= $currentLevel) {
+            throw new RuntimeException("当前账号已开通 " . vip_info($currentLevel)["name"] . "，请选择更高等级。");
+        }
+
+        $walletStatement = $pdo->prepare(
+            "SELECT available_balance, frozen_balance FROM wallets WHERE user_id = ? LIMIT 1 FOR UPDATE"
+        );
+        $walletStatement->execute([$userId]);
+        $wallet = $walletStatement->fetch();
+
+        if (!$wallet) {
+            throw new RuntimeException("钱包不存在，请重新登录后再试。");
+        }
+
+        $targetVip = $catalog[$targetLevel];
+        $price = (float) $targetVip["price"];
+        $availableBefore = (float) $wallet["available_balance"];
+        $frozenAfter = (float) $wallet["frozen_balance"];
+
+        if ($availableBefore < $price) {
+            $gap = $price - $availableBefore;
+            throw new RuntimeException("当前可用余额不足，还差 " . number_format($gap, 2) . " USDT，请先充值后再开通。");
+        }
+
+        $availableAfter = $availableBefore - $price;
+        $note = vip_info($currentLevel)["name"] . " 升级到 " . $targetVip["name"] . "，系统已从可用余额扣款。";
+
+        $updateUser = $pdo->prepare("UPDATE users SET vip_level = ? WHERE id = ?");
+        $updateUser->execute([$targetLevel, $userId]);
+
+        $updateWallet = $pdo->prepare(
+            "UPDATE wallets SET available_balance = ?, updated_at = NOW() WHERE user_id = ?"
+        );
+        $updateWallet->execute([
+            number_format($availableAfter, 2, ".", ""),
+            $userId,
+        ]);
+
+        $insertOrder = $pdo->prepare(
+            "INSERT INTO vip_orders (
+                user_id,
+                from_level,
+                to_level,
+                price_usdt,
+                status,
+                available_after,
+                note,
+                completed_at
+            ) VALUES (?, ?, ?, ?, 'completed', ?, ?, NOW())"
+        );
+        $insertOrder->execute([
+            $userId,
+            $currentLevel,
+            $targetLevel,
+            number_format($price, 2, ".", ""),
+            number_format($availableAfter, 2, ".", ""),
+            $note,
+        ]);
+        $vipOrderId = (int) $pdo->lastInsertId();
+
+        insert_wallet_log(
+            $pdo,
+            $userId,
+            "vip_upgrade",
+            -$price,
+            0,
+            $note,
+            $availableAfter,
+            $frozenAfter
+        );
+
+        $pdo->commit();
+
+        return get_vip_order_by_id($vipOrderId, $userId) ?? [
+            "id" => $vipOrderId,
+            "from_level" => $currentLevel,
+            "to_level" => $targetLevel,
+            "price_usdt" => $price,
+            "available_after" => $availableAfter,
+            "status" => "completed",
+            "note" => $note,
+        ];
+    } catch (Throwable $exception) {
+        if ($pdo->inTransaction()) {
+            $pdo->rollBack();
+        }
+        throw $exception;
+    }
+}
+
+function active_order_for_task(int $userId, string $taskSlug): ?array
+{
+    $statement = db()->prepare(
+        "SELECT *
+         FROM task_orders
+         WHERE user_id = ? AND task_slug = ? AND status IN ('claimed', 'pending_review')
+         ORDER BY id DESC
+         LIMIT 1"
+    );
+    $statement->execute([$userId, $taskSlug]);
+    $order = $statement->fetch();
+    return $order ?: null;
+}
+
+function get_order_by_id(int $orderId, ?int $userId = null): ?array
+{
+    $sql = "SELECT o.*, u.email, u.user_code, u.vip_level
+            FROM task_orders o
+            INNER JOIN users u ON u.id = o.user_id
+            WHERE o.id = ?";
+
+    $params = [$orderId];
+    if ($userId !== null) {
+        $sql .= " AND o.user_id = ?";
+        $params[] = $userId;
+    }
+
+    $sql .= " LIMIT 1";
+    $statement = db()->prepare($sql);
+    $statement->execute($params);
+    $order = $statement->fetch();
+    return $order ?: null;
+}
+
+function can_access_task(array $user, array $task): bool
+{
+    return (int) $user["vip_level"] >= (int) $task["vip_required"];
+}
+
+function create_task_order(int $userId, array $task): array
+{
+    $user = fetch_user($userId);
+    if (!$user) {
+        throw new RuntimeException("用户不存在，请重新登录。");
+    }
+
+    if (!can_access_task($user, $task)) {
+        throw new RuntimeException("当前 VIP 等级不足，暂不能领取该任务。");
+    }
+
+    if (active_order_for_task($userId, (string) $task["slug"])) {
+        throw new RuntimeException("你已经有一个进行中的同类任务，请先完成当前任务。");
+    }
+
+    $statement = db()->prepare(
+        "INSERT INTO task_orders (
+            user_id,
+            task_slug,
+            task_title,
+            task_type,
+            platform_name,
+            reward_usdt,
+            vip_required,
+            countdown_seconds,
+            status
+        ) VALUES (?, ?, ?, ?, ?, ?, ?, ?, 'claimed')"
+    );
+    $statement->execute([
+        $userId,
+        $task["slug"],
+        $task["title"],
+        $task["type"],
+        $task["platform"],
+        number_format((float) $task["reward"], 2, ".", ""),
+        (int) $task["vip_required"],
+        (int) $task["countdown"],
+    ]);
+
+    $orderId = (int) db()->lastInsertId();
+    return get_order_by_id($orderId, $userId) ?? [];
+}
+
+function is_submit_unlocked(array $order): bool
+{
+    $claimedTimestamp = strtotime((string) $order["claimed_at"]);
+    if ($claimedTimestamp === false) {
+        return false;
+    }
+
+    return time() >= $claimedTimestamp + (int) $order["countdown_seconds"];
+}
+
+function submit_task_order(int $userId, int $orderId, string $proofNote): array
+{
+    $proofNote = trim($proofNote);
+    if (text_length($proofNote) < 6) {
+        throw new RuntimeException("请填写至少 6 个字符的完成备注，方便后台审核。");
+    }
+
+    $pdo = db();
+    $pdo->beginTransaction();
+
+    try {
+        $statement = $pdo->prepare(
+            "SELECT * FROM task_orders WHERE id = ? AND user_id = ? LIMIT 1 FOR UPDATE"
+        );
+        $statement->execute([$orderId, $userId]);
+        $order = $statement->fetch();
+
+        if (!$order) {
+            throw new RuntimeException("任务订单不存在。");
+        }
+        if ((string) $order["status"] !== "claimed") {
+            throw new RuntimeException("当前任务状态不可提交。");
+        }
+        if (!is_submit_unlocked($order)) {
+            throw new RuntimeException("倒计时尚未结束，请等待后再提交。");
+        }
+
+        $walletStatement = $pdo->prepare(
+            "SELECT available_balance, frozen_balance FROM wallets WHERE user_id = ? LIMIT 1 FOR UPDATE"
+        );
+        $walletStatement->execute([$userId]);
+        $wallet = $walletStatement->fetch();
+        if (!$wallet) {
+            throw new RuntimeException("钱包不存在，请重新登录。");
+        }
+
+        $availableAfter = (float) $wallet["available_balance"];
+        $frozenAfter = (float) $wallet["frozen_balance"] + (float) $order["reward_usdt"];
+
+        $updateOrder = $pdo->prepare(
+            "UPDATE task_orders
+             SET status = 'pending_review', proof_note = ?, submitted_at = NOW()
+             WHERE id = ?"
+        );
+        $updateOrder->execute([$proofNote, $orderId]);
+
+        $updateWallet = $pdo->prepare(
+            "UPDATE wallets SET frozen_balance = ?, updated_at = NOW() WHERE user_id = ?"
+        );
+        $updateWallet->execute([number_format($frozenAfter, 2, ".", ""), $userId]);
+
+        insert_wallet_log(
+            $pdo,
+            $userId,
+            "task_freeze",
+            0,
+            (float) $order["reward_usdt"],
+            "任务已提交审核，佣金进入冻结余额。",
+            $availableAfter,
+            $frozenAfter
+        );
+
+        $pdo->commit();
+        return get_order_by_id($orderId, $userId) ?? [];
+    } catch (Throwable $exception) {
+        if ($pdo->inTransaction()) {
+            $pdo->rollBack();
+        }
+        throw $exception;
+    }
+}
+
+function review_task_order(int $orderId, string $decision, string $note = ""): array
+{
+    $decision = $decision === "approve" ? "approved" : "rejected";
+    $note = trim($note);
+
+    $pdo = db();
+    $pdo->beginTransaction();
+
+    try {
+        $orderStatement = $pdo->prepare(
+            "SELECT * FROM task_orders WHERE id = ? LIMIT 1 FOR UPDATE"
+        );
+        $orderStatement->execute([$orderId]);
+        $order = $orderStatement->fetch();
+
+        if (!$order) {
+            throw new RuntimeException("待审核订单不存在。");
+        }
+        if ((string) $order["status"] !== "pending_review") {
+            throw new RuntimeException("该订单已处理，无需重复审核。");
+        }
+
+        $walletStatement = $pdo->prepare(
+            "SELECT available_balance, frozen_balance FROM wallets WHERE user_id = ? LIMIT 1 FOR UPDATE"
+        );
+        $walletStatement->execute([(int) $order["user_id"]]);
+        $wallet = $walletStatement->fetch();
+        if (!$wallet) {
+            throw new RuntimeException("钱包记录不存在。");
+        }
+
+        $reward = (float) $order["reward_usdt"];
+        $availableAfter = (float) $wallet["available_balance"];
+        $frozenAfter = max(0, (float) $wallet["frozen_balance"] - $reward);
+        $entryType = "task_reject";
+        $logAmount = 0.0;
+        $logFrozen = -$reward;
+        $defaultNote = "任务审核未通过，冻结佣金已释放。";
+
+        if ($decision === "approved") {
+            $availableAfter += $reward;
+            $entryType = "task_credit";
+            $logAmount = $reward;
+            $defaultNote = "任务审核通过，佣金已转入可提现余额。";
+        }
+
+        $updateOrder = $pdo->prepare(
+            "UPDATE task_orders
+             SET status = ?, reviewed_at = NOW(), review_note = ?
+             WHERE id = ?"
+        );
+        $updateOrder->execute([$decision, $note !== "" ? $note : $defaultNote, $orderId]);
+
+        $updateWallet = $pdo->prepare(
+            "UPDATE wallets
+             SET available_balance = ?, frozen_balance = ?, updated_at = NOW()
+             WHERE user_id = ?"
+        );
+        $updateWallet->execute([
+            number_format($availableAfter, 2, ".", ""),
+            number_format($frozenAfter, 2, ".", ""),
+            (int) $order["user_id"],
+        ]);
+
+        insert_wallet_log(
+            $pdo,
+            (int) $order["user_id"],
+            $entryType,
+            $logAmount,
+            $logFrozen,
+            $note !== "" ? $note : $defaultNote,
+            $availableAfter,
+            $frozenAfter
+        );
+
+        $pdo->commit();
+        return get_order_by_id($orderId, null) ?? [];
+    } catch (Throwable $exception) {
+        if ($pdo->inTransaction()) {
+            $pdo->rollBack();
+        }
+        throw $exception;
+    }
+}
+
+function get_operator_orders(string $status, int $limit = 20): array
+{
+    $statement = db()->prepare(
+        "SELECT o.*, u.email, u.user_code, u.vip_level
+         FROM task_orders o
+         INNER JOIN users u ON u.id = o.user_id
+         WHERE o.status = ?
+         ORDER BY COALESCE(o.submitted_at, o.claimed_at) DESC
+         LIMIT ?"
+    );
+    $statement->bindValue(1, $status, PDO::PARAM_STR);
+    $statement->bindValue(2, $limit, PDO::PARAM_INT);
+    $statement->execute();
+
+    return $statement->fetchAll() ?: [];
+}
+
+function get_recent_reviewed_orders(int $limit = 12): array
+{
+    $statement = db()->prepare(
+        "SELECT o.*, u.email, u.user_code, u.vip_level
+         FROM task_orders o
+         INNER JOIN users u ON u.id = o.user_id
+         WHERE o.status IN ('approved', 'rejected')
+         ORDER BY o.reviewed_at DESC, o.id DESC
+         LIMIT ?"
+    );
+    $statement->bindValue(1, $limit, PDO::PARAM_INT);
+    $statement->execute();
+
+    return $statement->fetchAll() ?: [];
+}
+
+function get_operator_stats(): array
+{
+    $pdo = db();
+
+    $todayUsers = (int) ($pdo->query("SELECT COUNT(*) FROM users WHERE DATE(created_at) = CURDATE()")->fetchColumn() ?: 0);
+    $pending = (int) ($pdo->query("SELECT COUNT(*) FROM task_orders WHERE status = 'pending_review'")->fetchColumn() ?: 0);
+    $completed = (int) ($pdo->query("SELECT COUNT(*) FROM task_orders WHERE status = 'approved'")->fetchColumn() ?: 0);
+    $credited = (float) ($pdo->query("SELECT COALESCE(SUM(amount), 0) FROM wallet_logs WHERE entry_type = 'task_credit'")->fetchColumn() ?: 0);
+
+    return [
+        "today_users" => $todayUsers,
+        "pending_reviews" => $pending,
+        "approved_orders" => $completed,
+        "credited_amount" => $credited,
+    ];
+}
+
+function status_label(string $status): string
+{
+    return [
+        "claimed" => "进行中",
+        "pending_review" => "待审核",
+        "approved" => "已入账",
+        "rejected" => "已驳回",
+    ][$status] ?? $status;
+}
+
+function status_tone(string $status): string
+{
+    return [
+        "claimed" => "muted",
+        "pending_review" => "warning",
+        "approved" => "success",
+        "rejected" => "danger",
+    ][$status] ?? "muted";
+}
+
+function wallet_entry_label(string $entryType): string
+{
+    return [
+        "wallet_opened" => "钱包创建",
+        "task_freeze" => "冻结佣金",
+        "task_credit" => "佣金到账",
+        "task_reject" => "审核释放",
+        "vip_upgrade" => "VIP 开通",
+    ][$entryType] ?? $entryType;
+}
+
+function render_status_badge(string $status): string
+{
+    return '<span class="status-pill tone-' . h(status_tone($status)) . '">' . h(status_label($status)) . '</span>';
+}
+
+function front_nav_items(): array
+{
+    return [
+        ["key" => "home", "label" => "首页", "href" => "index.php", "icon" => "home"],
+        ["key" => "tasks", "label" => "任务", "href" => "task.php", "icon" => "tasks"],
+        ["key" => "vip", "label" => "VIP", "href" => "vip.php", "icon" => "vip"],
+        ["key" => "wallet", "label" => "钱包", "href" => "wallet.php", "icon" => "wallet"],
+        ["key" => "profile", "label" => "我的", "href" => "profile.php", "icon" => "profile"],
+    ];
+}
+
+function is_front_app_nav(string $active): bool
+{
+    foreach (front_nav_items() as $item) {
+        if ($item["key"] === $active) {
+            return true;
+        }
+    }
+
+    return false;
+}
+
+function app_user_name(?array $user): string
+{
+    if (!$user) {
+        return 'User';
+    }
+
+    $email = (string) ($user['email'] ?? '');
+    $local = strstr($email, '@', true);
+    if ($local !== false && $local !== '') {
+        return $local;
+    }
+
+    return 'ID ' . (string) ($user['user_code'] ?? '000000');
+}
+
+function app_user_initial(?array $user): string
+{
+    $name = app_user_name($user);
+    $first = strtoupper(substr($name, 0, 1));
+    return $first !== '' ? $first : 'U';
+}
+
+function task_category_options(): array
+{
+    return [
+        'all' => '全部',
+        'video' => '视频',
+        'like' => '点赞',
+        'social' => '社媒',
+        'web' => '网站',
+        'app' => '应用',
+    ];
+}
+
+function task_visual_meta(array $task): array
+{
+    $map = [
+        'watch-video' => [
+            'brand' => 'YouTube',
+            'icon' => 'play',
+            'accent' => 'accent-red',
+            'category' => 'video',
+            'tag' => '视频',
+            'hint' => '观看视频',
+        ],
+        'social-like' => [
+            'brand' => 'TikTok',
+            'icon' => 'heart',
+            'accent' => 'accent-pink',
+            'category' => 'like',
+            'tag' => '点赞',
+            'hint' => '点赞互动',
+        ],
+        'follow-brand' => [
+            'brand' => 'Instagram',
+            'icon' => 'spark',
+            'accent' => 'accent-violet',
+            'category' => 'social',
+            'tag' => '社媒',
+            'hint' => '关注账号',
+        ],
+        'comment-flow' => [
+            'brand' => 'Community',
+            'icon' => 'chat',
+            'accent' => 'accent-cyan',
+            'category' => 'social',
+            'tag' => '社媒',
+            'hint' => '评论互动',
+        ],
+        'site-browse' => [
+            'brand' => 'Website',
+            'icon' => 'globe',
+            'accent' => 'accent-blue',
+            'category' => 'web',
+            'tag' => '网站',
+            'hint' => '网站浏览',
+        ],
+        'app-download' => [
+            'brand' => 'App Center',
+            'icon' => 'download',
+            'accent' => 'accent-orange',
+            'category' => 'app',
+            'tag' => '应用',
+            'hint' => '下载体验',
+        ],
+    ];
+
+    $slug = (string) ($task['slug'] ?? '');
+    $fallback = [
+        'brand' => (string) ($task['platform'] ?? 'Task'),
+        'icon' => 'spark',
+        'accent' => 'accent-violet',
+        'category' => 'all',
+        'tag' => (string) ($task['type'] ?? '任务'),
+        'hint' => (string) ($task['summary'] ?? '任务返佣'),
+    ];
+
+    return $map[$slug] ?? $fallback;
+}
+
+function app_icon_svg(string $icon): string
+{
+    $icons = [
+        'home' => '<path d="M3.75 10.5 12 4l8.25 6.5" /><path d="M6 9.5v9h12v-9" /><path d="M10 18.5v-4h4v4" />',
+        'tasks' => '<rect x="5" y="4.5" width="14" height="15" rx="2.5" /><path d="M9 4.5h6" /><path d="m9 12 2 2 4-4" /><path d="M9 16h6" />',
+        'vip' => '<path d="M4.5 7.5 8 11l4-5 4 5 3.5-3.5-2 8H6.5l-2-8Z" /><path d="M8.5 18.5h7" />',
+        'wallet' => '<path d="M4.5 7.5A2.5 2.5 0 0 1 7 5h10a2.5 2.5 0 0 1 2.5 2.5v1.25H15a2 2 0 0 0-2 2v1.5a2 2 0 0 0 2 2h4.5V16.5A2.5 2.5 0 0 1 17 19H7a2.5 2.5 0 0 1-2.5-2.5v-9Z" /><path d="M19.5 8.75v5.5" /><path d="M15.5 11.5h.01" />',
+        'profile' => '<path d="M12 11a3.75 3.75 0 1 0 0-7.5A3.75 3.75 0 0 0 12 11Z" /><path d="M4.5 19.5a7.5 7.5 0 0 1 15 0" />',
+        'play' => '<path d="M8 6.5v11l8-5.5-8-5.5Z" />',
+        'deposit' => '<path d="M12 4.5v12" /><path d="m7.5 12 4.5 4.5 4.5-4.5" /><path d="M5 19.5h14" />',
+        'withdraw' => '<path d="M12 19.5v-12" /><path d="m16.5 12-4.5-4.5L7.5 12" /><path d="M5 4.5h14" />',
+        'swap' => '<path d="M6 8h10" /><path d="m12.5 4.5 3.5 3.5-3.5 3.5" /><path d="M18 16H8" /><path d="m11.5 12.5-3.5 3.5 3.5 3.5" />',
+        'history' => '<path d="M4.5 12a7.5 7.5 0 1 0 2.2-5.3" /><path d="M4.5 5.5v3.5H8" /><path d="M12 8v4l2.5 1.5" />',
+        'heart' => '<path d="M12 19.25 5 12.75a4.1 4.1 0 0 1 5.8-5.8L12 8.15l1.2-1.2a4.1 4.1 0 0 1 5.8 5.8L12 19.25Z" />',
+        'spark' => '<path d="M12 3.5 13.8 8.2 18.5 10 13.8 11.8 12 16.5 10.2 11.8 5.5 10 10.2 8.2 12 3.5Z" /><path d="M18.5 16.5 19.2 18.3 21 19 19.2 19.7 18.5 21.5 17.8 19.7 16 19 17.8 18.3 18.5 16.5Z" />',
+        'chat' => '<path d="M5 6.5A2.5 2.5 0 0 1 7.5 4h9A2.5 2.5 0 0 1 19 6.5v6A2.5 2.5 0 0 1 16.5 15H11l-4.5 4v-4H7.5A2.5 2.5 0 0 1 5 12.5v-6Z" /><path d="M9 9.5h6" /><path d="M9 12h3.5" />',
+        'globe' => '<circle cx="12" cy="12" r="8.5" /><path d="M3.5 12h17" /><path d="M12 3.5a13 13 0 0 1 0 17" /><path d="M12 3.5a13 13 0 0 0 0 17" />',
+        'download' => '<path d="M12 4.5v10" /><path d="m8.5 11.5 3.5 3.5 3.5-3.5" /><path d="M5 19.5h14" />',
+        'check' => '<path d="m6.5 12 3.5 3.5L17.5 8" />',
+        'lock' => '<rect x="6" y="10" width="12" height="9" rx="2" /><path d="M8.5 10V8a3.5 3.5 0 0 1 7 0v2" />',
+        'support' => '<path d="M6 11.5a6 6 0 1 1 12 0v2.5A2.5 2.5 0 0 1 15.5 16.5H14" /><path d="M10 18h4" /><path d="M7 12.5h-.5A1.5 1.5 0 0 0 5 14v1.5A1.5 1.5 0 0 0 6.5 17H7" /><path d="M17 12.5h.5A1.5 1.5 0 0 1 19 14v1.5A1.5 1.5 0 0 1 17.5 17H17" />',
+        'chevron-right' => '<path d="m10 7 5 5-5 5" />',
+    ];
+
+    $paths = $icons[$icon] ?? $icons['spark'];
+
+    return '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="1.75" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">' . $paths . '</svg>';
+}
+
+function render_head(string $pageTitle, string $pageDescription = ""): void
+{
+    $siteName = project_name();
+    $description = trim($pageDescription) !== "" ? $pageDescription : project_description();
+    $fullTitle = trim($pageTitle) !== "" ? $pageTitle . " · " . $siteName : $siteName;
+    $projectDescription = $_SERVER["PROJECT_DESCRIPTION"] ?? "";
+    $projectImageUrl = $_SERVER["PROJECT_IMAGE_URL"] ?? "";
+    ?>
+<!doctype html>
+<html lang="zh-CN">
+<head>
+  <meta charset="utf-8" />
+  <meta name="viewport" content="width=device-width, initial-scale=1" />
+  <title><?= h($fullTitle) ?></title>
+  <meta name="description" content="<?= h($description ?: $projectDescription) ?>" />
+  <meta name="theme-color" content="#0b0f14" />
+  <meta property="og:title" content="<?= h($fullTitle) ?>" />
+  <meta property="og:description" content="<?= h($description ?: $projectDescription) ?>" />
+  <meta property="og:type" content="website" />
+  <meta property="twitter:card" content="summary_large_image" />
+  <meta property="twitter:title" content="<?= h($fullTitle) ?>" />
+  <meta property="twitter:description" content="<?= h($description ?: $projectDescription) ?>" />
+<?php if ($projectImageUrl): ?>
+  <meta property="og:image" content="<?= h($projectImageUrl) ?>" />
+  <meta property="twitter:image" content="<?= h($projectImageUrl) ?>" />
+<?php endif; ?>
+  <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-QWTKZyjpPEjISv5WaRU9OFeRpok6YctnYmDr5pNlyT2bRjXh0JMhjY6hW+ALEwIH" crossorigin="anonymous">
+  <link href="assets/css/custom.css?v=<?= h(asset_version("assets/css/custom.css")) ?>" rel="stylesheet" />
+</head>
+<?php
+}
+
+function render_header(string $active = "home"): void
+{
+    $user = current_user();
+    $front = is_front_app_nav($active);
+    $links = array_merge(front_nav_items(), [
+        ["key" => "ops", "label" => "运营台", "href" => "operations.php"],
+        ["key" => "health", "label" => "Healthz", "href" => "healthz.php"],
+    ]);
+    ?>
+<div class="app-shell<?= $front ? ' app-shell-front' : '' ?>">
+<?php if ($front): ?>
+  <div class="front-glow front-glow-one"></div>
+  <div class="front-glow front-glow-two"></div>
+  <header class="front-topbar">
+    <div class="front-topbar-shell">
+      <div class="d-flex align-items-center justify-content-between gap-3">
+        <a href="index.php" class="front-brand text-decoration-none">
+          <span class="brand-mark brand-mark-gradient"><?= app_icon_svg('play') ?></span>
+          <div>
+            <div class="brand-title">任务返佣平台</div>
+            <div class="brand-subtitle">看视频 · 点赞 · 关注 · 网站浏览</div>
+          </div>
+        </a>
+        <div class="d-flex align-items-center gap-2">
+          <?php if ($user): ?>
+            <span class="mini-pill"><?= h(vip_info((int) $user['vip_level'])['name']) ?></span>
+          <?php endif; ?>
+          <a href="operations.php" class="mini-icon-btn" aria-label="后台管理预览"><?= app_icon_svg('support') ?></a>
+        </div>
+      </div>
+      <div class="front-user-row mt-3">
+        <?php if ($user): ?>
+          <div class="user-chip compact-chip">
+            <span class="mono">ID <?= h($user['user_code']) ?></span>
+            <span class="divider-dot"></span>
+            <span><?= h($user['email']) ?></span>
+          </div>
+          <a href="logout.php" class="mini-link">退出</a>
+        <?php else: ?>
+          <a href="<?= h(start_page_url()) ?>" class="mini-link">邮箱注册 / 登录</a>
+          <a href="healthz.php" class="mini-icon-btn" aria-label="健康检查"><?= app_icon_svg('check') ?></a>
+        <?php endif; ?>
+      </div>
+    </div>
+  </header>
+<?php else: ?>
+  <header class="topbar sticky-top">
+    <div class="container py-3">
+      <div class="topbar-panel">
+        <div class="d-flex align-items-start justify-content-between gap-3 flex-wrap">
+          <div>
+            <a href="index.php" class="brand-link text-decoration-none">
+              <span class="brand-mark brand-mark-gradient"><?= app_icon_svg('play') ?></span>
+              <div>
+                <div class="brand-title"><?= h(project_name()) ?></div>
+                <div class="brand-subtitle">Task rebate operations · mobile preview</div>
+              </div>
+            </a>
+          </div>
+          <div class="d-flex flex-column align-items-start align-items-md-end gap-2 ms-auto">
+            <?php if ($user): ?>
+              <div class="user-chip">
+                <span class="mono">ID <?= h($user['user_code']) ?></span>
+                <span class="divider-dot"></span>
+                <span><?= h($user['email']) ?></span>
+                <span class="divider-dot"></span>
+                <span><?= h(vip_info((int) $user['vip_level'])['name']) ?></span>
+              </div>
+              <a href="logout.php" class="btn btn-outline-light btn-sm px-3">退出</a>
+            <?php else: ?>
+              <a href="<?= h(start_page_url()) ?>" class="btn btn-outline-light btn-sm px-3">邮箱注册 / 登录</a>
+            <?php endif; ?>
+          </div>
+        </div>
+        <nav class="app-nav mt-3" aria-label="Primary">
+          <?php foreach ($links as $link): ?>
+            <a href="<?= h($link['href']) ?>" class="nav-chip<?= $active === $link['key'] ? ' active' : '' ?>"><?= h($link['label']) ?></a>
+          <?php endforeach; ?>
+        </nav>
+      </div>
+    </div>
+  </header>
+<?php endif; ?>
+<?php
+}
+
+function render_toasts(array $flashes): void
+{
+    if (!$flashes) {
+        return;
+    }
+    ?>
+<div class="toast-stack position-fixed top-0 end-0 p-3">
+  <?php foreach ($flashes as $flash): ?>
+    <div class="toast align-items-center border-0 show mb-2" role="alert" aria-live="assertive" aria-atomic="true" data-bs-delay="4500">
+      <div class="toast-shell tone-<?= h((string) ($flash['tone'] ?? 'info')) ?>">
+        <div class="toast-body"><?= nl2br(h((string) ($flash['message'] ?? ''))) ?></div>
+        <button type="button" class="btn-close btn-close-white me-2 m-auto" data-bs-dismiss="toast" aria-label="Close"></button>
+      </div>
+    </div>
+  <?php endforeach; ?>
+</div>
+<?php
+}
+
+function render_layout_start(string $pageTitle, string $pageDescription, string $activeNav): void
+{
+    $GLOBALS['app_active_nav'] = $activeNav;
+    $isFront = is_front_app_nav($activeNav);
+    render_head($pageTitle, $pageDescription);
+    ?>
+<body class="<?= $isFront ? 'front-app-body' : '' ?>">
+<?php render_header($activeNav); ?>
+  <main class="<?= $isFront ? 'front-main' : 'container py-4 py-lg-5' ?>">
+    <?php render_toasts(pull_flashes()); ?>
+<?php
+}
+
+function render_bottom_nav(string $active): void
+{
+    ?>
+<nav class="bottom-app-nav" aria-label="底部导航">
+  <div class="bottom-app-nav-shell">
+    <?php foreach (front_nav_items() as $item): ?>
+      <a href="<?= h($item['href']) ?>" class="bottom-nav-item<?= $active === $item['key'] ? ' active' : '' ?>">
+        <span class="bottom-nav-icon"><?= app_icon_svg((string) $item['icon']) ?></span>
+        <span class="bottom-nav-label"><?= h($item['label']) ?></span>
+      </a>
+    <?php endforeach; ?>
+  </div>
+</nav>
+<?php
+}
+
+function render_layout_end(): void
+{
+    $activeNav = (string) ($GLOBALS['app_active_nav'] ?? '');
+    $isFront = is_front_app_nav($activeNav);
+    ?>
+  </main>
+  <?php if ($isFront): ?>
+    <?php render_bottom_nav($activeNav); ?>
+  <?php else: ?>
+  <footer class="container footer-shell pb-4 pt-2">
+    <div class="footer-panel d-flex flex-column flex-lg-row justify-content-between gap-3 align-items-lg-center">
+      <div>
+        <div class="footer-title">第一版可用闭环</div>
+        <div class="footer-copy">邮箱开户注册、任务领取、倒计时提交、运营审核、钱包流水已打通。</div>
+      </div>
+      <div class="d-flex flex-wrap gap-2">
+        <a href="index.php" class="footer-link">首页</a>
+        <a href="task.php" class="footer-link">任务</a>
+        <a href="vip.php" class="footer-link">VIP</a>
+        <a href="wallet.php" class="footer-link">钱包</a>
+        <a href="profile.php" class="footer-link">我的</a>
+        <a href="operations.php" class="footer-link">运营台</a>
+      </div>
+    </div>
+  </footer>
+  <?php endif; ?>
+</div>
+<script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js" integrity="sha384-YvpcrYf0tY3lHB60NNkmXc5s9fDVZLESaAA55NDzOxhy9GkcIdslK1eN7N6jIeHz" crossorigin="anonymous"></script>
+<script src="assets/js/main.js?v=<?= h(asset_version('assets/js/main.js')) ?>" defer></script>
+</body>
+</html>
+<?php
+}
diff --git a/assets/css/custom.css b/assets/css/custom.css
index 789132e..2b93de3 100644
--- a/assets/css/custom.css
+++ b/assets/css/custom.css
@@ -1,403 +1,1570 @@
+:root {
+    --bg: #0b0f14;
+    --surface: rgba(18, 24, 33, 0.92);
+    --surface-2: rgba(13, 18, 25, 0.9);
+    --surface-3: rgba(22, 28, 38, 0.92);
+    --border: rgba(129, 140, 153, 0.18);
+    --border-strong: rgba(148, 163, 184, 0.28);
+    --text: #e5e7eb;
+    --muted: #94a3b8;
+    --accent: #f8fafc;
+    --accent-weak: rgba(248, 250, 252, 0.08);
+    --success: #34d399;
+    --warning: #fbbf24;
+    --danger: #f87171;
+    --shadow: 0 18px 42px rgba(3, 7, 18, 0.32);
+    --radius-sm: 8px;
+    --radius-md: 12px;
+    --radius-lg: 16px;
+    --spacing-1: 0.25rem;
+    --spacing-2: 0.5rem;
+    --spacing-3: 0.75rem;
+    --spacing-4: 1rem;
+    --spacing-5: 1.5rem;
+    --spacing-6: 2rem;
+}
+
+html {
+    scroll-behavior: smooth;
+}
+
 body {
-    background: linear-gradient(-45deg, #ee7752, #e73c7e, #23a6d5, #23d5ab);
-    background-size: 400% 400%;
-    animation: gradient 15s ease infinite;
-    color: #212529;
-    font-family: 'Inter', -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Helvetica, Arial, sans-serif;
+    background: var(--bg);
+    color: var(--text);
+    font-family: Inter, ui-sans-serif, system-ui, -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif;
     font-size: 14px;
-    margin: 0;
+    line-height: 1.55;
     min-height: 100vh;
 }
 
-.main-wrapper {
-    display: flex;
+a {
+    color: inherit;
+}
+
+a:hover {
+    color: #ffffff;
+}
+
+::selection {
+    background: rgba(248, 250, 252, 0.16);
+}
+
+.app-shell {
+    min-height: 100vh;
+}
+
+.container {
+    max-width: 1180px;
+}
+
+.topbar {
+    background: rgba(11, 15, 20, 0.9);
+    backdrop-filter: blur(18px);
+    border-bottom: 1px solid rgba(129, 140, 153, 0.1);
+    z-index: 1040;
+}
+
+.topbar-panel {
+    border: 1px solid var(--border);
+    background: rgba(13, 18, 25, 0.84);
+    border-radius: var(--radius-lg);
+    padding: 1rem 1.1rem;
+    box-shadow: var(--shadow);
+}
+
+.brand-link {
+    display: inline-flex;
+    align-items: center;
+    gap: 0.875rem;
+}
+
+.brand-mark {
+    width: 2.6rem;
+    height: 2.6rem;
+    border-radius: 0.9rem;
+    border: 1px solid rgba(248, 250, 252, 0.18);
+    display: inline-flex;
     align-items: center;
     justify-content: center;
-    min-height: 100vh;
-    width: 100%;
-    padding: 20px;
-    box-sizing: border-box;
-    position: relative;
-    z-index: 1;
-}
-
-@keyframes gradient {
-    0% {
-        background-position: 0% 50%;
-    }
-    50% {
-        background-position: 100% 50%;
-    }
-    100% {
-        background-position: 0% 50%;
-    }
-}
-
-.chat-container {
-    width: 100%;
-    max-width: 600px;
-    background: rgba(255, 255, 255, 0.85);
-    border: 1px solid rgba(255, 255, 255, 0.3);
-    border-radius: 20px;
-    display: flex;
-    flex-direction: column;
-    height: 85vh;
-    box-shadow: 0 20px 40px rgba(0,0,0,0.2);
-    backdrop-filter: blur(15px);
-    -webkit-backdrop-filter: blur(15px);
-    overflow: hidden;
-}
-
-.chat-header {
-    padding: 1.5rem;
-    border-bottom: 1px solid rgba(0, 0, 0, 0.05);
-    background: rgba(255, 255, 255, 0.5);
+    background: rgba(248, 250, 252, 0.06);
+    color: #ffffff;
     font-weight: 700;
-    font-size: 1.1rem;
-    display: flex;
-    justify-content: space-between;
-    align-items: center;
+    letter-spacing: 0.05em;
 }
 
-.chat-messages {
-    flex: 1;
-    overflow-y: auto;
-    padding: 1.5rem;
-    display: flex;
-    flex-direction: column;
-    gap: 1.25rem;
-}
-
-/* Custom Scrollbar */
-::-webkit-scrollbar {
-    width: 6px;
-}
-
-::-webkit-scrollbar-track {
-    background: transparent;
-}
-
-::-webkit-scrollbar-thumb {
-    background: rgba(255, 255, 255, 0.3);
-    border-radius: 10px;
-}
-
-::-webkit-scrollbar-thumb:hover {
-    background: rgba(255, 255, 255, 0.5);
-}
-
-.message {
-    max-width: 85%;
-    padding: 0.85rem 1.1rem;
-    border-radius: 16px;
-    line-height: 1.5;
-    font-size: 0.95rem;
-    box-shadow: 0 4px 15px rgba(0,0,0,0.05);
-    animation: fadeIn 0.4s cubic-bezier(0.175, 0.885, 0.32, 1.275);
-}
-
-@keyframes fadeIn {
-    from { opacity: 0; transform: translateY(20px) scale(0.95); }
-    to { opacity: 1; transform: translateY(0) scale(1); }
-}
-
-.message.visitor {
-    align-self: flex-end;
-    background: linear-gradient(135deg, #212529 0%, #343a40 100%);
-    color: #fff;
-    border-bottom-right-radius: 4px;
-}
-
-.message.bot {
-    align-self: flex-start;
-    background: #ffffff;
-    color: #212529;
-    border-bottom-left-radius: 4px;
-}
-
-.chat-input-area {
-    padding: 1.25rem;
-    background: rgba(255, 255, 255, 0.5);
-    border-top: 1px solid rgba(0, 0, 0, 0.05);
-}
-
-.chat-input-area form {
-    display: flex;
-    gap: 0.75rem;
-}
-
-.chat-input-area input {
-    flex: 1;
-    border: 1px solid rgba(0, 0, 0, 0.1);
-    border-radius: 12px;
-    padding: 0.75rem 1rem;
-    outline: none;
-    background: rgba(255, 255, 255, 0.9);
-    transition: all 0.3s ease;
-}
-
-.chat-input-area input:focus {
-    border-color: #23a6d5;
-    box-shadow: 0 0 0 3px rgba(35, 166, 213, 0.2);
-}
-
-.chat-input-area button {
-    background: #212529;
-    color: #fff;
-    border: none;
-    padding: 0.75rem 1.5rem;
-    border-radius: 12px;
-    cursor: pointer;
+.brand-title {
+    font-size: 1rem;
     font-weight: 600;
-    transition: all 0.3s ease;
+    color: #ffffff;
 }
 
-.chat-input-area button:hover {
-    background: #000;
-    transform: translateY(-2px);
-    box-shadow: 0 5px 15px rgba(0,0,0,0.2);
+.brand-subtitle {
+    color: var(--muted);
+    font-size: 0.82rem;
 }
 
-/* Background Animations */
-.bg-animations {
-    position: fixed;
-    top: 0;
-    left: 0;
-    width: 100%;
-    height: 100%;
-    z-index: 0;
+.user-chip {
+    display: inline-flex;
+    align-items: center;
+    gap: 0.5rem;
+    padding: 0.5rem 0.75rem;
+    border: 1px solid var(--border);
+    border-radius: 999px;
+    color: var(--muted);
+    background: rgba(248, 250, 252, 0.03);
+    max-width: 100%;
     overflow: hidden;
-    pointer-events: none;
+    text-overflow: ellipsis;
+    white-space: nowrap;
 }
 
-.blob {
-    position: absolute;
-    width: 500px;
-    height: 500px;
-    background: rgba(255, 255, 255, 0.2);
+.divider-dot {
+    width: 4px;
+    height: 4px;
     border-radius: 50%;
-    filter: blur(80px);
-    animation: move 20s infinite alternate cubic-bezier(0.45, 0, 0.55, 1);
+    background: rgba(148, 163, 184, 0.55);
 }
 
-.blob-1 { 
-    top: -10%; 
-    left: -10%; 
-    background: rgba(238, 119, 82, 0.4); 
+.mono {
+    font-family: ui-monospace, SFMono-Regular, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", monospace;
 }
 
-.blob-2 { 
-    bottom: -10%; 
-    right: -10%; 
-    background: rgba(35, 166, 213, 0.4); 
-    animation-delay: -7s; 
-    width: 600px;
-    height: 600px;
-}
-
-.blob-3 { 
-    top: 40%; 
-    left: 30%; 
-    background: rgba(231, 60, 126, 0.3); 
-    animation-delay: -14s; 
-    width: 450px;
-    height: 450px;
-}
-
-@keyframes move {
-    0% { transform: translate(0, 0) rotate(0deg) scale(1); }
-    33% { transform: translate(150px, 100px) rotate(120deg) scale(1.1); }
-    66% { transform: translate(-50px, 200px) rotate(240deg) scale(0.9); }
-    100% { transform: translate(0, 0) rotate(360deg) scale(1); }
-}
-
-.header-link {
-    font-size: 14px;
-    color: #fff;
-    text-decoration: none;
-    background: rgba(0, 0, 0, 0.2);
-    padding: 0.5rem 1rem;
-    border-radius: 8px;
-    transition: all 0.3s ease;
-}
-
-.header-link:hover {
-    background: rgba(0, 0, 0, 0.4);
-    text-decoration: none;
-}
-
-/* Admin Styles */
-.admin-container {
-    max-width: 900px;
-    margin: 3rem auto;
-    padding: 2.5rem;
-    background: rgba(255, 255, 255, 0.85);
-    backdrop-filter: blur(20px);
-    -webkit-backdrop-filter: blur(20px);
-    border-radius: 24px;
-    box-shadow: 0 20px 50px rgba(0,0,0,0.15);
-    border: 1px solid rgba(255, 255, 255, 0.4);
-    position: relative;
-    z-index: 1;
-}
-
-.admin-container h1 {
-    margin-top: 0;
-    color: #212529;
-    font-weight: 800;
-}
-
-.table {
-    width: 100%;
-    border-collapse: separate;
-    border-spacing: 0 8px;
-    margin-top: 1.5rem;
-}
-
-.table th {
-    background: transparent;
-    border: none;
-    padding: 1rem;
-    color: #6c757d;
-    font-weight: 600;
-    text-transform: uppercase;
-    font-size: 0.75rem;
-    letter-spacing: 1px;
-}
-
-.table td {
-    background: #fff;
-    padding: 1rem;
-    border: none;
-}
-
-.table tr td:first-child { border-radius: 12px 0 0 12px; }
-.table tr td:last-child { border-radius: 0 12px 12px 0; }
-
-.form-group {
-    margin-bottom: 1.25rem;
-}
-
-.form-group label {
-    display: block;
-    margin-bottom: 0.5rem;
-    font-weight: 600;
-    font-size: 0.9rem;
-}
-
-.form-control {
-    width: 100%;
-    padding: 0.75rem 1rem;
-    border: 1px solid rgba(0, 0, 0, 0.1);
-    border-radius: 12px;
-    background: #fff;
-    transition: all 0.3s ease;
-    box-sizing: border-box;
-}
-
-.form-control:focus {
-    outline: none;
-    border-color: #23a6d5;
-    box-shadow: 0 0 0 3px rgba(35, 166, 213, 0.1);
-}
-
-.header-container {
+.app-nav {
     display: flex;
-    justify-content: space-between;
+    gap: 0.5rem;
+    overflow-x: auto;
+    padding-bottom: 0.125rem;
+    scrollbar-width: none;
+}
+
+.app-nav::-webkit-scrollbar {
+    display: none;
+}
+
+.nav-chip {
+    display: inline-flex;
     align-items: center;
+    justify-content: center;
+    min-height: 2.35rem;
+    padding: 0.55rem 0.9rem;
+    border-radius: 999px;
+    border: 1px solid transparent;
+    background: rgba(248, 250, 252, 0.04);
+    color: var(--muted);
+    text-decoration: none;
+    transition: 0.2s ease;
 }
 
-.header-links {
-    display: flex;
-    gap: 1rem;
+.nav-chip:hover,
+.nav-chip.active {
+    color: #ffffff;
+    border-color: var(--border-strong);
+    background: rgba(248, 250, 252, 0.1);
 }
 
-.admin-card {
-    background: rgba(255, 255, 255, 0.6);
-    padding: 2rem;
-    border-radius: 20px;
-    border: 1px solid rgba(255, 255, 255, 0.5);
-    margin-bottom: 2.5rem;
-    box-shadow: 0 10px 30px rgba(0,0,0,0.05);
+.panel {
+    background: var(--surface);
+    border: 1px solid var(--border);
+    border-radius: var(--radius-lg);
+    padding: 1.35rem;
+    box-shadow: var(--shadow);
+    backdrop-filter: blur(16px);
 }
 
-.admin-card h3 {
-    margin-top: 0;
-    margin-bottom: 1.5rem;
+.panel-hero {
+    padding: 1.5rem;
+}
+
+.auth-panel {
+    padding: 1.25rem;
+}
+
+.hero-section {
+    margin-top: 0.25rem;
+}
+
+.hero-title,
+.section-title,
+.panel-title {
+    color: #ffffff;
+    line-height: 1.15;
+    letter-spacing: -0.02em;
+}
+
+.hero-title {
+    font-size: clamp(2rem, 4vw, 3.1rem);
     font-weight: 700;
+    max-width: 12ch;
+    margin: 0;
 }
 
-.btn-delete {
-    background: #dc3545;
-    color: white;
-    border: none;
-    padding: 0.25rem 0.5rem;
-    border-radius: 4px;
-    cursor: pointer;
+.section-title {
+    font-size: clamp(1.45rem, 2.7vw, 2rem);
+    font-weight: 650;
+    margin: 0;
 }
 
-.btn-add {
-    background: #212529;
-    color: white;
-    border: none;
-    padding: 0.5rem 1rem;
-    border-radius: 4px;
-    cursor: pointer;
+.panel-title {
+    font-size: 1.125rem;
+    font-weight: 600;
+    margin: 0;
+}
+
+.hero-copy,
+.supporting-copy,
+.footer-copy,
+.notice-card p,
+.empty-state p,
+.task-summary {
+    color: var(--muted);
+}
+
+.hero-copy {
+    margin-top: 0.9rem;
+    max-width: 65ch;
+    font-size: 0.98rem;
+}
+
+.hero-grid,
+.stats-grid {
+    display: grid;
+    gap: 0.9rem;
+}
+
+.hero-grid,
+.stats-grid.four-up {
+    grid-template-columns: repeat(1, minmax(0, 1fr));
+}
+
+.stats-grid.two-up {
+    grid-template-columns: repeat(2, minmax(0, 1fr));
+}
+
+.stats-grid.three-up {
+    grid-template-columns: repeat(1, minmax(0, 1fr));
+}
+
+.metric-card {
+    border: 1px solid rgba(148, 163, 184, 0.14);
+    border-radius: var(--radius-md);
+    background: rgba(248, 250, 252, 0.03);
+    padding: 1rem;
+    min-height: 108px;
+}
+
+.metric-card.compact {
+    min-height: auto;
+    padding: 0.95rem;
+}
+
+.metric-label {
+    color: var(--muted);
+    font-size: 0.75rem;
+    text-transform: uppercase;
+    letter-spacing: 0.08em;
+    margin-bottom: 0.45rem;
+}
+
+.metric-value {
+    color: #ffffff;
+    font-size: 1.35rem;
+    font-weight: 650;
+    line-height: 1.12;
+}
+
+.metric-meta {
+    margin-top: 0.35rem;
+    color: var(--muted);
+    font-size: 0.82rem;
+}
+
+.eyebrow {
+    color: #cbd5e1;
+    text-transform: uppercase;
+    letter-spacing: 0.12em;
+    font-size: 0.72rem;
+    margin-bottom: 0.6rem;
+}
+
+.section-heading {
+    display: flex;
+    flex-direction: column;
+    gap: 0.35rem;
+}
+
+.task-platform,
+.list-title,
+.notice-title,
+.footer-title,
+.empty-title,
+.field-value,
+.task-meta-value,
+.vip-price,
+.task-detail-reward,
+.countdown-value {
+    color: #ffffff;
+}
+
+.task-platform {
+    font-size: 0.8rem;
+    text-transform: uppercase;
+    letter-spacing: 0.08em;
+    color: #cbd5e1;
+    margin-bottom: 0.35rem;
+}
+
+.task-title {
+    font-size: 1rem;
+    font-weight: 600;
+    margin: 0;
+}
+
+.task-card,
+.vip-card,
+.ops-card {
+    height: 100%;
+}
+
+.task-meta-grid {
+    display: grid;
+    grid-template-columns: repeat(2, minmax(0, 1fr));
+    gap: 0.9rem;
     margin-top: 1rem;
 }
 
-.btn-save {
-    background: #0088cc;
-    color: white;
-    border: none;
-    padding: 0.8rem 1.5rem;
-    border-radius: 12px;
-    cursor: pointer;
+.task-meta-value {
     font-weight: 600;
-    width: 100%;
-    transition: all 0.3s ease;
+    font-size: 0.95rem;
 }
 
-.webhook-url {
-    font-size: 0.85em;
-    color: #555;
-    margin-top: 0.5rem;
-}
-
-.history-table-container {
-    overflow-x: auto;
-    background: rgba(255, 255, 255, 0.4);
-    padding: 1rem;
-    border-radius: 12px;
-    border: 1px solid rgba(255, 255, 255, 0.3);
-}
-
-.history-table {
-    width: 100%;
-}
-
-.history-table-time {
-    width: 15%;
+.mini-pill {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    padding: 0.35rem 0.65rem;
+    border-radius: 999px;
+    border: 1px solid rgba(248, 250, 252, 0.14);
+    background: rgba(248, 250, 252, 0.04);
+    color: #e2e8f0;
+    font-size: 0.76rem;
     white-space: nowrap;
-    font-size: 0.85em;
-    color: #555;
 }
 
-.history-table-user {
-    width: 35%;
-    background: rgba(255, 255, 255, 0.3);
-    border-radius: 8px;
-    padding: 8px;
+.status-pill {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-height: 1.95rem;
+    padding: 0.35rem 0.7rem;
+    border-radius: 999px;
+    font-size: 0.77rem;
+    font-weight: 600;
+    letter-spacing: 0.02em;
+    border: 1px solid transparent;
+    white-space: nowrap;
 }
 
-.history-table-ai {
-    width: 50%;
-    background: rgba(255, 255, 255, 0.5);
-    border-radius: 8px;
-    padding: 8px;
+.tone-muted {
+    background: rgba(148, 163, 184, 0.1);
+    border-color: rgba(148, 163, 184, 0.18);
+    color: #cbd5e1;
 }
 
-.no-messages {
+.tone-warning {
+    background: rgba(251, 191, 36, 0.12);
+    border-color: rgba(251, 191, 36, 0.26);
+    color: #fcd34d;
+}
+
+.tone-success {
+    background: rgba(52, 211, 153, 0.12);
+    border-color: rgba(52, 211, 153, 0.26);
+    color: #86efac;
+}
+
+.tone-danger {
+    background: rgba(248, 113, 113, 0.12);
+    border-color: rgba(248, 113, 113, 0.24);
+    color: #fca5a5;
+}
+
+.notice-card,
+.countdown-card,
+.field-panel,
+.empty-state {
+    border: 1px solid rgba(148, 163, 184, 0.16);
+    border-radius: var(--radius-md);
+    background: rgba(248, 250, 252, 0.04);
+    padding: 1rem;
+}
+
+.notice-card.notice-warning {
+    background: rgba(251, 191, 36, 0.08);
+    border-color: rgba(251, 191, 36, 0.18);
+}
+
+.notice-card.notice-muted {
+    background: rgba(148, 163, 184, 0.06);
+}
+
+.notice-title,
+.empty-title,
+.footer-title {
+    font-weight: 600;
+    margin-bottom: 0.45rem;
+}
+
+.timeline-list {
+    display: grid;
+    gap: 0.8rem;
+}
+
+.timeline-item {
+    display: grid;
+    grid-template-columns: 2.4rem 1fr;
+    gap: 0.85rem;
+    align-items: start;
+    padding: 0.85rem 0;
+    border-top: 1px solid rgba(148, 163, 184, 0.12);
+}
+
+.timeline-item:first-child {
+    border-top: 0;
+    padding-top: 0;
+}
+
+.timeline-item.is-dimmed {
+    opacity: 0.55;
+}
+
+.timeline-index {
+    width: 2.1rem;
+    height: 2.1rem;
+    border-radius: 999px;
+    border: 1px solid rgba(248, 250, 252, 0.14);
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    font-weight: 600;
+    color: #ffffff;
+    background: rgba(248, 250, 252, 0.05);
+}
+
+.list-shell {
+    display: flex;
+    flex-direction: column;
+}
+
+.list-row {
+    display: flex;
+    align-items: center;
+    gap: 1rem;
+    padding: 1rem 1.2rem;
+    border-top: 1px solid rgba(148, 163, 184, 0.12);
+    transition: background 0.18s ease;
+}
+
+.list-row:first-child {
+    border-top: 0;
+}
+
+.list-row:hover {
+    background: rgba(248, 250, 252, 0.03);
+}
+
+.list-title {
+    font-weight: 600;
+    margin-bottom: 0.15rem;
+}
+
+.list-amount {
+    font-weight: 600;
+    color: #ffffff;
+}
+
+.ledger-row {
+    align-items: flex-start;
+}
+
+.ledger-values {
+    min-width: 185px;
+}
+
+.ledger-delta {
+    color: var(--muted);
+    font-weight: 600;
+    font-size: 0.84rem;
+}
+
+.ledger-delta.is-positive {
+    color: #bbf7d0;
+}
+
+.ledger-delta.is-negative {
+    color: #fecaca;
+}
+
+.ledger-delta.is-warning {
+    color: #fde68a;
+}
+
+.task-detail-reward,
+.vip-price,
+.countdown-value {
+    font-size: clamp(1.4rem, 2.8vw, 2.05rem);
+    font-weight: 700;
+    line-height: 1.08;
+}
+
+.countdown-card.ready {
+    border-color: rgba(52, 211, 153, 0.35);
+}
+
+.countdown-value.ready {
+    color: #86efac;
+}
+
+.pre-wrap {
+    white-space: pre-wrap;
+}
+
+.panel-head {
+    background: rgba(248, 250, 252, 0.03);
+}
+
+.footer-panel {
+    border: 1px solid var(--border);
+    background: rgba(13, 18, 25, 0.84);
+    border-radius: var(--radius-lg);
+    padding: 1rem 1.15rem;
+}
+
+.footer-link {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-height: 2.2rem;
+    padding: 0.4rem 0.8rem;
+    border: 1px solid rgba(248, 250, 252, 0.08);
+    border-radius: 999px;
+    text-decoration: none;
+    color: var(--muted);
+}
+
+.footer-link:hover {
+    color: #ffffff;
+    border-color: rgba(248, 250, 252, 0.22);
+}
+
+.auth-tabs .nav-link {
+    border-radius: 999px;
+    border: 1px solid transparent;
+    background: rgba(248, 250, 252, 0.04);
+    color: var(--muted);
+    padding: 0.55rem 0.9rem;
+}
+
+.auth-tabs .nav-link.active {
+    background: rgba(248, 250, 252, 0.12);
+    border-color: rgba(248, 250, 252, 0.14);
+    color: #ffffff;
+}
+
+.form-label {
+    color: #cbd5e1;
+    font-size: 0.84rem;
+    margin-bottom: 0.45rem;
+}
+
+.form-control,
+.form-control:focus,
+textarea.form-control {
+    background: rgba(248, 250, 252, 0.03);
+    border: 1px solid rgba(148, 163, 184, 0.18);
+    color: #ffffff;
+    border-radius: var(--radius-sm);
+    min-height: 2.95rem;
+    box-shadow: none;
+}
+
+.form-control::placeholder {
+    color: rgba(148, 163, 184, 0.76);
+}
+
+.form-control:focus {
+    border-color: rgba(248, 250, 252, 0.28);
+    box-shadow: 0 0 0 0.18rem rgba(248, 250, 252, 0.08);
+}
+
+.btn {
+    border-radius: 10px;
+    font-weight: 600;
+    min-height: 2.8rem;
+    box-shadow: none !important;
+}
+
+.btn-light {
+    background: #f8fafc;
+    border-color: #f8fafc;
+    color: #111827;
+}
+
+.btn-light:hover,
+.btn-light:focus {
+    background: #ffffff;
+    border-color: #ffffff;
+    color: #0f172a;
+}
+
+.btn-outline-light {
+    color: #e2e8f0;
+    border-color: rgba(248, 250, 252, 0.18);
+    background: transparent;
+}
+
+.btn-outline-light:hover,
+.btn-outline-light:focus {
+    background: rgba(248, 250, 252, 0.08);
+    border-color: rgba(248, 250, 252, 0.28);
+    color: #ffffff;
+}
+
+.btn-outline-danger {
+    border-color: rgba(248, 113, 113, 0.34);
+    color: #fca5a5;
+}
+
+.btn-outline-danger:hover,
+.btn-outline-danger:focus {
+    background: rgba(248, 113, 113, 0.08);
+    border-color: rgba(248, 113, 113, 0.44);
+    color: #fecaca;
+}
+
+.btn:disabled,
+.btn.disabled {
+    opacity: 0.5;
+    cursor: not-allowed;
+}
+
+.toast-stack {
+    z-index: 1090;
+    width: min(360px, calc(100vw - 1.5rem));
+}
+
+.toast {
+    background: transparent;
+}
+
+.toast-shell {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 0.75rem;
+    border-radius: var(--radius-md);
+    border: 1px solid rgba(148, 163, 184, 0.16);
+    background: rgba(13, 18, 25, 0.96);
+    box-shadow: var(--shadow);
+}
+
+.toast-shell.tone-success {
+    border-color: rgba(52, 211, 153, 0.3);
+}
+
+.toast-shell.tone-danger {
+    border-color: rgba(248, 113, 113, 0.3);
+}
+
+.toast-shell.tone-warning {
+    border-color: rgba(251, 191, 36, 0.28);
+}
+
+.toast-shell.tone-info {
+    border-color: rgba(148, 163, 184, 0.22);
+}
+
+.toast-body {
+    padding: 0.95rem 0 0.95rem 1rem;
+    color: #ffffff;
+}
+
+.btn-close:focus {
+    box-shadow: none;
+}
+
+.task-card-preview {
+    opacity: 0.95;
+}
+
+.small-status {
+    font-size: 0.88rem;
+}
+
+.field-value {
+    font-size: 0.94rem;
+}
+
+button:focus-visible,
+input:focus-visible,
+textarea:focus-visible,
+a:focus-visible {
+    outline: 2px solid rgba(248, 250, 252, 0.45);
+    outline-offset: 2px;
+}
+
+@media (min-width: 768px) {
+    .hero-grid,
+    .stats-grid.four-up {
+        grid-template-columns: repeat(2, minmax(0, 1fr));
+    }
+
+    .stats-grid.three-up {
+        grid-template-columns: repeat(3, minmax(0, 1fr));
+    }
+
+    .panel,
+    .panel-hero {
+        padding: 1.5rem;
+    }
+}
+
+@media (min-width: 992px) {
+    .hero-grid,
+    .stats-grid.four-up {
+        grid-template-columns: repeat(3, minmax(0, 1fr));
+    }
+
+    .stats-grid.four-up {
+        grid-template-columns: repeat(4, minmax(0, 1fr));
+    }
+}
+
+@media (max-width: 767.98px) {
+    .topbar-panel,
+    .panel,
+    .panel-hero,
+    .auth-panel,
+    .footer-panel {
+        padding: 1rem;
+    }
+
+    .hero-title {
+        max-width: none;
+    }
+
+    .list-row {
+        flex-direction: column;
+        align-items: flex-start;
+    }
+
+    .ledger-values,
+    .list-row .ms-auto {
+        width: 100%;
+        margin-left: 0 !important;
+    }
+
+    .stats-grid.two-up,
+    .task-meta-grid {
+        grid-template-columns: repeat(1, minmax(0, 1fr));
+    }
+
+    .user-chip {
+        max-width: 100%;
+    }
+}
+
+
+/* front-app-refresh */
+.front-app-body {
+    background:
+        radial-gradient(circle at top left, rgba(99, 102, 241, 0.26), transparent 36%),
+        radial-gradient(circle at 85% 0%, rgba(236, 72, 153, 0.18), transparent 28%),
+        linear-gradient(180deg, #050814 0%, #090f22 42%, #0b1020 100%);
+    color: #f8fafc;
+    overflow-x: hidden;
+}
+
+.front-main {
+    position: relative;
+    z-index: 2;
+    width: min(100%, 430px);
+    margin: 0 auto;
+    padding: 0.5rem 1rem calc(6.8rem + env(safe-area-inset-bottom));
+}
+
+.front-topbar {
+    position: sticky;
+    top: 0;
+    z-index: 1040;
+    padding: 1rem 1rem 0.35rem;
+}
+
+.front-topbar-shell {
+    width: min(100%, 430px);
+    margin: 0 auto;
+    padding: 1rem;
+    border-radius: 24px;
+    border: 1px solid rgba(255, 255, 255, 0.08);
+    background: rgba(11, 16, 32, 0.82);
+    backdrop-filter: blur(20px);
+    box-shadow: 0 24px 55px rgba(2, 6, 23, 0.35);
+}
+
+.front-brand {
+    display: inline-flex;
+    align-items: center;
+    gap: 0.875rem;
+}
+
+.front-user-row {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 0.75rem;
+}
+
+.front-glow {
+    position: fixed;
+    width: 220px;
+    height: 220px;
+    border-radius: 999px;
+    filter: blur(55px);
+    opacity: 0.65;
+    pointer-events: none;
+    z-index: 0;
+}
+
+.front-glow-one {
+    top: -90px;
+    left: -40px;
+    background: rgba(59, 130, 246, 0.28);
+}
+
+.front-glow-two {
+    top: 80px;
+    right: -70px;
+    background: rgba(168, 85, 247, 0.22);
+}
+
+.brand-mark-gradient {
+    background: linear-gradient(135deg, rgba(99, 102, 241, 0.95), rgba(217, 70, 239, 0.95));
+    border-color: rgba(255, 255, 255, 0.22);
+    box-shadow: 0 14px 34px rgba(99, 102, 241, 0.25);
+}
+
+.brand-mark svg,
+.quick-action-icon svg,
+.feature-icon svg,
+.task-platform-icon svg,
+.task-row-arrow svg,
+.bottom-nav-icon svg,
+.mini-icon-btn svg {
+    width: 1.1rem;
+    height: 1.1rem;
+}
+
+.mini-pill,
+.mini-link,
+.tag-chip {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-height: 2rem;
+    padding: 0.4rem 0.8rem;
+    border-radius: 999px;
+    border: 1px solid rgba(255, 255, 255, 0.12);
+    background: rgba(255, 255, 255, 0.06);
+    color: #ffffff;
+    text-decoration: none;
+    font-size: 0.78rem;
+    font-weight: 600;
+}
+
+.mini-icon-btn {
+    width: 2.15rem;
+    height: 2.15rem;
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    border-radius: 999px;
+    border: 1px solid rgba(255, 255, 255, 0.12);
+    background: rgba(255, 255, 255, 0.06);
+    color: #ffffff;
+    text-decoration: none;
+}
+
+.mini-link:hover,
+.mini-icon-btn:hover,
+.mini-pill:hover,
+.tag-chip:hover {
+    color: #ffffff;
+    border-color: rgba(255, 255, 255, 0.22);
+    background: rgba(255, 255, 255, 0.1);
+}
+
+.secondary-chip {
+    color: #c4b5fd;
+    border-color: rgba(167, 139, 250, 0.22);
+    background: rgba(109, 40, 217, 0.18);
+}
+
+.compact-chip {
+    max-width: 74%;
+    overflow: hidden;
+}
+
+.app-page-section {
+    margin-bottom: 1rem;
+}
+
+.app-card {
+    display: block;
+    padding: 1rem;
+    border-radius: 24px;
+    border: 1px solid rgba(255, 255, 255, 0.08);
+    background: linear-gradient(180deg, rgba(14, 19, 41, 0.96), rgba(9, 13, 29, 0.98));
+    box-shadow: 0 24px 60px rgba(2, 6, 23, 0.42);
+    text-decoration: none;
+}
+
+.app-card:hover {
+    color: #ffffff;
+}
+
+.gradient-card {
+    background:
+        radial-gradient(circle at 5% 0%, rgba(59, 130, 246, 0.22), transparent 40%),
+        radial-gradient(circle at 100% 10%, rgba(217, 70, 239, 0.18), transparent 30%),
+        linear-gradient(180deg, rgba(21, 27, 63, 0.98), rgba(11, 15, 34, 0.98));
+}
+
+.hero-card,
+.slim-hero-card,
+.detail-hero-card {
+    padding: 1.1rem;
+}
+
+.tiny-eyebrow {
+    color: #c4b5fd;
+    text-transform: uppercase;
+    letter-spacing: 0.12em;
+    font-size: 0.72rem;
+    margin-bottom: 0.45rem;
+}
+
+.app-hero-title,
+.app-section-title,
+.vip-banner-title {
+    color: #ffffff;
+    line-height: 1.1;
+    letter-spacing: -0.03em;
+    margin: 0;
+}
+
+.app-hero-title {
+    font-size: 1.6rem;
+    font-weight: 700;
+}
+
+.app-hero-title.compact-title,
+.compact-title {
+    font-size: 1.45rem;
+}
+
+.app-section-title {
+    font-size: 1.2rem;
+    font-weight: 650;
+}
+
+.app-hero-copy,
+.app-copy,
+.list-meta-line,
+.stat-meta,
+.balance-sub,
+.app-inline-note,
+.task-row-subtitle,
+.wallet-field-row,
+.wallet-summary-list span,
+.wallet-summary-list strong {
+    color: #b7bfd7;
+}
+
+.hero-avatar,
+.profile-avatar-large {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    flex-shrink: 0;
+    border-radius: 999px;
+    background: linear-gradient(135deg, #4f46e5, #d946ef);
+    color: #ffffff;
+    font-weight: 700;
+    box-shadow: 0 18px 42px rgba(79, 70, 229, 0.32);
+}
+
+.hero-avatar {
+    width: 3rem;
+    height: 3rem;
+    font-size: 1rem;
+}
+
+.profile-avatar-large {
+    width: 4rem;
+    height: 4rem;
+    font-size: 1.35rem;
+}
+
+.balance-card,
+.payment-hero-box,
+.vip-highlight-card {
+    border-radius: 22px;
+    padding: 1rem;
+    border: 1px solid rgba(255, 255, 255, 0.12);
+    background: linear-gradient(135deg, rgba(37, 99, 235, 0.96), rgba(109, 40, 217, 0.94) 65%, rgba(217, 70, 239, 0.84));
+}
+
+.balance-value,
+.payment-price,
+.detail-amount,
+.stat-value,
+.reward-strong,
+.task-row-reward {
+    color: #ffffff;
+    font-weight: 700;
+    line-height: 1.04;
+}
+
+.balance-value,
+.payment-price {
+    font-size: 2rem;
+}
+
+.detail-amount {
+    font-size: 1.5rem;
+}
+
+.stat-value {
+    font-size: 1.15rem;
+}
+
+.reward-strong,
+.task-row-reward {
+    font-size: 1rem;
+}
+
+.mini-label {
+    color: rgba(255, 255, 255, 0.72);
+    font-size: 0.74rem;
+    letter-spacing: 0.08em;
+    text-transform: uppercase;
+    margin-bottom: 0.3rem;
+}
+
+.vip-chip-large {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-height: 2rem;
+    padding: 0.42rem 0.8rem;
+    border-radius: 999px;
+    background: rgba(255, 248, 210, 0.18);
+    border: 1px solid rgba(254, 240, 138, 0.32);
+    color: #fff7d6;
+    font-size: 0.78rem;
+    font-weight: 700;
+}
+
+.app-inline-note {
+    padding: 0.9rem 1rem;
+    border-radius: 18px;
+    border: 1px solid rgba(129, 140, 248, 0.18);
+    background: rgba(124, 58, 237, 0.08);
+    font-size: 0.88rem;
+}
+
+.section-heading-app {
+    display: flex;
+    flex-direction: column;
+    gap: 0.3rem;
+}
+
+.mini-stat-grid {
+    display: grid;
+    gap: 0.85rem;
+}
+
+.mini-stat-grid.three-cols {
+    grid-template-columns: repeat(3, minmax(0, 1fr));
+}
+
+.stat-card {
+    min-height: 116px;
+}
+
+.feature-shortcuts,
+.quick-action-grid {
+    display: grid;
+    gap: 0.75rem;
+}
+
+.quick-action-grid {
+    grid-template-columns: repeat(4, minmax(0, 1fr));
+}
+
+.quick-action,
+.feature-shortcut {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    gap: 0.45rem;
+    border-radius: 18px;
+    padding: 0.75rem 0.4rem;
+    text-decoration: none;
+    background: rgba(255, 255, 255, 0.08);
+    border: 1px solid rgba(255, 255, 255, 0.08);
+}
+
+.quick-action:hover,
+.feature-shortcut:hover {
+    color: #ffffff;
+    background: rgba(255, 255, 255, 0.12);
+}
+
+.quick-action-icon,
+.feature-icon,
+.task-platform-icon {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    flex-shrink: 0;
+    border-radius: 18px;
+    color: #ffffff;
+}
+
+.quick-action-icon,
+.feature-icon {
+    width: 2.45rem;
+    height: 2.45rem;
+    background: rgba(255, 255, 255, 0.1);
+}
+
+.task-platform-icon {
+    width: 2.9rem;
+    height: 2.9rem;
+    border-radius: 20px;
+    box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.2);
+}
+
+.task-platform-icon.large-icon {
+    width: 3.5rem;
+    height: 3.5rem;
+}
+
+.small-menu-icon {
+    width: 2.5rem;
+    height: 2.5rem;
+}
+
+.accent-red {
+    background: linear-gradient(135deg, #ef4444, #f97316);
+}
+
+.accent-pink {
+    background: linear-gradient(135deg, #ec4899, #8b5cf6);
+}
+
+.accent-violet {
+    background: linear-gradient(135deg, #8b5cf6, #d946ef);
+}
+
+.accent-cyan {
+    background: linear-gradient(135deg, #06b6d4, #3b82f6);
+}
+
+.accent-blue {
+    background: linear-gradient(135deg, #3b82f6, #6366f1);
+}
+
+.accent-orange {
+    background: linear-gradient(135deg, #f59e0b, #f97316);
+}
+
+.accent-gold {
+    background: linear-gradient(135deg, #f59e0b, #facc15);
+}
+
+.app-task-list,
+.app-list-stack,
+.auth-stack,
+.timeline-mini-list {
+    display: grid;
+    gap: 0.85rem;
+}
+
+.task-row-card,
+.app-list-item,
+.task-list-row {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 0.85rem;
+}
+
+.task-row-card {
+    align-items: stretch;
+}
+
+.task-row-content,
+.menu-item-left {
+    display: flex;
+    align-items: center;
+    gap: 0.8rem;
+    min-width: 0;
+}
+
+.task-row-content {
+    flex-direction: column;
+    align-items: flex-start;
+    justify-content: center;
+    gap: 0.2rem;
+}
+
+.task-row-side {
+    display: flex;
+    flex-direction: column;
+    align-items: flex-end;
+    justify-content: center;
+    gap: 0.35rem;
+}
+
+.task-row-title,
+.list-title-strong {
+    color: #ffffff;
+    font-weight: 650;
+    line-height: 1.25;
+}
+
+.task-row-subtitle,
+.list-meta-line {
+    display: block;
+    font-size: 0.82rem;
+}
+
+.task-row-arrow,
+.bottom-nav-icon {
+    color: rgba(255, 255, 255, 0.72);
+}
+
+.task-list-footer {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 0.75rem;
+}
+
+.category-tabs {
+    display: flex;
+    gap: 0.6rem;
+    overflow-x: auto;
+    padding-bottom: 0.2rem;
+    scrollbar-width: none;
+}
+
+.category-tabs::-webkit-scrollbar {
+    display: none;
+}
+
+.category-tab {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-height: 2.2rem;
+    padding: 0.45rem 0.95rem;
+    border-radius: 999px;
+    border: 1px solid rgba(255, 255, 255, 0.1);
+    background: rgba(255, 255, 255, 0.06);
+    color: #cbd5e1;
+    text-decoration: none;
+    white-space: nowrap;
+}
+
+.category-tab.active,
+.category-tab:hover {
+    background: linear-gradient(135deg, rgba(139, 92, 246, 0.95), rgba(217, 70, 239, 0.92));
+    border-color: rgba(217, 70, 239, 0.4);
+    color: #ffffff;
+}
+
+.detail-meta-grid {
+    display: grid;
+    grid-template-columns: repeat(3, minmax(0, 1fr));
+    gap: 0.75rem;
+}
+
+.detail-mini-value {
+    color: #ffffff;
+    font-weight: 600;
+}
+
+.timeline-mini-item {
+    display: flex;
+    align-items: flex-start;
+    gap: 0.8rem;
+}
+
+.timeline-mini-index {
+    width: 2rem;
+    height: 2rem;
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    flex-shrink: 0;
+    border-radius: 999px;
+    background: rgba(255, 255, 255, 0.08);
+    border: 1px solid rgba(255, 255, 255, 0.1);
+    color: #ffffff;
+    font-weight: 700;
+}
+
+.front-countdown-card {
+    border-radius: 22px;
+    background: rgba(255, 255, 255, 0.04);
+    border: 1px solid rgba(255, 255, 255, 0.08);
+    padding: 1rem;
+}
+
+.countdown-display {
+    color: #ffffff;
+    font-size: 1.8rem;
+    font-weight: 700;
+    line-height: 1.05;
+}
+
+.empty-tip {
+    color: #b7bfd7;
+    font-size: 0.92rem;
+}
+
+.auth-card-panel {
+    padding: 1rem;
+}
+
+.auth-panel-head {
+    display: flex;
+    align-items: flex-start;
+    justify-content: space-between;
+    gap: 0.75rem;
+    margin-bottom: 1rem;
+}
+
+.auth-form-grid {
+    display: grid;
+    gap: 0.9rem;
+}
+
+.btn-gradient {
+    color: #ffffff;
+    border: 0;
+    background: linear-gradient(90deg, #7c3aed 0%, #a855f7 45%, #ec4899 100%);
+    box-shadow: 0 18px 40px rgba(168, 85, 247, 0.32) !important;
+}
+
+.btn-gradient:hover,
+.btn-gradient:focus {
+    color: #ffffff;
+    background: linear-gradient(90deg, #8b5cf6 0%, #c026d3 100%);
+}
+
+.withdraw-card-shell {
+    padding: 1rem;
+    border-radius: 22px;
+    background: rgba(255, 255, 255, 0.04);
+    border: 1px solid rgba(255, 255, 255, 0.08);
+}
+
+.wallet-field-row,
+.wallet-summary-list div {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 0.8rem;
+}
+
+.wallet-field-input {
+    margin-top: 0.45rem;
+    min-height: 3rem;
+    display: flex;
+    align-items: center;
+    border-radius: 16px;
+    padding: 0.8rem 0.9rem;
+    background: rgba(255, 255, 255, 0.05);
+    border: 1px solid rgba(255, 255, 255, 0.08);
+    color: #ffffff;
+}
+
+.wallet-summary-list {
+    display: grid;
+    gap: 0.65rem;
+}
+
+.ledger-value-inline {
+    font-weight: 700;
+    color: #ffffff;
+    white-space: nowrap;
+}
+
+.ledger-value-inline.is-positive {
+    color: #86efac;
+}
+
+.ledger-value-inline.is-negative {
+    color: #fca5a5;
+}
+
+.vip-level-row.is-selected {
+    border-color: rgba(216, 180, 254, 0.38);
+    box-shadow: 0 0 0 1px rgba(216, 180, 254, 0.16), 0 24px 60px rgba(2, 6, 23, 0.42);
+}
+
+.bottom-app-nav {
+    position: fixed;
+    left: 0;
+    right: 0;
+    bottom: 0;
+    z-index: 1045;
+    padding: 0.75rem 1rem calc(0.75rem + env(safe-area-inset-bottom));
+    pointer-events: none;
+}
+
+.bottom-app-nav-shell {
+    width: min(100%, 430px);
+    margin: 0 auto;
+    display: grid;
+    grid-template-columns: repeat(5, minmax(0, 1fr));
+    gap: 0.15rem;
+    padding: 0.45rem;
+    border-radius: 24px;
+    border: 1px solid rgba(255, 255, 255, 0.08);
+    background: rgba(10, 14, 28, 0.88);
+    backdrop-filter: blur(18px);
+    box-shadow: 0 24px 60px rgba(2, 6, 23, 0.46);
+    pointer-events: auto;
+}
+
+.bottom-nav-item {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    gap: 0.2rem;
+    min-height: 3.6rem;
+    border-radius: 18px;
+    color: #a5b4fc;
+    text-decoration: none;
+    font-size: 0.72rem;
+    font-weight: 600;
+}
+
+.bottom-nav-item.active {
+    color: #ffffff;
+    background: linear-gradient(180deg, rgba(109, 40, 217, 0.32), rgba(59, 130, 246, 0.18));
+}
+
+.bottom-nav-item:hover {
+    color: #ffffff;
+}
+
+.bottom-nav-icon svg {
+    width: 1.2rem;
+    height: 1.2rem;
+}
+
+@media (max-width: 420px) {
+    .balance-value,
+    .payment-price {
+        font-size: 1.75rem;
+    }
+
+    .quick-action-grid {
+        gap: 0.55rem;
+    }
+
+    .mini-stat-grid.three-cols,
+    .detail-meta-grid {
+        grid-template-columns: repeat(1, minmax(0, 1fr));
+    }
+
+    .front-user-row {
+        flex-wrap: wrap;
+    }
+
+    .compact-chip {
+        max-width: 100%;
+    }
+}
+
+
+.auth-page-shell {
+    max-width: 980px;
+    margin-inline: auto;
+}
+
+.auth-page-grid,
+.onboarding-flow-grid,
+.auth-link-grid {
+    display: grid;
+    gap: 0.9rem;
+}
+
+.onboarding-flow-grid {
+    grid-template-columns: repeat(1, minmax(0, 1fr));
+}
+
+.onboarding-step-card {
+    padding: 1rem;
+    border-radius: 22px;
+    border: 1px solid rgba(255, 255, 255, 0.08);
+    background: rgba(255, 255, 255, 0.04);
+}
+
+.step-kicker {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-height: 1.9rem;
+    padding: 0.25rem 0.7rem;
+    border-radius: 999px;
+    border: 1px solid rgba(255, 255, 255, 0.12);
+    background: rgba(255, 255, 255, 0.06);
+    color: #ffffff;
+    font-size: 0.78rem;
+    letter-spacing: 0.08em;
+}
+
+.auth-link-grid .btn {
+    min-height: 3rem;
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+}
+
+.auth-code-input {
     text-align: center;
-    color: #777;
-}
\ No newline at end of file
+    letter-spacing: 0.45rem;
+    font-size: 1.2rem;
+    font-weight: 700;
+}
+
+@media (min-width: 768px) {
+    .auth-page-grid {
+        grid-template-columns: minmax(0, 1.1fr) minmax(0, 0.9fr);
+    }
+
+    .onboarding-flow-grid {
+        grid-template-columns: repeat(2, minmax(0, 1fr));
+    }
+
+    .auth-link-grid {
+        grid-template-columns: repeat(2, minmax(0, 1fr));
+    }
+}
diff --git a/assets/js/main.js b/assets/js/main.js
index d349598..1cf93f7 100644
--- a/assets/js/main.js
+++ b/assets/js/main.js
@@ -1,39 +1,60 @@
 document.addEventListener('DOMContentLoaded', () => {
-    const chatForm = document.getElementById('chat-form');
-    const chatInput = document.getElementById('chat-input');
-    const chatMessages = document.getElementById('chat-messages');
+    if (window.bootstrap) {
+        document.querySelectorAll('.toast').forEach((toastEl) => {
+            const toast = bootstrap.Toast.getOrCreateInstance(toastEl);
+            toast.show();
+        });
+    }
 
-    const appendMessage = (text, sender) => {
-        const msgDiv = document.createElement('div');
-        msgDiv.classList.add('message', sender);
-        msgDiv.textContent = text;
-        chatMessages.appendChild(msgDiv);
-        chatMessages.scrollTop = chatMessages.scrollHeight;
-    };
+    document.querySelectorAll('[data-countdown]').forEach((node) => {
+        const unlockAt = Number.parseInt(node.getAttribute('data-countdown') || '0', 10);
+        const targetSelector = node.getAttribute('data-countdown-target');
+        const targetButton = targetSelector ? document.querySelector(targetSelector) : null;
+        const card = node.closest('[data-countdown-card]') || node.closest('.countdown-card');
 
-    chatForm.addEventListener('submit', async (e) => {
-        e.preventDefault();
-        const message = chatInput.value.trim();
-        if (!message) return;
+        const updateCountdown = () => {
+            const remaining = Math.max(0, unlockAt - Math.floor(Date.now() / 1000));
+            if (remaining > 0) {
+                node.textContent = `${remaining} 秒`;
+                node.classList.remove('ready');
+                if (targetButton) {
+                    targetButton.disabled = true;
+                    targetButton.setAttribute('aria-disabled', 'true');
+                }
+                if (card) {
+                    card.classList.remove('ready');
+                }
+                return false;
+            }
 
-        appendMessage(message, 'visitor');
-        chatInput.value = '';
+            node.textContent = '可提交';
+            node.classList.add('ready');
+            if (targetButton) {
+                targetButton.disabled = false;
+                targetButton.removeAttribute('aria-disabled');
+            }
+            if (card) {
+                card.classList.add('ready');
+            }
+            return true;
+        };
 
-        try {
-            const response = await fetch('api/chat.php', {
-                method: 'POST',
-                headers: { 'Content-Type': 'application/json' },
-                body: JSON.stringify({ message })
-            });
-            const data = await response.json();
-            
-            // Artificial delay for realism
-            setTimeout(() => {
-                appendMessage(data.reply, 'bot');
-            }, 500);
-        } catch (error) {
-            console.error('Error:', error);
-            appendMessage("Sorry, something went wrong. Please try again.", 'bot');
+        const done = updateCountdown();
+        if (!done) {
+            const interval = window.setInterval(() => {
+                if (updateCountdown()) {
+                    window.clearInterval(interval);
+                }
+            }, 1000);
         }
     });
+
+    document.querySelectorAll('[data-confirm]').forEach((button) => {
+        button.addEventListener('click', (event) => {
+            const message = button.getAttribute('data-confirm');
+            if (message && !window.confirm(message)) {
+                event.preventDefault();
+            }
+        });
+    });
 });
diff --git a/assets/pasted-20260525-120457-0c06ca85.png b/assets/pasted-20260525-120457-0c06ca85.png
new file mode 100644
index 0000000..7ec5390
Binary files /dev/null and b/assets/pasted-20260525-120457-0c06ca85.png differ
diff --git a/assets/pasted-20260525-130328-7c40a29a.png b/assets/pasted-20260525-130328-7c40a29a.png
new file mode 100644
index 0000000..7ec5390
Binary files /dev/null and b/assets/pasted-20260525-130328-7c40a29a.png differ
diff --git a/db/migrations/20260525_add_email_verification_codes.sql b/db/migrations/20260525_add_email_verification_codes.sql
new file mode 100644
index 0000000..b72c911
--- /dev/null
+++ b/db/migrations/20260525_add_email_verification_codes.sql
@@ -0,0 +1,20 @@
+-- Add email_verification_codes table for real email signup flow.
+-- users.email_verified_at and users.last_login_at are also ensured defensively in app.php.
+
+CREATE TABLE IF NOT EXISTS email_verification_codes (
+    id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+    email VARCHAR(190) NOT NULL,
+    purpose VARCHAR(32) NOT NULL DEFAULT 'signup',
+    password_hash VARCHAR(255) NOT NULL,
+    code_hash VARCHAR(255) NOT NULL,
+    attempt_count TINYINT UNSIGNED NOT NULL DEFAULT 0,
+    max_attempts TINYINT UNSIGNED NOT NULL DEFAULT 5,
+    expires_at DATETIME NOT NULL,
+    verified_at DATETIME NULL,
+    consumed_at DATETIME NULL,
+    ip_address VARCHAR(64) NULL,
+    meta_note VARCHAR(255) NULL,
+    created_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    INDEX idx_email_codes_email_purpose (email, purpose, created_at),
+    INDEX idx_email_codes_status (purpose, consumed_at, expires_at)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
diff --git a/db/migrations/20260525_add_vip_orders.sql b/db/migrations/20260525_add_vip_orders.sql
new file mode 100644
index 0000000..f9b5151
--- /dev/null
+++ b/db/migrations/20260525_add_vip_orders.sql
@@ -0,0 +1,18 @@
+-- Add vip_orders table for real VIP upgrade flow.
+-- The app also creates this table defensively in app.php via CREATE TABLE IF NOT EXISTS.
+
+CREATE TABLE IF NOT EXISTS vip_orders (
+    id INT UNSIGNED AUTO_INCREMENT PRIMARY KEY,
+    user_id INT UNSIGNED NOT NULL,
+    from_level TINYINT UNSIGNED NOT NULL DEFAULT 0,
+    to_level TINYINT UNSIGNED NOT NULL,
+    price_usdt DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+    status VARCHAR(32) NOT NULL DEFAULT 'completed',
+    available_after DECIMAL(12,2) NOT NULL DEFAULT 0.00,
+    note VARCHAR(255) NOT NULL,
+    created_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    completed_at DATETIME NULL,
+    CONSTRAINT fk_vip_order_user FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE,
+    INDEX idx_vip_orders_user_created (user_id, created_at),
+    INDEX idx_vip_orders_status_created (status, created_at)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
diff --git a/healthz.php b/healthz.php
new file mode 100644
index 0000000..4c4aaed
--- /dev/null
+++ b/healthz.php
@@ -0,0 +1,24 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+header('Content-Type: application/json; charset=utf-8');
+
+try {
+    db()->query('SELECT 1');
+    echo json_encode([
+        'status' => 'ok',
+        'app' => project_name(),
+        'time_utc' => gmdate('c'),
+        'database' => 'connected',
+        'client_ip' => client_ip(),
+    ], JSON_UNESCAPED_UNICODE | JSON_UNESCAPED_SLASHES | JSON_PRETTY_PRINT);
+} catch (Throwable $exception) {
+    http_response_code(500);
+    echo json_encode([
+        'status' => 'error',
+        'app' => project_name(),
+        'time_utc' => gmdate('c'),
+        'database' => 'disconnected',
+        'error' => $exception->getMessage(),
+    ], JSON_UNESCAPED_UNICODE | JSON_UNESCAPED_SLASHES | JSON_PRETTY_PRINT);
+}
diff --git a/index.php b/index.php
index 7205f3d..582b393 100644
--- a/index.php
+++ b/index.php
@@ -1,150 +1,208 @@
 <?php
 declare(strict_types=1);
-@ini_set('display_errors', '1');
-@error_reporting(E_ALL);
-@date_default_timezone_set('UTC');
+require_once __DIR__ . '/app.php';
 
-$phpVersion = PHP_VERSION;
-$now = date('Y-m-d H:i:s');
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    flash('warning', '首页认证入口已升级为独立页面，请从“启动页 / 注册 / 登录”继续。');
+    redirect(start_page_url());
+}
+
+$user = current_user();
+$previewMode = !$user;
+$stats = $user
+    ? get_dashboard_stats((int) $user['id'])
+    : [
+        'available_balance' => 5560.25,
+        'frozen_balance' => 120.00,
+        'total_balance' => 5680.25,
+        'today_earnings' => 1000.00,
+        'month_earnings' => 18560.20,
+        'today_tasks' => 30,
+        'active_orders' => 3,
+        'completed_orders' => 12,
+    ];
+$recentOrders = $user ? get_user_orders((int) $user['id'], 4) : [];
+$showcaseTasks = array_slice(array_values(task_catalog()), 0, 4);
+$quickActions = [
+    ['label' => '充值', 'icon' => 'deposit', 'href' => 'wallet.php#deposit-panel'],
+    ['label' => '提现', 'icon' => 'withdraw', 'href' => 'wallet.php#withdraw-panel'],
+    ['label' => '转账', 'icon' => 'swap', 'href' => 'wallet.php#transfer-panel'],
+    ['label' => '记录', 'icon' => 'history', 'href' => 'wallet.php#history-panel'],
+];
+$taskShortcuts = [
+    ['label' => '看视频', 'icon' => 'play', 'href' => 'task.php?category=video', 'accent' => 'accent-red'],
+    ['label' => '点赞', 'icon' => 'heart', 'href' => 'task.php?category=like', 'accent' => 'accent-pink'],
+    ['label' => '关注', 'icon' => 'spark', 'href' => 'task.php?category=social', 'accent' => 'accent-violet'],
+    ['label' => '网站', 'icon' => 'globe', 'href' => 'task.php?category=web', 'accent' => 'accent-blue'],
+    ['label' => '应用', 'icon' => 'download', 'href' => 'task.php?category=app', 'accent' => 'accent-orange'],
+];
+$onboardingSteps = [
+    ['step' => '01', 'title' => '启动页', 'desc' => '先看平台介绍、流程说明和开户注册入口。'],
+    ['step' => '02', 'title' => '邮箱注册', 'desc' => '填写邮箱和密码，系统准备发送 6 位验证码。'],
+    ['step' => '03', 'title' => '邮箱验证码', 'desc' => '输入邮件里的 6 位数字，验证通过后再正式建号。'],
+    ['step' => '04', 'title' => '账号登录', 'desc' => '用已验证邮箱登录，再进入首页 / 任务 / VIP / 钱包 / 我的。'],
+];
+
+render_layout_start('首页', '任务返佣平台首页，提供资产总览、快捷任务、VIP 入口与真实邮箱开户流程。', 'home');
 ?>
-<!doctype html>
-<html lang="en">
-<head>
-  <meta charset="utf-8" />
-  <meta name="viewport" content="width=device-width, initial-scale=1" />
-  <title>New Style</title>
-<?php
-// Read project preview data from environment
-$projectDescription = $_SERVER['PROJECT_DESCRIPTION'] ?? '';
-$projectImageUrl = $_SERVER['PROJECT_IMAGE_URL'] ?? '';
-?>
-<?php if ($projectDescription): ?>
-  <!-- Meta description -->
-  <meta name="description" content='<?= htmlspecialchars($projectDescription) ?>' />
-  <!-- Open Graph meta tags -->
-  <meta property="og:description" content="<?= htmlspecialchars($projectDescription) ?>" />
-  <!-- Twitter meta tags -->
-  <meta property="twitter:description" content="<?= htmlspecialchars($projectDescription) ?>" />
-<?php endif; ?>
-<?php if ($projectImageUrl): ?>
-  <!-- Open Graph image -->
-  <meta property="og:image" content="<?= htmlspecialchars($projectImageUrl) ?>" />
-  <!-- Twitter image -->
-  <meta property="twitter:image" content="<?= htmlspecialchars($projectImageUrl) ?>" />
-<?php endif; ?>
-  <link rel="preconnect" href="https://fonts.googleapis.com">
-  <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
-  <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;700&display=swap" rel="stylesheet">
-  <style>
-    :root {
-      --bg-color-start: #6a11cb;
-      --bg-color-end: #2575fc;
-      --text-color: #ffffff;
-      --card-bg-color: rgba(255, 255, 255, 0.01);
-      --card-border-color: rgba(255, 255, 255, 0.1);
-    }
-    body {
-      margin: 0;
-      font-family: 'Inter', sans-serif;
-      background: linear-gradient(45deg, var(--bg-color-start), var(--bg-color-end));
-      color: var(--text-color);
-      display: flex;
-      justify-content: center;
-      align-items: center;
-      min-height: 100vh;
-      text-align: center;
-      overflow: hidden;
-      position: relative;
-    }
-    body::before {
-      content: '';
-      position: absolute;
-      top: 0;
-      left: 0;
-      width: 100%;
-      height: 100%;
-      background-image: url('data:image/svg+xml,<svg xmlns="http://www.w3.org/2000/svg" width="100" height="100" viewBox="0 0 100 100"><path d="M-10 10L110 10M10 -10L10 110" stroke-width="1" stroke="rgba(255,255,255,0.05)"/></svg>');
-      animation: bg-pan 20s linear infinite;
-      z-index: -1;
-    }
-    @keyframes bg-pan {
-      0% { background-position: 0% 0%; }
-      100% { background-position: 100% 100%; }
-    }
-    main {
-      padding: 2rem;
-    }
-    .card {
-      background: var(--card-bg-color);
-      border: 1px solid var(--card-border-color);
-      border-radius: 16px;
-      padding: 2rem;
-      backdrop-filter: blur(20px);
-      -webkit-backdrop-filter: blur(20px);
-      box-shadow: 0 8px 32px 0 rgba(0, 0, 0, 0.1);
-    }
-    .loader {
-      margin: 1.25rem auto 1.25rem;
-      width: 48px;
-      height: 48px;
-      border: 3px solid rgba(255, 255, 255, 0.25);
-      border-top-color: #fff;
-      border-radius: 50%;
-      animation: spin 1s linear infinite;
-    }
-    @keyframes spin {
-      from { transform: rotate(0deg); }
-      to   { transform: rotate(360deg); }
-    }
-    .hint {
-      opacity: 0.9;
-    }
-    .sr-only {
-      position: absolute;
-      width: 1px; height: 1px;
-      padding: 0; margin: -1px;
-      overflow: hidden;
-      clip: rect(0, 0, 0, 0);
-      white-space: nowrap; border: 0;
-    }
-    h1 {
-      font-size: 3rem;
-      font-weight: 700;
-      margin: 0 0 1rem;
-      letter-spacing: -1px;
-    }
-    p {
-      margin: 0.5rem 0;
-      font-size: 1.1rem;
-    }
-    code {
-      background: rgba(0,0,0,0.2);
-      padding: 2px 6px;
-      border-radius: 4px;
-      font-family: ui-monospace, SFMono-Regular, Menlo, Consolas, monospace;
-    }
-    footer {
-      position: absolute;
-      bottom: 1rem;
-      font-size: 0.8rem;
-      opacity: 0.7;
-    }
-  </style>
-</head>
-<body>
-  <main>
-    <div class="card">
-      <h1>Analyzing your requirements and generating your website…</h1>
-      <div class="loader" role="status" aria-live="polite" aria-label="Applying initial changes">
-        <span class="sr-only">Loading…</span>
+<section class="app-page-section">
+  <article class="app-card gradient-card hero-card">
+    <div class="d-flex align-items-start justify-content-between gap-3">
+      <div>
+        <div class="tiny-eyebrow">Hello, <?= h(app_user_name($user)) ?></div>
+        <h1 class="app-hero-title">任务返佣平台</h1>
+        <p class="app-hero-copy mb-0">做任务，赚佣金。先领取任务，再等待审核入账。</p>
       </div>
-      <p class="hint"><?= ($_SERVER['HTTP_HOST'] ?? '') === 'appwizzy.com' ? 'AppWizzy' : 'Flatlogic' ?> AI is collecting your requirements and applying the first changes.</p>
-      <p class="hint">This page will update automatically as the plan is implemented.</p>
-      <p>Runtime: PHP <code><?= htmlspecialchars($phpVersion) ?></code> — UTC <code><?= htmlspecialchars($now) ?></code></p>
+      <div class="hero-avatar"><?= h(app_user_initial($user)) ?></div>
     </div>
-  </main>
-  <footer>
-    Page updated: <?= htmlspecialchars($now) ?> (UTC)
-  </footer>
-</body>
-</html>
+
+    <div class="balance-card mt-3">
+      <div class="d-flex align-items-start justify-content-between gap-3">
+        <div>
+          <div class="mini-label">总资产（USDT）</div>
+          <div class="balance-value"><?= h(number_format((float) $stats['total_balance'], 2)) ?></div>
+          <div class="balance-sub">可用 <?= h(number_format((float) $stats['available_balance'], 2)) ?> · 冻结 <?= h(number_format((float) $stats['frozen_balance'], 2)) ?></div>
+        </div>
+        <span class="vip-chip-large"><?= h($user ? vip_info((int) $user['vip_level'])['name'] : 'VIP3') ?></span>
+      </div>
+
+      <div class="quick-action-grid mt-3">
+        <?php foreach ($quickActions as $action): ?>
+          <a class="quick-action" href="<?= h($action['href']) ?>">
+            <span class="quick-action-icon"><?= app_icon_svg((string) $action['icon']) ?></span>
+            <span class="quick-action-label"><?= h((string) $action['label']) ?></span>
+          </a>
+        <?php endforeach; ?>
+      </div>
+    </div>
+
+    <?php if ($previewMode): ?>
+      <div class="app-inline-note mt-3">当前显示的是参考图风格预览数据。登录后会显示你的真实余额、任务与流水。</div>
+    <?php endif; ?>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <div class="section-heading-app mb-3">
+    <div class="tiny-eyebrow">今日数据</div>
+    <h2 class="app-section-title">账户看板</h2>
+  </div>
+  <div class="mini-stat-grid three-cols">
+    <article class="app-card stat-card">
+      <div class="mini-label">今日任务</div>
+      <div class="stat-value"><?= h((string) $stats['today_tasks']) ?>/30</div>
+      <div class="stat-meta">已开始任务数</div>
+    </article>
+    <article class="app-card stat-card">
+      <div class="mini-label">今日收益</div>
+      <div class="stat-value"><?= h(number_format((float) $stats['today_earnings'], 2)) ?></div>
+      <div class="stat-meta">USDT</div>
+    </article>
+    <article class="app-card stat-card">
+      <div class="mini-label">本月总收益</div>
+      <div class="stat-value"><?= h(number_format((float) $stats['month_earnings'], 2)) ?></div>
+      <div class="stat-meta">USDT</div>
+    </article>
+  </div>
+</section>
+
+<section class="app-page-section">
+  <div class="section-heading-app mb-3">
+    <div class="tiny-eyebrow">快捷任务</div>
+    <h2 class="app-section-title">常用入口</h2>
+  </div>
+  <article class="app-card">
+    <div class="feature-shortcuts">
+      <?php foreach ($taskShortcuts as $shortcut): ?>
+        <a class="feature-shortcut" href="<?= h($shortcut['href']) ?>">
+          <span class="feature-icon <?= h((string) $shortcut['accent']) ?>"><?= app_icon_svg((string) $shortcut['icon']) ?></span>
+          <span><?= h((string) $shortcut['label']) ?></span>
+        </a>
+      <?php endforeach; ?>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <div class="section-heading-app mb-3">
+    <div class="tiny-eyebrow">热门任务</div>
+    <h2 class="app-section-title">推荐任务</h2>
+  </div>
+  <div class="app-task-list">
+    <?php foreach ($showcaseTasks as $task): ?>
+      <?php $meta = task_visual_meta($task); ?>
+      <a class="app-card task-row-card" href="task.php?task=<?= h((string) $task['slug']) ?>">
+        <span class="task-platform-icon <?= h((string) $meta['accent']) ?>"><?= app_icon_svg((string) $meta['icon']) ?></span>
+        <span class="task-row-content">
+          <span class="task-row-title"><?= h((string) $task['title']) ?></span>
+          <span class="task-row-subtitle"><?= h((string) $meta['brand']) ?> · <?= h((string) $task['summary']) ?></span>
+        </span>
+        <span class="task-row-side">
+          <span class="task-row-reward">+<?= h(number_format((float) $task['reward'], 2)) ?></span>
+          <span class="task-row-arrow"><?= app_icon_svg('chevron-right') ?></span>
+        </span>
+      </a>
+    <?php endforeach; ?>
+  </div>
+</section>
+
+<?php if ($user): ?>
+<section class="app-page-section">
+  <div class="section-heading-app mb-3">
+    <div class="tiny-eyebrow">最近动态</div>
+    <h2 class="app-section-title">我的任务</h2>
+  </div>
+  <article class="app-card">
+    <?php if ($recentOrders): ?>
+      <div class="app-list-stack">
+        <?php foreach ($recentOrders as $order): ?>
+          <a class="app-list-item" href="order.php?id=<?= h((string) $order['id']) ?>">
+            <span>
+              <span class="list-title-strong">#<?= h((string) $order['id']) ?> · <?= h((string) $order['task_title']) ?></span>
+              <span class="list-meta-line"><?= h(format_datetime((string) $order['claimed_at'])) ?> · <?= h(format_usdt($order['reward_usdt'])) ?></span>
+            </span>
+            <span><?= render_status_badge((string) $order['status']) ?></span>
+          </a>
+        <?php endforeach; ?>
+      </div>
+    <?php else: ?>
+      <div class="empty-tip">你还没有任务记录。先进入“任务”页领取第一笔佣金。</div>
+    <?php endif; ?>
+  </article>
+</section>
+<?php else: ?>
+<section class="app-page-section" id="auth">
+  <div class="section-heading-app mb-3">
+    <div class="tiny-eyebrow">邮箱入口</div>
+    <h2 class="app-section-title">真实开户流程</h2>
+  </div>
+  <article class="app-card auth-card-panel">
+    <div class="auth-panel-head">
+      <div>
+        <div class="list-title-strong">4 步完成邮箱开户</div>
+        <div class="list-meta-line">现在已经拆成独立页面：启动页 → 邮箱注册 → 验证码 → 登录，避免跳过验证码直接建号。</div>
+      </div>
+      <span class="tag-chip">真实流程</span>
+    </div>
+
+    <div class="onboarding-flow-grid">
+      <?php foreach ($onboardingSteps as $step): ?>
+        <div class="onboarding-step-card">
+          <div class="step-kicker">STEP <?= h((string) $step['step']) ?></div>
+          <div class="list-title-strong mt-2"><?= h((string) $step['title']) ?></div>
+          <div class="list-meta-line mt-1"><?= h((string) $step['desc']) ?></div>
+        </div>
+      <?php endforeach; ?>
+    </div>
+
+    <div class="auth-link-grid mt-3">
+      <a class="btn btn-gradient" href="<?= h(start_page_url()) ?>">打开启动页</a>
+      <a class="btn btn-outline-light" href="<?= h(register_page_url()) ?>">邮箱注册</a>
+      <a class="btn btn-outline-light" href="<?= h(login_page_url()) ?>">已有账号登录</a>
+    </div>
+
+    <div class="app-inline-note mt-3">验证码会发送到你填写的邮箱；如果当前 SMTP 还没配置，页面会真实提示发送失败，不会假装成功。</div>
+  </article>
+</section>
+<?php endif; ?>
+<?php render_layout_end(); ?>
diff --git a/login.php b/login.php
new file mode 100644
index 0000000..4f48851
--- /dev/null
+++ b/login.php
@@ -0,0 +1,99 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$redirectTarget = safe_redirect_target((string) ($_POST['redirect'] ?? $_GET['redirect'] ?? 'index.php'));
+if (current_user()) {
+    redirect($redirectTarget);
+}
+
+$prefillEmail = normalize_email((string) ($_GET['email'] ?? ''));
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    $email = normalize_email((string) ($_POST['email'] ?? ''));
+
+    try {
+        verify_csrf_or_fail();
+        $user = authenticate_user($email, (string) ($_POST['password'] ?? ''));
+        flash('success', '欢迎回来，当前账号 ' . ($user['user_code'] ?? '') . ' 已登录。');
+        redirect($redirectTarget);
+    } catch (Throwable $exception) {
+        flash('danger', $exception->getMessage());
+        redirect(login_page_url($redirectTarget, ['email' => $email]));
+    }
+}
+
+render_layout_start('账号登录', '登录页，使用已验证邮箱与密码进入前台 5 个页面。', 'auth');
+?>
+<section class="app-page-section auth-page-shell">
+  <article class="app-card gradient-card hero-card">
+    <div class="tiny-eyebrow">Step 4 / 4</div>
+    <h1 class="app-hero-title compact-title">账号登录</h1>
+    <p class="app-hero-copy mb-0">这是开户链路的最后一步。登录成功后，你就能进入首页、任务、VIP、钱包、我的 5 个主页面。</p>
+  </article>
+</section>
+
+<section class="app-page-section auth-page-shell">
+  <div class="auth-stack auth-page-grid">
+    <article class="app-card auth-card-panel">
+      <div class="auth-panel-head">
+        <div>
+          <div class="list-title-strong">输入邮箱和密码</div>
+          <div class="list-meta-line">如果你刚完成验证码验证，可以直接在这里登录。</div>
+        </div>
+        <span class="tag-chip">登录</span>
+      </div>
+
+      <form method="post" class="auth-form-grid">
+        <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+        <input type="hidden" name="redirect" value="<?= h($redirectTarget) ?>">
+        <div>
+          <label class="form-label" for="login-email">邮箱地址</label>
+          <input class="form-control" id="login-email" type="email" name="email" placeholder="example@email.com" value="<?= h($prefillEmail) ?>" required>
+        </div>
+        <div>
+          <label class="form-label" for="login-password">密码</label>
+          <input class="form-control" id="login-password" type="password" name="password" placeholder="输入你的密码" required>
+        </div>
+        <button class="btn btn-gradient" type="submit">登录账号</button>
+      </form>
+    </article>
+
+    <article class="app-card auth-card-panel">
+      <div class="auth-panel-head">
+        <div>
+          <div class="list-title-strong">登录后你能做什么</div>
+          <div class="list-meta-line">这不是演示按钮，而是已经接入真实数据库的前台入口。</div>
+        </div>
+        <span class="tag-chip secondary-chip">进入系统</span>
+      </div>
+
+      <div class="app-list-stack">
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">首页</span>
+            <span class="list-meta-line">查看真实账户余额、最近任务和快捷入口。</span>
+          </span>
+        </div>
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">任务 / VIP / 钱包 / 我的</span>
+            <span class="list-meta-line">这些页面都已经可以打开，任务和 VIP 也有真实数据库逻辑。</span>
+          </span>
+        </div>
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">以后还能继续扩展</span>
+            <span class="list-meta-line">比如充值、提现、转账、邀请、安全中心和客服系统。</span>
+          </span>
+        </div>
+      </div>
+
+      <div class="auth-link-grid mt-3">
+        <a class="btn btn-outline-light" href="<?= h(register_page_url($redirectTarget, $prefillEmail !== '' ? ['email' => $prefillEmail] : [])) ?>">没有账号，去注册</a>
+        <a class="btn btn-outline-light" href="<?= h(start_page_url($redirectTarget)) ?>">返回启动页</a>
+      </div>
+    </article>
+  </div>
+</section>
+<?php render_layout_end(); ?>
diff --git a/logout.php b/logout.php
new file mode 100644
index 0000000..208d7ea
--- /dev/null
+++ b/logout.php
@@ -0,0 +1,6 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+logout_current_user();
+flash('success', '你已安全退出当前账号。');
+redirect(start_page_url());
diff --git a/operations.php b/operations.php
new file mode 100644
index 0000000..615b312
--- /dev/null
+++ b/operations.php
@@ -0,0 +1,153 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    try {
+        verify_csrf_or_fail();
+        $action = (string) ($_POST['action'] ?? '');
+        if ($action === 'review_order') {
+            $orderId = (int) ($_POST['order_id'] ?? 0);
+            $decision = (string) ($_POST['decision'] ?? 'reject');
+            $reviewed = review_task_order($orderId, $decision, (string) ($_POST['review_note'] ?? ''));
+            flash('success', '订单 #' . ($reviewed['id'] ?? $orderId) . ' 已' . ($decision === 'approve' ? '审核通过并入账。' : '驳回并释放冻结金额。'));
+            redirect('operations.php');
+        }
+    } catch (Throwable $exception) {
+        flash('danger', $exception->getMessage());
+        redirect('operations.php');
+    }
+}
+
+$stats = get_operator_stats();
+$pendingOrders = get_operator_orders('pending_review', 20);
+$recentOrders = get_recent_reviewed_orders(12);
+render_layout_start('运营审核台', '任务待审核队列与资金联动。', 'ops');
+?>
+<section class="mb-4 mb-lg-5">
+  <div class="section-heading d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
+    <div>
+      <div class="eyebrow">Ops board</div>
+      <h1 class="section-title">任务审核台</h1>
+    </div>
+    <div class="supporting-copy">这是第一版后台切片：用于验证审核动作、冻结佣金与到账流水联动。</div>
+  </div>
+  <div class="stats-grid four-up">
+    <article class="metric-card">
+      <div class="metric-label">今日新增用户</div>
+      <div class="metric-value"><?= h((string) $stats['today_users']) ?></div>
+    </article>
+    <article class="metric-card">
+      <div class="metric-label">待审核订单</div>
+      <div class="metric-value"><?= h((string) $stats['pending_reviews']) ?></div>
+    </article>
+    <article class="metric-card">
+      <div class="metric-label">已通过订单</div>
+      <div class="metric-value"><?= h((string) $stats['approved_orders']) ?></div>
+    </article>
+    <article class="metric-card">
+      <div class="metric-label">累计入账</div>
+      <div class="metric-value"><?= h(format_usdt($stats['credited_amount'])) ?></div>
+    </article>
+  </div>
+</section>
+
+<section class="mb-4 mb-lg-5">
+  <div class="section-heading mb-3">
+    <div class="eyebrow">Pending queue</div>
+    <h2 class="section-title">待审核任务</h2>
+  </div>
+  <div class="row g-3">
+    <?php if ($pendingOrders): ?>
+      <?php foreach ($pendingOrders as $order): ?>
+        <div class="col-12">
+          <article class="panel ops-card h-100">
+            <div class="d-flex justify-content-between gap-3 flex-wrap mb-3">
+              <div>
+                <div class="list-title"><?= h($order['task_title']) ?> · <?= h($order['platform_name']) ?></div>
+                <div class="supporting-copy">用户 <?= h($order['email']) ?> · ID <?= h($order['user_code']) ?> · <?= h(vip_info((int) $order['vip_level'])['name']) ?></div>
+              </div>
+              <?= render_status_badge((string) $order['status']) ?>
+            </div>
+            <div class="task-meta-grid mb-3">
+              <div>
+                <div class="metric-label">提交时间</div>
+                <div class="task-meta-value"><?= h(format_datetime((string) $order['submitted_at'])) ?></div>
+              </div>
+              <div>
+                <div class="metric-label">领取时间</div>
+                <div class="task-meta-value"><?= h(format_datetime((string) $order['claimed_at'])) ?></div>
+              </div>
+              <div>
+                <div class="metric-label">任务佣金</div>
+                <div class="task-meta-value"><?= h(format_usdt($order['reward_usdt'])) ?></div>
+              </div>
+              <div>
+                <div class="metric-label">用户 VIP</div>
+                <div class="task-meta-value"><?= h(vip_info((int) $order['vip_level'])['name']) ?></div>
+              </div>
+            </div>
+            <div class="field-panel mb-3">
+              <div class="metric-label">用户完成备注</div>
+              <div class="field-value pre-wrap"><?= h((string) $order['proof_note']) ?></div>
+            </div>
+            <form method="post" class="d-grid gap-3">
+              <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+              <input type="hidden" name="action" value="review_order">
+              <input type="hidden" name="order_id" value="<?= h((string) $order['id']) ?>">
+              <div>
+                <label class="form-label" for="review-note-<?= h((string) $order['id']) ?>">审核说明</label>
+                <textarea class="form-control" id="review-note-<?= h((string) $order['id']) ?>" name="review_note" rows="3" placeholder="例如：内容验证通过 / 备注不足，需重做"></textarea>
+              </div>
+              <div class="d-flex flex-wrap gap-2">
+                <button class="btn btn-light btn-sm px-3" type="submit" name="decision" value="approve" data-confirm="确认审核通过并将佣金转入可用余额？">审核通过并入账</button>
+                <button class="btn btn-outline-danger btn-sm px-3" type="submit" name="decision" value="reject" data-confirm="确认驳回并释放冻结金额？">驳回并释放冻结</button>
+                <a class="btn btn-outline-light btn-sm px-3" href="order.php?id=<?= h((string) $order['id']) ?>&amp;ops=1">用户订单视图</a>
+              </div>
+            </form>
+          </article>
+        </div>
+      <?php endforeach; ?>
+    <?php else: ?>
+      <div class="col-12">
+        <div class="panel empty-state">
+          <div class="empty-title">暂无待审核订单</div>
+          <p class="mb-0">先用前台账号领取并提交一个任务，再回到这里执行审核。</p>
+        </div>
+      </div>
+    <?php endif; ?>
+  </div>
+</section>
+
+<section class="mb-4">
+  <div class="section-heading mb-3">
+    <div class="eyebrow">History</div>
+    <h2 class="section-title">最近已处理订单</h2>
+  </div>
+  <div class="panel p-0 overflow-hidden">
+    <?php if ($recentOrders): ?>
+      <div class="list-shell">
+        <?php foreach ($recentOrders as $order): ?>
+          <div class="list-row">
+            <div>
+              <div class="list-title">#<?= h((string) $order['id']) ?> · <?= h($order['task_title']) ?></div>
+              <div class="supporting-copy"><?= h($order['email']) ?> · <?= h(format_datetime((string) $order['reviewed_at'])) ?></div>
+            </div>
+            <div class="d-flex align-items-center gap-3 ms-auto">
+              <div class="text-end">
+                <div class="list-amount"><?= h(format_usdt($order['reward_usdt'])) ?></div>
+              </div>
+              <?= render_status_badge((string) $order['status']) ?>
+            </div>
+          </div>
+        <?php endforeach; ?>
+      </div>
+    <?php else: ?>
+      <div class="empty-state">
+        <div class="empty-title">暂无历史审核记录</div>
+        <p class="mb-0">处理第一笔任务后，这里会形成后台审核时间线。</p>
+      </div>
+    <?php endif; ?>
+  </div>
+</section>
+<?php render_layout_end(); ?>
diff --git a/order.php b/order.php
new file mode 100644
index 0000000..34e7a9d
--- /dev/null
+++ b/order.php
@@ -0,0 +1,149 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$opsMode = (string) ($_GET['ops'] ?? '') === '1';
+$orderId = (int) ($_GET['id'] ?? 0);
+$user = $opsMode ? current_user() : require_user();
+$order = get_order_by_id($orderId, $opsMode ? null : (int) $user['id']);
+if (!$order) {
+    http_response_code(404);
+    render_layout_start('订单不存在', '未找到指定订单。', 'tasks');
+    ?>
+    <div class="panel">
+      <div class="eyebrow">404</div>
+      <h1 class="section-title">订单不存在</h1>
+      <p class="supporting-copy mb-3">请返回概览查看你的任务记录。</p>
+      <a class="btn btn-light btn-sm" href="index.php">返回概览</a>
+    </div>
+    <?php
+    render_layout_end();
+    exit;
+}
+
+$wallet = wallet_snapshot((int) $order['user_id']);
+$task = task_by_slug((string) $order['task_slug']);
+$unlockTimestamp = strtotime((string) $order['claimed_at']) + (int) $order['countdown_seconds'];
+render_layout_start('订单 #' . $orderId, '订单详情、审核结果与钱包联动。', $opsMode ? 'ops' : 'tasks');
+?>
+<section class="mb-4">
+  <div class="row g-4">
+    <div class="col-lg-7">
+      <article class="panel h-100">
+        <div class="d-flex align-items-start justify-content-between gap-3 flex-wrap mb-3">
+          <div>
+            <div class="eyebrow">Order detail</div>
+            <h1 class="section-title mb-2">订单 #<?= h((string) $order['id']) ?> · <?= h($order['task_title']) ?></h1>
+            <div class="supporting-copy"><?= h($order['platform_name']) ?> · <?= h($order['task_type']) ?></div>
+          </div>
+          <?= render_status_badge((string) $order['status']) ?>
+        </div>
+
+        <div class="stats-grid three-up mb-4">
+          <div class="metric-card compact">
+            <div class="metric-label">佣金</div>
+            <div class="metric-value"><?= h(format_usdt($order['reward_usdt'])) ?></div>
+          </div>
+          <div class="metric-card compact">
+            <div class="metric-label">VIP 限制</div>
+            <div class="metric-value">VIP<?= h((string) $order['vip_required']) ?></div>
+          </div>
+          <div class="metric-card compact">
+            <div class="metric-label">倒计时</div>
+            <div class="metric-value"><?= h((string) $order['countdown_seconds']) ?> 秒</div>
+          </div>
+        </div>
+
+        <div class="timeline-list mb-4">
+          <div class="timeline-item">
+            <div class="timeline-index">1</div>
+            <div>
+              <div class="list-title">已领取</div>
+              <div class="supporting-copy"><?= h(format_datetime($order['claimed_at'])) ?></div>
+            </div>
+          </div>
+          <div class="timeline-item<?= !empty($order['submitted_at']) ? '' : ' is-dimmed' ?>">
+            <div class="timeline-index">2</div>
+            <div>
+              <div class="list-title">已提交审核</div>
+              <div class="supporting-copy"><?= h(format_datetime($order['submitted_at'])) ?></div>
+            </div>
+          </div>
+          <div class="timeline-item<?= !empty($order['reviewed_at']) ? '' : ' is-dimmed' ?>">
+            <div class="timeline-index">3</div>
+            <div>
+              <div class="list-title">审核完成</div>
+              <div class="supporting-copy"><?= h(format_datetime($order['reviewed_at'])) ?></div>
+            </div>
+          </div>
+        </div>
+
+        <?php if ((string) $order['status'] === 'claimed'): ?>
+          <div class="countdown-card mb-3">
+            <div class="metric-label">剩余倒计时</div>
+            <div class="countdown-value" data-countdown="<?= h((string) $unlockTimestamp) ?>"><?= h((string) max(0, (int) ($unlockTimestamp - time()))) ?> 秒</div>
+            <div class="supporting-copy">完成后回到任务详情页提交完成备注。</div>
+          </div>
+          <a class="btn btn-light btn-sm" href="task.php?task=<?= h((string) $order['task_slug']) ?>">返回任务详情提交</a>
+        <?php elseif ((string) $order['status'] === 'pending_review'): ?>
+          <div class="notice-card notice-warning mb-3">
+            <div class="notice-title">佣金冻结中</div>
+            <p class="mb-0">该订单已提交审核，<?= h(format_usdt($order['reward_usdt'])) ?> 已计入冻结余额，等待运营审批后转入可用余额。</p>
+          </div>
+        <?php elseif ((string) $order['status'] === 'approved'): ?>
+          <div class="notice-card mb-3">
+            <div class="notice-title">佣金已入账</div>
+            <p class="mb-0">审核通过后，佣金已转入可用余额，可在钱包页查看流水。</p>
+          </div>
+        <?php elseif ((string) $order['status'] === 'rejected'): ?>
+          <div class="notice-card notice-muted mb-3">
+            <div class="notice-title">任务未通过审核</div>
+            <p class="mb-0">冻结佣金已释放。你可以返回任务大厅领取其他任务继续测试流程。</p>
+          </div>
+        <?php endif; ?>
+
+        <?php if (!empty($order['proof_note'])): ?>
+          <div class="field-panel mt-3">
+            <div class="metric-label">完成备注</div>
+            <div class="field-value pre-wrap"><?= h((string) $order['proof_note']) ?></div>
+          </div>
+        <?php endif; ?>
+
+        <?php if (!empty($order['review_note'])): ?>
+          <div class="field-panel mt-3">
+            <div class="metric-label">审核说明</div>
+            <div class="field-value pre-wrap"><?= h((string) $order['review_note']) ?></div>
+          </div>
+        <?php endif; ?>
+      </article>
+    </div>
+    <div class="col-lg-5">
+      <article class="panel h-100">
+        <div class="eyebrow">Wallet effect</div>
+        <h2 class="panel-title">钱包联动结果</h2>
+        <div class="stats-grid two-up mt-3">
+          <div class="metric-card compact">
+            <div class="metric-label">可提现余额</div>
+            <div class="metric-value"><?= h(format_usdt($wallet['available_balance'])) ?></div>
+          </div>
+          <div class="metric-card compact">
+            <div class="metric-label">冻结余额</div>
+            <div class="metric-value"><?= h(format_usdt($wallet['frozen_balance'])) ?></div>
+          </div>
+        </div>
+        <div class="notice-card mt-3">
+          <div class="notice-title">下一步</div>
+          <p class="mb-0">打开钱包查看资金流水，或进入运营台执行审核动作，体验“冻结 → 入账/释放”的完整链路。</p>
+        </div>
+        <div class="d-flex flex-wrap gap-2 mt-3">
+          <a class="btn btn-light btn-sm px-3" href="wallet.php">查看钱包</a>
+          <a class="btn btn-outline-light btn-sm px-3" href="operations.php">打开运营台</a>
+          <?php if ($task): ?>
+            <a class="btn btn-outline-light btn-sm px-3" href="task.php?task=<?= h((string) $task['slug']) ?>">返回任务</a>
+          <?php endif; ?>
+        </div>
+      </article>
+    </div>
+  </div>
+</section>
+<?php render_layout_end(); ?>
diff --git a/profile.php b/profile.php
new file mode 100644
index 0000000..02e0921
--- /dev/null
+++ b/profile.php
@@ -0,0 +1,120 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$user = current_user();
+$previewMode = !$user;
+$profileUser = $user ?: [
+    'email' => 'example@email.com',
+    'user_code' => '100086',
+    'vip_level' => 3,
+];
+$stats = $user
+    ? get_dashboard_stats((int) $user['id'])
+    : [
+        'available_balance' => 5560.25,
+        'frozen_balance' => 120.00,
+        'total_balance' => 5680.25,
+        'today_earnings' => 1000.00,
+        'month_earnings' => 18560.20,
+        'today_tasks' => 30,
+        'active_orders' => 3,
+        'completed_orders' => 12,
+    ];
+$menuItems = [
+    ['title' => '我的资产', 'desc' => '查看余额与资金流水', 'href' => 'wallet.php', 'icon' => 'wallet'],
+    ['title' => '我的任务', 'desc' => '查看任务大厅与订单', 'href' => 'task.php', 'icon' => 'tasks'],
+    ['title' => 'VIP 中心', 'desc' => '选择更高返佣等级', 'href' => 'vip.php', 'icon' => 'vip'],
+    ['title' => '邀请好友', 'desc' => '后续可扩展邀请返佣', 'href' => 'index.php', 'icon' => 'spark'],
+    ['title' => '安全中心', 'desc' => '当前账户与系统状态', 'href' => 'healthz.php', 'icon' => 'lock'],
+    ['title' => '联系客服', 'desc' => '下一步接入内置 IM', 'href' => '#support-panel', 'icon' => 'support'],
+];
+
+render_layout_start('我的', '个人中心页，展示账号信息、常用菜单入口与客服/后台预览。', 'profile');
+?>
+<section class="app-page-section">
+  <article class="app-card gradient-card hero-card">
+    <div class="d-flex align-items-center gap-3">
+      <div class="profile-avatar-large"><?= h(app_user_initial($profileUser)) ?></div>
+      <div class="flex-grow-1 min-w-0">
+        <div class="tiny-eyebrow">我的（个人中心）</div>
+        <h1 class="app-section-title mb-1"><?= h(app_user_name($profileUser)) ?></h1>
+        <div class="list-meta-line"><?= h((string) $profileUser['email']) ?> · ID <?= h((string) $profileUser['user_code']) ?></div>
+      </div>
+      <span class="vip-chip-large"><?= h(vip_info((int) $profileUser['vip_level'])['name']) ?></span>
+    </div>
+    <?php if ($previewMode): ?>
+      <div class="app-inline-note mt-3">当前是“我的”页面视觉预览。登录后会显示你的真实账户资料与任务状态。</div>
+    <?php endif; ?>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <div class="mini-stat-grid three-cols">
+    <article class="app-card stat-card">
+      <div class="mini-label">总资产</div>
+      <div class="stat-value"><?= h(number_format((float) $stats['total_balance'], 2)) ?></div>
+      <div class="stat-meta">USDT</div>
+    </article>
+    <article class="app-card stat-card">
+      <div class="mini-label">进行中</div>
+      <div class="stat-value"><?= h((string) $stats['active_orders']) ?></div>
+      <div class="stat-meta">任务</div>
+    </article>
+    <article class="app-card stat-card">
+      <div class="mini-label">已完成</div>
+      <div class="stat-value"><?= h((string) $stats['completed_orders']) ?></div>
+      <div class="stat-meta">任务</div>
+    </article>
+  </div>
+</section>
+
+<section class="app-page-section">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">常用功能</div>
+      <h2 class="app-section-title">菜单入口</h2>
+    </div>
+    <div class="app-list-stack">
+      <?php foreach ($menuItems as $item): ?>
+        <a class="app-list-item" href="<?= h((string) $item['href']) ?>">
+          <span class="menu-item-left">
+            <span class="task-platform-icon accent-blue small-menu-icon"><?= app_icon_svg((string) $item['icon']) ?></span>
+            <span>
+              <span class="list-title-strong"><?= h((string) $item['title']) ?></span>
+              <span class="list-meta-line"><?= h((string) $item['desc']) ?></span>
+            </span>
+          </span>
+          <span class="task-row-arrow"><?= app_icon_svg('chevron-right') ?></span>
+        </a>
+      <?php endforeach; ?>
+      <?php if ($user): ?>
+        <a class="app-list-item" href="logout.php">
+          <span class="menu-item-left">
+            <span class="task-platform-icon accent-pink small-menu-icon"><?= app_icon_svg('withdraw') ?></span>
+            <span>
+              <span class="list-title-strong">退出登录</span>
+              <span class="list-meta-line">安全退出当前账号</span>
+            </span>
+          </span>
+          <span class="task-row-arrow"><?= app_icon_svg('chevron-right') ?></span>
+        </a>
+      <?php endif; ?>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section" id="support-panel">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">客服 / 后台</div>
+      <h2 class="app-section-title">下一步建议</h2>
+    </div>
+    <div class="app-inline-note mb-3">你前面确认过要做“内置 IM 客服”。这一步我先把入口样式放好了；下一步我可以继续帮你把“联系客服 → 建会话 → 发消息 → 后台客服工作台”接成真实页面。</div>
+    <div class="d-grid gap-2">
+      <a class="btn btn-gradient" href="operations.php">先看后台工作台预览</a>
+      <a class="btn btn-outline-light" href="healthz.php">查看系统健康检查</a>
+    </div>
+  </article>
+</section>
+<?php render_layout_end(); ?>
diff --git a/register.php b/register.php
new file mode 100644
index 0000000..60489b1
--- /dev/null
+++ b/register.php
@@ -0,0 +1,112 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$redirectTarget = safe_redirect_target((string) ($_POST['redirect'] ?? $_GET['redirect'] ?? 'index.php'));
+if (current_user()) {
+    redirect($redirectTarget);
+}
+
+$prefillEmail = normalize_email((string) ($_GET['email'] ?? ''));
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    $email = normalize_email((string) ($_POST['email'] ?? ''));
+
+    try {
+        verify_csrf_or_fail();
+
+        $password = (string) ($_POST['password'] ?? '');
+        $confirmPassword = (string) ($_POST['confirm_password'] ?? '');
+        if ($password !== $confirmPassword) {
+            throw new RuntimeException('两次输入的密码不一致。');
+        }
+
+        begin_signup_verification($email, $password);
+        flash('success', '验证码已发送到你的邮箱，请在 10 分钟内完成验证。');
+        redirect(verify_page_url($email, $redirectTarget));
+    } catch (Throwable $exception) {
+        flash('danger', $exception->getMessage());
+        redirect(register_page_url($redirectTarget, ['email' => $email]));
+    }
+}
+
+render_layout_start('邮箱注册', '邮箱注册页，提交邮箱与密码后发送 6 位验证码。', 'auth');
+?>
+<section class="app-page-section auth-page-shell">
+  <article class="app-card gradient-card hero-card">
+    <div class="tiny-eyebrow">Step 2 / 4</div>
+    <h1 class="app-hero-title compact-title">邮箱注册</h1>
+    <p class="app-hero-copy mb-0">这里不再直接创建账号。先填写邮箱和密码，系统会先发 6 位验证码，验证通过后才真正建号。</p>
+  </article>
+</section>
+
+<section class="app-page-section auth-page-shell">
+  <div class="auth-stack auth-page-grid">
+    <article class="app-card auth-card-panel">
+      <div class="auth-panel-head">
+        <div>
+          <div class="list-title-strong">填写注册信息</div>
+          <div class="list-meta-line">验证码将发送到你的邮箱，账户创建会等到验证通过后再执行。</div>
+        </div>
+        <span class="tag-chip">注册</span>
+      </div>
+
+      <form method="post" class="auth-form-grid">
+        <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+        <input type="hidden" name="redirect" value="<?= h($redirectTarget) ?>">
+        <div>
+          <label class="form-label" for="register-email">邮箱地址</label>
+          <input class="form-control" id="register-email" type="email" name="email" placeholder="example@email.com" value="<?= h($prefillEmail) ?>" required>
+        </div>
+        <div>
+          <label class="form-label" for="register-password">登录密码</label>
+          <input class="form-control" id="register-password" type="password" name="password" placeholder="至少 6 位字符" required>
+        </div>
+        <div>
+          <label class="form-label" for="register-password-confirm">确认密码</label>
+          <input class="form-control" id="register-password-confirm" type="password" name="confirm_password" placeholder="再次输入密码" required>
+        </div>
+        <button class="btn btn-gradient" type="submit">发送验证码</button>
+      </form>
+    </article>
+
+    <article class="app-card auth-card-panel">
+      <div class="auth-panel-head">
+        <div>
+          <div class="list-title-strong">注册后会发生什么</div>
+          <div class="list-meta-line">我把复杂流程翻成一句人话：先确认邮箱，再正式开户。</div>
+        </div>
+        <span class="tag-chip secondary-chip">说明</span>
+      </div>
+
+      <div class="app-list-stack">
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">第 1 步：发送 6 位验证码</span>
+            <span class="list-meta-line">系统会用你填写的邮箱作为收件人，验证码有效期 10 分钟。</span>
+          </span>
+        </div>
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">第 2 步：验证通过后建号</span>
+            <span class="list-meta-line">数据库会真实创建用户、6 位数字 ID、钱包与 VIP0。</span>
+          </span>
+        </div>
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">第 3 步：回到登录页</span>
+            <span class="list-meta-line">邮箱验证通过后，再进入登录页使用密码登录。</span>
+          </span>
+        </div>
+      </div>
+
+      <div class="app-inline-note mt-3">验证码依赖当前 SMTP 环境。如果还没有配置好发信参数，这里会真实提示失败，方便你知道问题在邮件配置而不是页面。</div>
+
+      <div class="auth-link-grid mt-3">
+        <a class="btn btn-outline-light" href="<?= h(login_page_url($redirectTarget)) ?>">已有账号，去登录</a>
+        <a class="btn btn-outline-light" href="<?= h(start_page_url($redirectTarget)) ?>">返回启动页</a>
+      </div>
+    </article>
+  </div>
+</section>
+<?php render_layout_end(); ?>
diff --git a/start.php b/start.php
new file mode 100644
index 0000000..bfc1f88
--- /dev/null
+++ b/start.php
@@ -0,0 +1,94 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$user = current_user();
+$redirectTarget = safe_redirect_target((string) ($_GET['redirect'] ?? 'index.php'));
+$steps = [
+    ['step' => '01', 'title' => '先看启动页', 'desc' => '了解首页、任务、VIP、钱包、我的 5 个主入口怎么运作。'],
+    ['step' => '02', 'title' => '邮箱注册', 'desc' => '填写邮箱和密码，系统准备发送 6 位数字验证码。'],
+    ['step' => '03', 'title' => '输入验证码', 'desc' => '邮件验证通过后，系统才会正式创建账户、钱包和 VIP0。'],
+    ['step' => '04', 'title' => '登录系统', 'desc' => '使用已验证邮箱登录，再进入任务、VIP、钱包和我的。'],
+];
+$highlights = [
+    ['label' => '账户创建', 'value' => '真实数据库写入'],
+    ['label' => '验证方式', 'value' => '邮箱 6 位验证码'],
+    ['label' => '开户结果', 'value' => '6 位 ID + 钱包 + VIP0'],
+];
+
+render_layout_start('启动页', '启动页，展示真实邮箱开户注册流程入口与 4 步说明。', 'auth');
+?>
+<section class="app-page-section auth-page-shell">
+  <article class="app-card gradient-card hero-card">
+    <div class="tiny-eyebrow">Step 1 / 4</div>
+    <h1 class="app-hero-title">邮箱开户从这里开始</h1>
+    <p class="app-hero-copy mb-0">这一步相当于“欢迎页”。你先看清流程，再进入注册、验证码和登录页面，整个入口会比直接把表单塞进首页更清楚。</p>
+
+    <div class="detail-meta-grid mt-3">
+      <?php foreach ($highlights as $item): ?>
+        <div>
+          <div class="mini-label"><?= h((string) $item['label']) ?></div>
+          <div class="detail-mini-value"><?= h((string) $item['value']) ?></div>
+        </div>
+      <?php endforeach; ?>
+    </div>
+
+    <div class="auth-link-grid mt-4">
+      <?php if ($user): ?>
+        <a class="btn btn-gradient" href="<?= h($redirectTarget) ?>">继续进入系统</a>
+        <a class="btn btn-outline-light" href="index.php">回到首页</a>
+      <?php else: ?>
+        <a class="btn btn-gradient" href="<?= h(register_page_url($redirectTarget)) ?>">开始注册</a>
+        <a class="btn btn-outline-light" href="<?= h(login_page_url($redirectTarget)) ?>">已有账号登录</a>
+      <?php endif; ?>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section auth-page-shell">
+  <article class="app-card auth-card-panel">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">开户流程</div>
+      <h2 class="app-section-title">4 个页面都是真实页面</h2>
+    </div>
+    <div class="onboarding-flow-grid">
+      <?php foreach ($steps as $step): ?>
+        <div class="onboarding-step-card">
+          <div class="step-kicker">STEP <?= h((string) $step['step']) ?></div>
+          <div class="list-title-strong mt-2"><?= h((string) $step['title']) ?></div>
+          <div class="list-meta-line mt-1"><?= h((string) $step['desc']) ?></div>
+        </div>
+      <?php endforeach; ?>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section auth-page-shell">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">说明</div>
+      <h2 class="app-section-title">对你来说，这一步做了什么</h2>
+    </div>
+    <div class="app-list-stack">
+      <div class="app-list-item static-row">
+        <span>
+          <span class="list-title-strong">不再从首页直接建号</span>
+          <span class="list-meta-line">避免用户跳过验证码，减少“看起来是真的，但其实没验证邮箱”的问题。</span>
+        </span>
+      </div>
+      <div class="app-list-item static-row">
+        <span>
+          <span class="list-title-strong">注册和登录拆成独立页面</span>
+          <span class="list-meta-line">这样更接近你给的参考图结构，也更像真实 App 的开户流程。</span>
+        </span>
+      </div>
+      <div class="app-list-item static-row">
+        <span>
+          <span class="list-title-strong">验证码真的会发邮件</span>
+          <span class="list-meta-line">如果当前 SMTP 未配置，页面会真实提示失败，你就知道不是 UI 假动作。</span>
+        </span>
+      </div>
+    </div>
+  </article>
+</section>
+<?php render_layout_end(); ?>
diff --git a/task.php b/task.php
new file mode 100644
index 0000000..5acd9a4
--- /dev/null
+++ b/task.php
@@ -0,0 +1,282 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$user = current_user();
+$taskSlug = (string) ($_GET['task'] ?? '');
+$selectedCategory = (string) ($_GET['category'] ?? 'all');
+$categories = task_category_options();
+if (!isset($categories[$selectedCategory])) {
+    $selectedCategory = 'all';
+}
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    try {
+        verify_csrf_or_fail();
+        $user = require_user();
+        $task = task_by_slug((string) ($_POST['task_slug'] ?? $taskSlug));
+        if (!$task) {
+            throw new RuntimeException('任务不存在，请返回任务大厅重试。');
+        }
+
+        $action = (string) ($_POST['action'] ?? '');
+        if ($action === 'claim_task') {
+            $order = create_task_order((int) $user['id'], $task);
+            flash('success', '任务已领取，倒计时已开始。订单 #' . ($order['id'] ?? '') . ' 已创建。');
+            redirect('task.php?task=' . urlencode((string) $task['slug']));
+        }
+
+        if ($action === 'submit_order') {
+            $orderId = (int) ($_POST['order_id'] ?? 0);
+            $order = submit_task_order((int) $user['id'], $orderId, (string) ($_POST['proof_note'] ?? ''));
+            flash('success', '任务已提交审核，佣金已进入冻结余额。');
+            redirect('order.php?id=' . urlencode((string) ($order['id'] ?? $orderId)));
+        }
+    } catch (Throwable $exception) {
+        flash('danger', $exception->getMessage());
+        if ($taskSlug !== '') {
+            redirect('task.php?task=' . urlencode($taskSlug));
+        }
+        redirect('task.php');
+    }
+}
+
+$task = $taskSlug !== '' ? task_by_slug($taskSlug) : null;
+if ($taskSlug !== '' && !$task) {
+    http_response_code(404);
+    render_layout_start('任务不存在', '未找到指定任务。', 'tasks');
+    ?>
+    <section class="app-page-section">
+      <article class="app-card">
+        <div class="tiny-eyebrow">404</div>
+        <h1 class="app-section-title mb-2">任务不存在</h1>
+        <p class="app-copy mb-3">请返回任务大厅选择一个有效任务。</p>
+        <a class="btn btn-gradient" href="task.php">返回任务大厅</a>
+      </article>
+    </section>
+    <?php
+    render_layout_end();
+    exit;
+}
+
+$previewNotice = !$user;
+$allTasks = array_values(task_catalog());
+$activeOrdersBySlug = [];
+if ($user) {
+    foreach (get_user_orders((int) $user['id'], 30) as $orderRow) {
+        $status = (string) ($orderRow['status'] ?? '');
+        $slug = (string) ($orderRow['task_slug'] ?? '');
+        if ($slug !== '' && in_array($status, ['claimed', 'pending_review'], true) && !isset($activeOrdersBySlug[$slug])) {
+            $activeOrdersBySlug[$slug] = $orderRow;
+        }
+    }
+}
+
+if (!$task) {
+    $filteredTasks = array_values(array_filter($allTasks, static function (array $entry) use ($selectedCategory): bool {
+        if ($selectedCategory === 'all') {
+            return true;
+        }
+        return task_visual_meta($entry)['category'] === $selectedCategory;
+    }));
+
+    render_layout_start('任务', '任务大厅页，支持分类筛选、任务详情入口与领取状态展示。', 'tasks');
+    ?>
+    <section class="app-page-section">
+      <article class="app-card gradient-card slim-hero-card">
+        <div class="tiny-eyebrow">任务大厅</div>
+        <h1 class="app-hero-title compact-title">选择你想完成的任务</h1>
+        <p class="app-hero-copy mb-0">视频、点赞、社媒、网站、应用任务都能从这里进入。</p>
+        <?php if ($previewNotice): ?>
+          <div class="app-inline-note mt-3">现在是游客预览模式：可以浏览 5 个页面，登录后才能正式领取任务。</div>
+        <?php endif; ?>
+      </article>
+    </section>
+
+    <section class="app-page-section">
+      <div class="category-tabs" aria-label="任务分类">
+        <?php foreach ($categories as $key => $label): ?>
+          <a class="category-tab<?= $selectedCategory === $key ? ' active' : '' ?>" href="task.php<?= $key === 'all' ? '' : '?category=' . urlencode($key) ?>"><?= h($label) ?></a>
+        <?php endforeach; ?>
+      </div>
+    </section>
+
+    <section class="app-page-section">
+      <div class="app-task-list">
+        <?php foreach ($filteredTasks as $entry): ?>
+          <?php
+          $meta = task_visual_meta($entry);
+          $activeOrder = $user ? ($activeOrdersBySlug[(string) $entry['slug']] ?? null) : null;
+          $canAccess = $user ? can_access_task($user, $entry) : ((int) $entry['vip_required'] === 0);
+          ?>
+          <article class="app-card task-list-row">
+            <div class="d-flex align-items-center gap-3">
+              <span class="task-platform-icon <?= h((string) $meta['accent']) ?>"><?= app_icon_svg((string) $meta['icon']) ?></span>
+              <div class="flex-grow-1 min-w-0">
+                <div class="task-row-title"><?= h((string) $entry['title']) ?></div>
+                <div class="task-row-subtitle"><?= h((string) $meta['brand']) ?> · <?= h((string) $meta['hint']) ?></div>
+              </div>
+              <div class="text-end">
+                <div class="reward-strong">+<?= h(number_format((float) $entry['reward'], 2)) ?></div>
+                <div class="list-meta-line">USDT</div>
+              </div>
+            </div>
+            <div class="task-list-footer mt-3">
+              <div class="d-flex flex-wrap gap-2">
+                <span class="tag-chip"><?= h('VIP' . (string) $entry['vip_required']) ?></span>
+                <span class="tag-chip secondary-chip"><?= h((string) $categories[$meta['category']] ?? '任务') ?></span>
+                <?php if ($activeOrder): ?>
+                  <?= render_status_badge((string) $activeOrder['status']) ?>
+                <?php elseif (!$canAccess): ?>
+                  <span class="status-pill tone-muted">未解锁</span>
+                <?php else: ?>
+                  <span class="status-pill tone-success">可领取</span>
+                <?php endif; ?>
+              </div>
+              <a class="btn btn-gradient btn-sm px-3" href="task.php?task=<?= h((string) $entry['slug']) ?>">查看</a>
+            </div>
+          </article>
+        <?php endforeach; ?>
+      </div>
+    </section>
+    <?php
+    render_layout_end();
+    exit;
+}
+
+$meta = task_visual_meta($task);
+$activeOrder = $user ? active_order_for_task((int) $user['id'], (string) $task['slug']) : null;
+$history = $user ? get_user_orders_for_task((int) $user['id'], (string) $task['slug'], 5) : [];
+$canAccess = $user ? can_access_task($user, $task) : ((int) $task['vip_required'] === 0);
+$unlockTimestamp = $activeOrder ? strtotime((string) $activeOrder['claimed_at']) + (int) $activeOrder['countdown_seconds'] : null;
+
+render_layout_start((string) $task['title'], '任务详情页，包含任务说明、倒计时与提交审核入口。', 'tasks');
+?>
+<section class="app-page-section">
+  <article class="app-card gradient-card detail-hero-card">
+    <div class="task-detail-head">
+      <span class="task-platform-icon large-icon <?= h((string) $meta['accent']) ?>"><?= app_icon_svg((string) $meta['icon']) ?></span>
+      <div class="flex-grow-1">
+        <div class="tiny-eyebrow"><?= h((string) $meta['brand']) ?> · <?= h((string) $task['type']) ?></div>
+        <h1 class="app-section-title mb-2"><?= h((string) $task['title']) ?></h1>
+        <p class="app-copy mb-0"><?= h((string) $task['summary']) ?></p>
+      </div>
+    </div>
+
+    <div class="detail-metrics mt-3">
+      <div class="detail-metric-box">
+        <div class="mini-label">奖励金额</div>
+        <div class="detail-amount">+<?= h(number_format((float) $task['reward'], 2)) ?> USDT</div>
+      </div>
+      <div class="detail-meta-grid mt-3">
+        <div>
+          <div class="mini-label">任务要求</div>
+          <div class="detail-mini-value">VIP<?= h((string) $task['vip_required']) ?></div>
+        </div>
+        <div>
+          <div class="mini-label">倒计时</div>
+          <div class="detail-mini-value"><?= h((string) $task['countdown']) ?> 秒</div>
+        </div>
+        <div>
+          <div class="mini-label">当前状态</div>
+          <div class="detail-mini-value">
+            <?php if ($activeOrder): ?>
+              <?= render_status_badge((string) $activeOrder['status']) ?>
+            <?php elseif ($canAccess): ?>
+              <span class="status-pill tone-success">可领取</span>
+            <?php else: ?>
+              <span class="status-pill tone-muted">需升级 VIP</span>
+            <?php endif; ?>
+          </div>
+        </div>
+      </div>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">任务要求</div>
+      <h2 class="app-section-title">操作步骤</h2>
+    </div>
+    <div class="timeline-mini-list">
+      <?php foreach ($task['steps'] as $index => $step): ?>
+        <div class="timeline-mini-item">
+          <span class="timeline-mini-index"><?= h((string) ($index + 1)) ?></span>
+          <div>
+            <div class="list-title-strong">步骤 <?= h((string) ($index + 1)) ?></div>
+            <div class="list-meta-line"><?= h((string) $step) ?></div>
+          </div>
+        </div>
+      <?php endforeach; ?>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">开始任务</div>
+      <h2 class="app-section-title">领取与提交</h2>
+    </div>
+
+    <?php if (!$user): ?>
+      <div class="app-inline-note mb-3">你正在浏览视觉预览版。登录后才可以正式领取并提交任务。</div>
+      <a class="btn btn-gradient w-100" href="<?= h(login_page_url(current_request_target())) ?>">登录后开始任务</a>
+    <?php elseif (!$canAccess): ?>
+      <div class="app-inline-note mb-3">当前账号为 <?= h(vip_info((int) $user['vip_level'])['name']) ?>，该任务需要 VIP<?= h((string) $task['vip_required']) ?>。</div>
+      <a class="btn btn-gradient w-100" href="vip.php?level=<?= h((string) $task['vip_required']) ?>">去开通 VIP<?= h((string) $task['vip_required']) ?></a>
+    <?php elseif (!$activeOrder): ?>
+      <form method="post" class="d-grid gap-3">
+        <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+        <input type="hidden" name="action" value="claim_task">
+        <input type="hidden" name="task_slug" value="<?= h((string) $task['slug']) ?>">
+        <button class="btn btn-gradient" type="submit">开始任务</button>
+      </form>
+    <?php elseif ((string) $activeOrder['status'] === 'claimed'): ?>
+      <div class="countdown-card front-countdown-card mb-3" data-countdown-card>
+        <div class="mini-label">倒计时剩余</div>
+        <div class="countdown-display" data-countdown="<?= h((string) $unlockTimestamp) ?>" data-countdown-target="#submit-order-button"><?= h((string) max(0, (int) ($unlockTimestamp - time()))) ?> 秒</div>
+        <div class="list-meta-line mt-2">时间到之后才可以提交，服务端也会再次验证。</div>
+      </div>
+      <form method="post" class="d-grid gap-3">
+        <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+        <input type="hidden" name="action" value="submit_order">
+        <input type="hidden" name="task_slug" value="<?= h((string) $task['slug']) ?>">
+        <input type="hidden" name="order_id" value="<?= h((string) $activeOrder['id']) ?>">
+        <div>
+          <label class="form-label" for="proof-note">完成备注</label>
+          <textarea class="form-control" id="proof-note" name="proof_note" rows="4" placeholder="例如：已观看 60 秒，已完成点赞与停留" required></textarea>
+        </div>
+        <button class="btn btn-gradient" id="submit-order-button" type="submit" disabled>提交审核</button>
+      </form>
+    <?php else: ?>
+      <div class="app-inline-note mb-3">该任务已提交审核或已处理完成，你可以查看订单详情了解最新状态。</div>
+      <a class="btn btn-gradient w-100" href="order.php?id=<?= h((string) $activeOrder['id']) ?>">查看订单详情</a>
+    <?php endif; ?>
+  </article>
+</section>
+
+<?php if ($history): ?>
+<section class="app-page-section">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">任务历史</div>
+      <h2 class="app-section-title">最近记录</h2>
+    </div>
+    <div class="app-list-stack">
+      <?php foreach ($history as $record): ?>
+        <a class="app-list-item" href="order.php?id=<?= h((string) $record['id']) ?>">
+          <span>
+            <span class="list-title-strong">订单 #<?= h((string) $record['id']) ?></span>
+            <span class="list-meta-line"><?= h(format_datetime((string) $record['claimed_at'])) ?> · <?= h(format_usdt($record['reward_usdt'])) ?></span>
+          </span>
+          <span><?= render_status_badge((string) $record['status']) ?></span>
+        </a>
+      <?php endforeach; ?>
+    </div>
+  </article>
+</section>
+<?php endif; ?>
+<?php render_layout_end(); ?>
diff --git a/verify.php b/verify.php
new file mode 100644
index 0000000..882ac2c
--- /dev/null
+++ b/verify.php
@@ -0,0 +1,142 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$redirectTarget = safe_redirect_target((string) ($_POST['redirect'] ?? $_GET['redirect'] ?? 'index.php'));
+if (current_user()) {
+    redirect($redirectTarget);
+}
+
+$email = normalize_email((string) ($_POST['email'] ?? $_GET['email'] ?? ($_SESSION['last_signup_email'] ?? '')));
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    try {
+        verify_csrf_or_fail();
+        $action = (string) ($_POST['action'] ?? 'verify_signup');
+        $email = normalize_email((string) ($_POST['email'] ?? ''));
+
+        if ($action === 'resend_signup') {
+            resend_signup_verification($email);
+            flash('success', '新的验证码已经发送，请查收邮箱。');
+            redirect(verify_page_url($email, $redirectTarget));
+        }
+
+        complete_signup_verification($email, (string) ($_POST['code'] ?? ''));
+        flash('success', '邮箱验证成功，账号已经创建完成，请使用密码登录。');
+        redirect(login_page_url($redirectTarget, ['email' => $email]));
+    } catch (Throwable $exception) {
+        flash('danger', $exception->getMessage());
+        if ($email !== '') {
+            redirect(verify_page_url($email, $redirectTarget));
+        }
+        redirect(register_page_url($redirectTarget));
+    }
+}
+
+$latestRequest = null;
+if ($email !== '') {
+    try {
+        $latestRequest = latest_signup_verification($email, false);
+    } catch (Throwable $exception) {
+        $latestRequest = null;
+    }
+}
+
+render_layout_start('邮箱验证码', '邮箱验证码页，输入 6 位数字后完成注册激活。', 'auth');
+?>
+<section class="app-page-section auth-page-shell">
+  <article class="app-card gradient-card hero-card">
+    <div class="tiny-eyebrow">Step 3 / 4</div>
+    <h1 class="app-hero-title compact-title">邮箱验证码</h1>
+    <?php if ($email !== ''): ?>
+      <p class="app-hero-copy mb-0">验证码已经发送到 <strong><?= h(mask_email($email)) ?></strong>。把邮件里的 6 位数字填进来，验证通过后系统才会真正创建账号。</p>
+    <?php else: ?>
+      <p class="app-hero-copy mb-0">这一页负责“确认你真的拥有这个邮箱”。如果你还没发验证码，请先返回注册页。</p>
+    <?php endif; ?>
+  </article>
+</section>
+
+<section class="app-page-section auth-page-shell">
+  <div class="auth-stack auth-page-grid">
+    <article class="app-card auth-card-panel">
+      <div class="auth-panel-head">
+        <div>
+          <div class="list-title-strong">输入 6 位数字验证码</div>
+          <div class="list-meta-line">验证码错误次数过多或过期后，需要重新发送。</div>
+        </div>
+        <span class="tag-chip">验证</span>
+      </div>
+
+      <?php if ($email === ''): ?>
+        <div class="empty-tip">还没有待验证的邮箱记录。请先回到注册页填写邮箱和密码。</div>
+        <div class="auth-link-grid mt-3">
+          <a class="btn btn-gradient" href="<?= h(register_page_url($redirectTarget)) ?>">去注册</a>
+          <a class="btn btn-outline-light" href="<?= h(start_page_url($redirectTarget)) ?>">返回启动页</a>
+        </div>
+      <?php else: ?>
+        <form method="post" class="auth-form-grid">
+          <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+          <input type="hidden" name="action" value="verify_signup">
+          <input type="hidden" name="redirect" value="<?= h($redirectTarget) ?>">
+          <input type="hidden" name="email" value="<?= h($email) ?>">
+          <div>
+            <label class="form-label" for="signup-code">验证码</label>
+            <input class="form-control auth-code-input" id="signup-code" type="text" name="code" inputmode="numeric" autocomplete="one-time-code" maxlength="6" pattern="\d{6}" placeholder="请输入 6 位数字" required>
+          </div>
+          <button class="btn btn-gradient" type="submit">确认验证码</button>
+        </form>
+
+        <form method="post" class="mt-3">
+          <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+          <input type="hidden" name="action" value="resend_signup">
+          <input type="hidden" name="redirect" value="<?= h($redirectTarget) ?>">
+          <input type="hidden" name="email" value="<?= h($email) ?>">
+          <button class="btn btn-outline-light w-100" type="submit">重新发送验证码</button>
+        </form>
+      <?php endif; ?>
+    </article>
+
+    <article class="app-card auth-card-panel">
+      <div class="auth-panel-head">
+        <div>
+          <div class="list-title-strong">当前说明</div>
+          <div class="list-meta-line">为了让你更容易理解，我把“验证码页”翻译成了 3 句话。</div>
+        </div>
+        <span class="tag-chip secondary-chip">说明</span>
+      </div>
+
+      <div class="app-list-stack">
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">为什么要这一步</span>
+            <span class="list-meta-line">它用来确认邮箱归属，避免随便填一个邮箱就直接生成账号。</span>
+          </span>
+        </div>
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">验证成功后会发生什么</span>
+            <span class="list-meta-line">系统会真实写入用户表、生成 6 位 ID、自动创建钱包并把账号标记为已验证。</span>
+          </span>
+        </div>
+        <div class="app-list-item static-row">
+          <span>
+            <span class="list-title-strong">下一页是什么</span>
+            <span class="list-meta-line">验证通过后，会跳到登录页。你再输入密码，就能进入 5 个主页面。</span>
+          </span>
+        </div>
+      </div>
+
+      <?php if ($latestRequest && !empty($latestRequest['expires_at'])): ?>
+        <div class="app-inline-note mt-3">最近一次验证码过期时间：<?= h(format_datetime((string) $latestRequest['expires_at'])) ?></div>
+      <?php else: ?>
+        <div class="app-inline-note mt-3">如果没收到邮件，请先检查垃圾箱，再点击“重新发送验证码”。</div>
+      <?php endif; ?>
+
+      <div class="auth-link-grid mt-3">
+        <a class="btn btn-outline-light" href="<?= h(register_page_url($redirectTarget, $email !== '' ? ['email' => $email] : [])) ?>">返回注册页</a>
+        <a class="btn btn-outline-light" href="<?= h(login_page_url($redirectTarget, $email !== '' ? ['email' => $email] : [])) ?>">去登录页</a>
+      </div>
+    </article>
+  </div>
+</section>
+<?php render_layout_end(); ?>
diff --git a/vip.php b/vip.php
new file mode 100644
index 0000000..3944bdf
--- /dev/null
+++ b/vip.php
@@ -0,0 +1,219 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    $action = (string) ($_POST['action'] ?? '');
+
+    try {
+        verify_csrf_or_fail();
+
+        if ($action === 'purchase_vip') {
+            $user = require_user();
+            $targetLevel = (int) ($_POST['level'] ?? 0);
+            $purchase = purchase_vip_upgrade((int) $user['id'], $targetLevel);
+            $upgradedVip = vip_info((int) ($purchase['to_level'] ?? $targetLevel));
+            $paidAmount = (float) ($purchase['price_usdt'] ?? 0);
+            flash('success', $upgradedVip['name'] . ' 开通成功，已从可用余额扣除 ' . number_format($paidAmount, 2) . ' USDT。');
+            redirect('vip.php?level=' . $targetLevel . '#vip-history');
+        }
+    } catch (Throwable $exception) {
+        $targetLevel = (int) ($_POST['level'] ?? 0);
+        flash('danger', $exception->getMessage());
+        redirect('vip.php' . ($targetLevel > 0 ? '?level=' . $targetLevel . '#vip-checkout' : '#vip-checkout'));
+    }
+}
+
+$user = current_user();
+$previewMode = !$user;
+$catalog = vip_catalog();
+$currentVip = $user ? (int) $user['vip_level'] : 3;
+$defaultLevel = $currentVip > 0 ? $currentVip : 1;
+$selectedLevel = (int) ($_GET['level'] ?? $defaultLevel);
+if (!isset($catalog[$selectedLevel]) || $selectedLevel === 0) {
+    $selectedLevel = $defaultLevel;
+}
+$selectedVip = $catalog[$selectedLevel];
+$wallet = $user ? wallet_snapshot((int) $user['id']) : ['available_balance' => 5560.25, 'frozen_balance' => 120.00];
+$availableBalance = (float) ($wallet['available_balance'] ?? 0);
+$selectedPrice = (float) $selectedVip['price'];
+$balanceGap = max(0, $selectedPrice - $availableBalance);
+$isCurrentOrLower = !$previewMode && $selectedLevel <= $currentVip;
+$canPurchase = !$previewMode && !$isCurrentOrLower && $balanceGap <= 0;
+$vipOrders = $user ? get_user_vip_orders((int) $user['id'], 8) : [];
+$latestVipOrder = $vipOrders[0] ?? null;
+$nextVip = (!$previewMode && isset($catalog[$currentVip + 1])) ? $catalog[$currentVip + 1] : null;
+
+render_layout_start('VIP', 'VIP 等级页，支持真实余额开通、写入数据库、升级等级与查看升级记录。', 'vip');
+?>
+<section class="app-page-section">
+  <article class="app-card gradient-card hero-card">
+    <div class="tiny-eyebrow">VIP 等级</div>
+    <h1 class="app-hero-title compact-title">余额直接开通更高返佣等级</h1>
+    <p class="app-hero-copy mb-0">现在这个页面已经接上真实数据库：开通后会写入 VIP 订单记录、扣减钱包余额，并立即升级你的账号等级。</p>
+    <?php if ($previewMode): ?>
+      <div class="app-inline-note mt-3">当前是视觉预览模式。登录后可以使用真实钱包余额开通 VIP，并在下方看到升级记录。</div>
+    <?php else: ?>
+      <div class="app-inline-note mt-3">当前账号是 <?= h(vip_info($currentVip)['name']) ?>。如果余额充足，点一次“立即开通”就会直接完成升级。</div>
+    <?php endif; ?>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <article class="app-card vip-highlight-card">
+    <div class="d-flex align-items-center justify-content-between gap-3 flex-wrap">
+      <div>
+        <div class="tiny-eyebrow">当前等级</div>
+        <div class="vip-banner-title"><?= h(vip_info($currentVip)['name']) ?></div>
+        <div class="list-meta-line">可用余额 <?= h(number_format($availableBalance, 2)) ?> USDT · 冻结余额 <?= h(number_format((float) ($wallet['frozen_balance'] ?? 0), 2)) ?> USDT</div>
+      </div>
+      <span class="vip-chip-large"><?= h(vip_info($currentVip)['name']) ?></span>
+    </div>
+
+    <div class="detail-meta-grid mt-3">
+      <div>
+        <div class="mini-label">目标等级</div>
+        <div class="detail-mini-value"><?= h((string) $selectedVip['name']) ?></div>
+      </div>
+      <div>
+        <div class="mini-label">开通金额</div>
+        <div class="detail-mini-value"><?= h(number_format($selectedPrice, 2)) ?> USDT</div>
+      </div>
+      <div>
+        <div class="mini-label">最近升级</div>
+        <div class="detail-mini-value"><?= h($latestVipOrder ? vip_info((int) $latestVipOrder['to_level'])['name'] : '暂无') ?></div>
+      </div>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <div class="app-task-list">
+    <?php foreach ($catalog as $level => $vip): ?>
+      <?php if ($level === 0) { continue; } ?>
+      <article class="app-card vip-level-row<?= $selectedLevel === (int) $level ? ' is-selected' : '' ?>">
+        <div class="d-flex align-items-start gap-3">
+          <span class="task-platform-icon <?= (int) $level === 1 ? 'accent-gold' : ((int) $level === 2 ? 'accent-blue' : ((int) $level === 3 ? 'accent-violet' : 'accent-pink')) ?>"><?= app_icon_svg('vip') ?></span>
+          <div class="flex-grow-1 min-w-0">
+            <div class="d-flex align-items-center gap-2 flex-wrap">
+              <div class="task-row-title"><?= h((string) $vip['name']) ?></div>
+              <?php if (!$previewMode && $currentVip === (int) $level): ?>
+                <span class="status-pill tone-success">当前等级</span>
+              <?php elseif (!$previewMode && $currentVip > (int) $level): ?>
+                <span class="status-pill tone-muted">已解锁</span>
+              <?php endif; ?>
+            </div>
+            <div class="task-row-subtitle mt-1"><?= h((string) $vip['benefit']) ?></div>
+            <div class="d-flex flex-wrap gap-2 mt-2">
+              <span class="tag-chip">单任务佣金 <?= h(number_format((float) $vip['reward'], 2)) ?> USDT</span>
+              <span class="tag-chip secondary-chip">每日 <?= h((string) $vip['daily_tasks']) ?> 单</span>
+            </div>
+          </div>
+          <div class="text-end ms-auto">
+            <div class="reward-strong"><?= h(number_format((float) $vip['price'], 0)) ?> USDT</div>
+            <?php if ($selectedLevel === (int) $level): ?>
+              <span class="status-pill tone-warning mt-2">已选中</span>
+            <?php else: ?>
+              <a class="btn btn-outline-light btn-sm px-3 mt-2" href="vip.php?level=<?= h((string) $level) ?>#vip-checkout">选择</a>
+            <?php endif; ?>
+          </div>
+        </div>
+      </article>
+    <?php endforeach; ?>
+  </div>
+</section>
+
+<section class="app-page-section" id="vip-checkout">
+  <article class="app-card payment-preview-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">开通支付</div>
+      <h2 class="app-section-title"><?= h((string) $selectedVip['name']) ?> 结算卡</h2>
+    </div>
+
+    <div class="payment-hero-box">
+      <div class="vip-banner-title mb-2"><?= h((string) $selectedVip['name']) ?></div>
+      <div class="payment-price"><?= h(number_format($selectedPrice, 2)) ?> USDT</div>
+      <div class="list-meta-line mt-2">单任务佣金 <?= h(number_format((float) $selectedVip['reward'], 2)) ?> USDT · 每日 <?= h((string) $selectedVip['daily_tasks']) ?> 单</div>
+    </div>
+
+    <div class="detail-meta-grid mt-3">
+      <div>
+        <div class="mini-label">支付方式</div>
+        <div class="detail-mini-value">钱包可用余额</div>
+      </div>
+      <div>
+        <div class="mini-label">当前可用</div>
+        <div class="detail-mini-value"><?= h(number_format($availableBalance, 2)) ?> USDT</div>
+      </div>
+      <div>
+        <div class="mini-label"><?= $isCurrentOrLower ? '升级状态' : '还差金额' ?></div>
+        <div class="detail-mini-value"><?= $isCurrentOrLower ? h('已开通或更高等级') : h(number_format($balanceGap, 2) . ' USDT') ?></div>
+      </div>
+    </div>
+
+    <?php if ($previewMode): ?>
+      <div class="app-inline-note mt-3">要真正开通 VIP，需要先登录。登录后这个按钮会直接连到数据库：生成订单记录、扣款并升级你的等级。</div>
+      <div class="d-grid gap-2 mt-3">
+        <a class="btn btn-gradient" href="<?= h(login_page_url(current_request_target())) ?>">先登录账号</a>
+        <a class="btn btn-outline-light" href="task.php">先查看任务大厅</a>
+      </div>
+    <?php elseif ($isCurrentOrLower): ?>
+      <div class="app-inline-note mt-3">当前账号已经是 <?= h(vip_info($currentVip)['name']) ?>。无需重复开通，直接去做更高等级任务即可。</div>
+      <div class="d-grid gap-2 mt-3">
+        <a class="btn btn-gradient" href="task.php">去做任务</a>
+        <?php if ($nextVip): ?>
+          <a class="btn btn-outline-light" href="vip.php?level=<?= h((string) $nextVip['level']) ?>#vip-checkout">查看 <?= h((string) $nextVip['name']) ?></a>
+        <?php else: ?>
+          <a class="btn btn-outline-light" href="wallet.php#history-panel">查看钱包流水</a>
+        <?php endif; ?>
+      </div>
+    <?php elseif ($balanceGap > 0): ?>
+      <div class="app-inline-note mt-3">当前余额还差 <?= h(number_format($balanceGap, 2)) ?> USDT，暂时不能直接开通。等你下一步把充值流程接上后，这里就能完整跑通。</div>
+      <div class="d-grid gap-2 mt-3">
+        <a class="btn btn-gradient" href="wallet.php#deposit-panel">去钱包查看充值入口</a>
+        <a class="btn btn-outline-light" href="profile.php#support-panel">联系专属客服</a>
+      </div>
+    <?php else: ?>
+      <div class="app-inline-note mt-3">确认后会立刻执行 3 件事：1）写入 VIP 订单；2）从可用余额扣款；3）更新你的账号等级。</div>
+      <form method="post" class="d-grid gap-2 mt-3">
+        <input type="hidden" name="csrf_token" value="<?= h(csrf_token()) ?>">
+        <input type="hidden" name="action" value="purchase_vip">
+        <input type="hidden" name="level" value="<?= h((string) $selectedLevel) ?>">
+        <button class="btn btn-gradient" type="submit" data-confirm="确认使用钱包可用余额开通 <?= h((string) $selectedVip['name']) ?>？扣款后会立即升级，且此动作不可撤销。">立即开通 <?= h((string) $selectedVip['name']) ?></button>
+        <a class="btn btn-outline-light" href="wallet.php#history-panel">先看资金流水</a>
+      </form>
+    <?php endif; ?>
+  </article>
+</section>
+
+<section class="app-page-section" id="vip-history">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">升级记录</div>
+      <h2 class="app-section-title">最近 VIP 订单</h2>
+    </div>
+
+    <?php if ($previewMode): ?>
+      <div class="app-inline-note">登录后这里会显示你的真实 VIP 订单时间线，例如“VIP0 → VIP1、扣款金额、开通时间”。</div>
+    <?php elseif ($vipOrders): ?>
+      <div class="app-list-stack">
+        <?php foreach ($vipOrders as $order): ?>
+          <div class="app-list-item align-items-start">
+            <span>
+              <span class="list-title-strong"><?= h(vip_info((int) $order['from_level'])['name']) ?> → <?= h(vip_info((int) $order['to_level'])['name']) ?></span>
+              <span class="list-meta-line"><?= h(format_datetime((string) ($order['completed_at'] ?: $order['created_at']))) ?> · 扣款 <?= h(number_format((float) $order['price_usdt'], 2)) ?> USDT</span>
+              <span class="list-meta-line"><?= h((string) $order['note']) ?></span>
+            </span>
+            <span class="d-inline-flex flex-column align-items-end gap-2">
+              <span class="status-pill tone-success">已升级</span>
+              <span class="ledger-value-inline is-negative">-<?= h(number_format((float) $order['price_usdt'], 2)) ?> USDT</span>
+            </span>
+          </div>
+        <?php endforeach; ?>
+      </div>
+    <?php else: ?>
+      <div class="empty-tip">你还没有 VIP 升级记录。等余额充足后，第一次开通就会自动写入这里。</div>
+    <?php endif; ?>
+  </article>
+</section>
+<?php render_layout_end(); ?>
diff --git a/wallet.php b/wallet.php
new file mode 100644
index 0000000..d272bca
--- /dev/null
+++ b/wallet.php
@@ -0,0 +1,169 @@
+<?php
+declare(strict_types=1);
+require_once __DIR__ . '/app.php';
+
+$user = current_user();
+$previewMode = !$user;
+$wallet = $user
+    ? wallet_snapshot((int) $user['id'])
+    : ['available_balance' => 5560.25, 'frozen_balance' => 120.00];
+$stats = $user
+    ? get_dashboard_stats((int) $user['id'])
+    : [
+        'available_balance' => 5560.25,
+        'frozen_balance' => 120.00,
+        'total_balance' => 5680.25,
+        'today_earnings' => 1000.00,
+        'month_earnings' => 18560.20,
+        'today_tasks' => 30,
+        'active_orders' => 3,
+        'completed_orders' => 12,
+    ];
+$logs = $user ? get_wallet_logs((int) $user['id'], 8) : [
+    ['entry_type' => 'task_credit', 'amount' => 1000.00, 'frozen_amount' => 0.00, 'note' => '任务佣金到账', 'created_at' => gmdate('Y-m-d H:i:s')],
+    ['entry_type' => 'task_reject', 'amount' => 0.00, 'frozen_amount' => -50.00, 'note' => '未通过审核，释放冻结金额', 'created_at' => gmdate('Y-m-d H:i:s', time() - 3600)],
+    ['entry_type' => 'task_freeze', 'amount' => 0.00, 'frozen_amount' => 100.00, 'note' => '任务提交后冻结佣金', 'created_at' => gmdate('Y-m-d H:i:s', time() - 7200)],
+];
+$available = (float) $wallet['available_balance'];
+$fee = $available > 0 ? min(1.00, $available) : 1.00;
+$estimated = max(0, $available - $fee);
+$quickActions = [
+    ['label' => '充值', 'icon' => 'deposit', 'href' => '#deposit-panel'],
+    ['label' => '提现', 'icon' => 'withdraw', 'href' => '#withdraw-panel'],
+    ['label' => '转账', 'icon' => 'swap', 'href' => '#transfer-panel'],
+    ['label' => '记录', 'icon' => 'history', 'href' => '#history-panel'],
+];
+
+render_layout_start('钱包', '钱包页，展示可用余额、冻结余额、提现卡片与资金流水记录。', 'wallet');
+?>
+<section class="app-page-section">
+  <article class="app-card gradient-card hero-card">
+    <div class="tiny-eyebrow">我的钱包</div>
+    <h1 class="app-hero-title compact-title">资金总览</h1>
+    <div class="balance-card mt-3">
+      <div class="mini-label">可用余额（USDT）</div>
+      <div class="balance-value"><?= h(number_format((float) $wallet['available_balance'], 2)) ?></div>
+      <div class="balance-sub">总余额 <?= h(number_format((float) $stats['total_balance'], 2)) ?> · 冻结 <?= h(number_format((float) $wallet['frozen_balance'], 2)) ?></div>
+      <div class="quick-action-grid mt-3">
+        <?php foreach ($quickActions as $action): ?>
+          <a class="quick-action" href="<?= h($action['href']) ?>">
+            <span class="quick-action-icon"><?= app_icon_svg((string) $action['icon']) ?></span>
+            <span class="quick-action-label"><?= h((string) $action['label']) ?></span>
+          </a>
+        <?php endforeach; ?>
+      </div>
+    </div>
+    <?php if ($previewMode): ?>
+      <div class="app-inline-note mt-3">当前是参考图风格预览，登录后这里会显示你的真实资金流水。</div>
+    <?php endif; ?>
+  </article>
+</section>
+
+<section class="app-page-section">
+  <div class="mini-stat-grid three-cols">
+    <article class="app-card stat-card">
+      <div class="mini-label">可用余额</div>
+      <div class="stat-value"><?= h(number_format((float) $wallet['available_balance'], 2)) ?></div>
+      <div class="stat-meta">USDT</div>
+    </article>
+    <article class="app-card stat-card">
+      <div class="mini-label">冻结余额</div>
+      <div class="stat-value"><?= h(number_format((float) $wallet['frozen_balance'], 2)) ?></div>
+      <div class="stat-meta">等待审核</div>
+    </article>
+    <article class="app-card stat-card">
+      <div class="mini-label">累计入账</div>
+      <div class="stat-value"><?= h(number_format((float) $stats['month_earnings'], 2)) ?></div>
+      <div class="stat-meta">本月收益</div>
+    </article>
+  </div>
+</section>
+
+<section class="app-page-section" id="deposit-panel">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">充值</div>
+      <h2 class="app-section-title">USDT 充值说明</h2>
+    </div>
+    <div class="detail-meta-grid">
+      <div>
+        <div class="mini-label">网络</div>
+        <div class="detail-mini-value">TRC20</div>
+      </div>
+      <div>
+        <div class="mini-label">到账方式</div>
+        <div class="detail-mini-value">人工审核</div>
+      </div>
+      <div>
+        <div class="mini-label">处理时间</div>
+        <div class="detail-mini-value">5 - 15 分钟</div>
+      </div>
+    </div>
+    <div class="app-inline-note mt-3">第一版先保留参考图中的充值入口样式，下一步我可以继续帮你接“充值 / 提现 → 客服工单 / 内置 IM”。</div>
+  </article>
+</section>
+
+<section class="app-page-section" id="withdraw-panel">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">提现</div>
+      <h2 class="app-section-title">提现预览</h2>
+    </div>
+    <div class="withdraw-card-shell">
+      <div class="wallet-field-row">
+        <span>提现地址</span>
+        <span>USDT-TRC20</span>
+      </div>
+      <div class="wallet-field-input">请输入 USDT 钱包地址</div>
+      <div class="wallet-field-row mt-3">
+        <span>提现金额</span>
+        <span>全部</span>
+      </div>
+      <div class="wallet-field-input"><?= h(number_format($available > 0 ? $available : 1000, 2)) ?> USDT</div>
+      <div class="wallet-summary-list mt-3">
+        <div><span>手续费</span><strong><?= h(number_format($fee, 2)) ?> USDT</strong></div>
+        <div><span>实际到账</span><strong><?= h(number_format($estimated, 2)) ?> USDT</strong></div>
+      </div>
+      <a class="btn btn-gradient w-100 mt-3" href="profile.php#support-panel">联系客服提现</a>
+    </div>
+  </article>
+</section>
+
+<section class="app-page-section" id="transfer-panel">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">转账</div>
+      <h2 class="app-section-title">账户间转账</h2>
+    </div>
+    <div class="app-inline-note">这一块我先按照你发的设计图放了入口和卡片结构。下一步可以继续接“转账表单 + 审核记录 + 钱包扣减逻辑”。</div>
+  </article>
+</section>
+
+<section class="app-page-section" id="history-panel">
+  <article class="app-card">
+    <div class="section-heading-app mb-3">
+      <div class="tiny-eyebrow">资金流水</div>
+      <h2 class="app-section-title">最近记录</h2>
+    </div>
+    <?php if ($logs): ?>
+      <div class="app-list-stack">
+        <?php foreach ($logs as $log): ?>
+          <?php
+          $delta = (float) $log['amount'] + (float) $log['frozen_amount'];
+          $deltaClass = $delta > 0 ? 'is-positive' : ($delta < 0 ? 'is-negative' : '');
+          ?>
+          <div class="app-list-item static-row">
+            <span>
+              <span class="list-title-strong"><?= h(wallet_entry_label((string) $log['entry_type'])) ?></span>
+              <span class="list-meta-line"><?= h((string) $log['note']) ?> · <?= h(format_datetime((string) $log['created_at'])) ?></span>
+            </span>
+            <span class="ledger-value-inline <?= h($deltaClass) ?>"><?= h(format_delta($delta)) ?> USDT</span>
+          </div>
+        <?php endforeach; ?>
+      </div>
+    <?php else: ?>
+      <div class="empty-tip">目前还没有资金流水。先完成一次任务提交与审核，就会在这里看到变化。</div>
+    <?php endif; ?>
+  </article>
+</section>
+<?php render_layout_end(); ?>