fix(numpad): 全部按键 @click 换 @pointerdown.left，零延迟

第一阶段（touch-action: manipulation）只解了浏览器双击缩放延迟，但 F7 内部 tap 合成 + active-state 检测仍让 @click 比 pointerdown 慢一拍。完全弃用 @click： - 16 个按键（数字 0-9、运算 ×−+、C 清空、小数点/双零、OK 确认）改 @pointerdown.left - 触屏 button=0 始终满足 .left 修饰符 - 桌面右键 button=2 不会误触发 - F7 active-state 视觉反馈基于独立 touchstart/touchend 监听，按下效果保留 - 退格键的 pointer 事件方案在上个 commit 已实现，本次不动 Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
fix(numpad): 退格键按下零延迟 + 500ms 长按清空
2026-05-08 11:24:16 +08:00 · 2026-05-08 11:14:11 +08:00 · 2026-05-07 15:47:00 +08:00 · 2026-05-07 15:32:24 +08:00 · 2026-05-05 18:57:09 +08:00 · 2026-05-05 18:20:30 +08:00
888 changed files with 224495 additions and 49848 deletions
@@ -1,16 +0,0 @@
 module.exports = {
    'root': true,
    'env': {
        'node': true
    },
    'extends': [
        'eslint:recommended',
        'plugin:vue/vue3-essential'
    ],
    'rules': {
        'vue/no-use-v-if-with-v-for': 'off',
        'vue/valid-v-slot': ['error', {
            allowModifiers: true,
        }]
    }
 }
@@ -0,0 +1,167 @@
 name: Build Docker Image
 on:
  # 自动触发：push 到 custom 分支时跑（force-push 后的 rebase 也会触发，可接受）
  # paths-ignore：纯文档/配置改动跳过，避免浪费 ~10 分钟构建
  # ⚠️ 已知 quirk（2026-05-02 验证）：empty commit（git commit --allow-empty）
  # 不会触发 paths-ignore 过滤的 workflow，Gitea 把 zero-paths-changed 当作
  # "vacuously matches ignore list" 跳过。要强制触发必须至少改一个非 ignore 路径
  # 的真实文件（改这个 yml 自己最稳）。
  push:
    branches: [custom]
    paths-ignore:
      - '**.md'
      - '.gitignore'
      - 'LICENSE'
      - 'screenshot/**'
      # sync-upstream.yml 改的是 main reset 逻辑，跟 build 无关
      # build-image.yml 自己留着会触发，作为 workflow 改动的 self-test
      - '.gitea/workflows/sync-upstream.yml'
  # 手动触发：保留作为应急通道（重新打包旧 commit、用自定义 tag 等等）
  # 注意：手动触发也会跑 deploy job —— 如果只想 build 不部署，临时把 deploy
  # job 注释掉或在 deploy 里加 if 条件
  workflow_dispatch:
    inputs:
      branch:
        description: '要打包的分支（仅手动触发生效）'
        required: true
        default: 'custom'
      tag:
        description: '镜像 tag（留空则用 commit short hash）'
        required: false
        default: ''
 # 并发控制：同一分支的连续 push 只跑最新的，旧 in-progress run 会被取消
 # 例：连续 3 次 push，第 1 次 build 跑了 30s，第 2 次开始 → 取消第 1，第 2 跑；
 # 期间第 3 次又来 → 取消第 2，第 3 跑。最后只构建+部署最新代码，省 CI 时间。
 # group 包含 ref 是为了不同分支的 build 互不干扰（虽然当前只有 custom 用）
 concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout target branch
        uses: actions/checkout@v4
        with:
          # workflow_dispatch 时用用户填的 branch；push 触发时 inputs.branch 为空，
          # fallback 到 github.ref_name（即触发的分支名，push 到 custom 时就是 custom）
          ref: ${{ inputs.branch || github.ref_name }}
          fetch-depth: 0
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3
        with:
          # 钉到 v0.13.2（自带 runc 1.1.x），避免 runc 1.2+ 的 procfs 安全检查
          # 在 DSM 老内核（4.4.x）上撞 openat2/fsmount 不存在导致 build 失败
          driver-opts: |
            image=moby/buildkit:v0.13.2
      - name: Login to Gitea Container Registry
        uses: docker/login-action@v3
        with:
          registry: git.zhengchentao.win
          username: ${{ gitea.actor }}
          password: ${{ secrets.PACKAGES_TOKEN }}
      - name: Determine image tag and revision
        id: meta
        run: |
          if [ -n "${{ inputs.tag }}" ]; then
            IMAGE_TAG="${{ inputs.tag }}"
          else
            IMAGE_TAG="$(git rev-parse --short HEAD)"
          fi
          echo "image_tag=$IMAGE_TAG" >> $GITHUB_OUTPUT
          echo "full_sha=$(git rev-parse HEAD)" >> $GITHUB_OUTPUT
          echo "==> Image tag: $IMAGE_TAG"
      - name: Build and push
        uses: docker/build-push-action@v5
        with:
          context: .
          push: true
          # 上游 Dockerfile 用 BUILD_PIPELINE 作为 CI 跳过开关：
          # 设为 "1" 时 pkg/exchangerates 跳过依赖第三方 API 的活测试
          # （加拿大银行/乌兹别克央行 API 国内不稳，跑就超时）
          # CHECK_3RD_API 留空 → 三方 API 测试不跑；想跑设 "1"
          build-args: |
            BUILD_PIPELINE=1
          # OCI 标签：
          # - source 让 Gitea 收包时自动把镜像关联到对应 repo（不再需要手动去
          #   "包设置 → 链接到仓库"）
          # - revision 把构建时的 commit full SHA 烙进镜像 manifest，
          #   docker inspect 能反推回源码版本
          labels: |
            org.opencontainers.image.source=https://git.zhengchentao.win/zhengchen.tao/ezbookkeeping
            org.opencontainers.image.revision=${{ steps.meta.outputs.full_sha }}
          tags: |
            git.zhengchentao.win/zhengchen.tao/ezbookkeeping:${{ steps.meta.outputs.image_tag }}
            git.zhengchentao.win/zhengchen.tao/ezbookkeeping:latest
      - name: Build summary
        # 把构建出的镜像 tag 与源 commit 显式列在 Action run summary 区，
        # 方便从 UI 一眼看到本次 build 产出。always() 保证 build 失败也输出。
        if: always()
        run: |
          {
            echo "## Build Summary"
            echo ""
            echo "| 项 | 值 |"
            echo "|---|---|"
            echo "| 触发方式 | \`${{ github.event_name }}\` |"
            echo "| 源分支 | \`${{ inputs.branch || github.ref_name }}\` |"
            echo "| 源 commit (full) | \`${{ steps.meta.outputs.full_sha }}\` |"
            echo "| 源 commit (short) | \`${{ steps.meta.outputs.image_tag }}\` |"
            echo "| 镜像 tag | \`git.zhengchentao.win/zhengchen.tao/ezbookkeeping:${{ steps.meta.outputs.image_tag }}\` + \`:latest\` |"
          } >> "$GITHUB_STEP_SUMMARY"
  deploy:
    # needs: build 串起来 —— build 失败 deploy 自动跳过，无需 if 条件
    needs: build
    runs-on: ubuntu-latest
    steps:
      # 登录 Gitea Container Registry，否则 docker compose pull 私有镜像 401。
      # 跟 build job 那步是同一个 PACKAGES_TOKEN，但每个 job 跑在独立 runner 上，
      # 凭据不会从 build job 继承，必须在这里再登一次。
      - name: Login to Gitea Container Registry
        uses: docker/login-action@v3
        with:
          registry: git.zhengchentao.win
          username: ${{ gitea.actor }}
          password: ${{ secrets.PACKAGES_TOKEN }}
      - name: Pull and restart ezbookkeeping
        # 部署逻辑直接内联在这。runner 容器挂了 host docker.sock，
        # 所以这里 docker 命令直接操作的是宿主机 docker daemon，
        # 容器层面相当于 "ssh 到 NAS 跑 docker compose"。
        #
        # NAS_INFRA_TOKEN secret 仅在 nas-infra 是私有仓库时需要；
        # 公开仓库不设这个 secret 也能拉。
        env:
          NAS_INFRA_TOKEN: ${{ secrets.NAS_INFRA_TOKEN }}
        run: |
          set -e
          TMPDIR=$(mktemp -d)
          trap 'rm -rf "$TMPDIR"' EXIT
          # 决定 clone URL：有 token 用 token（私有），没有用裸 URL（公开）
          if [ -n "$NAS_INFRA_TOKEN" ]; then
            CLONE_URL="https://x-access-token:${NAS_INFRA_TOKEN}@git.zhengchentao.win/dev/nas-infra.git"
          else
            CLONE_URL="https://git.zhengchentao.win/dev/nas-infra.git"
          fi
          git clone --depth 1 "$CLONE_URL" "$TMPDIR/nas-infra"
          cd "$TMPDIR/nas-infra/ezbookkeeping"
          docker compose pull
          docker compose up -d
          # 简单 health：列容器状态 + 输出最近日志
          sleep 3
          docker compose ps
          docker compose logs --tail=30 ezbookkeeping
@@ -1,56 +0,0 @@
 name: Docker Release
 on:
  push:
    tags:
      - v*
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v3
      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v4
        with:
          images: |
            ${{ secrets.DOCKER_REPO }}/mayswind/ezbookkeeping
          tags: |
            type=semver,pattern={{version}}
            type=semver,pattern={{major}}.{{minor}}
            type=raw,value=latest
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v2
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Set up the environment
        run: |
          sed -r -i 's#FROM( --.*)? (.*:.*)?#FROM\1 ${{ secrets.DOCKER_REPO }}/mirrors/\2#g' Dockerfile
          cat >> docker/custom-backend-pre-setup.sh <<EOF
          #!/bin/sh
          ${{ vars.CUSTOM_BACKEND_PRE_SETUP }}
          EOF
          cat >> docker/custom-frontend-pre-setup.sh <<EOF
          #!/bin/sh
          ${{ vars.CUSTOM_FRONTEND_PRE_SETUP }}
          EOF
          chmod +x docker/custom-backend-pre-setup.sh
          chmod +x docker/custom-frontend-pre-setup.sh
      - name: Build and push
        uses: docker/build-push-action@v4
        with:
          file: Dockerfile
          context: .
          platforms: ${{ vars.BUILD_RELEASE_PLATFORMS }}
          push: true
          build-args: |
            RELEASE_BUILD=1
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
@@ -1,54 +0,0 @@
 name: Docker Snapshot
 on:
  push:
    branches:
      - main
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v3
      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v4
        with:
          images: |
            ${{ secrets.DOCKER_REPO }}/mayswind/ezbookkeeping
          tags: |
            type=raw,value=SNAPSHOT-{{date 'YYYYMMDD'}}
            type=raw,value=latest-snapshot
            type=sha,format=short,prefix=SNAPSHOT-
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v2
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Set up the environment
        run: |
          sed -r -i 's#FROM( --.*)? (.*:.*)?#FROM\1 ${{ secrets.DOCKER_REPO }}/mirrors/\2#g' Dockerfile
          cat >> docker/custom-backend-pre-setup.sh <<EOF
          #!/bin/sh
          ${{ vars.CUSTOM_BACKEND_PRE_SETUP }}
          EOF
          cat >> docker/custom-frontend-pre-setup.sh <<EOF
          #!/bin/sh
          ${{ vars.CUSTOM_FRONTEND_PRE_SETUP }}
          EOF
          chmod +x docker/custom-backend-pre-setup.sh
          chmod +x docker/custom-frontend-pre-setup.sh
      - name: Build and push
        uses: docker/build-push-action@v4
        with:
          file: Dockerfile
          context: .
          platforms: ${{ vars.BUILD_SNAPSHOT_PLATFORMS }}
          push: true
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
@@ -0,0 +1,39 @@
 name: Sync from upstream
 on:
  workflow_dispatch:
    inputs:
      tag:
        description: '要同步的 release tag（留空则同步到 upstream/main 的最新 tag）'
        required: false
        default: ''
 jobs:
  sync:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
        with:
          fetch-depth: 0
          token: ${{ secrets.SYNC_TOKEN }}
      - name: Sync main to release tag
        run: |
          git config user.name "gitea-actions"
          git config user.email "actions@gitea.local"
          git remote add upstream https://git.zhengchentao.win/mirror/ezbookkeeping.git
          git fetch upstream --tags
          if [ -n "${{ inputs.tag }}" ]; then
            TARGET="${{ inputs.tag }}"
          else
            TARGET=$(git tag -l --sort=-v:refname | head -n 1)
          fi
          echo "==> Syncing main to $TARGET"
          git rev-parse "$TARGET" || { echo "❌ Tag $TARGET not found"; exit 1; }
          git checkout -B main origin/main
          git reset --hard "$TARGET"
          git push origin main --force-with-lease
          git push origin --tags
@@ -0,0 +1,69 @@
 name: Bug Report
 description: Report a bug in ezBookkeeping
 body:
  - type: checkboxes
    id: checkboxes
    attributes:
      label: Before You Submit
      description: Please check whether the following items have been completed.
      options:
        - label: I've already checked this bug hasn't been raised in [issues](https://github.com/mayswind/ezbookkeeping/issues)
          required: true
  - type: textarea
    id: description
    attributes:
      label: Description
      description: Please provide a brief description of this bug.
    validations:
      required: true
  - type: textarea
    id: reproduction-steps
    attributes:
      label: Steps to reproduce
      description: Please describe the steps to reproduce this bug.
      placeholder: |
        1.
        2.
        3.
    validations:
      required: true
  - type: input
    id: ezbookkeeping-version
    attributes:
      label: ezBookkeeping Version
      description: ezBookkeeping version and commit hash of your instance, e.g. "v1.0.0 (20e2444)"
    validations:
      required: true
  - type: input
    id: server-os
    attributes:
      label: Server Operating System
      description: The operating system information you are using to deploy ezBookkeeping, e.g "Debian GNU/Linux 11 amd64"
  - type: input
    id: server-database
    attributes:
      label: Database
      description: The database system you are using, e.g. "MariaDB v11.7.2"
  - type: dropdown
    id: reproduce-on-demo-site
    attributes:
      label: Can you reproduce this bug on the ezBookkeeping demo site?
      description: |
        ezBookkeeping demo site: https://ezbookkeeping-demo.mayswind.net/
      options:
        - "No"
        - "Yes"
    validations:
      required: true
  - type: textarea
    id: additional-context
    attributes:
      label: Additional information
      description: If you can, provide any related screenshots or logs here.
@@ -0,0 +1,8 @@
 blank_issues_enabled: false
 contact_links:
  - name: Frequently Asked Questions
    url: https://ezbookkeeping.mayswind.net/faq
    about: Please check whether your question has already been mentioned here.
  - name: Usage Questions
    url: https://github.com/mayswind/ezbookkeeping/discussions/categories/q-a
    about: Questions about using ezBookkeeping can be discussed in GitHub Discussions.
@@ -0,0 +1,25 @@
 name: Feature Request
 description: Request a feature or enhancement for ezBookkeeping
 body:
  - type: checkboxes
    id: checkboxes
    attributes:
      label: Before You Submit
      description: Please check whether the following items have been completed.
      options:
        - label: I've already checked this request hasn't been raised in [issues](https://github.com/mayswind/ezbookkeeping/issues)
          required: true
  - type: textarea
    id: description
    attributes:
      label: Feature Description
      description: Please describe your feature request.
    validations:
      required: true
  - type: textarea
    id: additional-context
    attributes:
      label: Additional information
      description: If you can, provide any other context or screenshots about this feature request here.
@@ -0,0 +1,124 @@
 name: Build docker image and package for linux
 inputs:
  release-build:
    required: false
    type: string
  build-unix-time:
    required: false
    type: string
  build-date:
    required: false
    type: string
  check-3rd-api:
    required: false
    type: string
  skip-tests:
    required: false
    type: string
  platform:
    required: true
    type: string
  platform-name:
    required: true
    type: string
  docker-push:
    required: true
    type: boolean
  docker-image-name:
    required: true
    type: string
  docker-username:
    required: false
    type: string
  docker-password:
    required: false
    type: string
  docker-bake-meta-file-path:
    required: true
    type: string
  docker-bake-meta-artifact-name:
    required: true
    type: string
  docker-bake-digests-file-path:
    required: true
    type: string
  docker-bake-digests-artifact-name-prefix:
    required: true
    type: string
  package-file-name-prefix:
    required: true
    type: string
  package-artifact-name-prefix:
    required: true
    type: string
 runs:
  using: "composite"
  steps:
    - name: Set up QEMU
      uses: docker/setup-qemu-action@v3
    - name: Download docker bake meta artifact
      uses: actions/download-artifact@v4
      with:
        name: ${{ inputs.docker-bake-meta-artifact-name }}
        path: ${{ runner.temp }}
    - name: Set up Docker Buildx
      uses: docker/setup-buildx-action@v3
    - name: Login to DockerHub
      if: ${{ inputs.docker-username != '' && inputs.docker-password != '' }}
      uses: docker/login-action@v3
      with:
        username: ${{ inputs.docker-username }}
        password: ${{ inputs.docker-password }}
    - name: Build docker for ${{ inputs.platform-name }}
      id: bake
      uses: docker/bake-action@v6
      with:
        files: |
          ./docker-bake.hcl
          cwd://${{ inputs.docker-bake-meta-file-path }}
        source: .
        targets: image
        set: |
          *.tags=${{ inputs.docker-image-name }}
          *.platform=${{ inputs.platform }}
          *.args.RELEASE_BUILD=${{ inputs.release-build }}
          *.args.BUILD_PIPELINE=1
          *.args.BUILD_UNIXTIME=${{ inputs.build-unix-time }}
          *.args.BUILD_DATE=${{ inputs.build-date }}
          *.args.CHECK_3RD_API=${{ inputs.check-3rd-api }}
          *.args.SKIP_TESTS=${{ inputs.skip-tests }}
          *.output=type=image,push-by-digest=true,name-canonical=true,push=${{ inputs.docker-push }}
          *.output+=type=local,dest=${{ runner.temp }}/package
    - name: Export digests file for ${{ inputs.platform-name }}
      shell: bash
      run: |
        digest="${{ fromJSON(steps.bake.outputs.metadata).image['containerimage.digest'] }}"
        mkdir -p ${{ inputs.docker-bake-digests-file-path }}
        touch "${{ inputs.docker-bake-digests-file-path }}/${digest#sha256:}"
    - name: Build package file for ${{ inputs.platform-name }}
      shell: bash
      run: |
        cd ${{ runner.temp }}/package/ezbookkeeping
        tar -czf ${{ runner.temp }}/${{ inputs.package-file-name-prefix }}-${{ inputs.platform-name }}.tar.gz *
    - name: Upload ${{ inputs.platform-name }} digests artifact
      uses: actions/upload-artifact@v4
      with:
        name: ${{ inputs.docker-bake-digests-artifact-name-prefix }}-${{ inputs.platform-name }}
        path: ${{ inputs.docker-bake-digests-file-path }}/*
        if-no-files-found: error
    - name: Upload artifact for ${{ inputs.platform-name }}
      uses: actions/upload-artifact@v4
      with:
        name: ${{ inputs.package-artifact-name-prefix }}-${{ inputs.platform-name }}
        path: ${{ runner.temp }}/${{ inputs.package-file-name-prefix }}-${{ inputs.platform-name }}.tar.gz
        if-no-files-found: error
@@ -0,0 +1,76 @@
 name: Build backend file for windows
 inputs:
  go-version:
    required: false
    default: "1.25.7"
  mingw-version:
    required: false
    default: "15.2.0"
  mingw-revison:
    required: false
    default: "v13-rev1"
  release-build:
    required: false
    type: string
  build-unix-time:
    required: false
    type: string
  build-date:
    required: false
    type: string
  check-3rd-api:
    required: false
    type: string
  skip-tests:
    required: false
    type: string
  backend-artifact-name-prefix:
    required: true
    type: string
 runs:
  using: "composite"
  steps:
    - name: Set up Go
      uses: actions/setup-go@v6
      with:
        go-version: ${{ inputs.go-version }}
    - name: Install MinGW
      shell: pwsh
      run: |
        $mingwVersion = "${{ inputs.mingw-version }}"
        $mingwRevision = "${{ inputs.mingw-revison }}"
        $url = "https://github.com/niXman/mingw-builds-binaries/releases/download/${mingwVersion}-rt_${mingwRevision}/x86_64-${mingwVersion}-release-posix-seh-ucrt-rt_${mingwRevision}.7z"
        $archive = "C:\mingw.7z"
        $mingwDir = "C:\mingw64"
        Write-Host "Downloading MinGW from ${url}"
        Invoke-WebRequest -Uri ${url} -OutFile ${archive}
        Remove-Item -Recurse -Force ${mingwDir}
        New-Item -ItemType Directory -Path ${mingwDir}
        Write-Host "Extracting MinGW to ${mingwDir}"
        7z x ${archive} -oC:\
        "${mingwDir}\bin" | Out-File -FilePath $env:GITHUB_PATH -Encoding utf8 -Append
    - name: Build backend for windows-x64
      shell: pwsh
      env:
        RELEASE_BUILD: "${{ inputs.release-build }}"
        BUILD_PIPELINE: "1"
        BUILD_UNIXTIME: "${{ inputs.build-unix-time }}"
        BUILD_DATE: "${{ inputs.build-date }}"
        CHECK_3RD_API: "${{ inputs.check-3rd-api }}"
        SKIP_TESTS: "${{ inputs.skip-tests }}"
      run: |
        .\build.ps1 backend
    - name: Upload windows backend artifact
      uses: actions/upload-artifact@v4
      with:
        name: ${{ inputs.backend-artifact-name-prefix }}-windows-x64
        path: ezbookkeeping.exe
        if-no-files-found: error
@@ -0,0 +1,57 @@
 name: Build packages for windows
 inputs:
  package-file-name-prefix:
    required: true
    type: string
  package-artifact-name-prefix:
    required: true
    type: string
  backend-artifact-name-prefix:
    required: true
    type: string
 runs:
  using: "composite"
  steps:
    - name: Download windows-x64 backend file
      uses: actions/download-artifact@v4
      with:
        name: ${{ inputs.backend-artifact-name-prefix }}-windows-x64
        path: ${{ runner.temp }}\backend
    - name: Download linux-amd64 packaged files
      uses: actions/download-artifact@v4
      with:
        name: ${{ inputs.package-artifact-name-prefix }}-linux-amd64
        path: ${{ runner.temp }}\package
    - name: Extract frontend files from linux-amd64 package
      shell: pwsh
      run: |
        New-Item -ItemType Directory -Path package
        tar -xzf (Get-ChildItem ${{ runner.temp }}\package\${{ inputs.package-file-name-prefix }}-linux-amd64.tar.gz) -C package
    - name: Package windows-x64 package
      shell: pwsh
      run: |
        New-Item -ItemType Directory -Path "ezbookkeeping"
        New-Item -ItemType Directory -Path "ezbookkeeping\data"
        New-Item -ItemType Directory -Path "ezbookkeeping\storage"
        New-Item -ItemType Directory -Path "ezbookkeeping\log"
        Copy-Item ${{ runner.temp }}\backend\ezbookkeeping.exe -Destination ezbookkeeping\
        Copy-Item -Recurse -Force package\public -Destination ezbookkeeping\public
        Copy-Item -Recurse -Force conf -Destination ezbookkeeping\conf
        Copy-Item -Recurse -Force templates -Destination ezbookkeeping\templates
        Copy-Item .\LICENSE -Destination ezbookkeeping\
        Push-Location ezbookkeeping
        7z a -r -tzip -mx9 ..\${{ inputs.package-file-name-prefix }}-windows-x64.zip *
        Pop-Location
        Remove-Item -Recurse -Force ezbookkeeping
    - name: Upload windows artifact
      uses: actions/upload-artifact@v4
      with:
        name: ${{ inputs.package-artifact-name-prefix }}-windows-x64
        path: ${{ inputs.package-file-name-prefix }}-windows-x64.zip
        if-no-files-found: error
@@ -0,0 +1,58 @@
 name: Push linux docker multi-arch image to registry
 inputs:
  docker-image-name:
    required: true
    type: string
  docker-username:
    required: true
    type: string
  docker-password:
    required: true
    type: string
  docker-bake-meta-file-path:
    required: true
    type: string
  docker-bake-meta-artifact-name:
    required: true
    type: string
  docker-bake-digests-file-path:
    required: true
    type: string
  docker-bake-digests-artifact-name-prefix:
    required: true
    type: string
  docker-image-tags:
    required: true
    type: string
 runs:
  using: "composite"
  steps:
    - name: Download docker bake meta artifact
      uses: actions/download-artifact@v4
      with:
        name: ${{ inputs.docker-bake-meta-artifact-name }}
        path: ${{ runner.temp }}
    - name: Download digests artifact
      uses: actions/download-artifact@v4
      with:
        pattern: ${{ inputs.docker-bake-digests-artifact-name-prefix }}-*
        merge-multiple: true
        path: ${{ inputs.docker-bake-digests-file-path }}
    - name: Set up Docker Buildx
      uses: docker/setup-buildx-action@v3
    - name: Login to DockerHub
      uses: docker/login-action@v3
      with:
        username: ${{ inputs.docker-username }}
        password: ${{ inputs.docker-password }}
    - name: Create manifest and push
      shell: bash
      working-directory: ${{ inputs.docker-bake-digests-file-path }}
      run: |
        docker buildx imagetools create $(echo "${{ inputs.docker-image-tags }}" | xargs -I {} echo -n " -t {}") $(printf '${{ inputs.docker-image-name }}@sha256:%s ' *)
@@ -0,0 +1,352 @@
 const fs = require('fs');
 const path = require('path');
 const FRONTEND_LOCALES_DIR = path.join(__dirname, '..', '..', 'src', 'locales');
 const BACKEND_LOCALES_DIR = path.join(__dirname, '..', '..', 'pkg', 'locales');
 const OUTPUT_DIR = process.argv[2] || path.join(__dirname, '..', '..', 'i18n-badge');
 const DEFAULT_LANGUAGE_TAG = 'en';
 const BACKEND_SKIP_STRUCTS = new Set([
    'GlobalTextItems',
    'DefaultTypes',
    'DataConverterTextItems',
 ]);
 function discoverFrontendLanguages() {
    const indexPath = path.join(FRONTEND_LOCALES_DIR, 'index.ts');
    const content = fs.readFileSync(indexPath, 'utf-8');
    const importMap = {};
    const importRegex = /import\s+(\w+)\s+from\s+['"]\.\/([\w_]+\.json)['"]/g;
    let match;
    while ((match = importRegex.exec(content)) !== null) {
        importMap[match[1]] = match[2];
    }
    const result = {};
    const langRegex = /['"]([^'"]+)['"]\s*:\s*\{[^}]*content\s*:\s*(\w+)/g;
    while ((match = langRegex.exec(content)) !== null) {
        const tag = match[1];
        const varName = match[2];
        if (importMap[varName]) {
            result[tag] = importMap[varName];
        }
    }
    return result;
 }
 function discoverBackendLanguages() {
    const allLocalesPath = path.join(BACKEND_LOCALES_DIR, 'all_locales.go');
    const content = fs.readFileSync(allLocalesPath, 'utf-8');
    const result = {};
    const entryRegex = /"([^"]+)"\s*:\s*\{[^}]*Content\s*:\s*(\w+)/g;
    let match;
    while ((match = entryRegex.exec(content)) !== null) {
        const tag = match[1];
        const fileName = tag.toLowerCase().replace(/-/g, '_') + '.go';
        const filePath = path.join(BACKEND_LOCALES_DIR, fileName);
        if (fs.existsSync(filePath)) {
            result[tag] = fileName;
        }
    }
    return result;
 }
 function flattenJSON(obj, prefix) {
    const result = {};
    for (const key of Object.keys(obj)) {
        const fullKey = prefix ? prefix + '.' + key : key;
        if (typeof obj[key] === 'object' && obj[key] !== null) {
            Object.assign(result, flattenJSON(obj[key], fullKey));
        } else {
            result[fullKey] = obj[key];
        }
    }
    return result;
 }
 function shouldSkipFrontendKey(key) {
    if (key.startsWith('global.')) {
        return true;
    } else if (key.startsWith('default.')) {
        return true;
    } else if (key.startsWith('currency.')) {
        if (key.startsWith('currency.unit.')) {
            return true;
        } else {
            return false;
        }
    } else if (key.startsWith('mapprovider.')) {
        return true;
    } else if (key.startsWith('encoding.')) {
        return true;
    } else if (key.startsWith('document.')) {
        if (key.startsWith('document.anchor.')) {
            return true;
        } else {
            return false;
        }
    } else {
        return false;
    }
 }
 function isFrontendAlwaysTranslatedKey(key) {
    if (key.startsWith('language.')) {
        return true;
    } else if (key.startsWith('format.')) {
        if (key.startsWith('format.misc.')) {
            if (key === 'format.misc.multiTextJoinSeparator') {
                return true;
            } else if (key === 'format.misc.eachMonthDayInMonthDays') {
                return true;
            } else {
                return false;
            }
        } else {
            return true;
        }
    } else if (key.startsWith('datetime.')) {
        return true;
    } else if (key.startsWith('timezone.')) {
        return true;
    } else if (key.startsWith('currency.')) {
        if (key === 'currency.name.EUR') {
            return true;
        } else {
            return false;
        }
    } else if (key.startsWith('parameter.')) {
        if (key === 'parameter.id') {
            return true;
        } else {
            return false;
        }
    } else {
        if (key === 'OK') {
            return true;
        } else {
            return false;
        }
    }
 }
 function extractGoStringFields(content) {
    const fields = [];
    const structBlockRegex = /(\w+):\s*&\w+\{([^}]*)\}/gs;
    let blockMatch;
    while ((blockMatch = structBlockRegex.exec(content)) !== null) {
        const structName = blockMatch[1];
        const blockBody = blockMatch[2];
        const fieldRegex = /(\w+):\s+"((?:[^"\\]|\\.)*)"/g;
        let fieldMatch;
        while ((fieldMatch = fieldRegex.exec(blockBody)) !== null) {
            fields.push({
                struct: structName,
                name: fieldMatch[1],
                value: fieldMatch[2],
            });
        }
    }
    return fields;
 }
 function getProgressColor(progress) {
    if (progress >= 95) {
        return 'brightgreen';
    } else if (progress >= 90) {
        return 'green';
    } else if (progress >= 70) {
        return 'yellowgreen';
    } else if (progress >= 50) {
        return 'yellow';
    } else if (progress >= 20) {
        return 'orange';
    } else {
        return 'red';
    }
 }
 function main() {
    const frontendLangs = discoverFrontendLanguages();
    const backendLangs = discoverBackendLanguages();
    const allTags = new Set([...Object.keys(frontendLangs), ...Object.keys(backendLangs)]);
    console.log('Discovered ' + allTags.size + ' languages: ' + [...allTags].sort().join(', '));
    const defaultFrontendJSON = JSON.parse(fs.readFileSync(path.join(FRONTEND_LOCALES_DIR, `${DEFAULT_LANGUAGE_TAG}.json`), 'utf-8'));
    const defaultFrontendItemsMap = flattenJSON(defaultFrontendJSON, '');
    const defaultFrontendKeys = Object.keys(defaultFrontendItemsMap);
    const frontendTranslatableKeys = defaultFrontendKeys.filter(function (k) {
        return !shouldSkipFrontendKey(k);
    });
    const frontendSkippedCount = defaultFrontendKeys.length - frontendTranslatableKeys.length;
    const frontendTotal = frontendTranslatableKeys.length;
    const defaultBackendContent = fs.readFileSync(path.join(BACKEND_LOCALES_DIR, `${DEFAULT_LANGUAGE_TAG}.go`), 'utf-8');
    const defaultBackendItems = extractGoStringFields(defaultBackendContent);
    const defaultBackendTranslatableItems = defaultBackendItems.filter(function (f) {
        return !BACKEND_SKIP_STRUCTS.has(f.struct);
    });
    const backendSkippedCount = defaultBackendItems.length - defaultBackendTranslatableItems.length;
    const backendTotal = defaultBackendTranslatableItems.length;
    console.log('Frontend: ' + frontendTotal + ' translatable keys (' + frontendSkippedCount + ' excluded)');
    console.log('Backend: ' + backendTotal + ' translatable fields (' + backendSkippedCount + ' excluded)');
    const results = {};
    const untranslatedKeys = {};
    for (const tag of allTags) {
        results[tag] = {
            languageTag: tag,
            frontendTranslated: 0,
            frontendTotal: frontendTotal,
            backendTranslated: 0,
            backendTotal: backendTotal
        };
        untranslatedKeys[tag] = [];
    }
    for (const tag of Object.keys(frontendLangs)) {
        if (tag === DEFAULT_LANGUAGE_TAG) {
            results[tag].frontendTranslated = frontendTotal;
            continue;
        }
        const file = frontendLangs[tag];
        const filePath = path.join(FRONTEND_LOCALES_DIR, file);
        if (!fs.existsSync(filePath)) {
            continue;
        }
        const json = JSON.parse(fs.readFileSync(filePath, 'utf-8'));
        const kv = flattenJSON(json, '');
        let translated = 0;
        for (const key of frontendTranslatableKeys) {
            if (kv[key] !== undefined && kv[key] !== '' && (kv[key] !== defaultFrontendItemsMap[key] || isFrontendAlwaysTranslatedKey(key))) {
                translated++;
            } else {
                untranslatedKeys[tag].push({ source: path.join('src', 'locales', file), key: key, defaultValue: defaultFrontendItemsMap[key], value: kv[key] });
            }
        }
        results[tag].frontendTranslated = translated;
    }
    for (const tag of Object.keys(backendLangs)) {
        if (tag === DEFAULT_LANGUAGE_TAG) {
            results[tag].backendTranslated = backendTotal;
            continue;
        }
        const file = backendLangs[tag];
        const filePath = path.join(BACKEND_LOCALES_DIR, file);
        if (!fs.existsSync(filePath)) {
            continue;
        }
        const content = fs.readFileSync(filePath, 'utf-8');
        const fields = extractGoStringFields(content).filter(function (f) {
            return !BACKEND_SKIP_STRUCTS.has(f.struct);
        });
        let translated = 0;
        for (let i = 0; i < defaultBackendTranslatableItems.length; i++) {
            if (i < fields.length && fields[i].value !== defaultBackendTranslatableItems[i].value) {
                translated++;
            } else {
                untranslatedKeys[tag].push({ source: path.join('pkg', 'locales', file), key: defaultBackendTranslatableItems[i].struct + '.' + defaultBackendTranslatableItems[i].name, defaultValue: defaultBackendTranslatableItems[i].value, value: (i < fields.length) ? fields[i].value : null });
            }
        }
        results[tag].backendTranslated = translated;
    }
    for (const tag of Object.keys(results)) {
        const r = results[tag];
        const totalTranslated = r.frontendTranslated + r.backendTranslated;
        const totalItems = r.frontendTotal + r.backendTotal;
        r.totalProgress = Math.round((totalTranslated / totalItems) * 10000) / 100;
    }
    const sortedResults = {};
    var sortedTags = Object.keys(results).sort();
    for (const tag of sortedTags) {
        sortedResults[tag] = results[tag];
    }
    if (!fs.existsSync(OUTPUT_DIR)) {
        fs.mkdirSync(OUTPUT_DIR, { recursive: true });
    }
    var badgesDir = path.join(OUTPUT_DIR, 'badges');
    if (!fs.existsSync(badgesDir)) {
        fs.mkdirSync(badgesDir, { recursive: true });
    }
    fs.writeFileSync(
        path.join(OUTPUT_DIR, 'i18n-progress.json'),
        JSON.stringify(sortedResults, null, 4) + '\n'
    );
    for (const tag of sortedTags) {
        const data = sortedResults[tag];
        const badge = {
            schemaVersion: 1,
            label: 'translation',
            message: data.totalProgress + '%',
            color: getProgressColor(data.totalProgress)
        };
        fs.writeFileSync(
            path.join(badgesDir, tag + '.json'),
            JSON.stringify(badge, null, 4) + '\n'
        );
    }
    var untranslatedDir = path.join(OUTPUT_DIR, 'untranslated');
    if (!fs.existsSync(untranslatedDir)) {
        fs.mkdirSync(untranslatedDir, { recursive: true });
    }
    for (const tag of sortedTags) {
        const items = untranslatedKeys[tag] || [];
        fs.writeFileSync(
            path.join(untranslatedDir, tag + '.json'),
            JSON.stringify(items, null, 4) + '\n'
        );
    }
    for (const tag of sortedTags) {
        const data = sortedResults[tag];
        const missingCount = (untranslatedKeys[tag] || []).length;
        console.log(tag + ': ' + data.totalProgress + '% (frontend: ' + data.frontendTranslated + '/' + data.frontendTotal + ', backend: ' + data.backendTranslated + '/' + data.backendTotal + ', untranslated: ' + missingCount + ')');
    }
    console.log('\nResults written to ' + OUTPUT_DIR);
 }
 main();
@@ -0,0 +1,39 @@
 name: Build and Push Docker Image
 on:
  push:
    branches:
      - myrequirement
 jobs:
  build-and-push:
    runs-on: ubuntu-latest
    permissions:
      contents: read
      packages: write
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - name: Log in to GitHub Container Registry
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3
      - name: Set lowercase image name
        run: echo "IMAGE_NAME=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV
      - name: Build and push
        uses: docker/build-push-action@v6
        with:
          context: .
          push: true
          tags: ghcr.io/${{ env.IMAGE_NAME }}:latest
          cache-from: type=gha
          cache-to: type=gha,mode=max
@@ -0,0 +1,150 @@
 name: Build for Non-Main Branches
 on:
  push:
    branches-ignore:
      - main
      - myrequirement
 jobs:
  setup:
    runs-on: ubuntu-latest
    outputs:
      build-unix-time: ${{ steps.variable.outputs.build_unix_time }}
      build-date: ${{ steps.variable.outputs.build_date }}
      docker-tags: ${{ steps.meta.outputs.tags }}
      docker-labels: ${{ steps.meta.outputs.labels }}
      ezbookkeeping-docker-bake-meta-file-path: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}
      ezbookkeeping-docker-bake-meta-artifact-name: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_artifact_name }}
      ezbookkeeping-docker-digests-file-path: ${{ steps.variable.outputs.ezbookkeeping_docker_digests_file_path }}
      ezbookkeeping-docker-digests-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_docker_digests_artifact_name_prefix }}
      ezbookkeeping-package-file-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_package_file_name_prefix }}
      ezbookkeeping-package-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_package_artifact_name_prefix }}
      ezbookkeeping-backend-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_backend_artifact_name_prefix }}
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: |
            ${{ vars.DOCKER_IMAGE_NAME }}
          tags: |
            type=raw,value=dev-${{ github.run_id }}
      - name: Set up variables
        id: variable
        run: |
          echo "build_unix_time=$(date '+%s')" >> "$GITHUB_OUTPUT"
          echo "build_date=$(date '+%Y%m%d')" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_bake_meta_file_path=${{ runner.temp }}/bake-meta.json" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_bake_meta_artifact_name=ezbookkeeping-build-dev-docker-bake-meta-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_digests_file_path=${{ runner.temp }}/digests" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_digests_artifact_name_prefix=ezbookkeeping-build-dev-digests-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_package_file_name_prefix=ezbookkeeping-dev-package-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_package_artifact_name_prefix=ezbookkeeping-build-dev-package-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_backend_artifact_name_prefix=ezbookkeeping-build-dev-backend-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
      - name: Rename docker bake meta file
        run: |
          mv "${{ steps.meta.outputs.bake-file }}" "${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}"
      - name: Upload docker bake meta artifact
        uses: actions/upload-artifact@v4
        with:
          name: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_artifact_name }}
          path: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}
          if-no-files-found: error
  build-linux-docker-and-package-x86:
    runs-on: ubuntu-24.04
    needs:
      - setup
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-linux-docker-and-package
        with:
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          platform: linux/amd64
          platform-name: linux-amd64
          docker-push: false
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
  build-linux-docker-and-package-arm:
    runs-on: ubuntu-24.04-arm
    needs:
      - setup
    strategy:
      matrix:
        include:
          - platform: linux/arm64/v8
            platform-name: linux-arm64
          - platform: linux/arm/v7
            platform-name: linux-armv7
          - platform: linux/arm/v6
            platform-name: linux-armv6
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-linux-docker-and-package
        with:
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          platform: ${{ matrix.platform }}
          platform-name: ${{ matrix.platform-name }}
          docker-push: false
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
  build-windows-backend:
    needs:
      - setup
    runs-on: windows-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-windows-backend
        with:
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          backend-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-backend-artifact-name-prefix }}
  build-windows-package:
    needs:
      - setup
      - build-windows-backend
      - build-linux-docker-and-package-x86
    runs-on: windows-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-windows-package
        with:
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
          backend-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-backend-artifact-name-prefix }}
@@ -0,0 +1,204 @@
 name: Build Release
 on:
  push:
    tags:
      - "v*.*.*"
 jobs:
  setup:
    runs-on: ubuntu-latest
    outputs:
      build-unix-time: ${{ steps.variable.outputs.build_unix_time }}
      build-date: ${{ steps.variable.outputs.build_date }}
      docker-version: ${{ steps.meta.outputs.version }}
      docker-tags: ${{ steps.meta.outputs.tags }}
      docker-labels: ${{ steps.meta.outputs.labels }}
      ezbookkeeping-docker-bake-meta-file-path: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}
      ezbookkeeping-docker-bake-meta-artifact-name: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_artifact_name }}
      ezbookkeeping-docker-digests-file-path: ${{ steps.variable.outputs.ezbookkeeping_docker_digests_file_path }}
      ezbookkeeping-docker-digests-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_docker_digests_artifact_name_prefix }}
      ezbookkeeping-package-file-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_package_file_name_prefix }}
      ezbookkeeping-package-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_package_artifact_name_prefix }}
      ezbookkeeping-backend-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_backend_artifact_name_prefix }}
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: |
            ${{ vars.DOCKER_IMAGE_NAME }}
          tags: |
            type=semver,pattern={{version}}
            type=semver,pattern={{major}}.{{minor}}
            type=raw,value=latest
      - name: Set up variables
        id: variable
        run: |
          echo "build_unix_time=$(date '+%s')" >> "$GITHUB_OUTPUT"
          echo "build_date=$(date '+%Y%m%d')" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_bake_meta_file_path=${{ runner.temp }}/bake-meta.json" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_bake_meta_artifact_name=ezbookkeeping-build-release-docker-bake-meta-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_digests_file_path=${{ runner.temp }}/digests" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_digests_artifact_name_prefix=ezbookkeeping-build-release-digests-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_package_file_name_prefix=ezbookkeeping-${{ github.ref_name }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_package_artifact_name_prefix=ezbookkeeping-build-release-package-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_backend_artifact_name_prefix=ezbookkeeping-build-release-backend-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
      - name: Rename docker bake meta file
        run: |
          mv "${{ steps.meta.outputs.bake-file }}" "${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}"
      - name: Upload docker bake meta artifact
        uses: actions/upload-artifact@v4
        with:
          name: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_artifact_name }}
          path: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}
          if-no-files-found: error
  build-linux-docker-and-package-x86:
    runs-on: ubuntu-24.04
    needs:
      - setup
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-linux-docker-and-package
        with:
          release-build: 1
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          platform: linux/amd64
          platform-name: linux-amd64
          docker-push: true
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-username: ${{ vars.DOCKER_USERNAME }}
          docker-password: ${{ secrets.DOCKER_PASSWORD }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
  build-linux-docker-and-package-arm:
    runs-on: ubuntu-24.04-arm
    needs:
      - setup
    strategy:
      matrix:
        include:
          - platform: linux/arm64/v8
            platform-name: linux-arm64
          - platform: linux/arm/v7
            platform-name: linux-armv7
          - platform: linux/arm/v6
            platform-name: linux-armv6
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-linux-docker-and-package
        with:
          release-build: 1
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          platform: ${{ matrix.platform }}
          platform-name: ${{ matrix.platform-name }}
          docker-push: true
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-username: ${{ vars.DOCKER_USERNAME }}
          docker-password: ${{ secrets.DOCKER_PASSWORD }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
  push-linux-docker:
    needs:
      - setup
      - build-linux-docker-and-package-x86
      - build-linux-docker-and-package-arm
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/push-linux-docker
        with:
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-username: ${{ vars.DOCKER_USERNAME }}
          docker-password: ${{ secrets.DOCKER_PASSWORD }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          docker-image-tags: ${{ needs.setup.outputs.docker-tags }}
  build-windows-backend:
    needs:
      - setup
    runs-on: windows-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-windows-backend
        with:
          release-build: 1
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          backend-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-backend-artifact-name-prefix }}
  build-windows-package:
    needs:
      - setup
      - build-windows-backend
      - build-linux-docker-and-package-x86
    runs-on: windows-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-windows-package
        with:
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
          backend-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-backend-artifact-name-prefix }}
  publish-release:
    runs-on: ubuntu-latest
    needs:
      - setup
      - build-linux-docker-and-package-x86
      - build-linux-docker-and-package-arm
      - build-windows-package
      - push-linux-docker
    steps:
      - name: Download all packaged files
        uses: actions/download-artifact@v4
        with:
          pattern: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}-*
          merge-multiple: true
          path: release-files
      - name: Publish Release ${{ github.ref_name }}
        uses: softprops/action-gh-release@v2
        with:
          name: ${{ github.ref_name }}
          tag_name: ${{ github.ref_name }}
          files: ./release-files/*
          draft: true
@@ -0,0 +1,177 @@
 name: Build Snapshot
 on:
  push:
    branches:
      - main
 jobs:
  setup:
    runs-on: ubuntu-latest
    outputs:
      build-unix-time: ${{ steps.variable.outputs.build_unix_time }}
      build-date: ${{ steps.variable.outputs.build_date }}
      docker-version: ${{ steps.meta.outputs.version }}
      docker-tags: ${{ steps.meta.outputs.tags }}
      docker-labels: ${{ steps.meta.outputs.labels }}
      ezbookkeeping-docker-bake-meta-file-path: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}
      ezbookkeeping-docker-bake-meta-artifact-name: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_artifact_name }}
      ezbookkeeping-docker-digests-file-path: ${{ steps.variable.outputs.ezbookkeeping_docker_digests_file_path }}
      ezbookkeeping-docker-digests-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_docker_digests_artifact_name_prefix }}
      ezbookkeeping-package-file-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_package_file_name_prefix }}
      ezbookkeeping-package-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_package_artifact_name_prefix }}
      ezbookkeeping-backend-artifact-name-prefix: ${{ steps.variable.outputs.ezbookkeeping_backend_artifact_name_prefix }}
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: |
            ${{ vars.DOCKER_IMAGE_NAME }}
          tags: |
            type=raw,value=SNAPSHOT-{{date 'YYYYMMDD'}}-${{ github.run_id }}
            type=raw,value=SNAPSHOT-{{date 'YYYYMMDD'}}
            type=raw,value=latest-snapshot
      - name: Set up variables
        id: variable
        run: |
          echo "build_unix_time=$(date '+%s')" >> "$GITHUB_OUTPUT"
          echo "build_date=$(date '+%Y%m%d')" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_bake_meta_file_path=${{ runner.temp }}/bake-meta.json" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_bake_meta_artifact_name=ezbookkeeping-build-dev-docker-bake-meta-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_digests_file_path=${{ runner.temp }}/digests" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_docker_digests_artifact_name_prefix=ezbookkeeping-build-dev-digests-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_package_file_name_prefix=ezbookkeeping-dev-package-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_package_artifact_name_prefix=ezbookkeeping-build-dev-package-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
          echo "ezbookkeeping_backend_artifact_name_prefix=ezbookkeeping-build-dev-backend-${{ github.run_id }}" >> "$GITHUB_OUTPUT"
      - name: Rename docker bake meta file
        run: |
          mv "${{ steps.meta.outputs.bake-file }}" "${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}"
      - name: Upload docker bake meta artifact
        uses: actions/upload-artifact@v4
        with:
          name: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_artifact_name }}
          path: ${{ steps.variable.outputs.ezbookkeeping_docker_bake_meta_file_path }}
          if-no-files-found: error
  build-linux-docker-and-package-x86:
    runs-on: ubuntu-24.04
    needs:
      - setup
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-linux-docker-and-package
        with:
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          platform: linux/amd64
          platform-name: linux-amd64
          docker-push: true
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-username: ${{ vars.DOCKER_USERNAME }}
          docker-password: ${{ secrets.DOCKER_PASSWORD }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
  build-linux-docker-and-package-arm:
    runs-on: ubuntu-24.04-arm
    needs:
      - setup
    strategy:
      matrix:
        include:
          - platform: linux/arm64/v8
            platform-name: linux-arm64
          - platform: linux/arm/v7
            platform-name: linux-armv7
          - platform: linux/arm/v6
            platform-name: linux-armv6
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-linux-docker-and-package
        with:
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          platform: ${{ matrix.platform }}
          platform-name: ${{ matrix.platform-name }}
          docker-push: true
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-username: ${{ vars.DOCKER_USERNAME }}
          docker-password: ${{ secrets.DOCKER_PASSWORD }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
  push-linux-docker:
    needs:
      - setup
      - build-linux-docker-and-package-x86
      - build-linux-docker-and-package-arm
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/push-linux-docker
        with:
          docker-image-name: ${{ vars.DOCKER_IMAGE_NAME }}
          docker-username: ${{ vars.DOCKER_USERNAME }}
          docker-password: ${{ secrets.DOCKER_PASSWORD }}
          docker-bake-meta-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-file-path }}
          docker-bake-meta-artifact-name: ${{ needs.setup.outputs.ezbookkeeping-docker-bake-meta-artifact-name }}
          docker-bake-digests-file-path: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-file-path }}
          docker-bake-digests-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-docker-digests-artifact-name-prefix }}
          docker-image-tags: ${{ needs.setup.outputs.docker-tags }}
  build-windows-backend:
    needs:
      - setup
    runs-on: windows-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-windows-backend
        with:
          build-unix-time: ${{ needs.setup.outputs.build-unix-time }}
          build-date: ${{ needs.setup.outputs.build-date }}
          check-3rd-api: ${{ vars.CHECK_3RD_API }}
          skip-tests: ${{ vars.SKIP_TESTS }}
          backend-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-backend-artifact-name-prefix }}
  build-windows-package:
    needs:
      - setup
      - build-windows-backend
      - build-linux-docker-and-package-x86
    runs-on: windows-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - uses: ./.github/actions/build-windows-package
        with:
          package-file-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-file-name-prefix }}
          package-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-package-artifact-name-prefix }}
          backend-artifact-name-prefix: ${{ needs.setup.outputs.ezbookkeeping-backend-artifact-name-prefix }}
@@ -1,52 +0,0 @@
 name: Docker Release
 on:
  push:
    tags:
      - v*
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v3
      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v4
        with:
          images: |
            ${{ secrets.DOCKER_USERNAME }}/ezbookkeeping
          tags: |
            type=semver,pattern={{version}}
            type=semver,pattern={{major}}.{{minor}}
            type=raw,value=latest
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v2
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Login to DockerHub
        uses: docker/login-action@v2
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}
      - name: Build and push
        uses: docker/build-push-action@v4
        with:
          file: Dockerfile
          context: .
          platforms: |
            linux/amd64
            linux/arm64/v8
            linux/arm/v7
            linux/arm/v6
          push: true
          build-args: |
            RELEASE_BUILD=1
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
@@ -1,49 +0,0 @@
 name: Docker Snapshot
 on:
  push:
    branches:
      - main
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v3
      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v4
        with:
          images: |
            ${{ secrets.DOCKER_USERNAME }}/ezbookkeeping
          tags: |
            type=raw,value=SNAPSHOT-{{date 'YYYYMMDD'}}
            type=raw,value=latest-snapshot
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v2
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Login to DockerHub
        uses: docker/login-action@v2
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}
      - name: Build and push
        uses: docker/build-push-action@v4
        with:
          file: Dockerfile
          context: .
          platforms: |
            linux/amd64
            linux/arm64/v8
            linux/arm/v7
            linux/arm/v6
          push: true
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
@@ -1,28 +0,0 @@
 name: Docker Snapshot
 on:
  push:
    branches-ignore:
      - main
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      -
        name: Checkout
        uses: actions/checkout@v2
      -
        name: Login to DockerHub
        uses: docker/login-action@v1
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}
      -
        name: Build
        uses: docker/build-push-action@v2
        with:
          file: Dockerfile
          context: .
          platforms: linux/amd64
          push: false
@@ -0,0 +1,76 @@
 name: Update i18n Translation Progress Badges
 on:
  push:
    branches:
      - main
    paths:
      - 'src/locales/**'
      - 'pkg/locales/**'
  workflow_dispatch:
 jobs:
  update-i18n-progress:
    if: vars.UPDATE_I18N_BADGE_REPO == 'true'
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v5
      - name: Setup Node.js
        uses: actions/setup-node@v6
        with:
          node-version: '24'
      - name: Update translation progress data
        run: |
          node .github/scripts/update-i18n-progress.js ${{ runner.temp }}/i18n-badge
      - name: Checkout badge repository
        uses: actions/checkout@v5
        with:
          repository: mayswind/ezbookkeeping-i18n-badge
          token: ${{ secrets.I18N_BADGE_REPO_TOKEN }}
          path: ezbookkeeping-i18n-badge
      - name: Update badge data
        run: |
          rm -rf ezbookkeeping-i18n-badge/i18n-progress.json
          cp ${{ runner.temp }}/i18n-badge/i18n-progress.json ezbookkeeping-i18n-badge/
          mkdir -p ezbookkeeping-i18n-badge/badges
          rm -rf ezbookkeeping-i18n-badge/badges/*
          cp ${{ runner.temp }}/i18n-badge/badges/*.json ezbookkeeping-i18n-badge/badges/
          mkdir -p ezbookkeeping-i18n-badge/untranslated
          rm -rf ezbookkeeping-i18n-badge/untranslated/*
          cp ${{ runner.temp }}/i18n-badge/untranslated/*.json ezbookkeeping-i18n-badge/untranslated/
      - name: Commit and push
        run: |
          cd ezbookkeeping-i18n-badge
          git config user.name "github-actions[bot]"
          git config user.email "github-actions[bot]@users.noreply.github.com"
          git add -A
          if git diff --cached --quiet; then
            echo "No changes to commit"
          else
            git commit -m "Update i18n progress data (${{ github.server_url }}/${{ github.repository }}/commit/${{ github.sha }})"
            git push
          fi
      - name: Purge GitHub camo image cache
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        run: |
          CAMO_URLS=$(curl -s -H "Accept: application/vnd.github.html+json" -H "Authorization: token $GITHUB_TOKEN" "https://api.github.com/repos/${{ github.repository }}/readme" | grep -oP 'https://camo\.githubusercontent\.com/[^"]+' | sort -u)
          if [ -z "$CAMO_URLS" ]; then
            echo "No camo URLs found, skipping cache purge"
            exit 0
          fi
          for url in $CAMO_URLS; do
            echo "Purging: $url"
            curl -s -X PURGE "$url" > /dev/null
          done
          echo "Purged $(echo "$CAMO_URLS" | wc -l) camo URLs"
@@ -144,3 +144,22 @@ dist/
 # Visual Studio Code
 .vscode/
 *.code-workspace
 # Roo Code
 .roo/
 # Binary and build files
 ezbookkeeping
 !**/ezbookkeeping/
 package/
 # Environment variable files
 .env
 **/.env
 # Other directories
 data/
 storage/
 log/
 .claude/
@@ -0,0 +1,127 @@
 # CLAUDE.md
 本项目是 [mayswind/ezbookkeeping](https://github.com/mayswind/ezbookkeeping) 的个人 fork。
 > **本文件**：仓库分支模型、上游同步流程、CI 故障排查 —— meta 层
 > **[`FORK.md`](FORK.md)**：fork 相对上游的具体改动清单（feature 维度 + 进度状态）
 > **个人笔记**：通用 fork 工作流决策框架在 `fork-工作流决策框架.md`（不入库）
 本文件只记录**这个仓库的具体事实**，避免 Claude 会话误判。
 ---
 ## 仓库拓扑
 ```
 github.com/mayswind/ezbookkeeping       （上游）
        │  Gitea pull mirror（后台异步）
        ▼
 git.zhengchentao.win/mirror/ezbookkeeping   （只读镜像）
        │  CI workflow 拉过来
        ▼
 git.zhengchentao.win/dev/ezbookkeeping     （origin，本地唯一 remote）
 ```
 本地 `git remote -v` 只有 origin 一项，**没有手工配 upstream**。上游同步通过 custom 分支上的 workflow 在服务端完成，不是本地操作。
 ---
 ## 两个分支的职责（必须先理解，否则会改错地方）
 | 分支 | 职责 | force push? |
 |---|---|---|
 | `main` | **锚定上游 release tag**（当前 v1.4.0）。被 `.gitea/workflows/sync-upstream.yml` `git reset --hard <tag>` 覆写。**别在 main 上做任何改动** | 是（由 CI 做） |
 | `custom` | **所有个人改动 + workflow 文件都在这**：信用额度功能、UI 调整、个人需求清单、`.gitea/workflows/*.yml` 等。具体改动清单见 [`FORK.md`](FORK.md)。日常开发分支，**default branch** | 是（rebase 后人工做） |
 ⚠️ **default branch 是 `custom`**。`git clone` 默认 checkout custom，直接是开发分支。
 ### 历史：曾经存在过的 ci 分支（已退役）
 2026-05-02 之前曾经有第三个分支 `ci`，最初设计是把 `.gitea/workflows/*.yml` 单独放它上面以"meta/code 分离"。两周后发现 Gitea Actions runs 列表显示的 commit 是 workflow 文件所在 commit（即 ci 的 HEAD），不是被构建的代码 commit，UX 误导性强。
 把 workflow 挪回 custom 之后：
 - runs 列表 commit = 真实代码 commit ✅
 - `git clone` 默认落 custom 直接是开发分支 ✅
 - rebase 上游时 workflow 跟 custom 一起平移 ✅
 - 代价：失去"workflow 与代码完全独立"的设计美感 —— 这个分离原本就是过度设计
 **ci 分支于 2026-05-02 删除**，仅保留这段说明给后续 Claude 会话理解 git log 里"workflow 文件迁到 custom"这条提交（commit `555ecc1a`）的来龙去脉。**workflow 改动直接在 custom 上做**。
 ---
 ## custom 分支 workflow 清单
 `.gitea/workflows/` 当前有 2 个 workflow（2026-05-04 起 build+deploy 合并为单 workflow 双 job）：
 | 文件 | 触发 | 干什么 | 状态 |
 |---|---|---|---|
 | `sync-upstream.yml` | 手动（`workflow_dispatch`，可填 tag） | 服务端把 `dev/main` 强制 reset 到 mirror 上的指定 release tag（默认最新），然后 `push --force-with-lease` + 推 tags | ✅ 在用 |
 | `build-image.yml` | **自动**（push 到 custom 触发，`paths-ignore` 屏蔽 `**.md` / `.gitignore` / `LICENSE` / `screenshot/**` / `sync-upstream.yml`）+ 手动备选 | **两个 job 串联在同一 run 里**：①`build` job 装 buildkit v0.13.2 → 登录 Gitea registry → 构建镜像（带 OCI 标签 source/revision，Gitea 自动关联包到 repo）→ push 到 `git.zhengchentao.win/dev/ezbookkeeping:<hash>` 与 `:latest`，`build-args: BUILD_PIPELINE=1` 跳过活 API 测试。②`deploy` job (`needs: build`) 登录 registry → clone nas-infra → `docker compose pull && up -d` 重启 ezbookkeeping。私有 nas-infra 需要 `secrets.NAS_INFRA_TOKEN`，公开仓库不需要。UI 上 Actions 列表显示一条 run，run 详情里 dependency graph 显示 build → deploy | ✅ 日常发布通道 + 自动 CD |
 **已删**：
 - `docker-snapshot.yml` / `docker-release.yml`（2026-05-02，依赖未配的 `secrets.DOCKER_REPO`，永远失败）
 - `deploy.yml`（2026-05-04，合并进 `build-image.yml` 作为第二个 job，理由：原先 `workflow_run` 链触发会在 Actions 列表产生两条独立 run，UX 割裂；合并后单 run + dependency graph 看 build/deploy 状态一目了然）
 需要时再从 git 历史 cherry-pick 回来。
 ---
 ## 同步发布流程（rebase 模型）
 1. 上游出新 release（如 v1.4.0）→ Gitea pull mirror 自动把 tag 同步到 mirror
 2. 人工触发 `Sync from upstream` workflow → 服务端把 dev/main reset 到该 tag
 3. 本地 `git fetch && git checkout custom && git rebase origin/main`
 4. 解冲突（如有）→ 验证 → `git push --force-with-lease origin custom`
 5. **build-image workflow 自动触发**（force-push 也算 push 事件），构建新镜像；不需要手动点
 日常 feature commit 流程（全自动 CD）：
 1. 在 custom 上改代码 → commit → push
 2. **自动触发 build job**（除非只改了 `**.md` / `.gitignore` / `LICENSE` / `screenshot/**` / `sync-upstream.yml`）
 3. build 成功 → **同 run 内 deploy job 接力跑**（`needs: build` 串联）：clone nas-infra → docker compose pull → up -d
 4. 整条 push → build → deploy 链路无人工介入，UI 上是单条 run
 **并发取消策略**：`build-image.yml` 设了 `concurrency.cancel-in-progress: true`，连续多次 push 时**只构建+部署最新那一次**（同 run 里 build/deploy 是原子单元，一起取消）。例：连续 3 次 push 间隔 30 秒，第 1 次 build 跑到 30%、第 2 次到来取消它、第 3 次又取消第 2，最终只 build + deploy 第 3 次的代码。省 CI 时间又保证最终一致性。
 如果想跳过 build/deploy（例如手动多次 push 调试），commit 时只改文档相关文件即可（落在 paths-ignore 范围内）。如果想强制重打某个旧 commit，去 Actions UI 手动触发 `Build Docker Image`，填要打包的 branch / tag —— 注意手动触发也会跑 deploy job，**没有"只重新部署不重新 build"的单点入口了**（合并的代价，原 `deploy.yml` 那条路径已废）。临时只想重启容器：直接到 NAS 上 `docker compose up -d` 或在 Actions UI 临时禁用 deploy job。
 **为什么 rebase 不 merge**：个人项目，无团队协作语义要保留，线性历史更清爽。
 ---
 ## 给后续 Claude 会话的明确提示
 - 用户说"我的分支" / "切换到我的分支" → 指 `custom`
 - 用户说"rebase main" → 指 `git rebase origin/main`，目标是把 custom 的改动叠到最新上游 tag 之上
 - **不要在 `main` 分支上提交任何东西**（会被 CI 覆写）
 - **workflow 文件改动直接在 custom 上做**（2026-05-02 起，不再是 ci 分支）
 - force-push custom 是常规操作，但每次用 `--force-with-lease`，不直接 `--force`
 - 如果发现本地配了 upstream remote，那是历史遗留，不要依赖；以 origin/main 为准
 - `.claude/` 在 `.gitignore` 里（个人本地配置不入库），但 `CLAUDE.md` 本身入库
 ---
 ## 同步历史
 - **2026-05-01**：rebase custom → origin/main (v1.4.0)。22 个 custom-only 提交（含一个旧的 `Merge branch 'main' into myrequirement` commit）压平为 21 个线性提交。已 force-push origin/custom（`08c69042` → `fe265259`）。
 - **2026-05-02**：修 Gitea Actions `Build Docker Image` 工作流。三层故障，全部不在本仓库代码里：
  - **TLS 雷**：`docker login` 走 host 进程不命中 PREROUTING REDIRECT，且 v6 撞 DSM nginx 的 CF Origin Cert。NAS 侧修：iptables 补 OUTPUT 对称规则 + `/etc/hosts` 显式 v4 兜底。详见 obsidian vault [[NAS/notes/内网证书路径]] §三.5/§三.6
  - **buildkit 内核兼容**：runc 1.2+ 撞 DSM 4.4 内核。`.gitea/workflows/build-image.yml` 钉 `moby/buildkit:v0.13.2`（commit `acdbb5bf`）
  - **backend 单元测试撞活 API**：`pkg/exchangerates/` 的 `TestExchangeRatesApiLatestExchangeRateHandler_*` 跑活 API（加拿大银行 / 乌兹别克央行），国内访问超时。upstream Dockerfile 已设 `ARG BUILD_PIPELINE`，测试代码看到 `BUILD_PIPELINE=1 && CHECK_3RD_API!=1` 时早退。修：workflow 加 `build-args: BUILD_PIPELINE=1`（commit `2dd8f099`），对齐上游 GH Actions
 - **2026-05-02 (后续)**：workflow 文件从 ci 分支迁到 custom，default branch 切到 custom（commit `555ecc1a`），随后**删掉 ci 分支**。原因：Gitea Actions runs 列表的 commit 字段一直显示 ci 的 workflow commit，不是被构建的代码 commit，UX 误导性强。挪到 custom 后列表直接显示真实代码 commit。同时清理上游残留的 `docker-release.yml` / `docker-snapshot.yml`（依赖未配的 `secrets.DOCKER_REPO`，永远失败）。仓库回到朴素的 main + custom 双分支模型
 - **2026-05-02 (numpad fix)**：FORK.md #11 定位 + 修复。小键盘点击卡顿真因是 `.numpad-button` 的 `touch-action: none`（上游 e178a079 引入）与 F7 tap 处理叠加，改为 `touch-action: manipulation`（commit `75b4d78d`）
 - **2026-05-04**：把 `deploy.yml` 合并进 `build-image.yml` 作为第二个 job（`needs: build`），删除 `deploy.yml`。原先 `workflow_run` 链路会在 Actions 列表产生两条独立 run（build 完一条、deploy 又一条），用户视角割裂；合并后 UI 列表单条 run，run 详情里 dependency graph 显示 build → deploy 串联。代价：失去"不 rebuild 只 redeploy"的 UI 单点触发，临时只想重启容器需直接 ssh NAS 跑 compose。`paths-ignore` 移除已不存在的 `deploy.yml` 项
 ## 给后续 Claude 会话：CI 故障排查路径
 如果 Gitea Actions build 又炸，按 NAS 域问题 vs 仓库代码问题分别排查：
 | 现象 | 大概率位置 | 文档 |
 |---|---|---|
 | `Login to Gitea Container Registry` 步骤报 `x509: certificate signed by unknown authority` | NAS 网络层（iptables / dnsmasq / DSM nginx 占 443） | obsidian vault `NAS/notes/内网证书路径.md` + `NAS/notes/IPv6 设计.md` |
 | `Build and push` 步骤里 `RUN ...` 在第二条之内就炸 `unsafe procfs detected` 之类 | buildkit/runc 与 DSM 内核版本 | `.gitea/workflows/build-image.yml` 的 `driver-opts` |
 | `Failed to pass unit testing` / `Failed to pass lint checking`（build.sh 报） | **先看 Dockerfile 顶部 `ARG`**，多半是 CI 跳过开关没传（如 `BUILD_PIPELINE` / `CHECK_3RD_API` / `SKIP_TESTS`）。**不要先去改测试代码** | `Dockerfile` 顶部 ARG + `.gitea/workflows/build-image.yml` 的 `build-args` |
 | `actions/checkout` 报 fetch 失败 | Gitea SSH/HTTPS 路径或 token 权限 | gitea-runner 的 `GITEA_RUNNER_REGISTRATION_TOKEN` + NPM `git.zhengchentao.win` 的 Advanced 配置 |
 | Dockerfile 里某条指令业务逻辑报错 | 真正的代码问题 | 本仓库 `Dockerfile` |
 **通用排查原则**：build.sh 报的"测试失败 / lint 失败"先看是不是上游已经设计了 CI 跳过路径。Dockerfile 的 `ARG` + `build.sh` 内的 `os.Getenv()` 检查通常成对出现（如 `BUILD_PIPELINE=1` → 跳过 3rd API 测试，`SKIP_TESTS=...` → 跳过指定测试名）。对齐上游 `.github/actions/` 下的传参，绝大多数情况能直接对齐。
@@ -1,7 +1,17 @@
 # Build backend binary file
-FROM golang:1.22.8-alpine3.20 AS be-builder
+FROM golang:1.25.7-alpine3.23 AS be-builder
 ARG RELEASE_BUILD
 ARG BUILD_PIPELINE
 ARG BUILD_UNIXTIME
 ARG BUILD_DATE
 ARG CHECK_3RD_API
 ARG SKIP_TESTS
 ENV RELEASE_BUILD=$RELEASE_BUILD
 ENV BUILD_PIPELINE=$BUILD_PIPELINE
 ENV BUILD_UNIXTIME=$BUILD_UNIXTIME
 ENV BUILD_DATE=$BUILD_DATE
 ENV CHECK_3RD_API=$CHECK_3RD_API
 ENV SKIP_TESTS=$SKIP_TESTS
 WORKDIR /go/src/github.com/mayswind/ezbookkeeping
 COPY . .
 RUN docker/backend-build-pre-setup.sh
@@ -9,9 +19,15 @@ RUN apk add git gcc g++ libc-dev
 RUN ./build.sh backend
 # Build frontend files
-FROM --platform=$BUILDPLATFORM node:20.18.0-alpine3.20 AS fe-builder
+FROM --platform=$BUILDPLATFORM node:24.14.0-alpine3.23 AS fe-builder
 ARG RELEASE_BUILD
 ARG BUILD_PIPELINE
 ARG BUILD_UNIXTIME
 ARG BUILD_DATE
 ENV RELEASE_BUILD=$RELEASE_BUILD
 ENV BUILD_PIPELINE=$BUILD_PIPELINE
 ENV BUILD_UNIXTIME=$BUILD_UNIXTIME
 ENV BUILD_DATE=$BUILD_DATE
 WORKDIR /go/src/github.com/mayswind/ezbookkeeping
 COPY . .
 RUN docker/frontend-build-pre-setup.sh
@@ -19,7 +35,7 @@ RUN apk add git
 RUN ./build.sh frontend
 # Package docker image
-FROM alpine:3.20.3
+FROM alpine:3.23.3
 LABEL maintainer="MaysWind <i@mayswind.net>"
 RUN addgroup -S -g 1000 ezbookkeeping && adduser -S -G ezbookkeeping -u 1000 ezbookkeeping
 RUN apk --no-cache add tzdata
@@ -0,0 +1,190 @@
 # ezBookkeeping 个人 fork 改动清单
 > 本文件记录这个 fork 相对上游 [mayswind/ezbookkeeping](https://github.com/mayswind/ezbookkeeping) 的所有定制改动 + 进度状态。
 > 关联文档：
 > - [`CLAUDE.md`](CLAUDE.md) —— 仓库分支模型 / 上游同步流程 / CI 排查路径（meta 层）
 > - 部署：见自家 NAS infra repo `git.zhengchentao.win/dev/nas-infra` 的 README（compose-level）
 >
 > 标注：❌ 难/暂缓 | ❓ 待定 | 🔍 调查中 | 🟢 已完成
 ---
 ## 一、账户功能
 ### 1. 🟢 信用卡账户：额度与可用额度
 **描述：** 为信用卡类型账户新增「信用额度」字段，在账户列表显示可用额度。
 **已完成：**
 - 后端：`AccountExtend` JSON blob 新增 `CreditLimit` 字段（无需数据库迁移）
 - API：`AccountCreateRequest` / `AccountModifyRequest` / `AccountInfoResponse` 增加 `creditLimit`
 - 前端 model：`Account` 类增加 `creditLimit` 字段，同步序列化/反序列化
 - 移动端 EditPage：CreditCard 分类时显示信用额度输入项（数字键盘）
 - 桌面端 EditDialog：CreditCard 分类时显示信用额度输入框（`amount-input`）
 - 移动端 ListPage：账户名下方显示「可用额度: ¥xxx」（= `creditLimit + balance`）
 - 桌面端 ListPage：账户卡片余额旁显示「Available: ¥xxx」
 - 语言包：中英繁均已添加 `"Credit Limit"` / `"Available"`
 ### 2. 🟢 按账户筛选交易时顶部显示账户信息卡
 **描述：** 在按单个账户筛选的交易列表顶部，显示账户图标、名称和余额/可用额度。
 **已完成：**
 - 仅单账户筛选时（`queryAllFilterAccountIdsCount === 1`）显示，多账户/全量时隐藏
 - 信用卡账户显示「欠款 · 可用 ¥xxx」，普通账户显示余额
 - 移动端：toolbar 下方插入账户信息卡片；桌面端：日期范围行下方插入 tonal 样式账户卡片
 - 多子账户（`MultiSubAccounts`）一级账户：使用 `getAccountSubAccountBalance` 获取汇总余额及正确币种，修复 `currency = '---'` 导致货币符号不显示的问题
 - 涉及文件：`src/views/mobile/transactions/ListPage.vue`、`src/views/desktop/transactions/ListPage.vue`
 ### 3. 🟢 账户编辑页直接修改余额（自动插入调整记录）
 **描述：** 在账户编辑页修改余额字段，保存时自动计算差值并插入一条「余额调整」类型交易。
 **已完成：**
 - 后端：移除「账户已有交易时不允许添加 ModifyBalance」的限制
 - 后端：`Amount` 与 `RelatedAccountAmount` 均存储 delta；创建时 `balance += delta`，删除时 `balance -= delta`，修改时 `balance = balance - oldDelta + newDelta`
 - 后端响应：`ToTransactionInfoResponse` 对 ModifyBalance 类型返回 `RelatedAccountAmount` 作为 `sourceAmount`
 - 前端 store：新增 `adjustAccountBalance({ accountId, targetBalance, currentBalance })` 函数，发送 `sourceAmount = delta`
 - 移动端 EditPage：余额字段对已有账户解除只读；保存时若余额变化先调 `adjustAccountBalance`；捕获 `NothingWillBeUpdated (200004)` 视为成功
 - 桌面端 EditDialog：同上逻辑，支持多子账户逐一调整
 - 「调整余额」入口仅在账户编辑页，已从账户列表「更多」菜单移除
 - 涉及文件：`pkg/services/transactions.go`、`pkg/models/transaction.go`、`src/stores/transaction.ts`、`src/views/mobile/accounts/EditPage.vue`、`src/views/desktop/accounts/list/dialogs/EditDialog.vue`
 ---
 ## 二、记账页面
 ### 4. 🟢 记账页选择账户后显示余额/可用额度
 **描述：** 在记账页面选择账户后，在账户行显示该账户的当前余额或信用卡可用额度。
 **已完成：**
 - 信用卡账户（有 `creditLimit`）：显示「欠款金额 · 可用 ¥xxx」
 - 普通负债账户：显示欠款正数；普通资产账户：显示余额
 - 转账类型时源账户和目标账户均显示
 - 移动端：账户列表项 `footer` 字段；桌面端：`two-column-select` 的 `custom-selection-secondary-text`
 - 涉及文件：`src/views/mobile/transactions/EditPage.vue`、`src/views/desktop/transactions/list/dialogs/EditDialog.vue`
 ### 5. ❓ 记录上次选择的账户（待定）
 **描述：** 新建交易时，默认选中上次使用的账户。
 **实现思路：**
 - 保存账户 ID 到 `localStorage`，打开记账页时读取并预选
 - 涉及文件：`src/views/mobile/transactions/EditPage.vue`、`src/lib/settings.ts`
 ---
 ## 三、小键盘
 ### 6. 🟢 小键盘布局调整
 **描述：** 调整数字键盘布局。
 **已完成：**
 ```
 [数值显示区              ] [ ⌫ ]
  7     8     9      ×
  4     5     6      −
  1     2     3      +
  C     0     .     OK
 ```
 - ⌫ 单击退格；按住不放先删一位、约 500ms 后清空全部（长按响应细节见 #11 第二阶段）
 - C 一键清除全部
 - 涉及文件：`src/components/mobile/NumberPadSheet.vue`
 ---
 ## 四、交易详情
 ### 7. 🟢 交易详情页增加「编辑」和「删除」入口（仅移动端）
 **描述：** 移动端交易详情页三点菜单中增加编辑和删除操作。PC 端详情直接在编辑弹窗中展示，无需额外入口。
 **已完成：**
 - 三点菜单：第一项「Edit」跳转编辑页，最后一项红色「Delete」确认后删除并返回
 - 从详情返回编辑页后自动刷新数据
 - 涉及文件：`src/views/mobile/transactions/EditPage.vue`
 ---
 ## 五、交易时间选择
 ### 8. ❌ 点击交易时间标题默认打开日期选择（已回滚）
 **描述：** 原想让点击「Transaction Time」标题行时默认弹日期选择器。
 **为何回滚：** 改动改的是 `template #header` 那行 label 的点击 handler（`'time'` → `'date'`），实际操作中用户点的是 `template #title` 里的日期/时间文本。上游早在 commit `368322f9` 已实现"点哪走哪"的智能路由——点日期开日期选择器、点时间开时间选择器。所以这条改动**用户视角无可见差异**，纯空改，回滚到上游行为。
 **留档教训：** 改 UI 行为前先把"用户实际点哪个元素"摸清楚，别只看着 DOM 结构想当然。`#header` slot 只是上方的 label 行，正常用户极少触发。
 ---
 ## 六、分类选择
 ### 9. 🟢 分类选择默认全部展开（仅移动端）
 **描述：** 在移动端记账页选择分类时，默认展开所有一级分类。PC 端使用不同的分类选择组件，无需此设置。
 **已完成：**
 - 设置存 localStorage（字段 `expandCategoryTreeByDefault`，默认 `false`），即时生效无需 reload；已加入云同步白名单（`ALL_ALLOWED_CLOUD_SYNC_APP_SETTING_KEY_TYPES`），可跨设备同步
 - `TreeViewSelectionSheet` 新增可选 prop `defaultExpanded`，`:opened` 改为 `props.defaultExpanded || isPrimaryItemHasSecondaryValue(item)`
 - 移动端 EditPage 三个分类 sheet（支出/收入/转账）均传入 `:default-expanded`
 - 设置仅在移动端设置页显示，PC 端无对应入口
 - 涉及文件：`src/components/mobile/TreeViewSelectionSheet.vue`、`src/views/mobile/transactions/EditPage.vue`、`src/views/mobile/SettingsPage.vue`
 ---
 ## 七、性能与动画
 ### 10. 🟢 全局动画加速（仅移动端）
 **描述：** 移动端全局页面跳转及各类弹层动画加速。
 **已完成：**
 - 页面跳转、Sheet、ActionSheet、Popup、Dialog、Popover 动画时长从 300ms → 150ms
 - Tab 切换动画保持原样（设置中已有开关可控制）
 - 涉及文件：`src/styles/mobile/global.scss`
 ### 11. 🟢 小键盘点击卡顿（三次修正）
 **描述：** 移动端小键盘点击有延迟感。
 **第一阶段（2026-05-02）`touch-action: none` 引发的 300ms 双击延迟：** 上游在 `.numpad-button` 上设了 `touch-action: none`（commit `e178a079` "code refactor" by MaysWind），与浏览器双击缩放检测叠加后保留了老式 300ms 点击延迟。
 - 修复：`.numpad-button` 的 `touch-action: none` 改为 `touch-action: manipulation`（W3C 标准"快速点击"值，禁双击缩放）
 **第二阶段（2026-05-08）退格键 `@taphold` 等待 750ms：** backspace 单点仍可感知延迟。根因是 `@click` + `@taphold` 让 F7 必须等 ~750ms 判别 tap vs hold，期间 click 被抑制。
 - 修复：弃用 `@click="backspace" @taphold="clear()"`，改为原生 `pointerdown`/`pointerup`/`pointercancel`/`pointerleave` + 自管定时器
 - 行为：单击立即删一位；按住不放先删一位、约 500ms 后清空全部
 **第三阶段（2026-05-08）所有数字/运算键也延迟：** 第一阶段修完后用户反馈数字键仍有"等一拍"感。怀疑 F7 整套 tap 处理（含 active-state 检测、`fastClicks` 兼容代码、tap-hold 全局监听）即便不显式声明 `@taphold` 也会给 `@click` 加上判别期。
 - 修复：把所有按键（数字 0-9、运算 ×−+、C 清空、小数点/双零、OK 确认）的 `@click` 全部换成 `@pointerdown.left`
 - 原理：`pointerdown` 在按下瞬间触发，绕开 F7 的 tap 合成路径。`.left` 修饰符限制只响应主键（触屏 button=0 始终满足，桌面右键不会误触发）
 - F7 的 `.active-state` 视觉反馈基于独立的 touchstart/touchend 监听，不依赖 `@click`，按下视觉效果保留
 涉及文件：`src/components/mobile/NumberPadSheet.vue`
 **附带认知：** 原 #11 假设是"全局点击响应慢"或"接口慢"，与 #12 离线缓存挂钩调研。实际诊断后跟那两条都无关——纯 F7 框架 tap 合成 + 双击缩放 + taphold 检测三者叠加。最终通过完全弃用 `@click` 改 pointer 事件解决。该认知值得记录避免后续误诊路径。
 ---
 ## 八、离线 / 缓存
 ### 12. ❌ 本地优先 / 离线数据缓存（暂缓）
 **描述：** 交易数据本地缓存，优先展示缓存数据，后台静默拉取更新。
 **现状：** Service Worker 已实现静态资源缓存，但交易业务数据目前不做本地缓存。
 **为何难：**
 - 需引入 IndexedDB 存储交易/账户/分类数据
 - 需处理本地与服务端的数据同步、冲突解决
 - 属于架构级改动，工作量较大
 ---
 ## 进度总览
 | # | 需求 | 状态 |
 |---|------|------|
 | 1 | 信用卡额度 | 🟢 已完成 |
 | 2 | 账户信息卡片 | 🟢 已完成 |
 | 3 | 调整余额入口 | 🟢 已完成 |
 | 4 | 记账页显示余额 | 🟢 已完成 |
 | 5 | 记住上次账户 | ❓ 待定 |
 | 6 | 小键盘布局 | 🟢 已完成 |
 | 7 | 详情编辑/删除 | 🟢 已完成 |
 | 8 | 点击时间默认日期 | ❌ 已回滚（无效改动） |
 | 9 | 分类默认展开 | 🟢 已完成 |
 | 10 | 全局动画加速 | 🟢 已完成 |
 | 11 | 小键盘点击卡顿（touch-action 修复） | 🟢 已完成 |
 | 12 | 离线缓存 | ❌ 暂缓 |
@@ -1,6 +1,7 @@
 MIT License
-Copyright (c) 2020-2024 MaysWind (i@mayswind.net)
+Copyright (c) 2020-2026 MaysWind (i@mayswind.net)
 Copyright (c) 2026 Zhengchen Tao (fork modifications)
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
@@ -1,37 +1,85 @@
 # ezBookkeeping
 > ## Personal fork notice
 >
 > This repository is a personal fork of [mayswind/ezbookkeeping](https://github.com/mayswind/ezbookkeeping) (MIT) with the following custom additions on top of upstream releases:
 >
 > - **Credit card accounts**: credit-limit field; account list shows available credit
 > - **Account-filtered transactions**: when filtering by a single account, show an account info card on top (icon / name / balance / available credit)
 > - **Account editing**: edit the balance field directly; a "balance adjustment" transaction is generated automatically
 > - **Add-transaction page**: live display of balance or available credit after selecting an account
 > - **Numpad**: custom layout (4-column calculator style) + `touch-action` fix for tap latency
 > - **Mobile animations**: generic transitions 300ms → 150ms
 > - **Transaction detail**: edit / delete entries added to the mobile three-dot menu
 > - **Category picker**: optional "expand all by default" on mobile (cloud-sync allowlisted)
 >
 > Full list with implementation details: [`FORK.md`](FORK.md)
 > Branch model / upstream sync / CI troubleshooting: [`CLAUDE.md`](CLAUDE.md)
 >
 > All modifications are released under the same MIT License as upstream — see [`LICENSE`](LICENSE).
 >
 > ---
 >
 > Upstream README content follows below.
 ---
 [![License](https://img.shields.io/badge/license-MIT-green.svg)](https://github.com/mayswind/ezbookkeeping/blob/master/LICENSE)
 [![Latest Build](https://img.shields.io/github/actions/workflow/status/mayswind/ezbookkeeping/docker-snapshot.yml?branch=main)](https://github.com/mayswind/ezbookkeeping/actions)
 [![Go Report](https://goreportcard.com/badge/github.com/mayswind/ezbookkeeping)](https://goreportcard.com/report/github.com/mayswind/ezbookkeeping)
 [![Latest Docker Image Size](https://img.shields.io/docker/image-size/mayswind/ezbookkeeping.svg?style=flat)](https://hub.docker.com/r/mayswind/ezbookkeeping)
 [![Latest Release](https://img.shields.io/github/release/mayswind/ezbookkeeping.svg?style=flat)](https://github.com/mayswind/ezbookkeeping/releases)
 [![Latest Build](https://img.shields.io/github/actions/workflow/status/mayswind/ezbookkeeping/build-snapshot.yml?branch=main)](https://github.com/mayswind/ezbookkeeping/actions)
 [![Latest Docker Image Size](https://img.shields.io/docker/image-size/mayswind/ezbookkeeping.svg?style=flat)](https://hub.docker.com/r/mayswind/ezbookkeeping)
 [![Docker Pulls](https://img.shields.io/docker/pulls/mayswind/ezbookkeeping)](https://hub.docker.com/r/mayswind/ezbookkeeping)
 [![Ask DeepWiki](https://deepwiki.com/badge.svg)](https://deepwiki.com/mayswind/ezbookkeeping)
 [![Recommend By HelloGitHub](https://api.hellogithub.com/v1/widgets/recommend.svg?rid=ded5af09da574ec1811ddb154f1b2093&claim_uid=LT7EZxeBukCnh0K)](https://hellogithub.com/en/repository/mayswind/ezbookkeeping)
 [![Trending](https://trendshift.io/api/badge/repositories/12917)](https://trendshift.io/repositories/12917)
 ## Introduction
-ezBookkeeping is a lightweight personal bookkeeping app hosted by yourself. It can be deployed on almost all platforms, including Windows, macOS and Linux on x86, amd64 and ARM architectures. You can even deploy it on an raspberry device. It also supports many different databases, including sqlite and mysql. With docker, you can just deploy it via one command without complicated configuration.
+ezBookkeeping is a lightweight, self-hosted personal finance app with a user-friendly interface and powerful bookkeeping features. It helps you record daily transactions, import data from various sources, and quickly search and filter your bills. You can analyze historical data using built-in charts or perform custom queries with your own chart dimensions to better understand spending patterns and financial trends. ezBookkeeping is easy to deploy, and you can start it with just one single Docker command. Designed to be resource-efficient, it runs smoothly on devices such as Raspberry Pi, NAS, and MicroServers.
-Online Demo: [https://ezbookkeeping-demo.mayswind.net](https://ezbookkeeping-demo.mayswind.net)
+ezBookkeeping offers tailored interfaces for both mobile and desktop devices. With support for PWA (Progressive Web Apps), you can even [add it to your mobile home screen](https://raw.githubusercontent.com/wiki/mayswind/ezbookkeeping/img/mobile/add_to_home_screen.gif) and use it like a native app.
 Live Demo: [https://ezbookkeeping-demo.mayswind.net](https://ezbookkeeping-demo.mayswind.net)
 ## Features
-1. Open source & Self-hosted
+- **Open Source & Self-Hosted**
-2. Lightweight & Fast
+    - Built for privacy and control
-3. Easy to install
+- **Lightweight & Fast**
-    * Docker support
+    - Minimal resource usage, runs smoothly even on low-resource devices
-    * Multiple database support (SQLite, MySQL, PostgreSQL, etc.)
+- **Easy Installation**
-    * Multiple operation system & hardware support (Windows, macOS, Linux & x86, amd64, ARM)
+    - Docker support
-4. User-friendly interface
+    - Supports SQLite, MySQL, PostgreSQL
-    * Both desktop and mobile UI
+    - Cross-platform (Windows, macOS, Linux)
-    * Close to native app experience (for mobile device)
+    - Works on x86, amd64, ARM architectures
-    * Two-level account & two-level category support
+- **User-Friendly Interface**
-    * Plentiful preset categories
+    - UI optimized for both mobile and desktop
-    * Geographic location and map support
+    - PWA support for native-like mobile experience
-    * Searching & filtering history records
+    - Dark mode
-    * Data statistics
+- **AI-Powered Features**
-    * Dark theme
+    - Receipt image recognition
-5. Multiple currency support & automatically updating exchange rates
+    - MCP (Model Context Protocol) support for AI integration
-6. Multiple timezone support
+    - Agent Skill and API command-line script tools support for AI integration
-7. Multi-language support
+- **Powerful Bookkeeping**
-8. Two-factor authentication
+    - Two-level accounts and categories
-9. Application lock (PIN code / WebAuthn)
+    - Image attachments for transactions
-10. Data import & export
+    - Location tracking with maps
    - Scheduled transactions
    - Advanced filtering, search, visualization and analysis
 - **Localization & Internationalization**
    - Multi-language and multi-currency support
    - Multiple exchange rate sources with automatic updates
    - Multi-timezone support
    - Custom formats for dates, numbers and currencies
 - **Security**
    - Two-factor authentication (2FA)
    - OIDC external authentication
    - Login rate limiting
    - Application lock (PIN code / WebAuthn)
 - **Data Import & Export**
    - Supports CSV, OFX, QFX, QIF, IIF, Camt.052, Camt.053, MT940, GnuCash, Firefly III, Beancount and more
 For a full list of features, visit the [Full Feature List](https://ezbookkeeping.mayswind.net/comparison/).
 ## Screenshots
 ### Desktop Version
@@ -41,19 +89,19 @@ Online Demo: [https://ezbookkeeping-demo.mayswind.net](https://ezbookkeeping-dem
 [![ezBookkeeping](https://raw.githubusercontent.com/wiki/mayswind/ezbookkeeping/img/mobile/en.png)](https://raw.githubusercontent.com/wiki/mayswind/ezbookkeeping/img/mobile/en.png)
 ## Installation
-### Ship with docker
+### Run with Docker
 Visit [Docker Hub](https://hub.docker.com/r/mayswind/ezbookkeeping) to see all images and tags.
-Latest Release:
+**Latest Release:**
    $ docker run -p8080:8080 mayswind/ezbookkeeping
-Latest Daily Build:
+**Latest Daily Build:**
    $ docker run -p8080:8080 mayswind/ezbookkeeping:latest-snapshot
-### Install from binary
+### Install from Binary
-Latest release: [https://github.com/mayswind/ezbookkeeping/releases](https://github.com/mayswind/ezbookkeeping/releases)
+Download the latest release: [https://github.com/mayswind/ezbookkeeping/releases](https://github.com/mayswind/ezbookkeeping/releases)
 **Linux / macOS**
@@ -63,10 +111,10 @@ Latest release: [https://github.com/mayswind/ezbookkeeping/releases](https://git
    > .\ezbookkeeping.exe server run
-ezBookkeeping will listen at port 8080 as default. Then you can visit `http://{YOUR_HOST_ADDRESS}:8080/` .
+By default, ezBookkeeping listens on port 8080. You can then visit `http://{YOUR_HOST_ADDRESS}:8080/` .
-### Build from source
+### Build from Source
-Make sure you have [Golang](https://golang.org/), [GCC](http://gcc.gnu.org/), [Node.js](https://nodejs.org/) and [NPM](https://www.npmjs.com/) installed. Then download the source code, and follow these steps:
+Make sure you have [Golang](https://golang.org/), [GCC](https://gcc.gnu.org/), [Node.js](https://nodejs.org/) and [NPM](https://www.npmjs.com/) installed. Then download the source code, and follow these steps:
 **Linux / macOS**
@@ -78,17 +126,59 @@ All the files will be packaged in `ezbookkeeping.tar.gz`.
    > .\build.bat package -o ezbookkeeping.zip
 or
    PS > .\build.ps1 package -Output ezbookkeeping.zip
 All the files will be packaged in `ezbookkeeping.zip`.
-You can also build docker image, make sure you have [docker](https://www.docker.com/) installed, then follow these steps:
+You can also build a Docker image. Make sure you have [Docker](https://www.docker.com/) installed, then follow these steps:
 **Linux**
    $ ./build.sh docker
-## Documents
+## Contributing
-1. [English](http://ezbookkeeping.mayswind.net)
+We welcome contributions of all kinds.
-1. [简体中文 (Simplified Chinese)](http://ezbookkeeping.mayswind.net/zh_Hans)
+
 If you find a bug, please [submit an issue](https://github.com/mayswind/ezbookkeeping/issues) on GitHub.
 If you would like to contribute code, you can fork the repository and open a pull request.
 Improvements to documentation, feature suggestions, and other forms of feedback are also appreciated.
 You can view existing contributors on the [Contributor Graph](https://github.com/mayswind/ezbookkeeping/graphs/contributors).
 ## Translating
 Help make ezBookkeeping accessible to users around the world. We welcome help to improve existing translations or add new ones. If you would like to contribute a translation, please refer to the [translation guide](https://ezbookkeeping.mayswind.net/translating).
 Currently available translations:
 | Tag | Language | Progress | Contributors |
 | --- | --- | --- | --- |
 | de | Deutsch | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fde.json) | [@chrgm](https://github.com/chrgm), [@1270o1](https://github.com/1270o1) |
 | en | English | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fen.json) | / |
 | es | Español | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fes.json) | [@Miguelonlonlon](https://github.com/Miguelonlonlon), [@abrugues](https://github.com/abrugues), [@AndresTeller](https://github.com/AndresTeller), [@diegofercri](https://github.com/diegofercri) |
 | fr | Français | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Ffr.json) | [@brieucdlf](https://github.com/brieucdlf) |
 | it | Italiano | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fit.json) | [@waron97](https://github.com/waron97) |
 | ja | 日本語 | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fja.json) | [@tkymmm](https://github.com/tkymmm) |
 | kn | ಕನ್ನಡ | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fkn.json) | [@Darshanbm05](https://github.com/Darshanbm05) |
 | ko | 한국어 | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fko.json) | [@overworks](https://github.com/overworks) |
 | nl | Nederlands | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fnl.json) | [@automagics](https://github.com/automagics) |
 | pt-BR | Português (Brasil) | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fpt-BR.json) | [@thecodergus](https://github.com/thecodergus), [@balaios](https://github.com/balaios) |
 | ru | Русский | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fru.json) | [@artegoser](https://github.com/artegoser), [@dshemin](https://github.com/dshemin) |
 | sl | Slovenščina | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fsl.json) | [@thehijacker](https://github.com/thehijacker) |
 | ta | தமிழ் | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fta.json) | [@hhharsha36](https://github.com/hhharsha36) |
 | th | ไทย | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fth.json) | [@natthavat28](https://github.com/natthavat28) |
 | tr | Türkçe | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Ftr.json) | [@aydnykn](https://github.com/aydnykn) |
 | uk | Українська | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fuk.json) | [@nktlitvinenko](https://github.com/nktlitvinenko) |
 | vi | Tiếng Việt | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fvi.json) | [@f97](https://github.com/f97) |
 | zh-Hans | 中文 (简体) | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fzh-Hans.json) | / |
 | zh-Hant | 中文 (繁體) | ![Translation Progress](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fmayswind%2FezBookkeeping-i18n-badge%2Fmain%2Fbadges%2Fzh-Hant.json) | / |
 ## Documentation
 1. [English](https://ezbookkeeping.mayswind.net)
 1. [中文 (简体)](https://ezbookkeeping.mayswind.net/zh_Hans)
 ## License
 [MIT](https://github.com/mayswind/ezbookkeeping/blob/master/LICENSE)
@@ -3,12 +3,13 @@
 set "TYPE="
 set "NO_LINT=0"
 set "NO_TEST=0"
 set "SKIP_TESTS=%SKIP_TESTS%"
 set "RELEASE=%RELEASE_BUILD%"
 set "RELEASE_TYPE=unknown"
 set "VERSION="
 set "COMMIT_HASH="
-set "BUILD_UNIXTIME="
+set "BUILD_UNIXTIME=%BUILD_UNIXTIME%"
-set "BUILD_DATE="
+set "BUILD_DATE=%BUILD_DATE%"
 set "PACKAGE_FILENAME="
 for /f %%a in ('"prompt $E$S & echo on & for %%b in (1) do rem"') do set "ESC=%%a"
@@ -56,7 +57,7 @@ goto :pre_parse_args
    echo     /r, --release           Build release (The script will use environment variable "RELEASE_BUILD" to detect whether this is release building by default)
    echo     /o, --output ^<filename^> Package file name (For "package" type only)
    echo     --no-lint               Do not execute lint check before building
-    echo     --no-test               Do not execute unit testing before building
+    echo     --no-test               Do not execute unit testing before building (You can use environment variable "SKIP_TESTS" to skip specified tests)
    echo     /h, --help              Show help
    goto :eof
@@ -111,9 +112,15 @@ goto :pre_parse_args
    set VERSION=%VERSION: =%
    set VERSION=%VERSION:,=%
    set VERSION=%VERSION:"=%
-    for /f %%x in ('git rev-parse --short HEAD') do set "COMMIT_HASH=%%x"
+    for /f %%x in ('git rev-parse --short^=7 HEAD') do set "COMMIT_HASH=%%x"
    if "%BUILD_UNIXTIME%"=="" (
        call :set_unixtime BUILD_UNIXTIME
    )
    if "%BUILD_DATE%"=="" (
        call :set_date BUILD_DATE
    )
 :main
    if "%TYPE%"=="backend"  call :build_backend & goto :end
@@ -139,7 +146,13 @@ goto :pre_parse_args
    if "%NO_TEST%"=="0" (
        echo Executing backend unit testing...
        call go clean -cache
        if "%SKIP_TESTS%"=="" (
            call go test .\... -v
        ) else (
            echo (Skip unit test "%SKIP_TESTS%")
            call go test .\... -v -skip "%SKIP_TESTS%"
        )
        if !errorlevel! neq 0 (
            call :echo_red "Error: Failed to pass unit testing"
@@ -184,6 +197,17 @@ goto :pre_parse_args
        )
    )
    if "%NO_TEST%"=="0" (
        echo Executing frontend unit testing...
        call npm run test
        if !errorlevel! neq 0 (
            call :echo_red "Error: Failed to pass unit testing"
            goto :end
        )
    )
    endlocal
    echo Building frontend files(%RELEASE_TYPE%)...
@@ -243,7 +267,7 @@ goto :pre_parse_args
        goto :end
    )
-    call 7z a -r -tzip -mx9 ..\%package_file_name% package *
+    call 7z a -r -tzip -mx9 ..\%package_file_name% *
    cd ..
    endlocal
@@ -0,0 +1,237 @@
 param(
    [string]$Type,
    [switch]$NoLint,
    [switch]$NoTest,
    [string]$Output,
    [switch]$Release,
    [switch]$Help
 )
 $script:SkipTests = $env:SKIP_TESTS
 $script:ReleaseType = "unknown"
 $script:Version = ""
 $script:CommitHash = ""
 $script:BuildUnixTime = $env:BUILD_UNIXTIME
 $script:BuildDate = $env:BUILD_DATE
 function Write-Red($msg) {
    Write-Host $msg -ForegroundColor Red
 }
 function Check-Dependency {
    param([string[]]$commands)
    foreach ($cmd in $commands) {
        if (-not (Get-Command $cmd -ErrorAction SilentlyContinue)) {
            Write-Red "Error: `"$cmd`" is required."
            exit 127
        }
    }
 }
 function Show-Help {
    Write-Host "ezBookkeeping build script for Windows PowerShell"
    Write-Host ""
    Write-Host "Usage:"
    Write-Host "    build.ps1 type [options]"
    Write-Host ""
    Write-Host "Types:"
    Write-Host "    backend            Build backend binary file"
    Write-Host "    frontend           Build frontend files"
    Write-Host "    package            Build package archive"
    Write-Host ""
    Write-Host "Options:"
    Write-Host "    -Release           Build release (The script will use environment variable `"RELEASE_BUILD`" to detect whether this is release building by default)"
    Write-Host "    -Output <filename> Package file name (for `"package`" type only)"
    Write-Host "    -NoLint            Do not execute lint check before building"
    Write-Host "    -NoTest            Do not execute unit testing before building (You can use environment variable `"SKIP_TESTS`" to skip specified tests)"
    Write-Host "    -Help              Show help"
 }
 function Parse-Args {
    if (-not $Type) {
        Show-Help
        exit 0
    }
    if ($Release -or $env:RELEASE_BUILD) {
        $script:ReleaseType = "release"
    } else {
        $script:ReleaseType = "snapshot"
    }
 }
 function Check-Type-Dependencies {
    Check-Dependency "git"
    switch ($Type.ToLower()) {
        "backend"  {
            Check-Dependency "go","gcc"
        }
        "frontend" {
            Check-Dependency "node","npm"
        }
        "package"  {
            Check-Dependency "go","gcc","node","npm","7z"
        }
    }
 }
 function Set-Build-Parameters {
    $script:Version = (Get-Content package.json | ConvertFrom-Json).version
    $script:CommitHash = git rev-parse --short=7 HEAD
    if (-not $BuildUnixTime) {
        $script:BuildUnixTime = [int][double]::Parse((Get-Date -UFormat %s))
    }
    if (-not $BuildDate) {
        $script:BuildDate = Get-Date -Format "yyyyMMdd"
    }
 }
 function Build-Backend {
    Write-Host "Pulling backend dependencies..."
    go get .
    if (-not $NoLint) {
        Write-Host "Executing backend lint checking..."
        go vet -v .\...
        if ($LASTEXITCODE -ne 0) {
            Write-Red "Error: Failed to pass lint checking"
            exit 1
        }
    }
    if (-not $NoTest) {
        Write-Host "Executing backend unit testing..."
        go clean -cache
        if (-not $SkipTests) {
            go test .\... -v
        } else {
            Write-Host "(Skip unit test `"$SkipTests`")"
            go test .\... -v -skip "$SkipTests"
        }
        if ($LASTEXITCODE -ne 0) {
            Write-Red "Error: Failed to pass unit testing"
            exit 1
        }
    }
    $backend_build_extra_arguments = "-X main.Version=$Version "
    $backend_build_extra_arguments = "$backend_build_extra_arguments -X main.CommitHash=$CommitHash"
    if (-not $Release) {
        $backend_build_extra_arguments += " -X main.BuildUnixTime=$BuildUnixTime"
    }
    Write-Host "Building backend binary file ($ReleaseType)..."
    $env:CGO_ENABLED = 1
    go build -a -v -trimpath -tags timetzdata -ldflags "-w -s -linkmode external -extldflags '-static' $backend_build_extra_arguments" -o ezbookkeeping.exe ezbookkeeping.go
    Remove-Item Env:\CGO_ENABLED -ErrorAction SilentlyContinue
 }
 function Build-Frontend {
    Write-Host "Pulling frontend dependencies..."
    npm install
    if (-not $NoLint) {
        Write-Host "Executing frontend lint checking..."
        npm run lint
        if ($LASTEXITCODE -ne 0) {
            Write-Red "Error: Failed to pass lint checking"
            exit 1
        }
    }
    if (-not $NoTest) {
        Write-Host "Executing frontend unit testing..."
        npm run test
        if ($LASTEXITCODE -ne 0) {
            Write-Red "Error: Failed to pass unit testing"
            exit 1
        }
    }
    Write-Host "Building frontend files ($ReleaseType)..."
    if (-not $Release) {
        $env:buildUnixTime = $BuildUnixTime
        npm run build
        Remove-Item Env:\buildUnixTime -ErrorAction SilentlyContinue
    } else {
        npm run build
    }
 }
 function Build-Package {
    $packageFileName = "ezbookkeeping-$Version"
    if (-not $Release) {
        $packageFileName = "$packageFileName-$BuildDate"
    }
    $packageFileName = "$packageFileName-windows.zip"
    if ($Output) {
        $packageFileName = $Output
    }
    Write-Host "Building package archive '$packageFileName' ($ReleaseType)..."
    Build-Backend
    Build-Frontend
    Remove-Item package -Recurse -Force -ErrorAction SilentlyContinue
    New-Item -ItemType Directory -Path "package"
    New-Item -ItemType Directory -Path "package\data"
    New-Item -ItemType Directory -Path "package\storage"
    New-Item -ItemType Directory -Path "package\log"
    Copy-Item ezbookkeeping.exe package\
    Copy-Item dist package\public -Recurse
    Copy-Item conf package\conf -Recurse
    Copy-Item templates package\templates -Recurse
    Copy-Item LICENSE package\
    Push-Location package
    7z a -r -tzip -mx9 "..\$packageFileName" *
    Pop-Location
 }
 function Main {
    if ($Help) {
        Show-Help
        exit 0
    }
    Parse-Args
    Check-Type-Dependencies
    Set-Build-Parameters
    switch ($Type) {
        "backend"  {
            Build-Backend
        }
        "frontend" {
            Build-Frontend
        }
        "package"  {
            Build-Package
        }
        default    {
            Write-Red "Invalid type: $Type"
            Show-Help
            exit 2
        }
    }
 }
 Main
@@ -3,11 +3,13 @@
 TYPE=""
 NO_LINT="0"
 NO_TEST="0"
 SKIP_TESTS="${SKIP_TESTS}"
 RELEASE=${RELEASE_BUILD:-"0"}
 RELEASE_TYPE="unknown"
 VERSION=""
 COMMIT_HASH=""
-BUILD_UNIXTIME=""
+BUILD_UNIXTIME="${BUILD_UNIXTIME}"
 BUILD_DATE="${BUILD_DATE}"
 PACKAGE_FILENAME=""
 DOCKER_TAG=""
@@ -43,7 +45,7 @@ Options:
    -o, --output <filename> Package file name (For "package" type only)
    -t, --tag               Docker tag (For "docker" type only)
    --no-lint               Do not execute lint check before building
-    --no-test               Do not execute unit testing before building
+    --no-test               Do not execute unit testing before building (You can use environment variable "SKIP_TESTS" to skip specified tests)
    -h, --help              Show help
 EOF
 }
@@ -116,8 +118,15 @@ check_type_dependencies() {
 set_build_parameters() {
    VERSION="$(grep '"version": ' package.json | awk -F ':' '{print $2}' | tr -d ' ' | tr -d ',' | tr -d '"')"
-    COMMIT_HASH="$(git rev-parse --short HEAD)"
+    COMMIT_HASH="$(git rev-parse --short=7 HEAD)"
    if [ -z "$BUILD_UNIXTIME" ]; then
        BUILD_UNIXTIME="$(date '+%s')"
    fi
    if [ -z "$BUILD_DATE" ]; then
        BUILD_DATE="$(date '+%Y%m%d')"
    fi
 }
 build_backend() {
@@ -137,7 +146,13 @@ build_backend() {
    if [ "$NO_TEST" = "0" ]; then
        echo "Executing backend unit testing..."
        go clean -cache
        if [ -z "$SKIP_TESTS" ]; then
            go test ./... -v
        else
            echo "(Skip unit test \"$SKIP_TESTS\")"
            go test ./... -v -skip "$SKIP_TESTS"
        fi
        if [ "$?" != "0" ]; then
            echo_red "Error: Failed to pass unit testing"
@@ -172,6 +187,17 @@ build_frontend() {
        fi
    fi
    if [ "$NO_TEST" = "0" ]; then
        echo "Executing frontend unit testing..."
        npm run test
        if [ "$?" != "0" ]; then
            echo_red "Error: Failed to pass unit testing"
            exit 1
        fi
    fi
    echo "Building frontend files ($RELEASE_TYPE)..."
    if [ "$RELEASE" = "0" ]; then
@@ -185,7 +211,7 @@ build_package() {
    package_file_name="$VERSION";
    if [ "$RELEASE" = "0" ]; then
-        package_file_name="$package_file_name-$(date '+%Y%m%d')"
+        package_file_name="$package_file_name-$BUILD_DATE"
    fi
    package_file_name="ezbookkeeping-$package_file_name-$(arch).tar.gz"
@@ -219,7 +245,7 @@ build_docker() {
    docker_tag="$VERSION"
    if [ "$RELEASE" = "0" ]; then
-        docker_tag="SNAPSHOT-$(date '+%Y%m%d')";
+        docker_tag="SNAPSHOT-$BUILD_DATE";
    fi
    docker_tag="ezbookkeeping:$docker_tag"
@@ -1,14 +1,16 @@
 package cmd
 import (
-	"github.com/urfave/cli/v2"
+	"context"
 	"github.com/urfave/cli/v3"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 )
 func bindAction(fn core.CliHandlerFunc) cli.ActionFunc {
-	return func(cliCtx *cli.Context) error {
+	return func(ctx context.Context, cmd *cli.Command) error {
-		c := core.WrapCilContext(cliCtx)
+		c := core.WrapCilContext(ctx, cmd)
 		return fn(c)
 	}
 }
@@ -3,7 +3,7 @@ package cmd
 import (
 	"fmt"
-	"github.com/urfave/cli/v2"
+	"github.com/urfave/cli/v3"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/cron"
@@ -14,7 +14,7 @@ import (
 var CronJobs = &cli.Command{
 	Name:  "cron",
 	Usage: "ezBookkeeping cron job utilities",
-	Subcommands: []*cli.Command{
+	Commands: []*cli.Command{
 		{
 			Name:   "list",
 			Usage:  "List all enabled cron jobs",
@@ -1,7 +1,7 @@
 package cmd
 import (
-	"github.com/urfave/cli/v2"
+	"github.com/urfave/cli/v3"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/datastore"
@@ -13,7 +13,7 @@ import (
 var Database = &cli.Command{
 	Name:  "database",
 	Usage: "ezBookkeeping database maintenance",
-	Subcommands: []*cli.Command{
+	Commands: []*cli.Command{
 		{
 			Name:   "update",
 			Usage:  "Update database structure",
@@ -101,6 +101,14 @@ func updateAllDatabaseTablesStructure(c *core.CliContext) error {
 	log.BootInfof(c, "[database.updateAllDatabaseTablesStructure] transaction category table maintained successfully")
 	err = datastore.Container.UserDataStore.SyncStructs(new(models.TransactionTagGroup))
 	if err != nil {
 		return err
 	}
 	log.BootInfof(c, "[database.updateAllDatabaseTablesStructure] transaction tag group table maintained successfully")
 	err = datastore.Container.UserDataStore.SyncStructs(new(models.TransactionTag))
 	if err != nil {
@@ -133,5 +141,37 @@ func updateAllDatabaseTablesStructure(c *core.CliContext) error {
 	log.BootInfof(c, "[database.updateAllDatabaseTablesStructure] transaction picture table maintained successfully")
 	err = datastore.Container.UserDataStore.SyncStructs(new(models.UserCustomExchangeRate))
 	if err != nil {
 		return err
 	}
 	log.BootInfof(c, "[database.updateAllDatabaseTablesStructure] user custom exchange rate table maintained successfully")
 	err = datastore.Container.UserDataStore.SyncStructs(new(models.UserApplicationCloudSetting))
 	if err != nil {
 		return err
 	}
 	log.BootInfof(c, "[database.updateAllDatabaseTablesStructure] user application cloud settings table maintained successfully")
 	err = datastore.Container.UserDataStore.SyncStructs(new(models.UserExternalAuth))
 	if err != nil {
 		return err
 	}
 	log.BootInfof(c, "[database.updateAllDatabaseTablesStructure] user external auth table maintained successfully")
 	err = datastore.Container.UserDataStore.SyncStructs(new(models.InsightsExplorer))
 	if err != nil {
 		return err
 	}
 	log.BootInfof(c, "[database.updateAllDatabaseTablesStructure] insights explorer table maintained successfully")
 	return nil
 }
@@ -9,6 +9,7 @@ import (
 	"github.com/mayswind/ezbookkeeping/pkg/datastore"
 	"github.com/mayswind/ezbookkeeping/pkg/duplicatechecker"
 	"github.com/mayswind/ezbookkeeping/pkg/exchangerates"
 	"github.com/mayswind/ezbookkeeping/pkg/llm"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/mail"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
@@ -90,6 +91,15 @@ func initializeSystem(c *core.CliContext) (*settings.Config, error) {
 		return nil, err
 	}
 	err = llm.InitializeLargeLanguageModelProvider(config)
 	if err != nil {
 		if !isDisableBootLog {
 			log.BootErrorf(c, "[initializer.initializeSystem] initializes large language model provider failed, because %s", err.Error())
 		}
 		return nil, err
 	}
 	err = uuid.InitializeUuidGenerator(config)
 	if err != nil {
@@ -152,11 +162,63 @@ func getConfigWithoutSensitiveData(config *settings.Config) *settings.Config {
 		return config
 	}
 	if clonedConfig.DatabaseConfig.DatabasePassword != "" {
 		clonedConfig.DatabaseConfig.DatabasePassword = "****"
 	}
 	if clonedConfig.SMTPConfig.SMTPPasswd != "" {
 		clonedConfig.SMTPConfig.SMTPPasswd = "****"
 	}
 	if clonedConfig.MinIOConfig.SecretAccessKey != "" {
 		clonedConfig.MinIOConfig.SecretAccessKey = "****"
 	}
 	if clonedConfig.SecretKey != "" {
 		clonedConfig.SecretKey = "****"
 	}
 	if clonedConfig.AmapApplicationSecret != "" {
 		clonedConfig.AmapApplicationSecret = "****"
 	}
 	if clonedConfig.WebDAVConfig != nil && clonedConfig.WebDAVConfig.Password != "" {
 		clonedConfig.WebDAVConfig.Password = "****"
 	}
 	if clonedConfig.ReceiptImageRecognitionLLMConfig != nil {
 		if clonedConfig.ReceiptImageRecognitionLLMConfig.OpenAIAPIKey != "" {
 			clonedConfig.ReceiptImageRecognitionLLMConfig.OpenAIAPIKey = "****"
 		}
 		if clonedConfig.ReceiptImageRecognitionLLMConfig.OpenAICompatibleAPIKey != "" {
 			clonedConfig.ReceiptImageRecognitionLLMConfig.OpenAICompatibleAPIKey = "****"
 		}
 		if clonedConfig.ReceiptImageRecognitionLLMConfig.AnthropicCompatibleAPIKey != "" {
 			clonedConfig.ReceiptImageRecognitionLLMConfig.AnthropicCompatibleAPIKey = "****"
 		}
 		if clonedConfig.ReceiptImageRecognitionLLMConfig.AnthropicAPIKey != "" {
 			clonedConfig.ReceiptImageRecognitionLLMConfig.AnthropicAPIKey = "****"
 		}
 		if clonedConfig.ReceiptImageRecognitionLLMConfig.OpenRouterAPIKey != "" {
 			clonedConfig.ReceiptImageRecognitionLLMConfig.OpenRouterAPIKey = "****"
 		}
 		if clonedConfig.ReceiptImageRecognitionLLMConfig.LMStudioToken != "" {
 			clonedConfig.ReceiptImageRecognitionLLMConfig.LMStudioToken = "****"
 		}
 		if clonedConfig.ReceiptImageRecognitionLLMConfig.GoogleAIAPIKey != "" {
 			clonedConfig.ReceiptImageRecognitionLLMConfig.GoogleAIAPIKey = "****"
 		}
 	}
 	if clonedConfig.OAuth2ClientSecret != "" {
 		clonedConfig.OAuth2ClientSecret = "****"
 	}
 	return clonedConfig
 }
@@ -3,7 +3,7 @@ package cmd
 import (
 	"fmt"
-	"github.com/urfave/cli/v2"
+	"github.com/urfave/cli/v3"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
@@ -13,7 +13,7 @@ import (
 var SecurityUtils = &cli.Command{
 	Name:  "security",
 	Usage: "ezBookkeeping security utilities",
-	Subcommands: []*cli.Command{
+	Commands: []*cli.Command{
 		{
 			Name:   "gen-secret-key",
 			Usage:  "Generate a random secret key",
@@ -4,7 +4,7 @@ import (
 	"fmt"
 	"os"
-	"github.com/urfave/cli/v2"
+	"github.com/urfave/cli/v3"
 	clis "github.com/mayswind/ezbookkeeping/pkg/cli"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
@@ -18,7 +18,7 @@ import (
 var UserData = &cli.Command{
 	Name:  "userdata",
 	Usage: "ezBookkeeping user data maintenance",
-	Subcommands: []*cli.Command{
+	Commands: []*cli.Command{
 		{
 			Name:   "user-add",
 			Usage:  "Add new user",
@@ -114,6 +114,63 @@ var UserData = &cli.Command{
 				},
 			},
 		},
 		{
 			Name:   "user-set-restrict-features",
 			Usage:  "Set restrictions of user features",
 			Action: bindAction(setUserFeatureRestriction),
 			Flags: []cli.Flag{
 				&cli.StringFlag{
 					Name:     "username",
 					Aliases:  []string{"n"},
 					Required: true,
 					Usage:    "Specific user name",
 				},
 				&cli.StringFlag{
 					Name:     "features",
 					Aliases:  []string{"t"},
 					Required: true,
 					Usage:    "Specific feature types (feature types separated by commas)",
 				},
 			},
 		},
 		{
 			Name:   "user-add-restrict-features",
 			Usage:  "Add restrictions of user features",
 			Action: bindAction(addUserFeatureRestriction),
 			Flags: []cli.Flag{
 				&cli.StringFlag{
 					Name:     "username",
 					Aliases:  []string{"n"},
 					Required: true,
 					Usage:    "Specific user name",
 				},
 				&cli.StringFlag{
 					Name:     "features",
 					Aliases:  []string{"t"},
 					Required: true,
 					Usage:    "Specific feature types (feature types separated by commas)",
 				},
 			},
 		},
 		{
 			Name:   "user-remove-restrict-features",
 			Usage:  "Remove restrictions of user features",
 			Action: bindAction(removeUserFeatureRestriction),
 			Flags: []cli.Flag{
 				&cli.StringFlag{
 					Name:     "username",
 					Aliases:  []string{"n"},
 					Required: true,
 					Usage:    "Specific user name",
 				},
 				&cli.StringFlag{
 					Name:     "features",
 					Aliases:  []string{"t"},
 					Required: true,
 					Usage:    "Specific feature types (feature types separated by commas)",
 				},
 			},
 		},
 		{
 			Name:   "user-resend-verify-email",
 			Usage:  "Resend user verify email",
@@ -192,6 +249,44 @@ var UserData = &cli.Command{
 				},
 			},
 		},
 		{
 			Name:   "user-session-new",
 			Usage:  "Create new session for user",
 			Action: bindAction(createNewUserToken),
 			Flags: []cli.Flag{
 				&cli.StringFlag{
 					Name:     "username",
 					Aliases:  []string{"n"},
 					Required: true,
 					Usage:    "Specific user name",
 				},
 				&cli.StringFlag{
 					Name:     "type",
 					Aliases:  []string{"t"},
 					Required: false,
 					Usage:    "Specific token type, supports \"api\" and \"mcp\", default is \"api\"",
 				},
 				&cli.Int64Flag{
 					Name:     "expiresInSeconds",
 					Aliases:  []string{"e"},
 					Required: true,
 					Usage:    "Token expiration time in seconds (0 - 4294967295, 0 means no expiration).",
 				},
 			},
 		},
 		{
 			Name:   "user-session-revoke",
 			Usage:  "Revoke the specified user session",
 			Action: bindAction(revokeUserToken),
 			Flags: []cli.Flag{
 				&cli.StringFlag{
 					Name:     "token",
 					Aliases:  []string{"t"},
 					Required: false,
 					Usage:    "Specific token content",
 				},
 			},
 		},
 		{
 			Name:   "user-session-clear",
 			Usage:  "Clear user all sessions",
@@ -423,6 +518,81 @@ func disableUser(c *core.CliContext) error {
 	return nil
 }
 func setUserFeatureRestriction(c *core.CliContext) error {
 	_, err := initializeSystem(c)
 	if err != nil {
 		return err
 	}
 	username := c.String("username")
 	featureRestriction := core.ParseUserFeatureRestrictions(c.String("features"))
 	err = clis.UserData.SetUserFeatureRestrictions(c, username, featureRestriction)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.setUserFeatureRestriction] error occurs when setting user feature restriction")
 		return err
 	}
 	log.CliInfof(c, "[user_data.setUserFeatureRestriction] user \"%s\" has been set new feature restriction", username)
 	return nil
 }
 func addUserFeatureRestriction(c *core.CliContext) error {
 	_, err := initializeSystem(c)
 	if err != nil {
 		return err
 	}
 	username := c.String("username")
 	featureRestriction := core.ParseUserFeatureRestrictions(c.String("features"))
 	if featureRestriction < 1 {
 		log.CliErrorf(c, "[user_data.addUserFeatureRestriction] nothing has been modified")
 		return nil
 	}
 	err = clis.UserData.AddUserFeatureRestrictions(c, username, featureRestriction)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.addUserFeatureRestriction] error occurs when adding user feature restriction")
 		return err
 	}
 	log.CliInfof(c, "[user_data.addUserFeatureRestriction] user \"%s\" has been add new feature restriction", username)
 	return nil
 }
 func removeUserFeatureRestriction(c *core.CliContext) error {
 	_, err := initializeSystem(c)
 	if err != nil {
 		return err
 	}
 	username := c.String("username")
 	featureRestriction := core.ParseUserFeatureRestrictions(c.String("features"))
 	if featureRestriction < 1 {
 		log.CliErrorf(c, "[user_data.removeUserFeatureRestriction] nothing has been modified")
 		return nil
 	}
 	err = clis.UserData.RemoveUserFeatureRestrictions(c, username, featureRestriction)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.removeUserFeatureRestriction] error occurs when removing user feature restriction")
 		return err
 	}
 	log.CliInfof(c, "[user_data.removeUserFeatureRestriction] user \"%s\" has been removed new feature restriction", username)
 	return nil
 }
 func resendUserVerifyEmail(c *core.CliContext) error {
 	_, err := initializeSystem(c)
@@ -549,6 +719,64 @@ func listUserTokens(c *core.CliContext) error {
 	return nil
 }
 func createNewUserToken(c *core.CliContext) error {
 	_, err := initializeSystem(c)
 	if err != nil {
 		return err
 	}
 	username := c.String("username")
 	tokenType := c.String("type")
 	expiresInSeconds := c.Int64("expiresInSeconds")
 	if tokenType == "" {
 		tokenType = "api"
 	}
 	if tokenType != "api" && tokenType != "mcp" {
 		log.CliErrorf(c, "[user_data.createNewUserToken] token type is invalid")
 		return nil
 	}
 	if expiresInSeconds < 0 || expiresInSeconds > 4294967295 {
 		log.CliErrorf(c, "[user_data.createNewUserToken] expiresInSeconds is out of range (0 - 4294967295)")
 		return nil
 	}
 	token, tokenString, err := clis.UserData.CreateNewUserToken(c, username, tokenType, expiresInSeconds)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.createNewUserToken] error occurs when creating user token")
 		return err
 	}
 	printTokenInfo(token)
 	fmt.Printf("[NewToken] %s\n", tokenString)
 	return nil
 }
 func revokeUserToken(c *core.CliContext) error {
 	_, err := initializeSystem(c)
 	if err != nil {
 		return err
 	}
 	token := c.String("token")
 	err = clis.UserData.RevokeUserToken(c, token)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.revokeUserToken] error occurs when revoking user token")
 		return err
 	}
 	log.CliInfof(c, "[user_data.revokeUserToken] the specified user token has been revoked successfully")
 	return nil
 }
 func clearUserTokens(c *core.CliContext) error {
 	_, err := initializeSystem(c)
@@ -626,7 +854,11 @@ func exportUserTransaction(c *core.CliContext) error {
 	filePath := c.String("file")
 	fileType := c.String("type")
-	if fileType != "" && fileType != "csv" && fileType != "tsv" {
+	if fileType == "" {
 		fileType = "csv"
 	}
 	if fileType != "csv" && fileType != "tsv" {
 		log.CliErrorf(c, "[user_data.exportUserTransaction] export file type is not supported")
 		return errs.ErrNotSupported
 	}
@@ -725,16 +957,23 @@ func printUserInfo(user *models.User) {
 	fmt.Printf("[Language] %s\n", user.Language)
 	fmt.Printf("[DefaultCurrency] %s\n", user.DefaultCurrency)
 	fmt.Printf("[FirstDayOfWeek] %s (%d)\n", user.FirstDayOfWeek, user.FirstDayOfWeek)
 	fmt.Printf("[FiscalYearStart] %s (%d)\n", user.FiscalYearStart, user.FiscalYearStart)
 	fmt.Printf("[CalendarDisplayType] %s (%d)\n", user.CalendarDisplayType, user.CalendarDisplayType)
 	fmt.Printf("[DateDisplayType] %s (%d)\n", user.DateDisplayType, user.DateDisplayType)
 	fmt.Printf("[LongDateFormat] %s (%d)\n", user.LongDateFormat, user.LongDateFormat)
 	fmt.Printf("[ShortDateFormat] %s (%d)\n", user.ShortDateFormat, user.ShortDateFormat)
 	fmt.Printf("[LongTimeFormat] %s (%d)\n", user.LongTimeFormat, user.LongTimeFormat)
 	fmt.Printf("[ShortTimeFormat] %s (%d)\n", user.ShortTimeFormat, user.ShortTimeFormat)
 	fmt.Printf("[FiscalYearFormat] %s (%d)\n", user.FiscalYearFormat, user.FiscalYearFormat)
 	fmt.Printf("[CurrencyDisplayType] %s (%d)\n", user.CurrencyDisplayType, user.CurrencyDisplayType)
 	fmt.Printf("[NumeralSystem] %s (%d)\n", user.NumeralSystem, user.NumeralSystem)
 	fmt.Printf("[DecimalSeparator] %s (%d)\n", user.DecimalSeparator, user.DecimalSeparator)
 	fmt.Printf("[DigitGroupingSymbol] %s (%d)\n", user.DigitGroupingSymbol, user.DigitGroupingSymbol)
 	fmt.Printf("[DigitGrouping] %s (%d)\n", user.DigitGrouping, user.DigitGrouping)
-	fmt.Printf("[CurrencyDisplayType] %s (%d)\n", user.CurrencyDisplayType, user.CurrencyDisplayType)
+	fmt.Printf("[CoordinateDisplayType] %s (%d)\n", user.CoordinateDisplayType, user.CoordinateDisplayType)
 	fmt.Printf("[ExpenseAmountColor] %s (%d)\n", user.ExpenseAmountColor, user.ExpenseAmountColor)
 	fmt.Printf("[IncomeAmountColor] %s (%d)\n", user.IncomeAmountColor, user.IncomeAmountColor)
 	fmt.Printf("[FeatureRestriction] %s (%d)\n", user.FeatureRestriction, user.FeatureRestriction)
 	fmt.Printf("[Deleted] %t\n", user.Deleted)
 	fmt.Printf("[EmailVerified] %t\n", user.EmailVerified)
 	fmt.Printf("[CreatedAt] %s (%d)\n", utils.FormatUnixTimeToLongDateTimeInServerTimezone(user.CreatedUnixTime), user.CreatedUnixTime)
@@ -5,7 +5,7 @@ import (
 	"fmt"
 	"net"
-	"github.com/urfave/cli/v2"
+	"github.com/urfave/cli/v3"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
@@ -18,7 +18,7 @@ import (
 var Utilities = &cli.Command{
 	Name:  "utility",
 	Usage: "ezBookkeeping utilities",
-	Subcommands: []*cli.Command{
+	Commands: []*cli.Command{
 		{
 			Name:   "parse-default-request-id",
 			Usage:  "Parse a request id which is generated by default request generator and show the details",
@@ -81,13 +81,13 @@ func sendTestMail(c *core.CliContext) error {
 		return err
 	}
-	if !config.EnableSMTP || mail.Container.Current == nil {
+	if !config.EnableSMTP {
 		return errs.ErrSMTPServerNotEnabled
 	}
 	toAddress := c.String("to")
-	err = mail.Container.Current.SendMail(&mail.MailMessage{
+	err = mail.Container.SendMail(&mail.MailMessage{
 		To:      toAddress,
 		Subject: "ezBookkeeping test e-mail",
 		Body:    "This is a test e-mail",
@@ -2,6 +2,7 @@ package cmd
 import (
 	"fmt"
 	"net/http"
 	"path/filepath"
 	"time"
@@ -11,13 +12,15 @@ import (
 	"github.com/gin-gonic/gin"
 	"github.com/gin-gonic/gin/binding"
 	"github.com/go-playground/validator/v10"
-	"github.com/urfave/cli/v2"
+	"github.com/urfave/cli/v3"
 	"github.com/mayswind/ezbookkeeping/pkg/api"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/cron"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/mcp"
 	"github.com/mayswind/ezbookkeeping/pkg/middlewares"
 	"github.com/mayswind/ezbookkeeping/pkg/requestid"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
@@ -29,7 +32,7 @@ import (
 var WebServer = &cli.Command{
 	Name:  "server",
 	Usage: "ezBookkeeping web server operation",
-	Subcommands: []*cli.Command{
+	Commands: []*cli.Command{
 		{
 			Name:   "run",
 			Usage:  "Run ezBookkeeping web server",
@@ -63,6 +66,20 @@ func startWebServer(c *core.CliContext) error {
 		return err
 	}
 	err = mcp.InitializeMCPHandlers(config)
 	if err != nil {
 		log.BootErrorf(c, "[webserver.startWebServer] initializes mcp handlers failed, because %s", err.Error())
 		return err
 	}
 	err = oauth2.InitializeOAuth2Provider(config)
 	if err != nil {
 		log.BootErrorf(c, "[webserver.startWebServer] initializes oauth 2.0 provider failed, because %s", err.Error())
 		return err
 	}
 	err = cron.InitializeCronJobSchedulerContainer(c, config, true)
 	if err != nil {
@@ -70,7 +87,7 @@ func startWebServer(c *core.CliContext) error {
 		return err
 	}
-	serverInfo := fmt.Sprintf("current server id is %d, current instance id is %d", requestid.Container.Current.GetCurrentServerUniqId(), requestid.Container.Current.GetCurrentInstanceUniqId())
+	serverInfo := fmt.Sprintf("current server id is %d, current instance id is %d", requestid.Container.GetCurrentServerUniqId(), requestid.Container.GetCurrentInstanceUniqId())
 	uuidServerInfo := ""
 	if config.UuidGeneratorType == settings.InternalUuidGeneratorType {
 		uuidServerInfo = fmt.Sprintf(", current uuid server id is %d", config.UuidServerId)
@@ -95,14 +112,19 @@ func startWebServer(c *core.CliContext) error {
 		_ = v.RegisterValidation("notBlank", validators.NotBlank)
 		_ = v.RegisterValidation("validUsername", validators.ValidUsername)
 		_ = v.RegisterValidation("validEmail", validators.ValidEmail)
 		_ = v.RegisterValidation("validNickname", validators.ValidNickname)
 		_ = v.RegisterValidation("validCurrency", validators.ValidCurrency)
 		_ = v.RegisterValidation("validHexRGBColor", validators.ValidHexRGBColor)
 		_ = v.RegisterValidation("validAmountFilter", validators.ValidAmountFilter)
 		_ = v.RegisterValidation("validTagFilter", validators.ValidTagFilter)
 		_ = v.RegisterValidation("validFiscalYearStart", validators.ValidateFiscalYearStart)
 	}
 	router.NoRoute(bindApi(api.Default.ApiNotFound))
 	router.NoMethod(bindApi(api.Default.MethodNotAllowed))
 	serverSettingsCacheStore := persistence.NewInMemoryStore(time.Minute)
 	router.StaticFile("/", filepath.Join(config.StaticRootPath, "index.html"))
 	router.Static("/js", filepath.Join(config.StaticRootPath, "js"))
 	router.Static("/css", filepath.Join(config.StaticRootPath, "css"))
@@ -114,12 +136,14 @@ func startWebServer(c *core.CliContext) error {
 	router.StaticFile("favicon.png", filepath.Join(config.StaticRootPath, "favicon.png"))
 	router.StaticFile("touchicon.png", filepath.Join(config.StaticRootPath, "touchicon.png"))
 	router.StaticFile("manifest.json", filepath.Join(config.StaticRootPath, "manifest.json"))
 	router.StaticFile("sw.js", filepath.Join(config.StaticRootPath, "sw.js"))
 	router.GET("/server_settings.js", bindCachedJs(api.ServerSettings.ServerSettingsJavascriptHandler, serverSettingsCacheStore))
-	mobileEntryRoute := router.Group("/mobile")
+	for i := 0; i < len(workboxFileNames); i++ {
-	mobileEntryRoute.Use(bindMiddleware(middlewares.ServerSettingsCookie(config)))
+		router.StaticFile("/"+workboxFileNames[i], filepath.Join(config.StaticRootPath, workboxFileNames[i]))
 	{
 		mobileEntryRoute.StaticFile("/", filepath.Join(config.StaticRootPath, "mobile.html"))
 	}
 	router.StaticFile("/mobile", filepath.Join(config.StaticRootPath, "mobile.html"))
 	router.Static("/mobile/js", filepath.Join(config.StaticRootPath, "js"))
 	router.Static("/mobile/css", filepath.Join(config.StaticRootPath, "css"))
 	router.Static("/mobile/img", filepath.Join(config.StaticRootPath, "img"))
@@ -129,16 +153,13 @@ func startWebServer(c *core.CliContext) error {
 	router.StaticFile("/mobile/touchicon.png", filepath.Join(config.StaticRootPath, "touchicon.png"))
 	router.StaticFile("/mobile/manifest.json", filepath.Join(config.StaticRootPath, "manifest.json"))
 	router.StaticFile("/mobile/sw.js", filepath.Join(config.StaticRootPath, "sw.js"))
 	router.GET("/mobile/server_settings.js", bindCachedJs(api.ServerSettings.ServerSettingsJavascriptHandler, serverSettingsCacheStore))
 	for i := 0; i < len(workboxFileNames); i++ {
 		router.StaticFile("/mobile/"+workboxFileNames[i], filepath.Join(config.StaticRootPath, workboxFileNames[i]))
 	}
-	desktopEntryRoute := router.Group("/desktop")
+	router.StaticFile("/desktop", filepath.Join(config.StaticRootPath, "desktop.html"))
 	desktopEntryRoute.Use(bindMiddleware(middlewares.ServerSettingsCookie(config)))
 	{
 		desktopEntryRoute.StaticFile("/", filepath.Join(config.StaticRootPath, "desktop.html"))
 	}
 	router.Static("/desktop/js", filepath.Join(config.StaticRootPath, "js"))
 	router.Static("/desktop/css", filepath.Join(config.StaticRootPath, "css"))
 	router.Static("/desktop/img", filepath.Join(config.StaticRootPath, "img"))
@@ -148,6 +169,7 @@ func startWebServer(c *core.CliContext) error {
 	router.StaticFile("/desktop/touchicon.png", filepath.Join(config.StaticRootPath, "touchicon.png"))
 	router.StaticFile("/desktop/manifest.json", filepath.Join(config.StaticRootPath, "manifest.json"))
 	router.StaticFile("/desktop/sw.js", filepath.Join(config.StaticRootPath, "sw.js"))
 	router.GET("/desktop/server_settings.js", bindCachedJs(api.ServerSettings.ServerSettingsJavascriptHandler, serverSettingsCacheStore))
 	for i := 0; i < len(workboxFileNames); i++ {
 		router.StaticFile("/desktop/"+workboxFileNames[i], filepath.Join(config.StaticRootPath, workboxFileNames[i]))
@@ -155,7 +177,7 @@ func startWebServer(c *core.CliContext) error {
 	if config.AvatarProvider == core.USER_AVATAR_PROVIDER_INTERNAL {
 		avatarRoute := router.Group("/avatar")
-		avatarRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByQueryString))
+		avatarRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByQueryString(config)))
 		{
 			avatarRoute.GET("/:fileName", bindImage(api.Users.UserGetAvatarHandler))
 		}
@@ -163,7 +185,7 @@ func startWebServer(c *core.CliContext) error {
 	if config.EnableTransactionPictures {
 		pictureRoute := router.Group("/pictures")
-		pictureRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByQueryString))
+		pictureRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByQueryString(config)))
 		{
 			pictureRoute.GET("/:fileName", bindImage(api.TransactionPictures.TransactionPictureGetHandler))
 		}
@@ -171,13 +193,8 @@ func startWebServer(c *core.CliContext) error {
 	router.GET("/healthz.json", bindApi(api.Healths.HealthStatusHandler))
 	if config.Mode == settings.MODE_DEVELOPMENT {
 		devRoute := router.Group("/dev")
 		devRoute.GET("/cookies", bindMiddleware(middlewares.ServerSettingsCookie(config)))
 	}
 	proxyRoute := router.Group("/proxy")
-	proxyRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByQueryString))
+	proxyRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByQueryString(config)))
 	{
 		if config.EnableMapDataFetchProxy {
 			if config.MapProvider == settings.OpenStreetMapProvider ||
@@ -201,7 +218,7 @@ func startWebServer(c *core.CliContext) error {
 	if config.MapProvider == settings.AmapProvider && config.AmapSecurityVerificationMethod == settings.AmapSecurityVerificationInternalProxyMethod {
 		amapApiProxyRoute := router.Group("/_AMapService")
-		amapApiProxyRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByCookie))
+		amapApiProxyRoute.Use(bindMiddleware(middlewares.JWTAuthorizationByCookie(config)))
 		{
 			amapApiProxyRoute.GET("/*action", bindProxy(api.AmapApis.AmapApiProxyHandler))
 		}
@@ -214,23 +231,64 @@ func startWebServer(c *core.CliContext) error {
 		qrCodeRoute.GET("/mobile_url.png", bindCachedImage(api.QrCodes.MobileUrlQrCodeHandler, qrCodeCacheStore))
 	}
 	if config.EnableMCPServer {
 		mcpRoute := router.Group("/mcp")
 		mcpRoute.Use(bindMiddleware(middlewares.RequestId(config)))
 		mcpRoute.Use(bindMiddleware(middlewares.RequestLog))
 		mcpRoute.Use(bindMiddleware(middlewares.MCPServerIpLimit(config)))
 		mcpRoute.Use(bindMiddleware(middlewares.JWTMCPAuthorization(config)))
 		{
 			mcpRoute.POST("", bindJSONRPCApi(map[string]core.JSONRPCApiHandlerFunc{
 				"initialize":     api.ModelContextProtocols.InitializeHandler,
 				"resources/list": api.ModelContextProtocols.ListResourcesHandler,
 				"resources/read": api.ModelContextProtocols.ReadResourceHandler,
 				"tools/list":     api.ModelContextProtocols.ListToolsHandler,
 				"tools/call":     api.ModelContextProtocols.CallToolHandler,
 				"ping":           api.ModelContextProtocols.PingHandler,
 			}, map[string]int{
 				"notifications/initialized": http.StatusAccepted,
 			}))
 			mcpRoute.GET("", bindApi(api.Default.MethodNotAllowed))
 		}
 	}
 	if config.EnableOAuth2Login {
 		oauth2Route := router.Group("/oauth2")
 		oauth2Route.Use(bindMiddleware(middlewares.RequestId(config)))
 		oauth2Route.Use(bindMiddleware(middlewares.RequestLog))
 		{
 			oauth2Route.GET("/login", bindRedirect(api.OAuth2Authentications.LoginHandler))
 			oauth2Route.GET("/callback", bindRedirect(api.OAuth2Authentications.CallbackHandler))
 		}
 	}
 	apiRoute := router.Group("/api")
 	apiRoute.Use(bindMiddleware(middlewares.RequestId(config)))
 	apiRoute.Use(bindMiddleware(middlewares.RequestLog))
 	{
 		if config.EnableInternalAuth {
 			apiRoute.POST("/authorize.json", bindApiWithTokenUpdate(api.Authorizations.AuthorizeHandler, config))
 		}
-		if config.EnableTwoFactor {
+		if config.EnableInternalAuth && config.EnableTwoFactor {
 			twoFactorRoute := apiRoute.Group("/2fa")
-			twoFactorRoute.Use(bindMiddleware(middlewares.JWTTwoFactorAuthorization))
+			twoFactorRoute.Use(bindMiddleware(middlewares.JWTTwoFactorAuthorization(config)))
 			{
 				twoFactorRoute.POST("/authorize.json", bindApiWithTokenUpdate(api.Authorizations.TwoFactorAuthorizeHandler, config))
 				twoFactorRoute.POST("/recovery.json", bindApiWithTokenUpdate(api.Authorizations.TwoFactorAuthorizeByRecoveryCodeHandler, config))
 			}
 		}
-		if config.EnableUserRegister {
+		if config.EnableOAuth2Login {
 			oauth2Route := apiRoute.Group("/oauth2")
 			oauth2Route.Use(bindMiddleware(middlewares.JWTOAuth2CallbackAuthorization(config)))
 			{
 				oauth2Route.POST("/authorize.json", bindApiWithTokenUpdate(api.Authorizations.OAuth2CallbackAuthorizeHandler, config))
 			}
 		}
 		if config.EnableInternalAuth && config.EnableUserRegister {
 			apiRoute.POST("/register.json", bindApiWithTokenUpdate(api.Users.UserRegisterHandler, config))
 		}
@@ -238,17 +296,17 @@ func startWebServer(c *core.CliContext) error {
 			apiRoute.POST("/verify_email/resend.json", bindApi(api.Users.UserSendVerifyEmailByUnloginUserHandler))
 			emailVerifyRoute := apiRoute.Group("/verify_email")
-			emailVerifyRoute.Use(bindMiddleware(middlewares.JWTEmailVerifyAuthorization))
+			emailVerifyRoute.Use(bindMiddleware(middlewares.JWTEmailVerifyAuthorization(config)))
 			{
 				emailVerifyRoute.POST("/by_token.json", bindApi(api.Users.UserEmailVerifyHandler))
 			}
 		}
-		if config.EnableUserForgetPassword {
+		if config.EnableInternalAuth && config.EnableUserForgetPassword {
 			apiRoute.POST("/forget_password/request.json", bindApi(api.ForgetPasswords.UserForgetPasswordRequestHandler))
 			resetPasswordRoute := apiRoute.Group("/forget_password/reset")
-			resetPasswordRoute.Use(bindMiddleware(middlewares.JWTResetPasswordAuthorization))
+			resetPasswordRoute.Use(bindMiddleware(middlewares.JWTResetPasswordAuthorization(config)))
 			{
 				resetPasswordRoute.POST("/by_token.json", bindApi(api.ForgetPasswords.UserResetPasswordHandler))
 			}
@@ -257,10 +315,13 @@ func startWebServer(c *core.CliContext) error {
 		apiRoute.GET("/logout.json", bindApiWithTokenUpdate(api.Tokens.TokenRevokeCurrentHandler, config))
 		apiV1Route := apiRoute.Group("/v1")
-		apiV1Route.Use(bindMiddleware(middlewares.JWTAuthorization))
+		apiV1Route.Use(bindMiddleware(middlewares.JWTAuthorization(config)))
 		apiV1Route.Use(bindMiddleware(middlewares.APITokenIpLimit(config)))
 		{
 			// Tokens
 			apiV1Route.GET("/tokens/list.json", bindApi(api.Tokens.TokenListHandler))
 			apiV1Route.POST("/tokens/generate/api.json", bindApi(api.Tokens.TokenGenerateAPIHandler))
 			apiV1Route.POST("/tokens/generate/mcp.json", bindApi(api.Tokens.TokenGenerateMCPHandler))
 			apiV1Route.POST("/tokens/revoke.json", bindApi(api.Tokens.TokenRevokeHandler))
 			apiV1Route.POST("/tokens/revoke_all.json", bindApi(api.Tokens.TokenRevokeAllHandler))
 			apiV1Route.POST("/tokens/refresh.json", bindApiWithTokenUpdate(api.Tokens.TokenRefreshHandler, config))
@@ -278,6 +339,17 @@ func startWebServer(c *core.CliContext) error {
 				apiV1Route.POST("/users/verify_email/resend.json", bindApi(api.Users.UserSendVerifyEmailByLoginedUserHandler))
 			}
 			// External Authentications
 			if config.EnableOAuth2Login {
 				apiV1Route.GET("/users/external_auth/list.json", bindApi(api.UserExternalAuths.ExternalAuthListHanlder))
 				apiV1Route.POST("/users/external_auth/unlink.json", bindApi(api.UserExternalAuths.UnlinkExternalAuthHandler))
 			}
 			// Application Cloud Settings
 			apiV1Route.GET("/users/settings/cloud/get.json", bindApi(api.UserApplicationCloudSettings.ApplicationSettingsGetHandler))
 			apiV1Route.POST("/users/settings/cloud/update.json", bindApi(api.UserApplicationCloudSettings.ApplicationSettingsUpdateHandler))
 			apiV1Route.POST("/users/settings/cloud/disable.json", bindApi(api.UserApplicationCloudSettings.ApplicationSettingsDisableHandler))
 			// Two-Factor Authorization
 			if config.EnableTwoFactor {
 				apiV1Route.GET("/users/2fa/status.json", bindApi(api.TwoFactorAuthorizations.TwoFactorStatusHandler))
@@ -289,7 +361,9 @@ func startWebServer(c *core.CliContext) error {
 			// Data
 			apiV1Route.GET("/data/statistics.json", bindApi(api.DataManagements.DataStatisticsHandler))
-			apiV1Route.POST("/data/clear.json", bindApi(api.DataManagements.ClearDataHandler))
+			apiV1Route.POST("/data/clear/all.json", bindApi(api.DataManagements.ClearAllDataHandler))
 			apiV1Route.POST("/data/clear/transactions.json", bindApi(api.DataManagements.ClearAllTransactionsHandler))
 			apiV1Route.POST("/data/clear/transactions/by_account.json", bindApi(api.DataManagements.ClearAllTransactionsByAccountHandler))
 			if config.EnableDataExport {
 				apiV1Route.GET("/data/export.csv", bindCsv(api.DataManagements.ExportDataToEzbookkeepingCSVHandler))
@@ -304,22 +378,29 @@ func startWebServer(c *core.CliContext) error {
 			apiV1Route.POST("/accounts/hide.json", bindApi(api.Accounts.AccountHideHandler))
 			apiV1Route.POST("/accounts/move.json", bindApi(api.Accounts.AccountMoveHandler))
 			apiV1Route.POST("/accounts/delete.json", bindApi(api.Accounts.AccountDeleteHandler))
 			apiV1Route.POST("/accounts/sub_account/delete.json", bindApi(api.Accounts.SubAccountDeleteHandler))
 			// Transactions
 			apiV1Route.GET("/transactions/count.json", bindApi(api.Transactions.TransactionCountHandler))
 			apiV1Route.GET("/transactions/list.json", bindApi(api.Transactions.TransactionListHandler))
 			apiV1Route.GET("/transactions/list/by_month.json", bindApi(api.Transactions.TransactionMonthListHandler))
 			apiV1Route.GET("/transactions/list/all.json", bindApi(api.Transactions.TransactionListAllHandler))
 			apiV1Route.GET("/transactions/reconciliation_statements.json", bindApi(api.Transactions.TransactionReconciliationStatementHandler))
 			apiV1Route.GET("/transactions/statistics.json", bindApi(api.Transactions.TransactionStatisticsHandler))
 			apiV1Route.GET("/transactions/statistics/trends.json", bindApi(api.Transactions.TransactionStatisticsTrendsHandler))
 			apiV1Route.GET("/transactions/statistics/asset_trends.json", bindApi(api.Transactions.TransactionStatisticsAssetTrendsHandler))
 			apiV1Route.GET("/transactions/amounts.json", bindApi(api.Transactions.TransactionAmountsHandler))
 			apiV1Route.GET("/transactions/get.json", bindApi(api.Transactions.TransactionGetHandler))
 			apiV1Route.POST("/transactions/add.json", bindApi(api.Transactions.TransactionCreateHandler))
 			apiV1Route.POST("/transactions/modify.json", bindApi(api.Transactions.TransactionModifyHandler))
 			apiV1Route.POST("/transactions/move/all.json", bindApi(api.Transactions.TransactionMoveAllBetweenAccountsHandler))
 			apiV1Route.POST("/transactions/delete.json", bindApi(api.Transactions.TransactionDeleteHandler))
 			if config.EnableDataImport {
 				apiV1Route.POST("/transactions/parse_custom_file.json", bindApi(api.Transactions.TransactionParseImportCustomFileDataHandler))
 				apiV1Route.POST("/transactions/parse_import.json", bindApi(api.Transactions.TransactionParseImportFileHandler))
 				apiV1Route.POST("/transactions/import.json", bindApi(api.Transactions.TransactionImportHandler))
 				apiV1Route.GET("/transactions/import/process.json", bindApi(api.Transactions.TransactionImportProcessHandler))
 			}
 			// Transaction Pictures
@@ -338,10 +419,19 @@ func startWebServer(c *core.CliContext) error {
 			apiV1Route.POST("/transaction/categories/move.json", bindApi(api.TransactionCategories.CategoryMoveHandler))
 			apiV1Route.POST("/transaction/categories/delete.json", bindApi(api.TransactionCategories.CategoryDeleteHandler))
 			// Transaction Tag Groups
 			apiV1Route.GET("/transaction/tags/groups/list.json", bindApi(api.TransactionTagGroups.TagGroupListHandler))
 			apiV1Route.GET("/transaction/tags/groups/get.json", bindApi(api.TransactionTagGroups.TagGroupGetHandler))
 			apiV1Route.POST("/transaction/tags/groups/add.json", bindApi(api.TransactionTagGroups.TagGroupCreateHandler))
 			apiV1Route.POST("/transaction/tags/groups/modify.json", bindApi(api.TransactionTagGroups.TagGroupModifyHandler))
 			apiV1Route.POST("/transaction/tags/groups/move.json", bindApi(api.TransactionTagGroups.TagGroupMoveHandler))
 			apiV1Route.POST("/transaction/tags/groups/delete.json", bindApi(api.TransactionTagGroups.TagGroupDeleteHandler))
 			// Transaction Tags
 			apiV1Route.GET("/transaction/tags/list.json", bindApi(api.TransactionTags.TagListHandler))
 			apiV1Route.GET("/transaction/tags/get.json", bindApi(api.TransactionTags.TagGetHandler))
 			apiV1Route.POST("/transaction/tags/add.json", bindApi(api.TransactionTags.TagCreateHandler))
 			apiV1Route.POST("/transaction/tags/add_batch.json", bindApi(api.TransactionTags.TagCreateBatchHandler))
 			apiV1Route.POST("/transaction/tags/modify.json", bindApi(api.TransactionTags.TagModifyHandler))
 			apiV1Route.POST("/transaction/tags/hide.json", bindApi(api.TransactionTags.TagHideHandler))
 			apiV1Route.POST("/transaction/tags/move.json", bindApi(api.TransactionTags.TagMoveHandler))
@@ -356,8 +446,29 @@ func startWebServer(c *core.CliContext) error {
 			apiV1Route.POST("/transaction/templates/move.json", bindApi(api.TransactionTemplates.TemplateMoveHandler))
 			apiV1Route.POST("/transaction/templates/delete.json", bindApi(api.TransactionTemplates.TemplateDeleteHandler))
 			// Insights Explorers
 			apiV1Route.GET("/insights/explorers/list.json", bindApi(api.InsightsExplorers.InsightsExplorerListHandler))
 			apiV1Route.GET("/insights/explorers/get.json", bindApi(api.InsightsExplorers.InsightsExplorerGetHandler))
 			apiV1Route.POST("/insights/explorers/add.json", bindApi(api.InsightsExplorers.InsightsExplorerCreateHandler))
 			apiV1Route.POST("/insights/explorers/modify.json", bindApi(api.InsightsExplorers.InsightsExplorerModifyHandler))
 			apiV1Route.POST("/insights/explorers/hide.json", bindApi(api.InsightsExplorers.InsightsExplorerHideHandler))
 			apiV1Route.POST("/insights/explorers/move.json", bindApi(api.InsightsExplorers.InsightsExplorerMoveHandler))
 			apiV1Route.POST("/insights/explorers/delete.json", bindApi(api.InsightsExplorers.InsightsExplorerDeleteHandler))
 			// Large Language Models
 			if config.ReceiptImageRecognitionLLMConfig != nil && config.ReceiptImageRecognitionLLMConfig.LLMProvider != "" {
 				if config.TransactionFromAIImageRecognition {
 					apiV1Route.POST("/llm/transactions/recognize_receipt_image.json", bindApi(api.LargeLanguageModels.RecognizeReceiptImageHandler))
 				}
 			}
 			// Exchange Rates
 			apiV1Route.GET("/exchange_rates/latest.json", bindApi(api.ExchangeRates.LatestExchangeRateHandler))
 			apiV1Route.POST("/exchange_rates/user_custom/update.json", bindApi(api.ExchangeRates.UserCustomExchangeRateUpdateHandler))
 			apiV1Route.POST("/exchange_rates/user_custom/delete.json", bindApi(api.ExchangeRates.UserCustomExchangeRateDeleteHandler))
 			// System
 			apiV1Route.GET("/systems/version.json", bindApi(api.Systems.VersionHandler))
 		}
 	}
@@ -390,6 +501,19 @@ func bindMiddleware(fn core.MiddlewareHandlerFunc) gin.HandlerFunc {
 	}
 }
 func bindRedirect(fn core.RedirectHandlerFunc) gin.HandlerFunc {
 	return func(ginCtx *gin.Context) {
 		c := core.WrapWebContext(ginCtx)
 		url, err := fn(c)
 		if err != nil {
 			utils.PrintJsonErrorResult(c, err)
 		} else {
 			c.Redirect(http.StatusFound, url)
 		}
 	}
 }
 func bindApi(fn core.ApiHandlerFunc) gin.HandlerFunc {
 	return func(ginCtx *gin.Context) {
 		c := core.WrapWebContext(ginCtx)
@@ -420,6 +544,69 @@ func bindApiWithTokenUpdate(fn core.ApiHandlerFunc, config *settings.Config) gin
 	}
 }
 func bindJSONRPCApi(fns map[string]core.JSONRPCApiHandlerFunc, skipMethods map[string]int) gin.HandlerFunc {
 	return func(ginCtx *gin.Context) {
 		c := core.WrapWebContext(ginCtx)
 		var jsonRPCRequest core.JSONRPCRequest
 		reqErr := c.ShouldBindBodyWithJSON(&jsonRPCRequest)
 		if reqErr != nil {
 			utils.PrintJSONRPCErrorResult(c, nil, errs.NewIncompleteOrIncorrectSubmissionError(reqErr))
 			return
 		}
 		if skipMethods != nil {
 			httpStatusCode, exists := skipMethods[jsonRPCRequest.Method]
 			if exists {
 				c.AbortWithStatus(httpStatusCode)
 				return
 			}
 		}
 		fn, exists := fns[jsonRPCRequest.Method]
 		if !exists {
 			utils.PrintJSONRPCErrorResult(c, &jsonRPCRequest, errs.ErrApiNotFound)
 			return
 		}
 		result, err := fn(c, &jsonRPCRequest)
 		if err != nil {
 			utils.PrintJSONRPCErrorResult(c, &jsonRPCRequest, err)
 		} else {
 			utils.PrintJSONRPCSuccessResult(c, &jsonRPCRequest, result)
 		}
 	}
 }
 func bindEventStreamApi(fn core.EventStreamApiHandlerFunc) gin.HandlerFunc {
 	return func(ginCtx *gin.Context) {
 		c := core.WrapWebContext(ginCtx)
 		utils.SetEventStreamHeader(c)
 		err := fn(c)
 		if err != nil {
 			utils.WriteEventStreamJsonErrorResult(c, err)
 		}
 	}
 }
 func bindCachedJs(fn core.DataHandlerFunc, store persistence.CacheStore) gin.HandlerFunc {
 	return cache.CachePage(store, time.Minute, func(ginCtx *gin.Context) {
 		c := core.WrapWebContext(ginCtx)
 		result, _, err := fn(c)
 		if err != nil {
 			utils.PrintDataErrorResult(c, "text/javascript", err)
 		} else {
 			utils.PrintDataSuccessResult(c, "text/javascript; charset=utf-8", "", result)
 		}
 	})
 }
 func bindCsv(fn core.DataHandlerFunc) gin.HandlerFunc {
 	return func(ginCtx *gin.Context) {
 		c := core.WrapWebContext(ginCtx)
@@ -428,7 +615,7 @@ func bindCsv(fn core.DataHandlerFunc) gin.HandlerFunc {
 		if err != nil {
 			utils.PrintDataErrorResult(c, "text/text", err)
 		} else {
-			utils.PrintDataSuccessResult(c, "text/csv", fileName, result)
+			utils.PrintDataSuccessResult(c, "text/csv; charset=utf-8", fileName, result)
 		}
 	}
 }
@@ -441,7 +628,7 @@ func bindTsv(fn core.DataHandlerFunc) gin.HandlerFunc {
 		if err != nil {
 			utils.PrintDataErrorResult(c, "text/text", err)
 		} else {
-			utils.PrintDataSuccessResult(c, "text/tab-separated-values", fileName, result)
+			utils.PrintDataSuccessResult(c, "text/tab-separated-values; charset=utf-8", fileName, result)
 		}
 	}
 }
@@ -1,7 +1,4 @@
 [global]
 # Application instance name
 app_name = ezBookkeeping
 # Either "production", "development"
 mode = production
@@ -18,7 +15,7 @@ http_port = 8080
 # The domain name used to access ezBookkeeping
 domain = localhost
-# The full url used to access ezBookkeeping in browser
+# The full url used to access ezBookkeeping in browser, supports placeholders: %(protocol)s, %(domain)s, %(http_port)s
 root_url = %(protocol)s://%(domain)s:%(http_port)s/
 # https certification and its key file
@@ -37,6 +34,16 @@ enable_gzip = false
 # Set to true to log each request and execution time
 log_request = true
 # Add X-Request-Id header to response to track user request or error, default is true
 request_id_header = true
 [mcp]
 # Set to true to enable MCP (Model Context Protocol) server (via http / https web server) for AI/LLM access
 enable_mcp = false
 # MCP server allowed remote IPs, a comma-separated list of allowed remote IPs (asterisk * for any addresses, e.g. 192.168.1.* means any IPs in the 192.168.1.x subnet), leave blank to allow all remote IPs
 mcp_allowed_remote_ips =
 [database]
 # Either "mysql", "postgres" or "sqlite3"
 type = sqlite3
@@ -108,7 +115,7 @@ log_file_max_size = 104857600
 log_file_max_days = 7
 [storage]
-# Object storage type, supports "local_filesystem" and "minio" currently
+# Object storage type, supports "local_filesystem", "minio" and "webdav" currently
 type = local_filesystem
 # For "local_filesystem" storage only, the storage root path (relative or absolute path)
@@ -132,6 +139,115 @@ minio_bucket = ezbookkeeping
 # For "minio" storage only, the root path to store files in minio
 minio_root_path = /
 # For "webdav" storage only, the webdav url
 webdav_url =
 # For "webdav" storage only, the webdav username
 webdav_username =
 # For "webdav" storage only, the webdav password
 webdav_password =
 # For "webdav" storage only, the webdav root path to store files
 webdav_root_path = /
 # For "webdav" storage only, requesting webdav url timeout (0 - 4294967295 milliseconds)
 # Set to 0 to disable timeout for requesting webdav url, default is 10000 (10 seconds)
 webdav_request_timeout = 10000
 # For "webdav" storage only, proxy for requesting webdav url, supports "system" (use system proxy), "none" (do not use proxy), or proxy URL which starts with "http://", "https://" or "socks5://", default is "system"
 webdav_proxy = system
 # For "webdav" storage only, set to true to skip tls verification when connect webdav
 webdav_skip_tls_verify = false
 [llm]
 # Set to true to enable creating transactions from AI image recognition results, requires "llm_provider" and its related model id to be configured properly in "llm_image_recognition" section
 transaction_from_ai_image_recognition = false
 # Maximum allowed AI recognition picture file size (1 - 4294967295 bytes)
 max_ai_recognition_picture_size = 10485760
 [llm_image_recognition]
 # Large Language Model (LLM) provider for receipt image recognition, supports the following types: "openai", "openai_compatible", "anthropic", "anthropic_compatible", "openrouter", "ollama", "lm_studio", "google_ai"
 llm_provider =
 # For "openai" llm provider only, OpenAI API secret key, please visit https://platform.openai.com/api-keys for more information
 openai_api_key =
 # For "openai" llm provider only, receipt image recognition model for creating transactions from images
 openai_model_id =
 # For "openai_compatible" llm provider only, OpenAI compatible API base url, e.g. "https://api.openai.com/v1/"
 openai_compatible_base_url =
 # For "openai_compatible" llm provider only, OpenAI compatible API secret key
 openai_compatible_api_key =
 # For "openai_compatible" llm provider only, receipt image recognition model for creating transactions from images
 openai_compatible_model_id =
 # For "anthropic" llm provider only, Anthropic API key, please visit https://platform.claude.com/settings/keys for more information
 anthropic_api_key =
 # For "anthropic" llm provider only, receipt image recognition model for creating transactions from images
 anthropic_model_id =
 # For "anthropic" llm provider only, maximum allowed number of generated tokens for creating transactions from images, default is 1024
 anthropic_max_tokens = 1024
 # For "anthropic_compatible" llm provider only, Anthropic compatible API base url, e.g. "https://api.anthropic.com/v1/"
 anthropic_compatible_base_url =
 # For "anthropic_compatible" llm provider only, Anthropic compatible API version, e.g. "2023-06-01". If the LLM service does not require API versioning, leave it blank
 anthropic_compatible_api_version =
 # For "anthropic_compatible" llm provider only, Anthropic compatible API secret key
 anthropic_compatible_api_key =
 # For "anthropic_compatible" llm provider only, receipt image recognition model for creating transactions from images
 anthropic_compatible_model_id =
 # For "anthropic_compatible" llm provider only, maximum allowed number of generated tokens for creating transactions from images, default is 1024
 anthropic_compatible_max_tokens = 1024
 # For "openrouter" llm provider only, OpenRouter API key, please visit https://openrouter.ai/settings/keys for more information
 openrouter_api_key =
 # For "openrouter" llm provider only, receipt image recognition model for creating transactions from images
 openrouter_model_id =
 # For "ollama" llm provider only, Ollama server url, e.g. "http://127.0.0.1:11434/"
 ollama_server_url =
 # For "ollama" llm provider only, receipt image recognition model for creating transactions from images
 ollama_model_id =
 # For "lm_studio" llm provider only, LM Studio server url, e.g. "http://127.0.0.1:1234/"
 lm_studio_server_url =
 # For "lm_studio" llm provider only, LM Studio API token, if "require authentication" is not enabled in LM Studio, leave it blank
 lm_studio_token =
 # For "lm_studio" llm provider only, receipt image recognition model for creating transactions from images
 lm_studio_model_id =
 # For "google_ai" llm provider only, Google AI Studio API key, please visit https://aistudio.google.com/apikey for more information
 google_ai_api_key =
 # For "google_ai" llm provider only, receipt image recognition model for creating transactions from images
 google_ai_model_id =
 # Requesting large language model api timeout (0 - 4294967295 milliseconds)
 # Set to 0 to disable timeout for requesting large language model api, default is 60000 (60 seconds)
 request_timeout = 60000
 # Proxy for ezbookkeeping server requesting large language model api, supports "system" (use system proxy), "none" (do not use proxy), or proxy URL which starts with "http://", "https://" or "socks5://", default is "system"
 proxy = system
 # Set to true to skip tls verification when request large language model api
 skip_tls_verify = false
 [uuid]
 # Uuid generator type, supports "internal" currently
 generator_type = internal
@@ -161,9 +277,6 @@ enable_create_scheduled_transaction = true
 # Used for signing, you must change it to keep your user data safe before you first run ezBookkeeping
 secret_key =
 # Set to true to enable two-factor authorization
 enable_two_factor = true
 # Token expired seconds (60 - 4294967295), default is 2592000 (30 days)
 token_expired_time = 2592000
@@ -180,8 +293,84 @@ email_verify_token_expired_time = 3600
 # Password reset token expired seconds (60 - 4294967295), default is 3600 (60 minutes)
 password_reset_token_expired_time = 3600
-# Add X-Request-Id header to response to track user request or error, default is true
+# Set to true to enable API token generation
-request_id_header = true
+enable_api_token = false
 # Allowed remote IPs for using the API token, a comma-separated list of allowed remote IPs (asterisk * for any addresses, e.g. 192.168.1.* means any IPs in the 192.168.1.x subnet), leave blank to allow all remote IPs
 api_token_allowed_remote_ips =
 # Maximum count of password / token check failures (0 - 4294967295) per IP per minute (use the above duplicate checker), default is 5, set to 0 to disable
 max_failures_per_ip_per_minute = 5
 # Maximum count of password / token check failures (0 - 4294967295) per user per minute (use the above duplicate checker), default is 5, set to 0 to disable
 max_failures_per_user_per_minute = 5
 [auth]
 # Set to true to enable internal authentication
 enable_internal_auth = true
 # Set to true to enable OAuth 2.0 authentication
 enable_oauth2_auth = false
 # For "internal" authentication only, set to true to enable two-factor authorization
 enable_two_factor = true
 # For "internal" authentication only, set to true to allow users to reset password
 enable_forget_password = true
 # For "internal" authentication only, set to true to require email must be verified when use forget password
 forget_password_require_email_verify = false
 # For "oauth2" authentication only, OAuth 2.0 provider, supports "oidc", "nextcloud", "gitea" and "github" currently
 oauth2_provider =
 # For "oauth2" authentication only, OAuth 2.0 client ID
 oauth2_client_id =
 # For "oauth2" authentication only, OAuth 2.0 client secret
 oauth2_client_secret =
 # For "oauth2" authentication only, OAuth 2.0 provider user identifier claim name, supports "email" and "username", default is "email"
 oauth2_user_identifier = email
 # For "oauth2" authentication only, set to true to use PKCE
 oauth2_use_pkce = false
 # For "oauth2" authentication only, if the user returned by OAuth 2.0 is not registered, automatically create a new user (requires "enable_register" to be set to true)
 oauth2_auto_register = true
 # For "oauth2" authentication only, OAuth 2.0 state expired seconds (60 - 4294967295), default is 300 (5 minutes)
 oauth2_state_expired_time = 300
 # For "oauth2" authentication only, requesting OAuth 2.0 api timeout (0 - 4294967295 milliseconds)
 # Set to 0 to disable timeout for requesting OAuth 2.0 api, default is 10000 (10 seconds)
 oauth2_request_timeout = 10000
 # For "oauth2" authentication only, proxy for ezbookkeeping server requesting OAuth 2.0 api, supports "system" (use system proxy), "none" (do not use proxy), or proxy URL which starts with "http://", "https://" or "socks5://", default is "system"
 oauth2_proxy = system
 # For "oauth2" authentication only, set to true to skip tls verification when request OAuth 2.0 api
 oauth2_skip_tls_verify = false
 # For "oauth2" authentication and "oidc" OAuth 2.0 provider only, OIDC provider issuer url. Make sure the ".well-known" directory is available under this path. For example, if it's set to "https://auth.example.com", the discovery URL should be "https://auth.example.com/.well-known/openid-configuration".
 oidc_provider_base_url =
 # For "oauth2" authentication and "oidc" OAuth 2.0 provider only, set to true to check whether the issuer url in the discovery response matches the above "oidc_provider_base_url"
 oidc_provider_check_issuer_url = true
 # For "oauth2" authentication and "oidc" OAuth 2.0 provider only, set to true to replace the text "Connect ID" in the "Log in with Connect ID" button with the below custom provider name
 enable_oidc_display_name = false
 # For "oauth2" authentication and "oidc" OAuth 2.0 provider only, the custom provider name to replace the text in the "Log in with Connect ID" button, it supports multi-language configuration
 # Add an underscore and a language tag after the setting key to configure the display name in that language
 # For example, oidc_custom_display_name_zh_hans means the display name in Chinese (Simplified)
 oidc_custom_display_name =
 # For "oauth2" authentication and "nextcloud" OAuth 2.0 provider only, Nextcloud base url, e.g. "https://cloud.example.org/"
 nextcloud_base_url =
 # For "oauth2" authentication and "gitea" OAuth 2.0 provider only, Gitea base url, e.g. "https://git.example.com/"
 gitea_base_url =
 [user]
 # Set to true to allow users to register account by themselves
@@ -193,12 +382,6 @@ enable_email_verify = false
 # Set to true to require email must be verified when login
 enable_force_email_verify = false
 # Set to true to allow users to reset password
 enable_forget_password = true
 # Set to true to require email must be verified when use forget password
 forget_password_require_email_verify = false
 # Set to true to allow users to upload transaction pictures
 enable_transaction_picture = true
@@ -217,6 +400,27 @@ avatar_provider = internal
 # For "internal" avatar provider only, maximum allowed user avatar file size (1 - 4294967295 bytes)
 max_user_avatar_size = 1048576
 # The default feature restrictions after user registration (feature types separated by commas), leave blank for no restrictions
 # Supports the following feature types:
 # 1: Update Password
 # 2: Update Email
 # 3: Update Profile Basic Info
 # 4: Update Avatar
 # 5: Logout Other Session
 # 6: Enable Two-Factor Authentication
 # 7: Disable Enable Two-Factor Authentication
 # 8: Forget Password
 # 9: Import Transactions
 # 10: Export Transactions
 # 11: Clear All Data
 # 12: Sync Application Settings
 # 13: MCP (Model Context Protocol) Access
 # 14: Create Transactions from AI Image Recognition
 # 15: OAuth 2.0 Login
 # 16: Unlink Third-party Login
 # 17: Generate API Token
 default_feature_restrictions =
 [data]
 # Set to true to allow users to export their data
 enable_export = true
@@ -227,13 +431,22 @@ enable_import = true
 # Maximum allowed import file size (1 - 4294967295 bytes)
 max_import_file_size = 10485760
 [tip]
 # Set to true to display custom tips in login page
 enable_tips_in_login_page = false
 # The custom tips displayed in login page, it supports multi-language configuration
 # Add an underscore and a language tag after the setting key to configure the notification content in that language, the same below
 # For example, login_page_tips_content_zh_hans means the notification content in Chinese (Simplified)
 login_page_tips_content =
 [notification]
 # Set to true to display custom notification in home page every time users register
 enable_notification_after_register = false
 # The notification content displayed each time users register, it supports multi-language configuration
 # Add an underscore and a language tag after the setting key to configure the notification content in that language, the same below
-# For example, after_login_notification_content_zh_hans means the notification content in Simplified Chinese
+# For example, after_login_notification_content_zh_hans means the notification content in Chinese (Simplified)
 after_register_notification_content =
 # Set to true to display custom notification in home page every time users login
@@ -291,7 +504,7 @@ amap_application_key =
 # "external_proxy": use an external proxy to request amap api (amap application secret should be set by external proxy)
 # "plain_text": append amap application secret to frontend request directly (insecurity for public network)
 # Please visit https://developer.amap.com/api/jsapi-v2/guide/abc/load for more information
-amap_security_verification_method = plain_text
+amap_security_verification_method = internal_proxy
 # For "amap" map provider only, Amap JavaScript API application secret, this setting must be provided when "amap_security_verification_method" is set to "internal_proxy" or "plain_text", please visit https://lbs.amap.com/api/javascript-api/guide/abc/prepare for more information
 amap_application_secret =
@@ -316,12 +529,22 @@ custom_map_tile_server_default_zoom_level = 14
 [exchange_rates]
 # Exchange rates data source, supports the following types:
 # "euro_central_bank": https://www.ecb.europa.eu/stats/policy_and_exchange_rates/euro_reference_exchange_rates/html/index.en.html
 # "bank_of_canada": https://www.bankofcanada.ca/rates/exchange/daily-exchange-rates/
 # "reserve_bank_of_australia": https://www.rba.gov.au/statistics/frequency/exchange-rates.html
 # "czech_national_bank": https://www.cnb.cz/en/financial-markets/foreign-exchange-market/central-bank-exchange-rate-fixing/central-bank-exchange-rate-fixing/
 # "danmarks_national_bank": https://www.nationalbanken.dk/en/what-we-do/stable-prices-monetary-policy-and-the-danish-economy/exchange-rates
 # "euro_central_bank": https://www.ecb.europa.eu/stats/policy_and_exchange_rates/euro_reference_exchange_rates/html/index.en.html
 # "national_bank_of_georgia": https://nbg.gov.ge/en/monetary-policy/currency
 # "central_bank_of_hungary": https://www.mnb.hu/en/arfolyamok
 # "bank_of_israel": https://www.boi.org.il/en/economic-roles/financial-markets/exchange-rates/
 # "central_bank_of_myanmar": https://forex.cbm.gov.mm/index.php/fxrate
 # "norges_bank": https://www.norges-bank.no/en/topics/Statistics/exchange_rates/
 # "national_bank_of_poland": https://nbp.pl/en/statistic-and-financial-reporting/rates/
-# "international_monetary_fund": https://www.imf.org/external/np/fin/data/param_rms_mth.aspx
+# "national_bank_of_romania": https://www.bnr.ro/Exchange-rates-1224.aspx
 # "bank_of_russia": https://www.cbr.ru/eng/currency_base/daily/
 # "swiss_national_bank": https://www.snb.ch/en/the-snb/mandates-goals/statistics/statistics-pub/current_interest_exchange_rates
 # "national_bank_of_ukraine": https://bank.gov.ua/ua/markets/exchangerates
 # "central_bank_of_uzbekistan": https://cbu.uz/en/arkhiv-kursov-valyut/
 # "user_custom": users set their own exchange rates data in the UI
 data_source = euro_central_bank
 # Requesting exchange rates data timeout (0 - 4294967295 milliseconds)
@@ -0,0 +1,74 @@
 {
    "code": [
        "jiangshengwu",
        "vigdail",
        "f97",
        "Miguelonlonlon",
        "seb26",
        "nktlitvinenko",
        "lvdou-bing",
        "dshemin",
        "lucdsouza",
        "OuIChien",
        "RasterCrow"
    ],
    "translators": {
        "de": [
            "chrgm",
            "1270o1"
        ],
        "en": [],
        "es": [
            "Miguelonlonlon",
            "abrugues",
            "AndresTeller",
            "diegofercri"
        ],
        "fr": [
            "brieucdlf"
        ],
        "it": [
            "waron97"
        ],
        "ja": [
            "tkymmm"
        ],
        "kn": [
            "Darshanbm05"
        ],
        "ko": [
            "overworks"
        ],
        "nl": [
            "automagics"
        ],
        "pt-BR": [
            "thecodergus",
            "balaios"
        ],
        "ru": [
            "artegoser",
            "dshemin"
        ],
        "sl": [
            "thehijacker"
        ],
        "ta": [
            "hhharsha36"
        ],
        "th": [
            "natthavat28"
        ],
        "tr": [
            "aydnykn"
        ],
        "uk": [
            "nktlitvinenko"
        ],
        "vi": [
            "f97"
        ],
        "zh-Hans": [],
        "zh-Hant": []
    }
 }
@@ -0,0 +1,34 @@
 variable "DEFAULT_TAG" {
  default = "ezbookkeeping:local"
 }
 // Special target: https://github.com/docker/metadata-action#bake-definition
 target "docker-metadata-action" {
  tags = ["${DEFAULT_TAG}"]
 }
 // Default target if none specified
 group "default" {
  targets = ["image-local"]
 }
 target "image" {
  inherits = ["docker-metadata-action"]
  context = "./"
  dockerfile = "Dockerfile"
 }
 target "image-local" {
  inherits = ["image"]
  output = ["type=docker"]
 }
 target "image-all" {
  inherits = ["image"]
  platforms = [
    "linux/amd64",
    "linux/arm64",
    "linux/arm/v7",
    "linux/arm/v6"
  ]
 }
@@ -0,0 +1,31 @@
 import pluginVue from 'eslint-plugin-vue';
 import vueTsEslintConfig from '@vue/eslint-config-typescript';
 export default [
    ...pluginVue.configs['flat/essential'],
    ...vueTsEslintConfig(),
    {
        languageOptions: {
            parserOptions: {
                projectService: true,
                tsconfigRootDir: import.meta.dirname,
            }
        },
    },
    {
        ignores: [
            'dist/**',
            '**/*.{js,jsx,cjs,mjs}'
        ]
    },
    {
        files: [
            '**/*.{vue,ts,tsx,mts,js,jsx,cjs,mjs}'
        ],
        rules: {
            'vue/valid-v-slot': ['error', {
                allowModifiers: true
            }]
        }
    },
 ];
@@ -1,5 +1,5 @@
 [Unit]
-Description=ezBookkeeping, a lightweight personal bookkeeping app hosted by yourself.
+Description=ezBookkeeping, a lightweight, self-hosted personal finance app with a user-friendly interface and powerful bookkeeping features.
 After=syslog.target
 After=network.target
 After=mariadb.service mysqld.service postgresql.service
@@ -1,15 +1,16 @@
 package main
 import (
 	"context"
 	"fmt"
 	"log"
 	"os"
 	"strings"
-	"github.com/urfave/cli/v2"
+	"github.com/urfave/cli/v3"
 	"github.com/mayswind/ezbookkeeping/cmd"
-	"github.com/mayswind/ezbookkeeping/pkg/settings"
+	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
@@ -25,12 +26,13 @@ var (
 )
 func main() {
-	settings.Version = Version
+	core.Version = Version
-	settings.CommitHash = CommitHash
+	core.CommitHash = CommitHash
 	core.BuildTime = BuildUnixTime
-	app := &cli.App{
+	cmd := &cli.Command{
 		Name:    "ezBookkeeping",
-		Usage:   "A lightweight personal bookkeeping app hosted by yourself.",
+		Usage:   "A lightweight, self-hosted personal finance app with a user-friendly interface and powerful bookkeeping features.",
 		Version: GetFullVersion(),
 		Commands: []*cli.Command{
 			cmd.WebServer,
@@ -52,7 +54,7 @@ func main() {
 		},
 	}
-	err := app.Run(os.Args)
+	err := cmd.Run(context.Background(), os.Args)
 	if err != nil {
 		log.Fatalf("Failed to run ezBookkeeping with %s: %v", os.Args, err)
@@ -1,86 +1,111 @@
 module github.com/mayswind/ezbookkeeping
-go 1.22
+go 1.25.0
 require (
-	github.com/boombuler/barcode v1.0.2
+	github.com/boombuler/barcode v1.1.0
 	github.com/coreos/go-oidc/v3 v3.17.0
 	github.com/extrame/xls v0.0.2-0.20200426124601-4a6cf263071b
-	github.com/gin-contrib/cache v1.3.0
+	github.com/gin-contrib/cache v1.4.3
-	github.com/gin-contrib/gzip v1.0.1
+	github.com/gin-contrib/gzip v1.2.6
-	github.com/gin-gonic/gin v1.10.0
+	github.com/gin-gonic/gin v1.12.0
-	github.com/go-co-op/gocron/v2 v2.11.0
+	github.com/go-co-op/gocron/v2 v2.19.1
-	github.com/go-playground/validator/v10 v10.22.0
+	github.com/go-playground/validator/v10 v10.30.2
-	github.com/go-sql-driver/mysql v1.8.1
+	github.com/go-sql-driver/mysql v1.9.3
-	github.com/golang-jwt/jwt/v5 v5.2.1
+	github.com/golang-jwt/jwt/v5 v5.3.1
-	github.com/lib/pq v1.10.9
+	github.com/invopop/jsonschema v0.13.0
-	github.com/mattn/go-sqlite3 v1.14.22
+	github.com/lib/pq v1.12.1
-	github.com/minio/minio-go/v7 v7.0.74
+	github.com/mattn/go-sqlite3 v1.14.38
 	github.com/minio/minio-go/v7 v7.0.99
 	github.com/patrickmn/go-cache v2.1.0+incompatible
-	github.com/pquerna/otp v1.4.0
+	github.com/pquerna/otp v1.5.0
-	github.com/sirupsen/logrus v1.9.3
+	github.com/sirupsen/logrus v1.9.4
-	github.com/stretchr/testify v1.9.0
+	github.com/stretchr/testify v1.11.1
-	github.com/urfave/cli/v2 v2.27.3
+	github.com/urfave/cli/v3 v3.8.0
 	github.com/wk8/go-ordered-map/v2 v2.1.8
-	golang.org/x/crypto v0.26.0
+	github.com/xuri/excelize/v2 v2.10.1
-	golang.org/x/text v0.17.0
+	golang.org/x/crypto v0.49.0
-	gopkg.in/ini.v1 v1.67.0
+	golang.org/x/net v0.52.0
 	golang.org/x/oauth2 v0.36.0
 	golang.org/x/text v0.35.0
 	gopkg.in/ini.v1 v1.67.1
 	gopkg.in/mail.v2 v2.3.1
 	xorm.io/builder v0.3.13
-	xorm.io/xorm v1.3.9
+	xorm.io/xorm v1.3.11
 )
 require (
 	filippo.io/edwards25519 v1.1.0 // indirect
 	github.com/bahlo/generic-list-go v0.2.0 // indirect
-	github.com/bradfitz/gomemcache v0.0.0-20230905024940-24af94b03874 // indirect
+	github.com/bradfitz/gomemcache v0.0.0-20250403215159-8d39553ac7cf // indirect
 	github.com/buger/jsonparser v1.1.1 // indirect
-	github.com/bytedance/sonic v1.11.6 // indirect
+	github.com/bytedance/gopkg v0.1.3 // indirect
-	github.com/bytedance/sonic/loader v0.1.1 // indirect
+	github.com/bytedance/sonic v1.15.0 // indirect
 	github.com/bytedance/sonic/loader v0.5.0 // indirect
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d // indirect
 	github.com/chenzhuoyu/iasm v0.9.1 // indirect
-	github.com/cloudwego/base64x v0.1.4 // indirect
+	github.com/cloudwego/base64x v0.1.6 // indirect
 	github.com/cloudwego/iasm v0.2.0 // indirect
-	github.com/cpuguy83/go-md2man/v2 v2.0.4 // indirect
+	github.com/cpuguy83/go-md2man/v2 v2.0.5 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/dustin/go-humanize v1.0.1 // indirect
 	github.com/extrame/goyymmdd v0.0.0-20210114090516-7cc815f00d1a // indirect
 	github.com/extrame/ole2 v0.0.0-20160812065207-d69429661ad7 // indirect
-	github.com/gabriel-vasile/mimetype v1.4.3 // indirect
+	github.com/gabriel-vasile/mimetype v1.4.13 // indirect
-	github.com/gin-contrib/sse v0.1.0 // indirect
+	github.com/gin-contrib/sse v1.1.0 // indirect
 	github.com/go-ini/ini v1.67.0 // indirect
 	github.com/go-jose/go-jose/v4 v4.1.3 // indirect
 	github.com/go-playground/locales v0.14.1 // indirect
 	github.com/go-playground/universal-translator v0.18.1 // indirect
-	github.com/goccy/go-json v0.10.3 // indirect
+	github.com/goccy/go-json v0.10.5 // indirect
 	github.com/goccy/go-yaml v1.19.2 // indirect
 	github.com/golang/snappy v0.0.4 // indirect
-	github.com/gomodule/redigo v1.8.9 // indirect
+	github.com/gomodule/redigo v1.9.2 // indirect
 	github.com/google/uuid v1.6.0 // indirect
-	github.com/jonboulle/clockwork v0.4.0 // indirect
+	github.com/jonboulle/clockwork v0.5.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
-	github.com/klauspost/compress v1.17.9 // indirect
+	github.com/klauspost/compress v1.18.2 // indirect
-	github.com/klauspost/cpuid/v2 v2.2.8 // indirect
+	github.com/klauspost/cpuid/v2 v2.3.0 // indirect
 	github.com/klauspost/crc32 v1.3.0 // indirect
 	github.com/leodido/go-urn v1.4.0 // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/mattn/go-isatty v0.0.20 // indirect
 	github.com/memcachier/mc/v3 v3.0.3 // indirect
 	github.com/minio/crc64nvme v1.1.1 // indirect
 	github.com/minio/md5-simd v1.1.2 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
-	github.com/pelletier/go-toml/v2 v2.2.2 // indirect
+	github.com/mohae/deepcopy v0.0.0-20170929034955-c48cc78d4826 // indirect
 	github.com/pelletier/go-toml/v2 v2.2.4 // indirect
 	github.com/philhofer/fwd v1.2.0 // indirect
 	github.com/pmezard/go-difflib v1.0.0 // indirect
 	github.com/quic-go/qpack v0.6.0 // indirect
 	github.com/quic-go/quic-go v0.59.0 // indirect
 	github.com/richardlehane/mscfb v1.0.6 // indirect
 	github.com/richardlehane/msoleps v1.0.6 // indirect
 	github.com/robfig/cron/v3 v3.0.1 // indirect
 	github.com/robfig/go-cache v0.0.0-20130306151617-9fc39e0dbf62 // indirect
-	github.com/rs/xid v1.5.0 // indirect
+	github.com/rs/xid v1.6.0 // indirect
 	github.com/russross/blackfriday/v2 v2.1.0 // indirect
 	github.com/syndtr/goleveldb v1.0.0 // indirect
 	github.com/tealeg/xlsx v1.0.5 // indirect
 	github.com/tiendc/go-deepcopy v1.7.2 // indirect
 	github.com/tinylib/msgp v1.6.1 // indirect
 	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
-	github.com/ugorji/go/codec v1.2.12 // indirect
+	github.com/ugorji/go/codec v1.3.1 // indirect
 	github.com/xrash/smetrics v0.0.0-20240521201337-686a1a2994c1 // indirect
-	golang.org/x/arch v0.8.0 // indirect
+	github.com/xuri/efp v0.0.1 // indirect
 	github.com/xuri/nfp v0.0.2-0.20250530014748-2ddeb826f9a9 // indirect
 	go.mongodb.org/mongo-driver/v2 v2.5.0 // indirect
 	go.yaml.in/yaml/v3 v3.0.4 // indirect
 	golang.org/x/arch v0.22.0 // indirect
 	golang.org/x/exp v0.0.0-20240613232115-7f521ea00fb8 // indirect
-	golang.org/x/net v0.26.0 // indirect
+	golang.org/x/mod v0.33.0 // indirect
-	golang.org/x/sys v0.23.0 // indirect
+	golang.org/x/sync v0.20.0 // indirect
-	google.golang.org/protobuf v1.34.1 // indirect
+	golang.org/x/sys v0.42.0 // indirect
 	golang.org/x/tools v0.42.0 // indirect
 	google.golang.org/protobuf v1.36.10 // indirect
 	gopkg.in/alexcesaro/quotedprintable.v3 v3.0.0-20150716171945-2caba252f4dc // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )
@@ -4,29 +4,33 @@ gitea.com/xorm/sqlfiddle v0.0.0-20180821085327-62ce714f951a/go.mod h1:EXuID2Zs0p
 github.com/bahlo/generic-list-go v0.2.0 h1:5sz/EEAK+ls5wF+NeqDpk5+iNdMDXrh3z3nPnH1Wvgk=
 github.com/bahlo/generic-list-go v0.2.0/go.mod h1:2KvAjgMlE5NNynlg/5iLrrCCZ2+5xWbdbCW3pNTGyYg=
 github.com/boombuler/barcode v1.0.1-0.20190219062509-6c824513bacc/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8=
-github.com/boombuler/barcode v1.0.2 h1:79yrbttoZrLGkL/oOI8hBrUKucwOL0oOjUgEguGMcJ4=
+github.com/boombuler/barcode v1.1.0 h1:ChaYjBR63fr4LFyGn8E8nt7dBSt3MiU3zMOZqFvVkHo=
-github.com/boombuler/barcode v1.0.2/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8=
+github.com/boombuler/barcode v1.1.0/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8=
-github.com/bradfitz/gomemcache v0.0.0-20230905024940-24af94b03874 h1:N7oVaKyGp8bttX0bfZGmcGkjz7DLQXhAn3DNd3T0ous=
+github.com/bradfitz/gomemcache v0.0.0-20250403215159-8d39553ac7cf h1:TqhNAT4zKbTdLa62d2HDBFdvgSbIGB3eJE8HqhgiL9I=
-github.com/bradfitz/gomemcache v0.0.0-20230905024940-24af94b03874/go.mod h1:r5xuitiExdLAJ09PR7vBVENGvp4ZuTBeWTGtxuX3K+c=
+github.com/bradfitz/gomemcache v0.0.0-20250403215159-8d39553ac7cf/go.mod h1:r5xuitiExdLAJ09PR7vBVENGvp4ZuTBeWTGtxuX3K+c=
 github.com/buger/jsonparser v1.1.1 h1:2PnMjfWD7wBILjqQbt530v576A/cAbQvEW9gGIpYMUs=
 github.com/buger/jsonparser v1.1.1/go.mod h1:6RYKKt7H4d4+iWqouImQ9R2FZql3VbhNgx27UK13J/0=
 github.com/bytedance/gopkg v0.1.3 h1:TPBSwH8RsouGCBcMBktLt1AymVo2TVsBVCY4b6TnZ/M=
 github.com/bytedance/gopkg v0.1.3/go.mod h1:576VvJ+eJgyCzdjS+c4+77QF3p7ubbtiKARP3TxducM=
 github.com/bytedance/sonic v1.5.0/go.mod h1:ED5hyg4y6t3/9Ku1R6dU/4KyJ48DZ4jPhfY1O2AihPM=
 github.com/bytedance/sonic v1.10.0-rc/go.mod h1:ElCzW+ufi8qKqNW0FY314xriJhyJhuoJ3gFZdAHF7NM=
-github.com/bytedance/sonic v1.11.6 h1:oUp34TzMlL+OY1OUWxHqsdkgC/Zfc85zGqw9siXjrc0=
+github.com/bytedance/sonic v1.15.0 h1:/PXeWFaR5ElNcVE84U0dOHjiMHQOwNIx3K4ymzh/uSE=
-github.com/bytedance/sonic v1.11.6/go.mod h1:LysEHSvpvDySVdC2f87zGWf6CIKJcAvqab1ZaiQtds4=
+github.com/bytedance/sonic v1.15.0/go.mod h1:tFkWrPz0/CUCLEF4ri4UkHekCIcdnkqXw9VduqpJh0k=
-github.com/bytedance/sonic/loader v0.1.1 h1:c+e5Pt1k/cy5wMveRDyk2X4B9hF4g7an8N3zCYjJFNM=
+github.com/bytedance/sonic/loader v0.5.0 h1:gXH3KVnatgY7loH5/TkeVyXPfESoqSBSBEiDd5VjlgE=
-github.com/bytedance/sonic/loader v0.1.1/go.mod h1:ncP89zfokxS5LZrJxl5z0UJcsk4M4yY2JpfqGeCtNLU=
+github.com/bytedance/sonic/loader v0.5.0/go.mod h1:AR4NYCk5DdzZizZ5djGqQ92eEhCCcdf5x77udYiSJRo=
 github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
 github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/chenzhuoyu/base64x v0.0.0-20211019084208-fb5309c8db06/go.mod h1:DH46F32mSOjUmXrMHnKwZdA8wcEefY7UVqBKYGjpdQY=
 github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
 github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d/go.mod h1:8EPpVsBuRksnlj1mLy4AWzRNQYxauNi62uWcE3to6eA=
 github.com/chenzhuoyu/iasm v0.9.0/go.mod h1:Xjy2NpN3h7aUqeqM+woSuuvxmIe6+DDsiNLIrkAmYog=
 github.com/chenzhuoyu/iasm v0.9.1/go.mod h1:Xjy2NpN3h7aUqeqM+woSuuvxmIe6+DDsiNLIrkAmYog=
-github.com/cloudwego/base64x v0.1.4 h1:jwCgWpFanWmN8xoIUHa2rtzmkd5J2plF/dnLS6Xd/0Y=
+github.com/cloudwego/base64x v0.1.6 h1:t11wG9AECkCDk5fMSoxmufanudBtJ+/HemLstXDLI2M=
-github.com/cloudwego/base64x v0.1.4/go.mod h1:0zlkT4Wn5C6NdauXdJRhSKRlJvmclQ1hhJgA0rcu/8w=
+github.com/cloudwego/base64x v0.1.6/go.mod h1:OFcloc187FXDaYHvrNIjxSe8ncn0OOM8gEHfghB2IPU=
 github.com/cloudwego/iasm v0.2.0 h1:1KNIy1I1H9hNNFEEH3DVnI4UujN+1zjpuk6gwHLTssg=
 github.com/cloudwego/iasm v0.2.0/go.mod h1:8rXZaNYT2n95jn+zTI1sDr+IgcD2GVs0nlbbQPiEFhY=
-github.com/cpuguy83/go-md2man/v2 v2.0.4 h1:wfIWP927BUkWJb2NmU/kNDYIBTh/ziUX91+lVfRxZq4=
+github.com/coreos/go-oidc/v3 v3.17.0 h1:hWBGaQfbi0iVviX4ibC7bk8OKT5qNr4klBaCHVNvehc=
-github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/coreos/go-oidc/v3 v3.17.0/go.mod h1:wqPbKFrVnE90vty060SB40FCJ8fTHTxSwyXJqZH+sI8=
 github.com/cpuguy83/go-md2man/v2 v2.0.5/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
@@ -39,99 +43,119 @@ github.com/extrame/ole2 v0.0.0-20160812065207-d69429661ad7/go.mod h1:GPpMrAfHdb8
 github.com/extrame/xls v0.0.2-0.20200426124601-4a6cf263071b h1:jqW/h4gcXYEB6kVf6iuxjU9ONWA0ugUB94TP9UNmgdg=
 github.com/extrame/xls v0.0.2-0.20200426124601-4a6cf263071b/go.mod h1:iACcgahst7BboCpIMSpnFs4SKyU9ZjsvZBfNbUxZOJI=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
-github.com/gabriel-vasile/mimetype v1.4.3 h1:in2uUcidCuFcDKtdcBxlR0rJ1+fsokWf+uqxgUFjbI0=
+github.com/gabriel-vasile/mimetype v1.4.13 h1:46nXokslUBsAJE/wMsp5gtO500a4F3Nkz9Ufpk2AcUM=
-github.com/gabriel-vasile/mimetype v1.4.3/go.mod h1:d8uq/6HKRL6CGdk+aubisF/M5GcPfT7nKyLpA0lbSSk=
+github.com/gabriel-vasile/mimetype v1.4.13/go.mod h1:d+9Oxyo1wTzWdyVUPMmXFvp4F9tea18J8ufA774AB3s=
-github.com/gin-contrib/cache v1.3.0 h1:wEEw38uvb4rTraQJVpd9ex4ZotXNlc0fSaSUsuPXS/w=
+github.com/gin-contrib/cache v1.4.3 h1:6rmIlmTf2Vyfd/ue53+BLdTxC7hrQ7FqRgfjz31nEEE=
-github.com/gin-contrib/cache v1.3.0/go.mod h1:EA63LrWGI5vwSI95TS5fgBrtxZ1tM2NKx+NrEeyEDcU=
+github.com/gin-contrib/cache v1.4.3/go.mod h1:Znf5Qa8HTQ+QHku6ODf72WOPnJ2fHUd2nXD6mSi+6+g=
-github.com/gin-contrib/gzip v1.0.1 h1:HQ8ENHODeLY7a4g1Au/46Z92bdGFl74OhxcZble9WJE=
+github.com/gin-contrib/gzip v1.2.6 h1:OtN8DplD5DNZCSLAnQ5HxRkD2qZ5VU+JhOrcfJrcRvg=
-github.com/gin-contrib/gzip v1.0.1/go.mod h1:njt428fdUNRvjuJf16tZMYZ2Yl+WQB53X5wmhDwXvC4=
+github.com/gin-contrib/gzip v1.2.6/go.mod h1:BQy8/+JApnRjAVUplSGZiVtD2k8GmIE2e9rYu/hLzzU=
-github.com/gin-contrib/sse v0.1.0 h1:Y/yl/+YNO8GZSjAhjMsSuLt29uWRFHdHYUb5lYOV9qE=
+github.com/gin-contrib/sse v1.1.0 h1:n0w2GMuUpWDVp7qSpvze6fAu9iRxJY4Hmj6AmBOU05w=
-github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
+github.com/gin-contrib/sse v1.1.0/go.mod h1:hxRZ5gVpWMT7Z0B0gSNYqqsSCNIJMjzvm6fqCz9vjwM=
-github.com/gin-gonic/gin v1.10.0 h1:nTuyha1TYqgedzytsKYqna+DfLos46nTv2ygFy86HFU=
+github.com/gin-gonic/gin v1.12.0 h1:b3YAbrZtnf8N//yjKeU2+MQsh2mY5htkZidOM7O0wG8=
-github.com/gin-gonic/gin v1.10.0/go.mod h1:4PMNQiOhvDRa013RKVbsiNwoyezlm2rm0uX/T7kzp5Y=
+github.com/gin-gonic/gin v1.12.0/go.mod h1:VxccKfsSllpKshkBWgVgRniFFAzFb9csfngsqANjnLc=
-github.com/go-co-op/gocron/v2 v2.11.0 h1:IOowNA6SzwdRFnD4/Ol3Kj6G2xKfsoiiGq2Jhhm9bvE=
+github.com/go-co-op/gocron/v2 v2.19.1 h1:B4iLeA0NB/2iO3EKQ7NfKn5KsQgZfjb2fkvoZJU3yBI=
-github.com/go-co-op/gocron/v2 v2.11.0/go.mod h1:xY7bJxGazKam1cz04EebrlP4S9q4iWdiAylMGP3jY9w=
+github.com/go-co-op/gocron/v2 v2.19.1/go.mod h1:5lEiCKk1oVJV39Zg7/YG10OnaVrDAV5GGR6O0663k6U=
 github.com/go-ini/ini v1.67.0 h1:z6ZrTEZqSWOTyH2FlglNbNgARyHG8oLW9gMELqKr06A=
 github.com/go-ini/ini v1.67.0/go.mod h1:ByCAeIL28uOIIG0E3PJtZPDL8WnHpFKFOtgjp+3Ies8=
 github.com/go-jose/go-jose/v4 v4.1.3 h1:CVLmWDhDVRa6Mi/IgCgaopNosCaHz7zrMeF9MlZRkrs=
 github.com/go-jose/go-jose/v4 v4.1.3/go.mod h1:x4oUasVrzR7071A4TnHLGSPpNOm2a21K9Kf04k1rs08=
 github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
 github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
 github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
 github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
-github.com/go-playground/validator/v10 v10.22.0 h1:k6HsTZ0sTnROkhS//R0O+55JgM8C4Bx7ia+JlgcnOao=
+github.com/go-playground/validator/v10 v10.30.2 h1:JiFIMtSSHb2/XBUbWM4i/MpeQm9ZK2xqPNk8vgvu5JQ=
-github.com/go-playground/validator/v10 v10.22.0/go.mod h1:dbuPbCMFw/DrkbEynArYaCwl3amGuJotoKCe95atGMM=
+github.com/go-playground/validator/v10 v10.30.2/go.mod h1:mAf2pIOVXjTEBrwUMGKkCWKKPs9NheYGabeB04txQSc=
-github.com/go-sql-driver/mysql v1.8.1 h1:LedoTUt/eveggdHS9qUFC1EFSa8bU2+1pZjSRpvNJ1Y=
+github.com/go-sql-driver/mysql v1.9.3 h1:U/N249h2WzJ3Ukj8SowVFjdtZKfu9vlLZxjPXV1aweo=
-github.com/go-sql-driver/mysql v1.8.1/go.mod h1:wEBSXgmK//2ZFJyE+qWnIsVGmvmEKlqwuVSjsCm7DZg=
+github.com/go-sql-driver/mysql v1.9.3/go.mod h1:qn46aNg1333BRMNU69Lq93t8du/dwxI64Gl8i5p1WMU=
-github.com/goccy/go-json v0.10.3 h1:KZ5WoDbxAIgm2HNbYckL0se1fHD6rz5j4ywS6ebzDqA=
+github.com/goccy/go-json v0.10.5 h1:Fq85nIqj+gXn/S5ahsiTlK3TmC85qgirsdTP/+DeaC4=
-github.com/goccy/go-json v0.10.3/go.mod h1:oq7eo15ShAhp70Anwd5lgX2pLfOS3QCiwU/PULtXL6M=
+github.com/goccy/go-json v0.10.5/go.mod h1:oq7eo15ShAhp70Anwd5lgX2pLfOS3QCiwU/PULtXL6M=
-github.com/golang-jwt/jwt/v5 v5.2.1 h1:OuVbFODueb089Lh128TAcimifWaLhJwVflnrgM17wHk=
+github.com/goccy/go-yaml v1.19.2 h1:PmFC1S6h8ljIz6gMRBopkjP1TVT7xuwrButHID66PoM=
-github.com/golang-jwt/jwt/v5 v5.2.1/go.mod h1:pqrtFR0X4osieyHYxtmOUWsAWrfe1Q5UVIyoH402zdk=
+github.com/goccy/go-yaml v1.19.2/go.mod h1:XBurs7gK8ATbW4ZPGKgcbrY1Br56PdM69F7LkFRi1kA=
 github.com/golang-jwt/jwt/v5 v5.3.1 h1:kYf81DTWFe7t+1VvL7eS+jKFVWaUnK9cB1qbwn63YCY=
 github.com/golang-jwt/jwt/v5 v5.3.1/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/snappy v0.0.0-20180518054509-2e65f85255db/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4 h1:yAGX7huGHXlcLOEtBnF4w7FQwA26wojNCwOYAEhLjQM=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
-github.com/gomodule/redigo v1.8.9 h1:Sl3u+2BI/kk+VEatbj0scLdrFhjPmbxOc1myhDP41ws=
+github.com/gomodule/redigo v1.9.2 h1:HrutZBLhSIU8abiSfW8pj8mPhOyMYjZT/wcA4/L9L9s=
-github.com/gomodule/redigo v1.8.9/go.mod h1:7ArFNvsTjH8GMMzB4uy1snslv2BwmginuMs06a1uzZE=
+github.com/gomodule/redigo v1.9.2/go.mod h1:KsU3hiK/Ay8U42qpaJk+kuNa3C+spxapWpM+ywhcgtw=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/jonboulle/clockwork v0.4.0 h1:p4Cf1aMWXnXAUh8lVfewRBx1zaTSYKrKMF2g3ST4RZ4=
+github.com/invopop/jsonschema v0.13.0 h1:KvpoAJWEjR3uD9Kbm2HWJmqsEaHt8lBUpd0qHcIi21E=
-github.com/jonboulle/clockwork v0.4.0/go.mod h1:xgRqUGwRcjKCO1vbZUEtSLrqKoPSsUpK7fnezOII0kc=
+github.com/invopop/jsonschema v0.13.0/go.mod h1:ffZ5Km5SWWRAIN6wbDXItl95euhFz2uON45H2qjYt+0=
 github.com/jonboulle/clockwork v0.5.0 h1:Hyh9A8u51kptdkR+cqRpT1EebBwTn1oK9YfGYbdFz6I=
 github.com/jonboulle/clockwork v0.5.0/go.mod h1:3mZlmanh0g2NDKO5TWZVJAfofYk64M7XN3SzBPjZF60=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
-github.com/klauspost/compress v1.17.9 h1:6KIumPrER1LHsvBVuDa0r5xaG0Es51mhhB9BQB2qeMA=
+github.com/klauspost/compress v1.18.2 h1:iiPHWW0YrcFgpBYhsA6D1+fqHssJscY/Tm/y2Uqnapk=
-github.com/klauspost/compress v1.17.9/go.mod h1:Di0epgTjJY877eYKx5yC51cX2A2Vl2ibi7bDH9ttBbw=
+github.com/klauspost/compress v1.18.2/go.mod h1:R0h/fSBs8DE4ENlcrlib3PsXS61voFxhIs2DeRhCvJ4=
 github.com/klauspost/cpuid/v2 v2.0.1/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
-github.com/klauspost/cpuid/v2 v2.2.8 h1:+StwCXwm9PdpiEkPyzBXIy+M9KUb4ODm0Zarf1kS5BM=
+github.com/klauspost/cpuid/v2 v2.3.0 h1:S4CRMLnYUhGeDFDqkGriYKdfoFlDnMtqTiI/sFzhA9Y=
-github.com/klauspost/cpuid/v2 v2.2.8/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
+github.com/klauspost/cpuid/v2 v2.3.0/go.mod h1:hqwkgyIinND0mEev00jJYCxPNVRVXFQeu1XKlok6oO0=
 github.com/klauspost/crc32 v1.3.0 h1:sSmTt3gUt81RP655XGZPElI0PelVTZ6YwCRnPSupoFM=
 github.com/klauspost/crc32 v1.3.0/go.mod h1:D7kQaZhnkX/Y0tstFGf8VUzv2UofNGqCjnC3zdHB0Hw=
 github.com/knz/go-libedit v1.10.1/go.mod h1:MZTVkCWyz0oBc7JOWP3wNAzd002ZbM/5hgShxwh4x8M=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/leodido/go-urn v1.4.0 h1:WT9HwE9SGECu3lg4d/dIA+jxlljEa1/ffXKmRjqdmIQ=
 github.com/leodido/go-urn v1.4.0/go.mod h1:bvxc+MVxLKB4z00jd1z+Dvzr47oO32F/QSNjSBOlFxI=
-github.com/lib/pq v1.10.9 h1:YXG7RB+JIjhP29X+OtkiDnYaXQwpS4JEWq7dtCCRUEw=
+github.com/lib/pq v1.12.1 h1:x1nbl/338GLqeDJ/FAiILallhAsqubLzEZu/pXtHUow=
-github.com/lib/pq v1.10.9/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o=
+github.com/lib/pq v1.12.1/go.mod h1:/p+8NSbOcwzAEI7wiMXFlgydTwcgTr3OSKMsD2BitpA=
 github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
 github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
 github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
-github.com/mattn/go-sqlite3 v1.14.22 h1:2gZY6PC6kBnID23Tichd1K+Z0oS6nE/XwU+Vz/5o4kU=
+github.com/mattn/go-sqlite3 v1.14.38 h1:tDUzL85kMvOrvpCt8P64SbGgVFtJB11GPi2AdmITgb4=
-github.com/mattn/go-sqlite3 v1.14.22/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxUwlHK0RXw+Y=
+github.com/mattn/go-sqlite3 v1.14.38/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxUwlHK0RXw+Y=
 github.com/memcachier/mc/v3 v3.0.3 h1:qii+lDiPKi36O4Xg+HVKwHu6Oq+Gt17b+uEiA0Drwv4=
 github.com/memcachier/mc/v3 v3.0.3/go.mod h1:GzjocBahcXPxt2cmqzknrgqCOmMxiSzhVKPOe90Tpug=
 github.com/minio/crc64nvme v1.1.1 h1:8dwx/Pz49suywbO+auHCBpCtlW1OfpcLN7wYgVR6wAI=
 github.com/minio/crc64nvme v1.1.1/go.mod h1:eVfm2fAzLlxMdUGc0EEBGSMmPwmXD5XiNRpnu9J3bvg=
 github.com/minio/md5-simd v1.1.2 h1:Gdi1DZK69+ZVMoNHRXJyNcxrMA4dSxoYHZSQbirFg34=
 github.com/minio/md5-simd v1.1.2/go.mod h1:MzdKDxYpY2BT9XQFocsiZf/NKVtR7nkE4RoEpN+20RM=
-github.com/minio/minio-go/v7 v7.0.74 h1:fTo/XlPBTSpo3BAMshlwKL5RspXRv9us5UeHEGYCFe0=
+github.com/minio/minio-go/v7 v7.0.99 h1:2vH/byrwUkIpFQFOilvTfaUpvAX3fEFhEzO+DR3DlCE=
-github.com/minio/minio-go/v7 v7.0.74/go.mod h1:qydcVzV8Hqtj1VtEocfxbmVFa2siu6HGa+LDEPogjD8=
+github.com/minio/minio-go/v7 v7.0.99/go.mod h1:EtGNKtlX20iL2yaYnxEigaIvj0G0GwSDnifnG8ClIdw=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/mohae/deepcopy v0.0.0-20170929034955-c48cc78d4826/go.mod h1:TaXosZuwdSHYgviHp1DAtfrULt5eUgsSMsZf+YrPgl8=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.7.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/gomega v1.4.3/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/patrickmn/go-cache v2.1.0+incompatible h1:HRMgzkcYKYpi3C8ajMPV8OFXaaRUnok+kx1WdO15EQc=
 github.com/patrickmn/go-cache v2.1.0+incompatible/go.mod h1:3Qf8kWWT7OJRJbdiICTKqZju1ZixQ/KpMGzzAfe6+WQ=
-github.com/pelletier/go-toml/v2 v2.2.2 h1:aYUidT7k73Pcl9nb2gScu7NSrKCSHIDE89b3+6Wq+LM=
+github.com/pelletier/go-toml/v2 v2.2.4 h1:mye9XuhQ6gvn5h28+VilKrrPoQVanw5PMw/TB0t5Ec4=
-github.com/pelletier/go-toml/v2 v2.2.2/go.mod h1:1t835xjRzz80PqgE6HHgN2JOsmgYu/h4qDAS4n929Rs=
+github.com/pelletier/go-toml/v2 v2.2.4/go.mod h1:2gIqNv+qfxSVS7cM2xJQKtLSTLUE9V8t9Stt+h56mCY=
 github.com/philhofer/fwd v1.2.0 h1:e6DnBTl7vGY+Gz322/ASL4Gyp1FspeMvx1RNDoToZuM=
 github.com/philhofer/fwd v1.2.0/go.mod h1:RqIHx9QI14HlwKwm98g9Re5prTQ6LdeRQn+gXJFxsJM=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/pquerna/otp v1.4.0 h1:wZvl1TIVxKRThZIBiwOOHOGP/1+nZyWBil9Y2XNEDzg=
+github.com/pquerna/otp v1.5.0 h1:NMMR+WrmaqXU4EzdGJEE1aUUI0AMRzsp96fFFWNPwxs=
-github.com/pquerna/otp v1.4.0/go.mod h1:dkJfzwRKNiegxyNb54X/3fLwhCynbMspSyWKnvi1AEg=
+github.com/pquerna/otp v1.5.0/go.mod h1:dkJfzwRKNiegxyNb54X/3fLwhCynbMspSyWKnvi1AEg=
 github.com/quic-go/qpack v0.6.0 h1:g7W+BMYynC1LbYLSqRt8PBg5Tgwxn214ZZR34VIOjz8=
 github.com/quic-go/qpack v0.6.0/go.mod h1:lUpLKChi8njB4ty2bFLX2x4gzDqXwUpaO1DP9qMDZII=
 github.com/quic-go/quic-go v0.59.0 h1:OLJkp1Mlm/aS7dpKgTc6cnpynnD2Xg7C1pwL6vy/SAw=
 github.com/quic-go/quic-go v0.59.0/go.mod h1:upnsH4Ju1YkqpLXC305eW3yDZ4NfnNbmQRCMWS58IKU=
 github.com/richardlehane/mscfb v1.0.6 h1:eN3bvvZCp00bs7Zf52bxNwAx5lJDBK1tCuH19qq5aC8=
 github.com/richardlehane/mscfb v1.0.6/go.mod h1:pe0+IUIc0AHh0+teNzBlJCtSyZdFOGgV4ZK9bsoV+Jo=
 github.com/richardlehane/msoleps v1.0.6 h1:9BvkpjvD+iUBalUY4esMwv6uBkfOip/Lzvd93jvR9gg=
 github.com/richardlehane/msoleps v1.0.6/go.mod h1:BWev5JBpU9Ko2WAgmZEuiz4/u3ZYTKbjLycmwiWUfWg=
 github.com/robfig/cron/v3 v3.0.1 h1:WdRxkvbJztn8LMz/QEvLN5sBU+xKpSqwwUO1Pjr4qDs=
 github.com/robfig/cron/v3 v3.0.1/go.mod h1:eQICP3HwyT7UooqI/z+Ov+PtYAWygg1TEWWzGIFLtro=
 github.com/robfig/go-cache v0.0.0-20130306151617-9fc39e0dbf62 h1:pyecQtsPmlkCsMkYhT5iZ+sUXuwee+OvfuJjinEA3ko=
 github.com/robfig/go-cache v0.0.0-20130306151617-9fc39e0dbf62/go.mod h1:65XQgovT59RWatovFwnwocoUxiI/eENTnOY5GK3STuY=
-github.com/rs/xid v1.5.0 h1:mKX4bl4iPYJtEIxp6CYiUuLQ/8DYMoz0PUdtGgMFRVc=
+github.com/rs/xid v1.6.0 h1:fV591PaemRlL6JfRxGDEPl69wICngIQ3shQtzfy2gxU=
-github.com/rs/xid v1.5.0/go.mod h1:trrq9SKmegXys3aeAKXMUTdJsYXVwGY3RLcfgqegfbg=
+github.com/rs/xid v1.6.0/go.mod h1:7XoLgs4eV+QndskICGsho+ADou8ySMSjJKDIan90Nz0=
 github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
+github.com/sirupsen/logrus v1.9.4 h1:TsZE7l11zFCLZnZ+teH4Umoq5BhEIfIzfRDZ1Uzql2w=
-github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
+github.com/sirupsen/logrus v1.9.4/go.mod h1:ftWc9WdOfJ0a92nsE2jF5u5ZwH8Bv2zdeOC42RjbV2g=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
@@ -142,51 +166,67 @@ github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
-github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
+github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
-github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/stretchr/testify v1.11.1 h1:7s2iGBzp5EwR7/aIZr8ao5+dra3wiQyKjjFuvgVKu7U=
 github.com/stretchr/testify v1.11.1/go.mod h1:wZwfW3scLgRK+23gO65QZefKpKQRnfz6sD981Nm4B6U=
 github.com/syndtr/goleveldb v1.0.0 h1:fBdIW9lB4Iz0n9khmH8w27SJ3QEJ7+IgjPEwGSZiFdE=
 github.com/syndtr/goleveldb v1.0.0/go.mod h1:ZVVdQEZoIme9iO1Ch2Jdy24qqXrMMOU6lpPAyBWyWuQ=
 github.com/tealeg/xlsx v1.0.5 h1:+f8oFmvY8Gw1iUXzPk+kz+4GpbDZPK1FhPiQRd+ypgE=
 github.com/tealeg/xlsx v1.0.5/go.mod h1:btRS8dz54TDnvKNosuAqxrM1QgN1udgk9O34bDCnORM=
 github.com/tiendc/go-deepcopy v1.7.2 h1:Ut2yYR7W9tWjTQitganoIue4UGxZwCcJy3orjrrIj44=
 github.com/tiendc/go-deepcopy v1.7.2/go.mod h1:4bKjNC2r7boYOkD2IOuZpYjmlDdzjbpTRyCx+goBCJQ=
 github.com/tinylib/msgp v1.6.1 h1:ESRv8eL3u+DNHUoSAAQRE50Hm162zqAnBoGv9PzScPY=
 github.com/tinylib/msgp v1.6.1/go.mod h1:RSp0LW9oSxFut3KzESt5Voq4GVWyS+PSulT77roAqEA=
 github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
-github.com/ugorji/go/codec v1.2.12 h1:9LC83zGrHhuUA9l16C9AHXAqEV/2wBQ4nkvumAE65EE=
+github.com/ugorji/go/codec v1.3.1 h1:waO7eEiFDwidsBN6agj1vJQ4AG7lh2yqXyOXqhgQuyY=
-github.com/ugorji/go/codec v1.2.12/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
+github.com/ugorji/go/codec v1.3.1/go.mod h1:pRBVtBSKl77K30Bv8R2P+cLSGaTtex6fsA2Wjqmfxj4=
-github.com/urfave/cli/v2 v2.27.3 h1:/POWahRmdh7uztQ3CYnaDddk0Rm90PyOgIxgW2rr41M=
+github.com/urfave/cli/v3 v3.8.0 h1:XqKPrm0q4P0q5JpoclYoCAv0/MIvH/jZ2umzuf8pNTI=
-github.com/urfave/cli/v2 v2.27.3/go.mod h1:m4QzxcD2qpra4z7WhzEGn74WZLViBnMpb1ToCAKdGRQ=
+github.com/urfave/cli/v3 v3.8.0/go.mod h1:ysVLtOEmg2tOy6PknnYVhDoouyC/6N42TMeoMzskhso=
 github.com/wk8/go-ordered-map/v2 v2.1.8 h1:5h/BUHu93oj4gIdvHHHGsScSTMijfx5PeYkE/fJgbpc=
 github.com/wk8/go-ordered-map/v2 v2.1.8/go.mod h1:5nJHM5DyteebpVlHnWMV0rPz6Zp7+xBAnxjb1X5vnTw=
 github.com/xrash/smetrics v0.0.0-20240521201337-686a1a2994c1 h1:gEOO8jv9F4OT7lGCjxCBTO/36wtF6j2nSip77qHd4x4=
 github.com/xrash/smetrics v0.0.0-20240521201337-686a1a2994c1/go.mod h1:Ohn+xnUBiLI6FVj/9LpzZWtj1/D6lUovWYBkxHVV3aM=
 github.com/xuri/efp v0.0.1 h1:fws5Rv3myXyYni8uwj2qKjVaRP30PdjeYe2Y6FDsCL8=
 github.com/xuri/efp v0.0.1/go.mod h1:ybY/Jr0T0GTCnYjKqmdwxyxn2BQf2RcQIIvex5QldPI=
 github.com/xuri/excelize/v2 v2.10.1 h1:V62UlqopMqha3kOpnlHy2CcRVw1V8E63jFoWUmMzxN0=
 github.com/xuri/excelize/v2 v2.10.1/go.mod h1:iG5tARpgaEeIhTqt3/fgXCGoBRt4hNXgCp3tfXKoOIc=
 github.com/xuri/nfp v0.0.2-0.20250530014748-2ddeb826f9a9 h1:+C0TIdyyYmzadGaL/HBLbf3WdLgC29pgyhTjAT/0nuE=
 github.com/xuri/nfp v0.0.2-0.20250530014748-2ddeb826f9a9/go.mod h1:WwHg+CVyzlv/TX9xqBFXEZAuxOPxn2k1GNHwG41IIUQ=
 go.mongodb.org/mongo-driver/v2 v2.5.0 h1:yXUhImUjjAInNcpTcAlPHiT7bIXhshCTL3jVBkF3xaE=
 go.mongodb.org/mongo-driver/v2 v2.5.0/go.mod h1:yOI9kBsufol30iFsl1slpdq1I0eHPzybRWdyYUs8K/0=
 go.yaml.in/yaml/v3 v3.0.4 h1:tfq32ie2Jv2UxXFdLJdh3jXuOzWiL1fo0bu/FbuKpbc=
 go.yaml.in/yaml/v3 v3.0.4/go.mod h1:DhzuOOF2ATzADvBadXxruRBLzYTpT36CKvDb3+aBEFg=
 golang.org/x/arch v0.0.0-20210923205945-b76863e36670/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
-golang.org/x/arch v0.8.0 h1:3wRIsP3pM4yUptoR96otTUOXI367OS0+c9eeRi9doIc=
+golang.org/x/arch v0.22.0 h1:c/Zle32i5ttqRXjdLyyHZESLD/bB90DCU1g9l/0YBDI=
-golang.org/x/arch v0.8.0/go.mod h1:FEVrYAQjsQXMVJ1nsMoVVXPZg6p2JE2mx8psSWTDQys=
+golang.org/x/arch v0.22.0/go.mod h1:dNHoOeKiyja7GTvF9NJS1l3Z2yntpQNzgrjh1cU103A=
-golang.org/x/crypto v0.26.0 h1:RrRspgV4mU+YwB4FYnuBoKsUapNIL5cohGAmSH3azsw=
+golang.org/x/crypto v0.49.0 h1:+Ng2ULVvLHnJ/ZFEq4KdcDd/cfjrrjjNSXNzxg0Y4U4=
-golang.org/x/crypto v0.26.0/go.mod h1:GY7jblb9wI+FOo5y8/S2oY4zWP07AkOJ4+jxCqdqn54=
+golang.org/x/crypto v0.49.0/go.mod h1:ErX4dUh2UM+CFYiXZRTcMpEcN8b/1gxEuv3nODoYtCA=
 golang.org/x/exp v0.0.0-20240613232115-7f521ea00fb8 h1:yixxcjnhBmY0nkL253HFVIm0JsFHwrHdT3Yh6szTnfY=
 golang.org/x/exp v0.0.0-20240613232115-7f521ea00fb8/go.mod h1:jj3sYF3dwk5D+ghuXyeI3r5MFf+NT2An6/9dOA95KSI=
 golang.org/x/mod v0.33.0/go.mod h1:swjeQEj+6r7fODbD2cqrnje9PnziFuw4bmLbBZFrQ5w=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.26.0 h1:soB7SVo0PWrY4vPW/+ay0jKDNScG2X9wFeYlXIvJsOQ=
+golang.org/x/net v0.52.0 h1:He/TN1l0e4mmR3QqHMT2Xab3Aj3L9qjbhRm78/6jrW0=
-golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE=
+golang.org/x/net v0.52.0/go.mod h1:R1MAz7uMZxVMualyPXb+VaqGSa3LIaUqk0eEt3w36Sw=
 golang.org/x/oauth2 v0.36.0 h1:peZ/1z27fi9hUOFCAZaHyrpWG5lwe0RJEEEeH0ThlIs=
 golang.org/x/oauth2 v0.36.0/go.mod h1:YDBUJMTkDnJS+A4BP4eZBjCqtokkg1hODuPjwiGPO7Q=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.20.0/go.mod h1:9xrNwdLfx4jkKbNva9FpL6vEN7evnE43NNNJQ2LF3+0=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM=
+golang.org/x/sys v0.42.0 h1:omrd2nAlyT5ESRdCLYdm3+fMfNFE/+Rf4bDIQImRJeo=
-golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.42.0/go.mod h1:4GL1E5IUh+htKOUEOaiffhrAeqysfVGipDYzABqnCmw=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.17.0 h1:XtiM5bkSOt+ewxlOE/aE/AKEHibwj/6gvWMl9Rsh0Qc=
+golang.org/x/text v0.35.0 h1:JOVx6vVDFokkpaq1AEptVzLTpDe9KGpj5tR4/X+ybL8=
-golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
+golang.org/x/text v0.35.0/go.mod h1:khi/HExzZJ2pGnjenulevKNX1W67CUy0AsXcNubPGCA=
-google.golang.org/protobuf v1.34.1 h1:9ddQBjfCyZPOHPUiPxpYESBLc+T8P3E+Vo4IbKZgFWg=
+golang.org/x/tools v0.42.0/go.mod h1:Ma6lCIwGZvHK6XtgbswSoWroEkhugApmsXyrUmBhfr0=
-google.golang.org/protobuf v1.34.1/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+google.golang.org/protobuf v1.36.10 h1:AYd7cD/uASjIL6Q9LiTjz8JLcrh/88q5UObnmY3aOOE=
 google.golang.org/protobuf v1.36.10/go.mod h1:HTf+CrKn2C3g5S8VImy6tdcUvCska2kB7j23XfzDpco=
 gopkg.in/alexcesaro/quotedprintable.v3 v3.0.0-20150716171945-2caba252f4dc h1:2gGKlE2+asNV9m7xrywl36YYNnBG5ZQ0r/BOOxqPpmk=
 gopkg.in/alexcesaro/quotedprintable.v3 v3.0.0-20150716171945-2caba252f4dc/go.mod h1:m7x9LTH6d71AHyAX77c9yqWCCa3UKHcVEj9y7hAtKDk=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
-gopkg.in/ini.v1 v1.67.0 h1:Dgnx+6+nfE+IfzjUEISNeydPJh9AXNNsWbGP9KzCsOA=
+gopkg.in/ini.v1 v1.67.1 h1:tVBILHy0R6e4wkYOn3XmiITt/hEVH4TFMYvAX2Ytz6k=
-gopkg.in/ini.v1 v1.67.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
+gopkg.in/ini.v1 v1.67.1/go.mod h1:x/cyOwCgZqOkJoDIJ3c1KNHMo10+nLGAhh+kn3Zizss=
 gopkg.in/mail.v2 v2.3.1 h1:WYFn/oANrAGP2C0dcV6/pbkPzv8yGzqTjPmTeO7qoXk=
 gopkg.in/mail.v2 v2.3.1/go.mod h1:htwXN1Qh09vZJ1NVKxQqHPBaCBbzKhp5GzuJEA4VJWw=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
@@ -198,5 +238,5 @@ nullprogram.com/x/optparse v1.0.0/go.mod h1:KdyPE+Igbe0jQUrVfMqDMeJQIJZEuyV7pjYm
 rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
 xorm.io/builder v0.3.13 h1:a3jmiVVL19psGeXx8GIurTp7p0IIgqeDmwhcR6BAOAo=
 xorm.io/builder v0.3.13/go.mod h1:aUW0S9eb9VCaPohFCH3j7czOx1PMW3i1HrSzbLYGBSE=
-xorm.io/xorm v1.3.9 h1:TUovzS0ko+IQ1XnNLfs5dqK1cJl1H5uHpWbWqAQ04nU=
+xorm.io/xorm v1.3.11 h1:i4tlVUASogb0ZZFJHA7dZqoRU2pUpUsutnNdaOlFyMI=
-xorm.io/xorm v1.3.9/go.mod h1:LsCCffeeYp63ssk0pKumP6l96WZcHix7ChpurcLNuMw=
+xorm.io/xorm v1.3.11/go.mod h1:cs0ePc8O4a0jD78cNvD+0VFwhqotTvLQZv372QsDw7Q=
@@ -0,0 +1,21 @@
 import { type JestConfigWithTsJest, createDefaultEsmPreset } from 'ts-jest';
 const presetConfig = createDefaultEsmPreset({
    tsconfig: '<rootDir>/tsconfig.jest.json'
 });
 const config: JestConfigWithTsJest = {
    ...presetConfig,
    clearMocks: true,
    collectCoverage: false,
    moduleNameMapper: {
        "^@/(.*)$": "<rootDir>/src/$1"
    },
    testEnvironment: "node",
    testMatch: [
        "**/__tests__/**/*.[jt]s?(x)",
        "!**/__tests__/*_gen.[jt]s?(x)"
    ]
 };
 export default config;
@@ -1,6 +1,6 @@
 {
  "name": "ezbookkeeping",
-  "version": "0.6.0",
+  "version": "1.5.0",
  "private": true,
  "repository": {
    "type": "git",
@@ -15,53 +15,77 @@
    "serve": "cross-env NODE_ENV=development vite",
    "build": "cross-env NODE_ENV=production vite build",
    "serve:dist": "vite preview",
-    "lint": "eslint . --ext .vue,.js,.jsx,.cjs,.mjs --fix --ignore-path .gitignore"
+    "lint": "vue-tsc --noEmit && eslint . --fix",
    "test": "cross-env TS_NODE_PROJECT=\"./tsconfig.jest.json\" jest"
  },
  "dependencies": {
-    "@mdi/js": "^7.4.47",
+    "@mdi/js": "7.4.47",
-    "@vuepic/vue-datepicker": "^9.0.1",
+    "@vuepic/vue-datepicker": "12.1.0",
-    "axios": "^1.7.3",
+    "axios": "1.14.0",
-    "cbor-js": "^0.1.0",
+    "cbor-js": "0.1.0",
-    "clipboard": "^2.0.11",
+    "chardet": "2.1.1",
-    "crypto-js": "^4.2.0",
+    "clipboard": "2.0.11",
-    "dom7": "^4.0.6",
+    "crypto-js": "4.2.0",
-    "echarts": "^5.5.1",
+    "dom7": "4.0.6",
-    "framework7": "^8.3.3",
+    "echarts": "6.0.0",
-    "framework7-icons": "^5.0.5",
+    "framework7": "9.0.3",
-    "framework7-vue": "^8.3.3",
+    "framework7-icons": "5.0.5",
-    "js-cookie": "^3.0.5",
+    "framework7-vue": "9.0.3",
-    "leaflet": "^1.9.4",
+    "jalaali-js": "1.2.8",
-    "line-awesome": "^1.3.0",
+    "leaflet": "1.9.4",
-    "moment": "^2.30.1",
+    "line-awesome": "1.3.0",
-    "moment-timezone": "^0.5.45",
+    "moment": "2.30.1",
-    "pinia": "^2.2.1",
+    "moment-timezone": "0.6.1",
-    "register-service-worker": "^1.7.2",
+    "pinia": "3.0.4",
-    "skeleton-elements": "^4.0.1",
+    "register-service-worker": "1.7.2",
-    "swiper": "^10.2.0",
+    "skeleton-elements": "4.0.1",
-    "ua-parser-js": "^1.0.38",
+    "swiper": "12.1.3",
-    "vue": "^3.4.37",
+    "ua-parser-js": "1.0.39",
-    "vue-echarts": "^6.7.3",
+    "vue": "3.5.31",
-    "vue-i18n": "^9.13.1",
+    "vue-echarts": "8.0.1",
-    "vue-router": "^4.4.3",
+    "vue-i18n": "11.3.0",
-    "vue3-perfect-scrollbar": "^2.0.0",
+    "vue-router": "5.0.4",
-    "vuedraggable": "^4.1.0",
+    "vue3-perfect-scrollbar": "2.0.0",
-    "vuetify": "^3.6.13"
+    "vuedraggable": "4.1.0",
    "vuetify": "3.12.4"
  },
  "devDependencies": {
-    "@vitejs/plugin-vue": "^5.0.5",
+    "@jest/globals": "30.3.0",
-    "cross-env": "^7.0.3",
+    "@tsconfig/node24": "24.0.4",
-    "eslint": "^8.57.0",
+    "@types/cbor-js": "0.1.1",
-    "eslint-plugin-vue": "^9.27.0",
+    "@types/crypto-js": "4.2.2",
-    "git-rev-sync": "^3.0.2",
+    "@types/git-rev-sync": "2.0.2",
-    "postcss-preset-env": "^9.5.16",
+    "@types/jalaali-js": "1.2.0",
-    "sass": "^1.77.6",
+    "@types/jest": "30.0.0",
-    "vite": "^5.3.3",
+    "@types/node": "25.5.0",
-    "vite-plugin-pwa": "^0.20.0",
+    "@types/ua-parser-js": "0.7.39",
-    "vite-plugin-vuetify": "^2.0.3"
+    "@vitejs/plugin-vue": "6.0.5",
    "@vue/eslint-config-typescript": "14.7.0",
    "@vue/tsconfig": "0.9.1",
    "cross-env": "10.1.0",
    "eslint": "10.1.0",
    "eslint-plugin-vue": "10.8.0",
    "git-rev-sync": "3.0.2",
    "jest": "30.3.0",
    "postcss-preset-env": "11.2.0",
    "sass": "1.98.0",
    "ts-jest": "29.4.6",
    "ts-node": "10.9.2",
    "typescript": "5.9.3",
    "vite": "7.3.1",
    "vite-plugin-checker": "0.12.0",
    "vite-plugin-pwa": "1.2.0",
    "vite-plugin-vuetify": "2.1.3",
    "vue-tsc": "3.2.6"
  },
  "browserslist": [
-    "> 1%",
+    "last 5 Chrome versions",
-    "last 2 versions",
+    "last 5 Firefox versions",
    "last 5 Safari versions",
    "last 5 Edge versions",
    "last 5 ChromeAndroid versions",
    "last 5 iOS versions",
    "not IE <= 11",
    "not dead"
  ]
 }
@@ -28,6 +28,9 @@ var (
 			container: settings.Container,
 		},
 		ApiUsingDuplicateChecker: ApiUsingDuplicateChecker{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
 			},
 			container: duplicatechecker.Container,
 		},
 		accounts: services.Accounts,
@@ -147,10 +150,10 @@ func (a *AccountsApi) AccountCreateHandler(c *core.WebContext) (any, *errs.Error
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
-	utcOffset, err := c.GetClientTimezoneOffset()
+	clientTimezone, err := c.GetClientTimezone()
 	if err != nil {
-		log.Warnf(c, "[accounts.AccountCreateHandler] cannot get client timezone offset, because %s", err.Error())
+		log.Warnf(c, "[accounts.AccountCreateHandler] cannot get client timezone, because %s", err.Error())
 		return nil, errs.ErrClientTimezoneOffsetInvalid
 	}
@@ -159,6 +162,11 @@ func (a *AccountsApi) AccountCreateHandler(c *core.WebContext) (any, *errs.Error
 		return nil, errs.ErrAccountCategoryInvalid
 	}
 	if accountCreateReq.Category != models.ACCOUNT_CATEGORY_CREDIT_CARD && accountCreateReq.CreditCardStatementDate != 0 {
 		log.Warnf(c, "[accounts.AccountCreateHandler] cannot set statement date with category \"%d\"", accountCreateReq.Category)
 		return nil, errs.ErrCannotSetStatementDateForNonCreditCard
 	}
 	if accountCreateReq.Type == models.ACCOUNT_TYPE_SINGLE_ACCOUNT {
 		if len(accountCreateReq.SubAccounts) > 0 {
 			log.Warnf(c, "[accounts.AccountCreateHandler] account cannot have any sub-accounts")
@@ -169,6 +177,11 @@ func (a *AccountsApi) AccountCreateHandler(c *core.WebContext) (any, *errs.Error
 			log.Warnf(c, "[accounts.AccountCreateHandler] account cannot set currency placeholder")
 			return nil, errs.ErrAccountCurrencyInvalid
 		}
 		if accountCreateReq.Balance != 0 && accountCreateReq.BalanceTime <= 0 {
 			log.Warnf(c, "[accounts.AccountCreateHandler] account balance time is not set")
 			return nil, errs.ErrAccountBalanceTimeNotSet
 		}
 	} else if accountCreateReq.Type == models.ACCOUNT_TYPE_MULTI_SUB_ACCOUNTS {
 		if len(accountCreateReq.SubAccounts) < 1 {
 			log.Warnf(c, "[accounts.AccountCreateHandler] account does not have any sub-accounts")
@@ -189,19 +202,29 @@ func (a *AccountsApi) AccountCreateHandler(c *core.WebContext) (any, *errs.Error
 			subAccount := accountCreateReq.SubAccounts[i]
 			if subAccount.Category != accountCreateReq.Category {
-				log.Warnf(c, "[accounts.AccountCreateHandler] category of sub-account not equals to parent")
+				log.Warnf(c, "[accounts.AccountCreateHandler] category of sub-account#%d not equals to parent", i)
 				return nil, errs.ErrSubAccountCategoryNotEqualsToParent
 			}
 			if subAccount.Type != models.ACCOUNT_TYPE_SINGLE_ACCOUNT {
-				log.Warnf(c, "[accounts.AccountCreateHandler] sub-account type invalid")
+				log.Warnf(c, "[accounts.AccountCreateHandler] sub-account#%d type invalid", i)
 				return nil, errs.ErrSubAccountTypeInvalid
 			}
 			if subAccount.Currency == validators.ParentAccountCurrencyPlaceholder {
-				log.Warnf(c, "[accounts.AccountCreateHandler] sub-account cannot set currency placeholder")
+				log.Warnf(c, "[accounts.AccountCreateHandler] sub-account#%d cannot set currency placeholder", i)
 				return nil, errs.ErrAccountCurrencyInvalid
 			}
 			if subAccount.Balance != 0 && subAccount.BalanceTime <= 0 {
 				log.Warnf(c, "[accounts.AccountCreateHandler] sub-account#%d balance time is not set", i)
 				return nil, errs.ErrAccountBalanceTimeNotSet
 			}
 			if subAccount.CreditCardStatementDate != 0 {
 				log.Warnf(c, "[accounts.AccountCreateHandler] sub-account#%d cannot set statement date", i)
 				return nil, errs.ErrCannotSetStatementDateForSubAccount
 			}
 		}
 	} else {
 		log.Warnf(c, "[accounts.AccountCreateHandler] account type invalid, type is %d", accountCreateReq.Type)
@@ -216,8 +239,8 @@ func (a *AccountsApi) AccountCreateHandler(c *core.WebContext) (any, *errs.Error
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-	mainAccount := a.createNewAccountModel(uid, &accountCreateReq, maxOrderId+1)
+	mainAccount := a.createNewAccountModel(uid, &accountCreateReq, false, maxOrderId+1)
-	childrenAccounts := a.createSubAccountModels(uid, &accountCreateReq)
+	childrenAccounts, childrenAccountBalanceTimes := a.createSubAccountModels(uid, &accountCreateReq)
 	if a.CurrentConfig().EnableDuplicateSubmissionsCheck && accountCreateReq.ClientSessionId != "" {
 		found, remark := a.GetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_ACCOUNT, uid, accountCreateReq.ClientSessionId)
@@ -255,7 +278,7 @@ func (a *AccountsApi) AccountCreateHandler(c *core.WebContext) (any, *errs.Error
 		}
 	}
-	err = a.accounts.CreateAccounts(c, mainAccount, childrenAccounts, utcOffset)
+	err = a.accounts.CreateAccounts(c, mainAccount, accountCreateReq.BalanceTime, childrenAccounts, childrenAccountBalanceTimes, clientTimezone)
 	if err != nil {
 		log.Errorf(c, "[accounts.AccountCreateHandler] failed to create account \"id:%d\" for user \"uid:%d\", because %s", mainAccount.AccountId, uid, err.Error())
@@ -264,7 +287,7 @@ func (a *AccountsApi) AccountCreateHandler(c *core.WebContext) (any, *errs.Error
 	log.Infof(c, "[accounts.AccountCreateHandler] user \"uid:%d\" has created a new account \"id:%d\" successfully", uid, mainAccount.AccountId)
-	a.SetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_ACCOUNT, uid, accountCreateReq.ClientSessionId, utils.Int64ToString(mainAccount.AccountId))
+	a.SetSubmissionRemarkIfEnable(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_ACCOUNT, uid, accountCreateReq.ClientSessionId, utils.Int64ToString(mainAccount.AccountId))
 	accountInfoResp := mainAccount.ToAccountInfoResponse()
 	if len(childrenAccounts) > 0 {
@@ -288,11 +311,27 @@ func (a *AccountsApi) AccountModifyHandler(c *core.WebContext) (any, *errs.Error
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	if accountModifyReq.Id <= 0 {
 		return nil, errs.ErrAccountIdInvalid
 	}
 	clientTimezone, err := c.GetClientTimezone()
 	if err != nil {
 		log.Warnf(c, "[accounts.AccountModifyHandler] cannot get client timezone, because %s", err.Error())
 		return nil, errs.ErrClientTimezoneOffsetInvalid
 	}
 	if accountModifyReq.Category < models.ACCOUNT_CATEGORY_CASH || accountModifyReq.Category > models.ACCOUNT_CATEGORY_CERTIFICATE_OF_DEPOSIT {
 		log.Warnf(c, "[accounts.AccountModifyHandler] account category invalid, category is %d", accountModifyReq.Category)
 		return nil, errs.ErrAccountCategoryInvalid
 	}
 	if accountModifyReq.Category != models.ACCOUNT_CATEGORY_CREDIT_CARD && accountModifyReq.CreditCardStatementDate != 0 {
 		log.Warnf(c, "[accounts.AccountModifyHandler] cannot set statement date with category \"%d\"", accountModifyReq.Category)
 		return nil, errs.ErrCannotSetStatementDateForNonCreditCard
 	}
 	uid := c.GetCurrentUid()
 	accountAndSubAccounts, err := a.accounts.GetAccountAndSubAccountsByAccountId(c, uid, accountModifyReq.Id)
@@ -302,45 +341,198 @@ func (a *AccountsApi) AccountModifyHandler(c *core.WebContext) (any, *errs.Error
 	}
 	accountMap := a.accounts.GetAccountMapByList(accountAndSubAccounts)
 	mainAccount, exists := accountMap[accountModifyReq.Id]
-	if _, exists := accountMap[accountModifyReq.Id]; !exists {
+	if !exists {
 		return nil, errs.ErrAccountNotFound
 	}
-	if len(accountModifyReq.SubAccounts)+1 != len(accountAndSubAccounts) {
+	if accountModifyReq.Currency != nil && mainAccount.Currency != *accountModifyReq.Currency {
-		return nil, errs.ErrCannotAddOrDeleteSubAccountsWhenModify
+		return nil, errs.ErrNotSupportedChangeCurrency
 	}
 	if accountModifyReq.Balance != nil {
 		return nil, errs.ErrNotSupportedChangeBalance
 	}
 	if accountModifyReq.BalanceTime != nil {
 		return nil, errs.ErrNotSupportedChangeBalanceTime
 	}
 	if mainAccount.Type == models.ACCOUNT_TYPE_SINGLE_ACCOUNT {
 		if len(accountModifyReq.SubAccounts) > 0 {
 			log.Warnf(c, "[accounts.AccountModifyHandler] account cannot have any sub-accounts")
 			return nil, errs.ErrAccountCannotHaveSubAccounts
 		}
 	} else if mainAccount.Type == models.ACCOUNT_TYPE_MULTI_SUB_ACCOUNTS {
 		if len(accountModifyReq.SubAccounts) < 1 {
 			log.Warnf(c, "[accounts.AccountModifyHandler] account does not have any sub-accounts")
 			return nil, errs.ErrAccountHaveNoSubAccount
 		}
 		for i := 0; i < len(accountModifyReq.SubAccounts); i++ {
 			subAccountReq := accountModifyReq.SubAccounts[i]
 			if subAccountReq.Category != accountModifyReq.Category {
 				log.Warnf(c, "[accounts.AccountModifyHandler] category of sub-account#%d not equals to parent", i)
 				return nil, errs.ErrSubAccountCategoryNotEqualsToParent
 			}
 			if subAccountReq.Id == 0 { // create new sub-account
 				if subAccountReq.Currency == nil {
 					log.Warnf(c, "[accounts.AccountModifyHandler] sub-account#%d not set currency", i)
 					return nil, errs.ErrAccountCurrencyInvalid
 				} else if subAccountReq.Currency != nil && *subAccountReq.Currency == validators.ParentAccountCurrencyPlaceholder {
 					log.Warnf(c, "[accounts.AccountModifyHandler] sub-account#%d cannot set currency placeholder", i)
 					return nil, errs.ErrAccountCurrencyInvalid
 				}
 				if subAccountReq.Balance == nil {
 					defaultBalance := int64(0)
 					subAccountReq.Balance = &defaultBalance
 				}
 				if *subAccountReq.Balance == 0 {
 					defaultBalanceTime := int64(0)
 					subAccountReq.BalanceTime = &defaultBalanceTime
 				}
 				if *subAccountReq.Balance != 0 && (subAccountReq.BalanceTime == nil || *subAccountReq.BalanceTime <= 0) {
 					log.Warnf(c, "[accounts.AccountModifyHandler] sub-account#%d balance time is not set", i)
 					return nil, errs.ErrAccountBalanceTimeNotSet
 				}
 			} else { // modify existed sub-account
 				subAccount, exists := accountMap[subAccountReq.Id]
 				if !exists {
 					return nil, errs.ErrAccountNotFound
 				}
 				if subAccountReq.Currency != nil && subAccount.Currency != *subAccountReq.Currency {
 					return nil, errs.ErrNotSupportedChangeCurrency
 				}
 				if subAccountReq.Balance != nil {
 					return nil, errs.ErrNotSupportedChangeBalance
 				}
 				if subAccountReq.BalanceTime != nil {
 					return nil, errs.ErrNotSupportedChangeBalanceTime
 				}
 			}
 			if subAccountReq.CreditCardStatementDate != 0 {
 				log.Warnf(c, "[accounts.AccountModifyHandler] sub-account#%d cannot set statement date", i)
 				return nil, errs.ErrCannotSetStatementDateForSubAccount
 			}
 		}
 	}
 	anythingUpdate := false
 	var toUpdateAccounts []*models.Account
 	var toAddAccounts []*models.Account
 	var toAddAccountBalanceTimes []int64
 	var toDeleteAccountIds []int64
-	toUpdateAccount := a.getToUpdateAccount(uid, &accountModifyReq, accountMap[accountModifyReq.Id])
+	toUpdateAccount := a.getToUpdateAccount(uid, &accountModifyReq, mainAccount, false)
 	if toUpdateAccount != nil {
 		if toUpdateAccount.Category != mainAccount.Category {
 			maxOrderId, err := a.accounts.GetMaxDisplayOrder(c, uid, toUpdateAccount.Category)
 			if err != nil {
 				log.Errorf(c, "[accounts.AccountModifyHandler] failed to get max display order for user \"uid:%d\", because %s", uid, err.Error())
 				return nil, errs.Or(err, errs.ErrOperationFailed)
 			}
 			toUpdateAccount.DisplayOrder = maxOrderId + 1
 		}
 		anythingUpdate = true
 		toUpdateAccounts = append(toUpdateAccounts, toUpdateAccount)
 	}
 	toDeleteAccountIds = a.getToDeleteSubAccountIds(&accountModifyReq, mainAccount, accountAndSubAccounts)
 	if len(toDeleteAccountIds) > 0 {
 		anythingUpdate = true
 	}
 	maxOrderId := int32(0)
 	for i := 0; i < len(accountAndSubAccounts); i++ {
 		account := accountAndSubAccounts[i]
 		if account.AccountId != mainAccount.AccountId && account.DisplayOrder > maxOrderId {
 			maxOrderId = account.DisplayOrder
 		}
 	}
 	for i := 0; i < len(accountModifyReq.SubAccounts); i++ {
 		subAccountReq := accountModifyReq.SubAccounts[i]
 		if _, exists := accountMap[subAccountReq.Id]; !exists {
-			return nil, errs.ErrAccountNotFound
+			anythingUpdate = true
-		}
+			maxOrderId = maxOrderId + 1
 			newSubAccount := a.createNewSubAccountModelForModify(uid, mainAccount.Type, subAccountReq, maxOrderId)
 			toAddAccounts = append(toAddAccounts, newSubAccount)
-		toUpdateSubAccount := a.getToUpdateAccount(uid, subAccountReq, accountMap[subAccountReq.Id])
+			if subAccountReq.BalanceTime != nil {
 				toAddAccountBalanceTimes = append(toAddAccountBalanceTimes, *subAccountReq.BalanceTime)
 			} else {
 				toAddAccountBalanceTimes = append(toAddAccountBalanceTimes, 0)
 			}
 		} else {
 			toUpdateSubAccount := a.getToUpdateAccount(uid, subAccountReq, accountMap[subAccountReq.Id], true)
 			if toUpdateSubAccount != nil {
 				anythingUpdate = true
 				toUpdateAccounts = append(toUpdateAccounts, toUpdateSubAccount)
 			}
 		}
 	}
 	if !anythingUpdate {
 		return nil, errs.ErrNothingWillBeUpdated
 	}
-	err = a.accounts.ModifyAccounts(c, uid, toUpdateAccounts)
+	if len(toAddAccounts) > 0 && a.CurrentConfig().EnableDuplicateSubmissionsCheck && accountModifyReq.ClientSessionId != "" {
 		found, remark := a.GetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_SUBACCOUNT, uid, accountModifyReq.ClientSessionId)
 		if found {
 			log.Infof(c, "[accounts.AccountModifyHandler] another account \"id:%s\" modification has been created for user \"uid:%d\"", remark, uid)
 			accountId, err := utils.StringToInt64(remark)
 			if err == nil {
 				accountAndSubAccounts, err := a.accounts.GetAccountAndSubAccountsByAccountId(c, uid, accountId)
 				if err != nil {
 					log.Errorf(c, "[accounts.AccountModifyHandler] failed to get existed account \"id:%d\" for user \"uid:%d\", because %s", accountId, uid, err.Error())
 					return nil, errs.Or(err, errs.ErrOperationFailed)
 				}
 				accountMap := a.accounts.GetAccountMapByList(accountAndSubAccounts)
 				mainAccount, exists := accountMap[accountId]
 				if !exists {
 					return nil, errs.ErrOperationFailed
 				}
 				accountInfoResp := mainAccount.ToAccountInfoResponse()
 				for i := 0; i < len(accountAndSubAccounts); i++ {
 					if accountAndSubAccounts[i].ParentAccountId == mainAccount.AccountId {
 						subAccountResp := accountAndSubAccounts[i].ToAccountInfoResponse()
 						accountInfoResp.SubAccounts = append(accountInfoResp.SubAccounts, subAccountResp)
 					}
 				}
 				return accountInfoResp, nil
 			}
 		}
 	}
 	err = a.accounts.ModifyAccounts(c, mainAccount, toUpdateAccounts, toAddAccounts, toAddAccountBalanceTimes, toDeleteAccountIds, clientTimezone)
 	if err != nil {
 		log.Errorf(c, "[accounts.AccountModifyHandler] failed to update account \"id:%d\" for user \"uid:%d\", because %s", accountModifyReq.Id, uid, err.Error())
@@ -349,6 +541,10 @@ func (a *AccountsApi) AccountModifyHandler(c *core.WebContext) (any, *errs.Error
 	log.Infof(c, "[accounts.AccountModifyHandler] user \"uid:%d\" has updated account \"id:%d\" successfully", uid, accountModifyReq.Id)
 	if len(toAddAccounts) > 0 {
 		a.SetSubmissionRemarkIfEnable(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_SUBACCOUNT, uid, accountModifyReq.ClientSessionId, utils.Int64ToString(mainAccount.AccountId))
 	}
 	accountRespMap := make(map[int64]*models.AccountInfoResponse)
 	for i := 0; i < len(toUpdateAccounts); i++ {
@@ -357,7 +553,6 @@ func (a *AccountsApi) AccountModifyHandler(c *core.WebContext) (any, *errs.Error
 		account.Type = oldAccount.Type
 		account.ParentAccountId = oldAccount.ParentAccountId
 		account.DisplayOrder = oldAccount.DisplayOrder
 		account.Currency = oldAccount.Currency
 		account.Balance = oldAccount.Balance
@@ -365,11 +560,23 @@ func (a *AccountsApi) AccountModifyHandler(c *core.WebContext) (any, *errs.Error
 		accountRespMap[accountResp.Id] = accountResp
 	}
 	for i := 0; i < len(toAddAccounts); i++ {
 		account := toAddAccounts[i]
 		accountResp := account.ToAccountInfoResponse()
 		accountRespMap[accountResp.Id] = accountResp
 	}
 	deletedAccountIds := make(map[int64]bool)
 	for i := 0; i < len(toDeleteAccountIds); i++ {
 		deletedAccountIds[toDeleteAccountIds[i]] = true
 	}
 	for i := 0; i < len(accountAndSubAccounts); i++ {
 		oldAccount := accountAndSubAccounts[i]
 		_, exists := accountRespMap[oldAccount.AccountId]
-		if !exists {
+		if !exists && !deletedAccountIds[oldAccount.AccountId] {
 			oldAccountResp := oldAccount.ToAccountInfoResponse()
 			accountRespMap[oldAccountResp.Id] = oldAccountResp
 		}
@@ -378,8 +585,19 @@ func (a *AccountsApi) AccountModifyHandler(c *core.WebContext) (any, *errs.Error
 	accountResp := accountRespMap[accountModifyReq.Id]
 	for i := 0; i < len(accountAndSubAccounts); i++ {
-		if accountAndSubAccounts[i].ParentAccountId == accountResp.Id {
+		account := accountAndSubAccounts[i]
-			subAccountResp := accountRespMap[accountAndSubAccounts[i].AccountId]
+
 		if account.ParentAccountId == accountResp.Id && !deletedAccountIds[account.AccountId] {
 			subAccountResp := accountRespMap[account.AccountId]
 			accountResp.SubAccounts = append(accountResp.SubAccounts, subAccountResp)
 		}
 	}
 	for i := 0; i < len(toAddAccounts); i++ {
 		account := toAddAccounts[i]
 		if account.ParentAccountId == accountResp.Id {
 			subAccountResp := accountRespMap[account.AccountId]
 			accountResp.SubAccounts = append(accountResp.SubAccounts, subAccountResp)
 		}
 	}
@@ -468,7 +686,38 @@ func (a *AccountsApi) AccountDeleteHandler(c *core.WebContext) (any, *errs.Error
 	return true, nil
 }
-func (a *AccountsApi) createNewAccountModel(uid int64, accountCreateReq *models.AccountCreateRequest, order int32) *models.Account {
+// SubAccountDeleteHandler deletes an existed sub-account by request parameters for current user
 func (a *AccountsApi) SubAccountDeleteHandler(c *core.WebContext) (any, *errs.Error) {
 	var accountDeleteReq models.AccountDeleteRequest
 	err := c.ShouldBindJSON(&accountDeleteReq)
 	if err != nil {
 		log.Warnf(c, "[accounts.SubAccountDeleteHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	err = a.accounts.DeleteSubAccount(c, uid, accountDeleteReq.Id)
 	if err != nil {
 		log.Errorf(c, "[accounts.SubAccountDeleteHandler] failed to delete sub-account \"id:%d\" for user \"uid:%d\", because %s", accountDeleteReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[accounts.SubAccountDeleteHandler] user \"uid:%d\" has deleted sub-account \"id:%d\"", uid, accountDeleteReq.Id)
 	return true, nil
 }
 func (a *AccountsApi) createNewAccountModel(uid int64, accountCreateReq *models.AccountCreateRequest, isSubAccount bool, order int32) *models.Account {
 	accountExtend := &models.AccountExtend{}
 	if !isSubAccount && accountCreateReq.Category == models.ACCOUNT_CATEGORY_CREDIT_CARD {
 		accountExtend.CreditCardStatementDate = &accountCreateReq.CreditCardStatementDate
 		if accountCreateReq.CreditLimit > 0 {
 			accountExtend.CreditLimit = &accountCreateReq.CreditLimit
 		}
 	}
 	return &models.Account{
 		Uid:          uid,
 		Name:         accountCreateReq.Name,
@@ -480,32 +729,64 @@ func (a *AccountsApi) createNewAccountModel(uid int64, accountCreateReq *models.
 		Currency:     accountCreateReq.Currency,
 		Balance:      accountCreateReq.Balance,
 		Comment:      accountCreateReq.Comment,
 		Extend:       accountExtend,
 	}
 }
-func (a *AccountsApi) createSubAccountModels(uid int64, accountCreateReq *models.AccountCreateRequest) []*models.Account {
+func (a *AccountsApi) createNewSubAccountModelForModify(uid int64, accountType models.AccountType, accountModifyReq *models.AccountModifyRequest, order int32) *models.Account {
 	accountExtend := &models.AccountExtend{}
 	return &models.Account{
 		Uid:          uid,
 		Name:         accountModifyReq.Name,
 		DisplayOrder: order,
 		Category:     accountModifyReq.Category,
 		Type:         accountType,
 		Icon:         accountModifyReq.Icon,
 		Color:        accountModifyReq.Color,
 		Currency:     *accountModifyReq.Currency,
 		Balance:      *accountModifyReq.Balance,
 		Comment:      accountModifyReq.Comment,
 		Extend:       accountExtend,
 	}
 }
 func (a *AccountsApi) createSubAccountModels(uid int64, accountCreateReq *models.AccountCreateRequest) ([]*models.Account, []int64) {
 	if len(accountCreateReq.SubAccounts) <= 0 {
-		return nil
+		return nil, nil
 	}
 	childrenAccounts := make([]*models.Account, len(accountCreateReq.SubAccounts))
 	childrenAccountBalanceTimes := make([]int64, len(accountCreateReq.SubAccounts))
 	for i := int32(0); i < int32(len(accountCreateReq.SubAccounts)); i++ {
-		childrenAccounts[i] = a.createNewAccountModel(uid, accountCreateReq.SubAccounts[i], i+1)
+		childrenAccounts[i] = a.createNewAccountModel(uid, accountCreateReq.SubAccounts[i], true, i+1)
 		childrenAccountBalanceTimes[i] = accountCreateReq.SubAccounts[i].BalanceTime
 	}
-	return childrenAccounts
+	return childrenAccounts, childrenAccountBalanceTimes
 }
-func (a *AccountsApi) getToUpdateAccount(uid int64, accountModifyReq *models.AccountModifyRequest, oldAccount *models.Account) *models.Account {
+func (a *AccountsApi) getToUpdateAccount(uid int64, accountModifyReq *models.AccountModifyRequest, oldAccount *models.Account, isSubAccount bool) *models.Account {
 	newAccountExtend := &models.AccountExtend{}
 	if !isSubAccount && accountModifyReq.Category == models.ACCOUNT_CATEGORY_CREDIT_CARD {
 		newAccountExtend.CreditCardStatementDate = &accountModifyReq.CreditCardStatementDate
 		if accountModifyReq.CreditLimit > 0 {
 			newAccountExtend.CreditLimit = &accountModifyReq.CreditLimit
 		}
 	}
 	newAccount := &models.Account{
 		AccountId:    oldAccount.AccountId,
 		Uid:          uid,
 		Name:         accountModifyReq.Name,
 		DisplayOrder: oldAccount.DisplayOrder,
 		Category:     accountModifyReq.Category,
 		Icon:         accountModifyReq.Icon,
 		Color:        accountModifyReq.Color,
 		Comment:      accountModifyReq.Comment,
 		Extend:       newAccountExtend,
 		Hidden:       accountModifyReq.Hidden,
 	}
@@ -518,5 +799,46 @@ func (a *AccountsApi) getToUpdateAccount(uid int64, accountModifyReq *models.Acc
 		return newAccount
 	}
 	if (newAccount.Extend != nil && oldAccount.Extend == nil) ||
 		(newAccount.Extend == nil && oldAccount.Extend != nil) {
 		return newAccount
 	}
 	oldAccountExtend := oldAccount.Extend
 	if newAccountExtend.CreditCardStatementDate != oldAccountExtend.CreditCardStatementDate {
 		return newAccount
 	}
 	if newAccountExtend.CreditLimit != oldAccountExtend.CreditLimit {
 		if newAccountExtend.CreditLimit == nil || oldAccountExtend.CreditLimit == nil || *newAccountExtend.CreditLimit != *oldAccountExtend.CreditLimit {
 			return newAccount
 		}
 	}
 	return nil
 }
 func (a *AccountsApi) getToDeleteSubAccountIds(accountModifyReq *models.AccountModifyRequest, mainAccount *models.Account, accountAndSubAccounts []*models.Account) []int64 {
 	newSubAccountIds := make(map[int64]bool, len(accountModifyReq.SubAccounts))
 	for i := 0; i < len(accountModifyReq.SubAccounts); i++ {
 		newSubAccountIds[accountModifyReq.SubAccounts[i].Id] = true
 	}
 	toDeleteAccountIds := make([]int64, 0)
 	for i := 0; i < len(accountAndSubAccounts); i++ {
 		subAccount := accountAndSubAccounts[i]
 		if subAccount.AccountId == mainAccount.AccountId {
 			continue
 		}
 		if _, exists := newSubAccountIds[subAccount.AccountId]; !exists {
 			toDeleteAccountIds = append(toDeleteAccountIds, subAccount.AccountId)
 		}
 	}
 	return toDeleteAccountIds
 }
@@ -1,10 +1,14 @@
 package api
 import (
 	"encoding/json"
 	"errors"
 	"github.com/pquerna/otp/totp"
 	"github.com/mayswind/ezbookkeeping/pkg/avatars"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/duplicatechecker"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
@@ -15,10 +19,13 @@ import (
 // AuthorizationsApi represents authorization api
 type AuthorizationsApi struct {
 	ApiUsingConfig
 	ApiUsingDuplicateChecker
 	ApiWithUserInfo
 	users                   *services.UserService
 	userAppCloudSettings    *services.UserApplicationCloudSettingsService
 	tokens                  *services.TokenService
 	twoFactorAuthorizations *services.TwoFactorAuthorizationService
 	userExternalAuths       *services.UserExternalAuthService
 }
 // Initialize a authorization api singleton instance
@@ -27,6 +34,12 @@ var (
 		ApiUsingConfig: ApiUsingConfig{
 			container: settings.Container,
 		},
 		ApiUsingDuplicateChecker: ApiUsingDuplicateChecker{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
 			},
 			container: duplicatechecker.Container,
 		},
 		ApiWithUserInfo: ApiWithUserInfo{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
@@ -36,13 +49,19 @@ var (
 			},
 		},
 		users:                   services.Users,
 		userAppCloudSettings:    services.UserApplicationCloudSettings,
 		tokens:                  services.Tokens,
 		twoFactorAuthorizations: services.TwoFactorAuthorizations,
 		userExternalAuths:       services.UserExternalAuths,
 	}
 )
 // AuthorizeHandler verifies and authorizes current login request
 func (a *AuthorizationsApi) AuthorizeHandler(c *core.WebContext) (any, *errs.Error) {
 	if !a.CurrentConfig().EnableInternalAuth {
 		return nil, errs.ErrCannotLoginByPassword
 	}
 	var credential models.UserLoginRequest
 	err := c.ShouldBindJSON(&credential)
@@ -51,7 +70,23 @@ func (a *AuthorizationsApi) AuthorizeHandler(c *core.WebContext) (any, *errs.Err
 		return nil, errs.ErrLoginNameOrPasswordInvalid
 	}
-	user, err := a.users.GetUserByUsernameOrEmailAndPassword(c, credential.LoginName, credential.Password)
+	err = a.CheckFailureCount(c, 0)
 	if err != nil {
 		log.Warnf(c, "[authorizations.AuthorizeHandler] cannot login for user \"%s\", because %s", credential.LoginName, err.Error())
 		return nil, errs.Or(err, errs.ErrFailureCountLimitReached)
 	}
 	user, uid, err := a.users.GetUserByUsernameOrEmailAndPassword(c, credential.LoginName, credential.Password)
 	if errs.IsCustomError(err) {
 		failureCheckErr := a.CheckAndIncreaseFailureCount(c, uid)
 		if failureCheckErr != nil {
 			log.Warnf(c, "[authorizations.AuthorizeHandler] cannot login for user \"%s\", because %s", credential.LoginName, failureCheckErr.Error())
 			return nil, errs.Or(failureCheckErr, errs.ErrFailureCountLimitReached)
 		}
 	}
 	if err != nil {
 		log.Warnf(c, "[authorizations.AuthorizeHandler] login failed for user \"%s\", because %s", credential.LoginName, err.Error())
@@ -115,15 +150,29 @@ func (a *AuthorizationsApi) AuthorizeHandler(c *core.WebContext) (any, *errs.Err
 	}
 	c.SetTokenClaims(claims)
 	c.SetTokenContext("")
-	log.Infof(c, "[authorizations.AuthorizeHandler] user \"uid:%d\" has logined, token type is %d, token will be expired at %d", user.Uid, claims.Type, claims.ExpiresAt)
+	userApplicationCloudSettings, err := a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, user.Uid)
 	var applicationCloudSettingSlice *models.ApplicationCloudSettingSlice = nil
-	authResp := a.getAuthResponse(c, token, twoFactorEnable, user)
+	if err != nil {
 		log.Warnf(c, "[authorizations.AuthorizeHandler] failed to get latest user application cloud settings for user \"uid:%d\", because %s", user.Uid, err.Error())
 	} else if userApplicationCloudSettings != nil && len(userApplicationCloudSettings.Settings) > 0 {
 		applicationCloudSettingSlice = &userApplicationCloudSettings.Settings
 	}
 	log.Infof(c, "[authorizations.AuthorizeHandler] user \"uid:%d\" has logged in, token type is %d, token will be expired at %d", user.Uid, claims.Type, claims.ExpiresAt)
 	authResp := a.getAuthResponse(c, token, twoFactorEnable, user, applicationCloudSettingSlice)
 	return authResp, nil
 }
 // TwoFactorAuthorizeHandler verifies and authorizes current 2fa login by passcode
 func (a *AuthorizationsApi) TwoFactorAuthorizeHandler(c *core.WebContext) (any, *errs.Error) {
 	if !a.CurrentConfig().EnableInternalAuth {
 		return nil, errs.ErrCannotLoginByPassword
 	}
 	var credential models.TwoFactorLoginRequest
 	err := c.ShouldBindJSON(&credential)
@@ -133,6 +182,13 @@ func (a *AuthorizationsApi) TwoFactorAuthorizeHandler(c *core.WebContext) (any,
 	}
 	uid := c.GetCurrentUid()
 	err = a.CheckFailureCount(c, uid)
 	if err != nil {
 		log.Warnf(c, "[authorizations.TwoFactorAuthorizeHandler] cannot auth for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrFailureCountLimitReached)
 	}
 	twoFactorSetting, err := a.twoFactorAuthorizations.GetUserTwoFactorSettingByUid(c, uid)
 	if err != nil {
@@ -142,13 +198,21 @@ func (a *AuthorizationsApi) TwoFactorAuthorizeHandler(c *core.WebContext) (any,
 	if !totp.Validate(credential.Passcode, twoFactorSetting.Secret) {
 		log.Warnf(c, "[authorizations.TwoFactorAuthorizeHandler] passcode is invalid for user \"uid:%d\"", uid)
 		err = a.CheckAndIncreaseFailureCount(c, uid)
 		if err != nil {
 			log.Warnf(c, "[authorizations.TwoFactorAuthorizeHandler] cannot auth for user \"uid:%d\", because %s", uid, err.Error())
 			return nil, errs.Or(err, errs.ErrFailureCountLimitReached)
 		}
 		return nil, errs.ErrPasscodeInvalid
 	}
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
-		log.Errorf(c, "[authorizations.TwoFactorAuthorizeHandler] failed to get user \"uid:%d\" info, because %s", user.Uid, err.Error())
+		log.Errorf(c, "[authorizations.TwoFactorAuthorizeHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
@@ -178,15 +242,29 @@ func (a *AuthorizationsApi) TwoFactorAuthorizeHandler(c *core.WebContext) (any,
 	c.SetTextualToken(token)
 	c.SetTokenClaims(claims)
 	c.SetTokenContext("")
 	userApplicationCloudSettings, err := a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, user.Uid)
 	var applicationCloudSettingSlice *models.ApplicationCloudSettingSlice = nil
 	if err != nil {
 		log.Warnf(c, "[authorizations.TwoFactorAuthorizeHandler] failed to get latest user application cloud settings for user \"uid:%d\", because %s", user.Uid, err.Error())
 	} else if userApplicationCloudSettings != nil && len(userApplicationCloudSettings.Settings) > 0 {
 		applicationCloudSettingSlice = &userApplicationCloudSettings.Settings
 	}
 	log.Infof(c, "[authorizations.TwoFactorAuthorizeHandler] user \"uid:%d\" has authorized two-factor via passcode, token will be expired at %d", user.Uid, claims.ExpiresAt)
-	authResp := a.getAuthResponse(c, token, false, user)
+	authResp := a.getAuthResponse(c, token, false, user, applicationCloudSettingSlice)
 	return authResp, nil
 }
 // TwoFactorAuthorizeByRecoveryCodeHandler verifies and authorizes current 2fa login by recovery code
 func (a *AuthorizationsApi) TwoFactorAuthorizeByRecoveryCodeHandler(c *core.WebContext) (any, *errs.Error) {
 	if !a.CurrentConfig().EnableInternalAuth {
 		return nil, errs.ErrCannotLoginByPassword
 	}
 	var credential models.TwoFactorRecoveryCodeLoginRequest
 	err := c.ShouldBindJSON(&credential)
@@ -196,6 +274,13 @@ func (a *AuthorizationsApi) TwoFactorAuthorizeByRecoveryCodeHandler(c *core.WebC
 	}
 	uid := c.GetCurrentUid()
 	err = a.CheckFailureCount(c, uid)
 	if err != nil {
 		log.Warnf(c, "[authorizations.TwoFactorAuthorizeByRecoveryCodeHandler] cannot auth for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrFailureCountLimitReached)
 	}
 	enableTwoFactor, err := a.twoFactorAuthorizations.ExistsTwoFactorSetting(c, uid)
 	if err != nil {
@@ -210,7 +295,7 @@ func (a *AuthorizationsApi) TwoFactorAuthorizeByRecoveryCodeHandler(c *core.WebC
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
-		log.Errorf(c, "[authorizations.TwoFactorAuthorizeByRecoveryCodeHandler] failed to get user \"uid:%d\" info, because %s", user.Uid, err.Error())
+		log.Errorf(c, "[authorizations.TwoFactorAuthorizeByRecoveryCodeHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
@@ -226,6 +311,15 @@ func (a *AuthorizationsApi) TwoFactorAuthorizeByRecoveryCodeHandler(c *core.WebC
 	err = a.twoFactorAuthorizations.GetAndUseUserTwoFactorRecoveryCode(c, uid, credential.RecoveryCode, user.Salt)
 	if errs.IsCustomError(err) {
 		failureCheckErr := a.CheckAndIncreaseFailureCount(c, uid)
 		if failureCheckErr != nil {
 			log.Warnf(c, "[authorizations.TwoFactorAuthorizeByRecoveryCodeHandler] cannot auth for user \"uid:%d\", because %s", uid, failureCheckErr.Error())
 			return nil, errs.Or(failureCheckErr, errs.ErrFailureCountLimitReached)
 		}
 	}
 	if err != nil {
 		log.Warnf(c, "[authorizations.TwoFactorAuthorizeByRecoveryCodeHandler] failed to get two-factor recovery code for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrTwoFactorRecoveryCodeNotExist)
@@ -247,18 +341,207 @@ func (a *AuthorizationsApi) TwoFactorAuthorizeByRecoveryCodeHandler(c *core.WebC
 	c.SetTextualToken(token)
 	c.SetTokenClaims(claims)
 	c.SetTokenContext("")
 	userApplicationCloudSettings, err := a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, user.Uid)
 	var applicationCloudSettingSlice *models.ApplicationCloudSettingSlice = nil
 	if err != nil {
 		log.Warnf(c, "[authorizations.TwoFactorAuthorizeByRecoveryCodeHandler] failed to get latest user application cloud settings for user \"uid:%d\", because %s", user.Uid, err.Error())
 	} else if userApplicationCloudSettings != nil && len(userApplicationCloudSettings.Settings) > 0 {
 		applicationCloudSettingSlice = &userApplicationCloudSettings.Settings
 	}
 	log.Infof(c, "[authorizations.TwoFactorAuthorizeByRecoveryCodeHandler] user \"uid:%d\" has authorized two-factor via recovery code \"%s\", token will be expired at %d", user.Uid, credential.RecoveryCode, claims.ExpiresAt)
-	authResp := a.getAuthResponse(c, token, false, user)
+	authResp := a.getAuthResponse(c, token, false, user, applicationCloudSettingSlice)
 	return authResp, nil
 }
-func (a *AuthorizationsApi) getAuthResponse(c *core.WebContext, token string, need2FA bool, user *models.User) *models.AuthResponse {
+// OAuth2CallbackAuthorizeHandler verifies and authorizes current OAuth 2.0 callback login
 func (a *AuthorizationsApi) OAuth2CallbackAuthorizeHandler(c *core.WebContext) (any, *errs.Error) {
 	if !a.CurrentConfig().EnableOAuth2Login {
 		return nil, errs.ErrOAuth2NotEnabled
 	}
 	var credential models.OAuth2CallbackLoginRequest
 	err := c.ShouldBindJSON(&credential)
 	if err != nil {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	var tokenContext models.OAuth2CallbackTokenContext
 	err = json.Unmarshal([]byte(c.GetTokenContext()), &tokenContext)
 	if err != nil {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] parse token context failed, because %s", err.Error())
 		return nil, errs.ErrOperationFailed
 	}
 	if !tokenContext.ExternalAuthType.IsValid() {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] external auth type \"%s\" is invalid", tokenContext.ExternalAuthType)
 		return nil, errs.ErrInvalidOAuth2Provider
 	}
 	uid := c.GetCurrentUid()
 	err = a.CheckFailureCount(c, uid)
 	if err != nil {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] cannot auth for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrFailureCountLimitReached)
 	}
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Errorf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.Disabled {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] user \"uid:%d\" is disabled", user.Uid)
 		return nil, errs.ErrUserIsDisabled
 	}
 	if a.CurrentConfig().EnableUserForceVerifyEmail && !user.EmailVerified {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] user \"uid:%d\" has not verified email", user.Uid)
 		return nil, errs.ErrEmailIsNotVerified
 	}
 	oldTokenClaims := c.GetTokenClaims()
 	if oldTokenClaims.Type == core.USER_TOKEN_TYPE_OAUTH2_CALLBACK_REQUIRE_VERIFY {
 		if credential.Password == "" {
 			return nil, errs.ErrPasswordIsEmpty
 		}
 		if !a.users.IsPasswordEqualsUserPassword(credential.Password, user) {
 			failureCheckErr := a.CheckAndIncreaseFailureCount(c, uid)
 			if failureCheckErr != nil {
 				log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] cannot login for user \"uid:%d\", because %s", user.Uid, failureCheckErr.Error())
 				return nil, errs.Or(failureCheckErr, errs.ErrFailureCountLimitReached)
 			}
 			return nil, errs.ErrUserPasswordWrong
 		}
 		if a.CurrentConfig().EnableTwoFactor {
 			twoFactorSetting, err := a.twoFactorAuthorizations.GetUserTwoFactorSettingByUid(c, uid)
 			if err != nil && !errors.Is(err, errs.ErrTwoFactorIsNotEnabled) {
 				log.Errorf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to check two-factor setting for user \"uid:%d\", because %s", user.Uid, err.Error())
 				return nil, errs.Or(err, errs.ErrSystemError)
 			}
 			if twoFactorSetting != nil {
 				if credential.Passcode == "" {
 					return nil, errs.ErrPasscodeEmpty
 				}
 				if !totp.Validate(credential.Passcode, twoFactorSetting.Secret) {
 					log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] passcode is invalid for user \"uid:%d\"", uid)
 					err = a.CheckAndIncreaseFailureCount(c, uid)
 					if err != nil {
 						log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] cannot auth for user \"uid:%d\", because %s", uid, err.Error())
 						return nil, errs.Or(err, errs.ErrFailureCountLimitReached)
 					}
 					return nil, errs.ErrPasscodeInvalid
 				}
 			}
 		}
 		userExternalAuth := &models.UserExternalAuth{
 			Uid:              user.Uid,
 			ExternalAuthType: tokenContext.ExternalAuthType,
 			ExternalUsername: tokenContext.ExternalUsername,
 			ExternalEmail:    tokenContext.ExternalEmail,
 		}
 		err = a.userExternalAuths.CreateUserExternalAuth(c, userExternalAuth)
 		if err != nil {
 			log.Errorf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to create user external auth for user \"uid:%d\", because %s", user.Uid, err.Error())
 			return nil, errs.Or(err, errs.ErrOperationFailed)
 		}
 		log.Infof(c, "[authorizations.OAuth2CallbackAuthorizeHandler] user external auth has been created for user \"uid:%d\"", user.Uid)
 	} else if oldTokenClaims.Type == core.USER_TOKEN_TYPE_OAUTH2_CALLBACK {
 		_, err = a.userExternalAuths.GetUserExternalAuthByUid(c, uid, tokenContext.ExternalAuthType)
 		if err != nil {
 			log.Errorf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to get user external auth for user \"uid:%d\", because %s", uid, err.Error())
 			return nil, errs.Or(err, errs.ErrUserExternalAuthNotFound)
 		}
 	} else {
 		return nil, errs.ErrSystemError
 	}
 	err = a.tokens.DeleteTokenByClaims(c, oldTokenClaims)
 	if err != nil {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to revoke temporary token \"utid:%s\" for user \"uid:%d\", because %s", oldTokenClaims.UserTokenId, user.Uid, err.Error())
 	}
 	var token string
 	var claims *core.UserTokenClaims
 	if credential.Token != "" {
 		_, claims, _, err = a.tokens.ParseToken(c, credential.Token)
 		if err != nil {
 			log.Errorf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to parse token, because %s", err.Error())
 			return nil, errs.ErrInvalidToken
 		}
 		if claims.Uid != user.Uid {
 			log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] oauth 2.0 user \"uid:%d\" does not match current user \"uid:%d\"", user.Uid, claims.Uid)
 			token = ""
 			claims = nil
 		} else {
 			token = credential.Token
 		}
 	}
 	if token == "" {
 		token, claims, err = a.tokens.CreateToken(c, user)
 		if err != nil {
 			log.Errorf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to create token for user \"uid:%d\", because %s", user.Uid, err.Error())
 			return nil, errs.ErrTokenGenerating
 		}
 	}
 	c.SetTextualToken(token)
 	c.SetTokenClaims(claims)
 	c.SetTokenContext("")
 	userApplicationCloudSettings, err := a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, user.Uid)
 	var applicationCloudSettingSlice *models.ApplicationCloudSettingSlice = nil
 	if err != nil {
 		log.Warnf(c, "[authorizations.OAuth2CallbackAuthorizeHandler] failed to get latest user application cloud settings for user \"uid:%d\", because %s", user.Uid, err.Error())
 	} else if userApplicationCloudSettings != nil && len(userApplicationCloudSettings.Settings) > 0 {
 		applicationCloudSettingSlice = &userApplicationCloudSettings.Settings
 	}
 	log.Infof(c, "[authorizations.OAuth2CallbackAuthorizeHandler] user \"uid:%d\" has logged in, token will be expired at %d", user.Uid, claims.ExpiresAt)
 	authResp := a.getAuthResponse(c, token, false, user, applicationCloudSettingSlice)
 	return authResp, nil
 }
 func (a *AuthorizationsApi) getAuthResponse(c *core.WebContext, token string, need2FA bool, user *models.User, applicationCloudSettings *models.ApplicationCloudSettingSlice) *models.AuthResponse {
 	return &models.AuthResponse{
 		Token:                    token,
 		Need2FA:                  need2FA,
 		User:                     a.GetUserBasicInfo(user),
 		ApplicationCloudSettings: applicationCloudSettings,
 		NotificationContent:      a.GetAfterLoginNotificationContent(user.Language, c.GetClientLocale()),
 	}
 }
@@ -3,11 +3,16 @@ package api
 import (
 	"fmt"
 	"sort"
 	"time"
 	"github.com/mayswind/ezbookkeeping/pkg/avatars"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/duplicatechecker"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 const internalTransactionPictureUrlFormat = "%spictures/%d.%s"
@@ -19,7 +24,7 @@ type ApiUsingConfig struct {
 // CurrentConfig returns the current config
 func (a *ApiUsingConfig) CurrentConfig() *settings.Config {
-	return a.container.Current
+	return a.container.GetCurrentConfig()
 }
 // GetTransactionPictureInfoResponse returns the view-object of transaction picture basic info according to the transaction picture model
@@ -49,15 +54,15 @@ func (a *ApiUsingConfig) GetAfterRegisterNotificationContent(userLanguage string
 		language = clientLanguage
 	}
-	if !a.container.Current.AfterRegisterNotification.Enabled {
+	if !a.CurrentConfig().AfterRegisterNotification.Enabled {
 		return ""
 	}
-	if multiLanguageContent, exists := a.container.Current.AfterRegisterNotification.MultiLanguageContent[language]; exists {
+	if multiLanguageContent, exists := a.CurrentConfig().AfterRegisterNotification.MultiLanguageContent[language]; exists {
 		return multiLanguageContent
 	}
-	return a.container.Current.AfterRegisterNotification.DefaultContent
+	return a.CurrentConfig().AfterRegisterNotification.DefaultContent
 }
 // GetAfterLoginNotificationContent returns the notification content displayed each time users log in
@@ -68,15 +73,15 @@ func (a *ApiUsingConfig) GetAfterLoginNotificationContent(userLanguage string, c
 		language = clientLanguage
 	}
-	if !a.container.Current.AfterLoginNotification.Enabled {
+	if !a.CurrentConfig().AfterLoginNotification.Enabled {
 		return ""
 	}
-	if multiLanguageContent, exists := a.container.Current.AfterLoginNotification.MultiLanguageContent[language]; exists {
+	if multiLanguageContent, exists := a.CurrentConfig().AfterLoginNotification.MultiLanguageContent[language]; exists {
 		return multiLanguageContent
 	}
-	return a.container.Current.AfterLoginNotification.DefaultContent
+	return a.CurrentConfig().AfterLoginNotification.DefaultContent
 }
 // GetAfterOpenNotificationContent returns the notification content displayed each time users open the app
@@ -87,19 +92,20 @@ func (a *ApiUsingConfig) GetAfterOpenNotificationContent(userLanguage string, cl
 		language = clientLanguage
 	}
-	if !a.container.Current.AfterOpenNotification.Enabled {
+	if !a.CurrentConfig().AfterOpenNotification.Enabled {
 		return ""
 	}
-	if multiLanguageContent, exists := a.container.Current.AfterOpenNotification.MultiLanguageContent[language]; exists {
+	if multiLanguageContent, exists := a.CurrentConfig().AfterOpenNotification.MultiLanguageContent[language]; exists {
 		return multiLanguageContent
 	}
-	return a.container.Current.AfterOpenNotification.DefaultContent
+	return a.CurrentConfig().AfterOpenNotification.DefaultContent
 }
 // ApiUsingDuplicateChecker represents an api that need to use duplicate checker
 type ApiUsingDuplicateChecker struct {
 	ApiUsingConfig
 	container *duplicatechecker.DuplicateCheckerContainer
 }
@@ -108,9 +114,89 @@ func (a *ApiUsingDuplicateChecker) GetSubmissionRemark(checkerType duplicatechec
 	return a.container.GetSubmissionRemark(checkerType, uid, identification)
 }
-// SetSubmissionRemark saves the identification and remark to in-memory cache by the current duplicate checker
+// SetSubmissionRemarkWithCustomExpiration saves the identification and remark by the current duplicate checker with custom expiration time
-func (a *ApiUsingDuplicateChecker) SetSubmissionRemark(checkerType duplicatechecker.DuplicateCheckerType, uid int64, identification string, remark string) {
+func (a *ApiUsingDuplicateChecker) SetSubmissionRemarkWithCustomExpiration(checkerType duplicatechecker.DuplicateCheckerType, uid int64, identification string, remark string, expiration time.Duration) {
 	a.container.SetSubmissionRemarkWithCustomExpiration(checkerType, uid, identification, remark, expiration)
 }
 // SetSubmissionRemarkIfEnable saves the identification and remark by the current duplicate checker if the duplicate submission check is enabled
 func (a *ApiUsingDuplicateChecker) SetSubmissionRemarkIfEnable(checkerType duplicatechecker.DuplicateCheckerType, uid int64, identification string, remark string) {
 	if a.CurrentConfig().EnableDuplicateSubmissionsCheck {
 		a.container.SetSubmissionRemark(checkerType, uid, identification, remark)
 	}
 }
 // RemoveSubmissionRemark removes the identification and remark by the current duplicate checker
 func (a *ApiUsingDuplicateChecker) RemoveSubmissionRemark(checkerType duplicatechecker.DuplicateCheckerType, uid int64, identification string) {
 	a.container.RemoveSubmissionRemark(checkerType, uid, identification)
 }
 // RemoveSubmissionRemarkIfEnable removes the identification and remark by the current duplicate checker if the duplicate submission check is enabled
 func (a *ApiUsingDuplicateChecker) RemoveSubmissionRemarkIfEnable(checkerType duplicatechecker.DuplicateCheckerType, uid int64, identification string) {
 	if a.CurrentConfig().EnableDuplicateSubmissionsCheck {
 		a.container.RemoveSubmissionRemark(checkerType, uid, identification)
 	}
 }
 // CheckFailureCount returns whether the failure count of the specified IP and user has reached the limit and increases the failure count
 func (a *ApiUsingDuplicateChecker) CheckFailureCount(c *core.WebContext, uid int64) error {
 	if a.CurrentConfig().MaxFailuresPerIpPerMinute > 0 {
 		clientIp := c.ClientIP()
 		ipFailureCount := a.container.GetFailureCount(clientIp)
 		if ipFailureCount >= a.CurrentConfig().MaxFailuresPerIpPerMinute {
 			log.Warnf(c, "[base.CheckFailureCount] operation failure via IP \"%s\", current failure count: %d reached the limit", clientIp, ipFailureCount)
 			return errs.ErrFailureCountLimitReached
 		}
 	}
 	if a.CurrentConfig().MaxFailuresPerUserPerMinute > 0 && uid > 0 {
 		uidFailureCount := a.container.GetFailureCount(utils.Int64ToString(uid))
 		if uidFailureCount >= a.CurrentConfig().MaxFailuresPerUserPerMinute {
 			log.Warnf(c, "[base.CheckFailureCount] operation failure via uid \"%d\", current failure count: %d reached the limit", uid, uidFailureCount)
 			return errs.ErrFailureCountLimitReached
 		}
 	}
 	return nil
 }
 // CheckAndIncreaseFailureCount returns whether the failure count of the specified IP and user has reached the limit and increases the failure count
 func (a *ApiUsingDuplicateChecker) CheckAndIncreaseFailureCount(c *core.WebContext, uid int64) error {
 	clientIp := c.ClientIP()
 	ipFailureCount := uint32(0)
 	uidFailureCount := uint32(0)
 	if a.CurrentConfig().MaxFailuresPerIpPerMinute > 0 {
 		ipFailureCount = a.container.GetFailureCount(clientIp)
 	}
 	if a.CurrentConfig().MaxFailuresPerUserPerMinute > 0 && uid > 0 {
 		uidFailureCount = a.container.GetFailureCount(utils.Int64ToString(uid))
 	}
 	if a.CurrentConfig().MaxFailuresPerIpPerMinute > 0 && ipFailureCount < a.CurrentConfig().MaxFailuresPerIpPerMinute {
 		log.Warnf(c, "[base.CheckAndIncreaseFailureCount] operation failure via IP \"%s\", previous failure count: %d", clientIp, ipFailureCount)
 		a.container.IncreaseFailureCount(clientIp)
 	}
 	if a.CurrentConfig().MaxFailuresPerUserPerMinute > 0 && uid > 0 && uidFailureCount < a.CurrentConfig().MaxFailuresPerUserPerMinute {
 		log.Warnf(c, "[base.CheckAndIncreaseFailureCount] operation failure via uid \"%d\", previous failure count: %d", uid, uidFailureCount)
 		a.container.IncreaseFailureCount(utils.Int64ToString(uid))
 	}
 	if a.CurrentConfig().MaxFailuresPerIpPerMinute > 0 && ipFailureCount >= a.CurrentConfig().MaxFailuresPerIpPerMinute {
 		log.Warnf(c, "[base.CheckAndIncreaseFailureCount] operation failure via IP \"%s\", current failure count: %d reached the limit", clientIp, ipFailureCount)
 		return errs.ErrFailureCountLimitReached
 	}
 	if a.CurrentConfig().MaxFailuresPerUserPerMinute > 0 && uid > 0 && uidFailureCount >= a.CurrentConfig().MaxFailuresPerUserPerMinute {
 		log.Warnf(c, "[base.CheckAndIncreaseFailureCount] operation failure via uid \"%d\", current failure count: %d reached the limit", uid, uidFailureCount)
 		return errs.ErrFailureCountLimitReached
 	}
 	return nil
 }
 // ApiUsingAvatarProvider represents an api that need to use avatar provider
@@ -2,6 +2,7 @@ package api
 import (
 	"fmt"
 	"math"
 	"strings"
 	"time"
@@ -15,6 +16,7 @@ import (
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 const pageCountForClearTransactions = 1000
 const pageCountForDataExport = 1000
 // DataManagementsApi represents data management api
@@ -26,8 +28,11 @@ type DataManagementsApi struct {
 	transactions            *services.TransactionService
 	categories              *services.TransactionCategoryService
 	tags                    *services.TransactionTagService
 	tagGroups               *services.TransactionTagGroupService
 	pictures                *services.TransactionPictureService
 	templates               *services.TransactionTemplateService
 	userCustomExchangeRates *services.UserCustomExchangeRatesService
 	insightsExploreres      *services.InsightsExplorerService
 }
 // Initialize a data management api singleton instance
@@ -42,8 +47,11 @@ var (
 		transactions:            services.Transactions,
 		categories:              services.TransactionCategories,
 		tags:                    services.TransactionTags,
 		tagGroups:               services.TransactionTagGroups,
 		pictures:                services.TransactionPictures,
 		templates:               services.TransactionTemplates,
 		userCustomExchangeRates: services.UserCustomExchangeRates,
 		insightsExploreres:      services.InsightsExplorers,
 	}
 )
@@ -95,6 +103,13 @@ func (a *DataManagementsApi) DataStatisticsHandler(c *core.WebContext) (any, *er
 		return nil, errs.ErrOperationFailed
 	}
 	totalInsightsExplorerCount, err := a.insightsExploreres.GetTotalInsightsExplorersCountByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[data_managements.DataStatisticsHandler] failed to get total insights explorer count for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrOperationFailed
 	}
 	totalTransactionTemplateCount, err := a.templates.GetTotalNormalTemplateCountByUid(c, uid)
 	if err != nil {
@@ -115,6 +130,7 @@ func (a *DataManagementsApi) DataStatisticsHandler(c *core.WebContext) (any, *er
 		TotalTransactionTagCount:       totalTransactionTagCount,
 		TotalTransactionCount:          totalTransactionCount,
 		TotalTransactionPictureCount:   totalTransactionPictureCount,
 		TotalInsightsExplorerCount:     totalInsightsExplorerCount,
 		TotalTransactionTemplateCount:  totalTransactionTemplateCount,
 		TotalScheduledTransactionCount: totalScheduledTransactionCount,
 	}
@@ -122,13 +138,13 @@ func (a *DataManagementsApi) DataStatisticsHandler(c *core.WebContext) (any, *er
 	return dataStatisticsResp, nil
 }
-// ClearDataHandler deletes all user data
+// ClearAllDataHandler deletes all user data
-func (a *DataManagementsApi) ClearDataHandler(c *core.WebContext) (any, *errs.Error) {
+func (a *DataManagementsApi) ClearAllDataHandler(c *core.WebContext) (any, *errs.Error) {
 	var clearDataReq models.ClearDataRequest
 	err := c.ShouldBindJSON(&clearDataReq)
 	if err != nil {
-		log.Warnf(c, "[data_managements.ClearDataHandler] parse request failed, because %s", err.Error())
+		log.Warnf(c, "[data_managements.ClearAllDataHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
@@ -137,7 +153,7 @@ func (a *DataManagementsApi) ClearDataHandler(c *core.WebContext) (any, *errs.Er
 	if err != nil {
 		if !errs.IsCustomError(err) {
-			log.Warnf(c, "[data_managements.ClearDataHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
+			log.Warnf(c, "[data_managements.ClearAllDataHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return nil, errs.ErrUserNotFound
@@ -147,35 +163,155 @@ func (a *DataManagementsApi) ClearDataHandler(c *core.WebContext) (any, *errs.Er
 		return nil, errs.ErrUserPasswordWrong
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_CLEAR_ALL_DATA) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	err = a.templates.DeleteAllTemplates(c, uid)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ClearDataHandler] failed to delete all transaction templates, because %s", err.Error())
+		log.Errorf(c, "[data_managements.ClearAllDataHandler] failed to delete all transaction templates, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-	err = a.transactions.DeleteAllTransactions(c, uid)
+	err = a.transactions.DeleteAllTransactions(c, uid, true)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ClearDataHandler] failed to delete all transactions, because %s", err.Error())
+		log.Errorf(c, "[data_managements.ClearAllDataHandler] failed to delete all transactions, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	err = a.categories.DeleteAllCategories(c, uid)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ClearDataHandler] failed to delete all transaction categories, because %s", err.Error())
+		log.Errorf(c, "[data_managements.ClearAllDataHandler] failed to delete all transaction categories, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	err = a.tags.DeleteAllTags(c, uid)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ClearDataHandler] failed to delete all transaction tags, because %s", err.Error())
+		log.Errorf(c, "[data_managements.ClearAllDataHandler] failed to delete all transaction tags, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-	log.Infof(c, "[data_managements.ClearDataHandler] user \"uid:%d\" has cleared all data", uid)
+	err = a.tagGroups.DeleteAllTagGroups(c, uid)
 	if err != nil {
 		log.Errorf(c, "[data_managements.ClearAllDataHandler] failed to delete all transaction tag groups, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	err = a.userCustomExchangeRates.DeleteAllCustomExchangeRates(c, uid)
 	if err != nil {
 		log.Errorf(c, "[data_managements.ClearAllDataHandler] failed to delete all user custom exchange rates, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	err = a.insightsExploreres.DeleteAllInsightsExplorers(c, uid)
 	if err != nil {
 		log.Errorf(c, "[data_managements.ClearAllDataHandler] failed to delete all insights explorers, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[data_managements.ClearAllDataHandler] user \"uid:%d\" has cleared all data", uid)
 	return true, nil
 }
 // ClearAllTransactionsHandler deletes all transactions
 func (a *DataManagementsApi) ClearAllTransactionsHandler(c *core.WebContext) (any, *errs.Error) {
 	var clearDataReq models.ClearDataRequest
 	err := c.ShouldBindJSON(&clearDataReq)
 	if err != nil {
 		log.Warnf(c, "[data_managements.ClearAllTransactionsHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		if !errs.IsCustomError(err) {
 			log.Warnf(c, "[data_managements.ClearAllTransactionsHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return nil, errs.ErrUserNotFound
 	}
 	if !a.users.IsPasswordEqualsUserPassword(clearDataReq.Password, user) {
 		return nil, errs.ErrUserPasswordWrong
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_CLEAR_ALL_DATA) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	err = a.transactions.DeleteAllTransactions(c, uid, false)
 	if err != nil {
 		log.Errorf(c, "[data_managements.ClearAllTransactionsHandler] failed to delete all transactions, because %s", err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[data_managements.ClearAllTransactionsHandler] user \"uid:%d\" has cleared all transactions", uid)
 	return true, nil
 }
 // ClearAllTransactionsByAccountHandler deletes all transactions of specified account
 func (a *DataManagementsApi) ClearAllTransactionsByAccountHandler(c *core.WebContext) (any, *errs.Error) {
 	var clearDataReq models.ClearAccountTransactionsRequest
 	err := c.ShouldBindJSON(&clearDataReq)
 	if err != nil {
 		log.Warnf(c, "[data_managements.ClearAllTransactionsByAccountHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		if !errs.IsCustomError(err) {
 			log.Warnf(c, "[data_managements.ClearAllTransactionsByAccountHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return nil, errs.ErrUserNotFound
 	}
 	if !a.users.IsPasswordEqualsUserPassword(clearDataReq.Password, user) {
 		return nil, errs.ErrUserPasswordWrong
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_CLEAR_ALL_DATA) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	account, err := a.accounts.GetAccountByAccountId(c, uid, clearDataReq.AccountId)
 	if err != nil {
 		log.Errorf(c, "[data_managements.ClearAllTransactionsByAccountHandler] failed to get account \"id:%d\" for user \"uid:%d\", because %s", uid, clearDataReq.AccountId, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	if account.Hidden {
 		return nil, errs.ErrCannotDeleteTransactionInHiddenAccount
 	}
 	if account.Type == models.ACCOUNT_TYPE_MULTI_SUB_ACCOUNTS {
 		return nil, errs.ErrCannotDeleteTransactionInParentAccount
 	}
 	err = a.transactions.DeleteAllTransactionsOfAccount(c, uid, account.AccountId, pageCountForClearTransactions)
 	if err != nil {
 		log.Errorf(c, "[data_managements.ClearAllTransactionsByAccountHandler] failed to delete all transactions in account \"id:%d\", because %s", account.AccountId, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[data_managements.ClearAllTransactionsByAccountHandler] user \"uid:%d\" has cleared all transactions in account \"id:%d\"", uid, account.AccountId)
 	return true, nil
 }
@@ -184,13 +320,19 @@ func (a *DataManagementsApi) getExportedFileContent(c *core.WebContext, fileType
 		return nil, "", errs.ErrDataExportNotAllowed
 	}
-	timezone := time.Local
+	var exportTransactionDataReq models.ExportTransactionDataRequest
-	utcOffset, err := c.GetClientTimezoneOffset()
+	err := c.ShouldBindQuery(&exportTransactionDataReq)
 	if err != nil {
-		log.Warnf(c, "[data_managements.ExportDataHandler] cannot get client timezone offset, because %s", err.Error())
+		log.Warnf(c, "[data_managements.getExportedFileContent] parse request failed, because %s", err.Error())
-	} else {
+		return nil, "", errs.NewIncompleteOrIncorrectSubmissionError(err)
-		timezone = time.FixedZone("Client Timezone", int(utcOffset)*60)
+	}
 	clientTimezone, err := c.GetClientTimezone()
 	if err != nil {
 		log.Warnf(c, "[data_managements.getExportedFileContent] cannot get client timezone, because %s", err.Error())
 		clientTimezone = time.Local
 	}
 	uid := c.GetCurrentUid()
@@ -198,37 +340,41 @@ func (a *DataManagementsApi) getExportedFileContent(c *core.WebContext, fileType
 	if err != nil {
 		if !errs.IsCustomError(err) {
-			log.Warnf(c, "[data_managements.ExportDataHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
+			log.Warnf(c, "[data_managements.getExportedFileContent] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return nil, "", errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_EXPORT_TRANSACTION) {
 		return nil, "", errs.ErrNotPermittedToPerformThisAction
 	}
 	accounts, err := a.accounts.GetAllAccountsByUid(c, uid)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ExportDataHandler] failed to get all accounts for user \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[data_managements.getExportedFileContent] failed to get all accounts for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, "", errs.ErrOperationFailed
 	}
 	categories, err := a.categories.GetAllCategoriesByUid(c, uid, 0, -1)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ExportDataHandler] failed to get categories for user \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[data_managements.getExportedFileContent] failed to get categories for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, "", errs.ErrOperationFailed
 	}
 	tags, err := a.tags.GetAllTagsByUid(c, uid)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ExportDataHandler] failed to get tags for user \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[data_managements.getExportedFileContent] failed to get tags for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, "", errs.ErrOperationFailed
 	}
 	tagIndexes, err := a.tags.GetAllTagIdsMapOfAllTransactions(c, uid)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ExportDataHandler] failed to get tag index for user \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[data_managements.getExportedFileContent] failed to get tag index for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, "", errs.ErrOperationFailed
 	}
@@ -236,10 +382,47 @@ func (a *DataManagementsApi) getExportedFileContent(c *core.WebContext, fileType
 	categoryMap := a.categories.GetCategoryMapByList(categories)
 	tagMap := a.tags.GetTagMapByList(tags)
-	allTransactions, err := a.transactions.GetAllTransactions(c, uid, pageCountForDataExport, true)
+	allAccountIds, err := a.accounts.GetAccountOrSubAccountIds(c, exportTransactionDataReq.AccountIds, uid)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ExportDataHandler] failed to all transactions user \"uid:%d\", because %s", uid, err.Error())
+		log.Warnf(c, "[data_managements.getExportedFileContent] get account error, because %s", err.Error())
 		return nil, "", errs.Or(err, errs.ErrOperationFailed)
 	}
 	allCategoryIds, err := a.categories.GetCategoryOrSubCategoryIds(c, exportTransactionDataReq.CategoryIds, uid)
 	if err != nil {
 		log.Warnf(c, "[data_managements.getExportedFileContent] get transaction category error, because %s", err.Error())
 		return nil, "", errs.Or(err, errs.ErrOperationFailed)
 	}
 	noTags := exportTransactionDataReq.TagFilter == models.TransactionNoTagFilterValue
 	var tagFilters []*models.TransactionTagFilter
 	if !noTags {
 		tagFilters, err = models.ParseTransactionTagFilter(exportTransactionDataReq.TagFilter)
 		if err != nil {
 			log.Warnf(c, "[data_managements.getExportedFileContent] parse transaction tag filters error, because %s", err.Error())
 			return nil, "", errs.Or(err, errs.ErrOperationFailed)
 		}
 	}
 	maxTransactionTime := int64(math.MaxInt64)
 	minTransactionTime := int64(0)
 	if exportTransactionDataReq.MaxTime > 0 {
 		maxTransactionTime = utils.GetMaxTransactionTimeFromUnixTime(exportTransactionDataReq.MaxTime)
 	}
 	if exportTransactionDataReq.MinTime > 0 {
 		minTransactionTime = utils.GetMinTransactionTimeFromUnixTime(exportTransactionDataReq.MinTime)
 	}
 	allTransactions, err := a.transactions.GetAllSpecifiedTransactions(c, uid, maxTransactionTime, minTransactionTime, exportTransactionDataReq.Type, allCategoryIds, allAccountIds, tagFilters, noTags, exportTransactionDataReq.AmountFilter, exportTransactionDataReq.Keyword, pageCountForDataExport, true)
 	if err != nil {
 		log.Errorf(c, "[data_managements.getExportedFileContent] failed to all transactions user \"uid:%d\", because %s", uid, err.Error())
 		return nil, "", errs.ErrOperationFailed
 	}
@@ -252,17 +435,17 @@ func (a *DataManagementsApi) getExportedFileContent(c *core.WebContext, fileType
 	result, err := dataExporter.ToExportedContent(c, uid, allTransactions, accountMap, categoryMap, tagMap, tagIndexes)
 	if err != nil {
-		log.Errorf(c, "[data_managements.ExportDataHandler] failed to get csv format exported data for \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[data_managements.getExportedFileContent] failed to get exported data for \"uid:%d\", because %s", uid, err.Error())
 		return nil, "", errs.Or(err, errs.ErrOperationFailed)
 	}
-	fileName := a.getFileName(user, timezone, fileType)
+	fileName := a.getFileName(user, clientTimezone, fileType)
 	return result, fileName, nil
 }
-func (a *DataManagementsApi) getFileName(user *models.User, timezone *time.Location, fileExtension string) string {
+func (a *DataManagementsApi) getFileName(user *models.User, clientTimezone *time.Location, fileExtension string) string {
-	currentTime := utils.FormatUnixTimeToLongDateTimeWithoutSecond(time.Now().Unix(), timezone)
+	currentTime := utils.FormatUnixTimeToLongDateTimeWithoutSecond(time.Now().Unix(), clientTimezone)
 	currentTime = strings.Replace(currentTime, "-", "_", -1)
 	currentTime = strings.Replace(currentTime, " ", "_", -1)
 	currentTime = strings.Replace(currentTime, ":", "_", -1)
@@ -1,25 +1,20 @@
 package api
 import (
 	"crypto/tls"
 	"fmt"
 	"io"
 	"net/http"
 	"sort"
 	"time"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/exchangerates"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 // ExchangeRatesApi represents exchange rate api
 type ExchangeRatesApi struct {
 	ApiUsingConfig
 	users                   *services.UserService
 	userCustomExchangeRates *services.UserCustomExchangeRatesService
 }
 // Initialize a exchange rate api singleton instance
@@ -28,95 +23,84 @@ var (
 		ApiUsingConfig: ApiUsingConfig{
 			container: settings.Container,
 		},
 		users:                   services.Users,
 		userCustomExchangeRates: services.UserCustomExchangeRates,
 	}
 )
 // LatestExchangeRateHandler returns latest exchange rate data
 func (a *ExchangeRatesApi) LatestExchangeRateHandler(c *core.WebContext) (any, *errs.Error) {
-	dataSource := exchangerates.Container.Current
+	exchangeRateResponse, err := exchangerates.Container.GetLatestExchangeRates(c, c.GetCurrentUid(), a.CurrentConfig())
-	if dataSource == nil {
+	if err != nil {
-		return nil, errs.ErrInvalidExchangeRatesDataSource
+		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	return exchangeRateResponse, nil
 }
 // UserCustomExchangeRateUpdateHandler updates user custom exchange rates data by request parameters for current user
 func (a *ExchangeRatesApi) UserCustomExchangeRateUpdateHandler(c *core.WebContext) (any, *errs.Error) {
 	var customExchangeRateUpdateReq models.UserCustomExchangeRateUpdateRequest
 	err := c.ShouldBindJSON(&customExchangeRateUpdateReq)
 	if err != nil {
 		log.Warnf(c, "[exchange_rates.UserCustomExchangeRateUpdateHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
-
+	user, err := a.users.GetUserById(c, uid)
 	transport := http.DefaultTransport.(*http.Transport).Clone()
 	utils.SetProxyUrl(transport, a.CurrentConfig().ExchangeRatesProxy)
 	if a.CurrentConfig().ExchangeRatesSkipTLSVerify {
 		transport.TLSClientConfig = &tls.Config{
 			InsecureSkipVerify: true,
 		}
 	}
 	client := &http.Client{
 		Transport: transport,
 		Timeout:   time.Duration(a.CurrentConfig().ExchangeRatesRequestTimeout) * time.Millisecond,
 	}
 	urls := dataSource.GetRequestUrls()
 	exchangeRateResps := make([]*models.LatestExchangeRateResponse, 0, len(urls))
 	for i := 0; i < len(urls); i++ {
 		req, _ := http.NewRequest("GET", urls[i], nil)
 		req.Header.Set("User-Agent", fmt.Sprintf("ezBookkeeping/%s ", settings.Version))
 		resp, err := client.Do(req)
 	if err != nil {
-			log.Errorf(c, "[exchange_rates.LatestExchangeRateHandler] failed to request latest exchange rate data for user \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[exchange_rates.UserCustomExchangeRateUpdateHandler] failed to get user \"uid:%d\", because %s", uid, err.Error())
-			return nil, errs.ErrFailedToRequestRemoteApi
+		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-		if resp.StatusCode != 200 {
+	if customExchangeRateUpdateReq.Currency == user.DefaultCurrency {
-			log.Errorf(c, "[exchange_rates.LatestExchangeRateHandler] failed to get latest exchange rate data response for user \"uid:%d\", because response code is not 200", uid)
+		return nil, errs.ErrCannotUpdateExchangeRateForDefaultCurrency
 			return nil, errs.ErrFailedToRequestRemoteApi
 	}
-		defer resp.Body.Close()
+	newCustomExchangeRate, defaultCurrencyExchangeRate, err := a.userCustomExchangeRates.UpdateCustomExchangeRate(c, uid, customExchangeRateUpdateReq.Currency, customExchangeRateUpdateReq.Rate, user.DefaultCurrency)
 		body, err := io.ReadAll(resp.Body)
 		exchangeRateResp, err := dataSource.Parse(c, body)
 	if err != nil {
-			log.Errorf(c, "[exchange_rates.LatestExchangeRateHandler] failed to parse response for user \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[exchange_rates.UserCustomExchangeRateUpdateHandler] failed to update user custom exchange rate \"currency:%s\" for user \"uid:%d\", because %s", customExchangeRateUpdateReq.Currency, uid, err.Error())
-			return nil, errs.Or(err, errs.ErrFailedToRequestRemoteApi)
+		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-		exchangeRateResps = append(exchangeRateResps, exchangeRateResp)
+	log.Infof(c, "[exchange_rates.UserCustomExchangeRateUpdateHandler] user \"uid:%d\" has updated user custom exchange rate \"currency:%s\" successfully", uid, customExchangeRateUpdateReq.Currency)
-	}
+	return newCustomExchangeRate.ToUserCustomExchangeRateUpdateResponse(defaultCurrencyExchangeRate.Rate), nil
-
+}
-	lastExchangeRateResponse := exchangeRateResps[len(exchangeRateResps)-1]
+
-	allExchangeRatesMap := make(map[string]string)
+// UserCustomExchangeRateDeleteHandler deletes an existed user custom exchange rates data by request parameters for current user
-
+func (a *ExchangeRatesApi) UserCustomExchangeRateDeleteHandler(c *core.WebContext) (any, *errs.Error) {
-	for i := 0; i < len(exchangeRateResps); i++ {
+	var customExchangeRateDeleteReq models.UserCustomExchangeRateDeleteRequest
-		exchangeRateResp := exchangeRateResps[i]
+	err := c.ShouldBindJSON(&customExchangeRateDeleteReq)
-
+
-		for j := 0; j < len(exchangeRateResp.ExchangeRates); j++ {
+	if err != nil {
-			exchangeRate := exchangeRateResp.ExchangeRates[j]
+		log.Warnf(c, "[exchange_rates.UserCustomExchangeRateDeleteHandler] parse request failed, because %s", err.Error())
-			allExchangeRatesMap[exchangeRate.Currency] = exchangeRate.Rate
+		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
-		}
+	}
-	}
+
-
+	uid := c.GetCurrentUid()
-	allExchangeRatesMap[lastExchangeRateResponse.BaseCurrency] = "1"
+	user, err := a.users.GetUserById(c, uid)
-	allExchangeRates := make(models.LatestExchangeRateSlice, 0, len(allExchangeRatesMap))
+
-
+	if err != nil {
-	for currency, rate := range allExchangeRatesMap {
+		log.Errorf(c, "[exchange_rates.UserCustomExchangeRateDeleteHandler] failed to get user \"uid:%d\", because %s", uid, err.Error())
-		allExchangeRates = append(allExchangeRates, &models.LatestExchangeRate{
+		return nil, errs.Or(err, errs.ErrOperationFailed)
-			Currency: currency,
+	}
-			Rate:     rate,
+
-		})
+	if customExchangeRateDeleteReq.Currency == user.DefaultCurrency {
-	}
+		return nil, errs.ErrCannotDeleteExchangeRateForDefaultCurrency
-
+	}
-	sort.Sort(allExchangeRates)
+
-
+	err = a.userCustomExchangeRates.DeleteCustomExchangeRate(c, uid, customExchangeRateDeleteReq.Currency)
-	finalExchangeRateResponse := &models.LatestExchangeRateResponse{
+
-		DataSource:    lastExchangeRateResponse.DataSource,
+	if err != nil {
-		ReferenceUrl:  lastExchangeRateResponse.ReferenceUrl,
+		log.Errorf(c, "[exchange_rates.UserCustomExchangeRateDeleteHandler] failed to delete user custom exchange rate \"currency:%s\" for user \"uid:%d\", because %s", customExchangeRateDeleteReq.Currency, uid, err.Error())
-		UpdateTime:    lastExchangeRateResponse.UpdateTime,
+		return nil, errs.Or(err, errs.ErrOperationFailed)
-		BaseCurrency:  lastExchangeRateResponse.BaseCurrency,
+	}
-		ExchangeRates: allExchangeRates,
+
-	}
+	log.Infof(c, "[exchange_rates.UserCustomExchangeRateDeleteHandler] user \"uid:%d\" has deleted user custom exchange rate \"currency:%s\"", uid, customExchangeRateDeleteReq.Currency)
-
+	return true, nil
 	return finalExchangeRateResponse, nil
 }
@@ -0,0 +1,274 @@
 package api
 import (
 	"encoding/json"
 	"sort"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 )
 // InsightsExplorersApi represents insights explorers api
 type InsightsExplorersApi struct {
 	insightsExploreres *services.InsightsExplorerService
 }
 // Initialize a insights explorers api singleton instance
 var (
 	InsightsExplorers = &InsightsExplorersApi{
 		insightsExploreres: services.InsightsExplorers,
 	}
 )
 // InsightsExplorerListHandler returns insights explorer list of current user
 func (a *InsightsExplorersApi) InsightsExplorerListHandler(c *core.WebContext) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	explorers, err := a.insightsExploreres.GetAllInsightsExplorerNamesByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerListHandler] failed to get insights explorers for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	explorerResps := make(models.InsightsExplorerInfoResponseSlice, len(explorers))
 	for i := 0; i < len(explorers); i++ {
 		explorerResps[i], err = explorers[i].ToInsightsExplorerInfoResponse()
 		if err != nil {
 			log.Errorf(c, "[explorers.InsightsExplorerListHandler] failed to get insights explorer response for user \"uid:%d\", because %s", uid, err.Error())
 			return nil, errs.ErrInsightsExplorerDataInvalid
 		}
 	}
 	sort.Sort(explorerResps)
 	return explorerResps, nil
 }
 // InsightsExplorerGetHandler returns one specific insights explorer of current user
 func (a *InsightsExplorersApi) InsightsExplorerGetHandler(c *core.WebContext) (any, *errs.Error) {
 	var explorerGetReq models.InsightsExplorerGetRequest
 	err := c.ShouldBindQuery(&explorerGetReq)
 	if err != nil {
 		log.Warnf(c, "[explorers.InsightsExplorerGetHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	explorer, err := a.insightsExploreres.GetInsightsExplorerByExplorerId(c, uid, explorerGetReq.Id)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerGetHandler] failed to get insights explorer \"id:%d\" for user \"uid:%d\", because %s", explorerGetReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	explorerResp, err := explorer.ToInsightsExplorerInfoResponse()
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerGetHandler] failed to get insights explorer response for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrInsightsExplorerDataInvalid
 	}
 	return explorerResp, nil
 }
 // InsightsExplorerCreateHandler saves a new insights explorer by request parameters for current user
 func (a *InsightsExplorersApi) InsightsExplorerCreateHandler(c *core.WebContext) (any, *errs.Error) {
 	var explorerCreateReq models.InsightsExplorerCreateRequest
 	err := c.ShouldBindJSON(&explorerCreateReq)
 	if err != nil {
 		log.Warnf(c, "[explorers.InsightsExplorerCreateHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	maxOrderId, err := a.insightsExploreres.GetMaxDisplayOrder(c, uid)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerCreateHandler] failed to get max display order for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	explorer, err := a.createNewInsightsExplorerModel(uid, &explorerCreateReq, maxOrderId+1)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerCreateHandler] failed to parse insights explorer data for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrInsightsExplorerDataInvalid
 	}
 	err = a.insightsExploreres.CreateInsightsExplorer(c, explorer)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerCreateHandler] failed to create insights explorer \"id:%d\" for user \"uid:%d\", because %s", explorer.ExplorerId, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[explorers.InsightsExplorerCreateHandler] user \"uid:%d\" has created a new insights explorer \"id:%d\" successfully", uid, explorer.ExplorerId)
 	explorerResp, err := explorer.ToInsightsExplorerInfoResponse()
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerCreateHandler] failed to get insights explorer response for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrInsightsExplorerDataInvalid
 	}
 	return explorerResp, nil
 }
 // InsightsExplorerModifyHandler saves an existed insights explorer by request parameters for current user
 func (a *InsightsExplorersApi) InsightsExplorerModifyHandler(c *core.WebContext) (any, *errs.Error) {
 	var explorerModifyReq models.InsightsExplorerModifyRequest
 	err := c.ShouldBindJSON(&explorerModifyReq)
 	if err != nil {
 		log.Warnf(c, "[explorers.InsightsExplorerModifyHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	explorer, err := a.insightsExploreres.GetInsightsExplorerByExplorerId(c, uid, explorerModifyReq.Id)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerModifyHandler] failed to get insights explorer \"id:%d\" for user \"uid:%d\", because %s", explorerModifyReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	newData, err := json.Marshal(explorerModifyReq.Data)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerModifyHandler] failed to parse insights explorer data for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrInsightsExplorerDataInvalid
 	}
 	newExplorer := &models.InsightsExplorer{
 		ExplorerId: explorer.ExplorerId,
 		Uid:        uid,
 		Name:       explorerModifyReq.Name,
 		Data:       string(newData),
 	}
 	if newExplorer.Name == explorer.Name && newExplorer.Data == explorer.Data {
 		return nil, errs.ErrNothingWillBeUpdated
 	}
 	err = a.insightsExploreres.ModifyInsightsExplorer(c, newExplorer)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerModifyHandler] failed to update insights explorer \"id:%d\" for user \"uid:%d\", because %s", explorerModifyReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[explorers.InsightsExplorerModifyHandler] user \"uid:%d\" has updated insights explorer \"id:%d\" successfully", uid, explorerModifyReq.Id)
 	explorer.Name = newExplorer.Name
 	explorer.Data = newExplorer.Data
 	explorerResp, err := explorer.ToInsightsExplorerInfoResponse()
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerModifyHandler] failed to get insights explorer response for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrInsightsExplorerDataInvalid
 	}
 	return explorerResp, nil
 }
 // InsightsExplorerHideHandler hides a insights explorer by request parameters for current user
 func (a *InsightsExplorersApi) InsightsExplorerHideHandler(c *core.WebContext) (any, *errs.Error) {
 	var explorerHideReq models.InsightsExplorerHideRequest
 	err := c.ShouldBindJSON(&explorerHideReq)
 	if err != nil {
 		log.Warnf(c, "[explorers.InsightsExplorerHideHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	err = a.insightsExploreres.HideInsightsExplorer(c, uid, []int64{explorerHideReq.Id}, explorerHideReq.Hidden)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerHideHandler] failed to hide insights explorer \"id:%d\" for user \"uid:%d\", because %s", explorerHideReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[explorers.InsightsExplorerHideHandler] user \"uid:%d\" has hidden insights explorer \"id:%d\"", uid, explorerHideReq.Id)
 	return true, nil
 }
 // InsightsExplorerMoveHandler moves display order of existed insights explorers by request parameters for current user
 func (a *InsightsExplorersApi) InsightsExplorerMoveHandler(c *core.WebContext) (any, *errs.Error) {
 	var explorerMoveReq models.InsightsExplorerMoveRequest
 	err := c.ShouldBindJSON(&explorerMoveReq)
 	if err != nil {
 		log.Warnf(c, "[explorers.InsightsExplorerMoveHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	explorers := make([]*models.InsightsExplorer, len(explorerMoveReq.NewDisplayOrders))
 	for i := 0; i < len(explorerMoveReq.NewDisplayOrders); i++ {
 		newDisplayOrder := explorerMoveReq.NewDisplayOrders[i]
 		explorer := &models.InsightsExplorer{
 			Uid:          uid,
 			ExplorerId:   newDisplayOrder.Id,
 			DisplayOrder: newDisplayOrder.DisplayOrder,
 		}
 		explorers[i] = explorer
 	}
 	err = a.insightsExploreres.ModifyInsightsExplorerDisplayOrders(c, uid, explorers)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerMoveHandler] failed to move insights explorers for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[explorers.InsightsExplorerMoveHandler] user \"uid:%d\" has moved insights explorers", uid)
 	return true, nil
 }
 // InsightsExplorerDeleteHandler deletes an existed insights explorer by request parameters for current user
 func (a *InsightsExplorersApi) InsightsExplorerDeleteHandler(c *core.WebContext) (any, *errs.Error) {
 	var explorerDeleteReq models.InsightsExplorerDeleteRequest
 	err := c.ShouldBindJSON(&explorerDeleteReq)
 	if err != nil {
 		log.Warnf(c, "[explorers.InsightsExplorerDeleteHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	err = a.insightsExploreres.DeleteInsightsExplorer(c, uid, explorerDeleteReq.Id)
 	if err != nil {
 		log.Errorf(c, "[explorers.InsightsExplorerDeleteHandler] failed to delete insights explorer \"id:%d\" for user \"uid:%d\", because %s", explorerDeleteReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[explorers.InsightsExplorerDeleteHandler] user \"uid:%d\" has deleted insights explorer \"id:%d\"", uid, explorerDeleteReq.Id)
 	return true, nil
 }
 func (a *InsightsExplorersApi) createNewInsightsExplorerModel(uid int64, explorerCreateReq *models.InsightsExplorerCreateRequest, order int32) (*models.InsightsExplorer, error) {
 	data, err := json.Marshal(explorerCreateReq.Data)
 	if err != nil {
 		return nil, err
 	}
 	return &models.InsightsExplorer{
 		Uid:          uid,
 		Name:         explorerCreateReq.Name,
 		Data:         string(data),
 		DisplayOrder: order,
 	}, nil
 }
@@ -4,6 +4,7 @@ import (
 	"time"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/duplicatechecker"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
@@ -14,6 +15,7 @@ import (
 // ForgetPasswordsApi represents user forget password api
 type ForgetPasswordsApi struct {
 	ApiUsingConfig
 	ApiUsingDuplicateChecker
 	users           *services.UserService
 	tokens          *services.TokenService
 	forgetPasswords *services.ForgetPasswordService
@@ -25,6 +27,12 @@ var (
 		ApiUsingConfig: ApiUsingConfig{
 			container: settings.Container,
 		},
 		ApiUsingDuplicateChecker: ApiUsingDuplicateChecker{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
 			},
 			container: duplicatechecker.Container,
 		},
 		users:           services.Users,
 		tokens:          services.Tokens,
 		forgetPasswords: services.ForgetPasswords,
@@ -41,6 +49,13 @@ func (a *ForgetPasswordsApi) UserForgetPasswordRequestHandler(c *core.WebContext
 		return nil, errs.ErrEmailIsEmptyOrInvalid
 	}
 	err = a.CheckFailureCount(c, 0)
 	if err != nil {
 		log.Warnf(c, "[forget_passwords.UserForgetPasswordRequestHandler] cannot send forget password mail to \"%s\", because %s", request.Email, err.Error())
 		return nil, errs.Or(err, errs.ErrFailureCountLimitReached)
 	}
 	user, err := a.users.GetUserByEmail(c, request.Email)
 	if err != nil {
@@ -48,6 +63,13 @@ func (a *ForgetPasswordsApi) UserForgetPasswordRequestHandler(c *core.WebContext
 			log.Errorf(c, "[forget_passwords.UserForgetPasswordRequestHandler] failed to get user, because %s", err.Error())
 		}
 		failureCheckErr := a.CheckAndIncreaseFailureCount(c, 0)
 		if failureCheckErr != nil {
 			log.Warnf(c, "[forget_passwords.UserForgetPasswordRequestHandler] cannot send forget password mail to \"%s\", because %s", request.Email, failureCheckErr.Error())
 			return nil, errs.Or(failureCheckErr, errs.ErrFailureCountLimitReached)
 		}
 		return nil, errs.ErrUserNotFound
 	}
@@ -56,6 +78,10 @@ func (a *ForgetPasswordsApi) UserForgetPasswordRequestHandler(c *core.WebContext
 		return nil, errs.ErrUserIsDisabled
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_FORGET_PASSWORD) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	if a.CurrentConfig().ForgetPasswordRequireVerifyEmail && !user.EmailVerified {
 		log.Warnf(c, "[forget_passwords.UserForgetPasswordRequestHandler] user \"uid:%d\" has not verified email", user.Uid)
 		return nil, errs.ErrEmailIsNotVerified
@@ -109,6 +135,10 @@ func (a *ForgetPasswordsApi) UserResetPasswordHandler(c *core.WebContext) (any,
 		return nil, errs.ErrUserIsDisabled
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_FORGET_PASSWORD) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	if a.CurrentConfig().ForgetPasswordRequireVerifyEmail && !user.EmailVerified {
 		log.Warnf(c, "[forget_passwords.UserResetPasswordHandler] user \"uid:%d\" has not verified email", user.Uid)
 		return nil, errs.ErrEmailIsNotVerified
@@ -116,7 +146,7 @@ func (a *ForgetPasswordsApi) UserResetPasswordHandler(c *core.WebContext) (any,
 	if user.Email != request.Email {
 		log.Warnf(c, "[forget_passwords.UserResetPasswordHandler] request email not equals the user email")
-		return nil, errs.ErrEmptyIsInvalid
+		return nil, errs.ErrEmailIsInvalid
 	}
 	if a.users.IsPasswordEqualsUserPassword(request.Password, user) {
@@ -3,7 +3,6 @@ package api
 import (
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 // HealthsApi represents health api
@@ -18,8 +17,8 @@ var (
 func (a *HealthsApi) HealthStatusHandler(c *core.WebContext) (any, *errs.Error) {
 	result := make(map[string]string)
-	result["version"] = settings.Version
+	result["version"] = core.Version
-	result["commit"] = settings.CommitHash
+	result["commit"] = core.CommitHash
 	result["status"] = "ok"
 	return result, nil
@@ -0,0 +1,376 @@
 package api
 import (
 	"bytes"
 	"encoding/json"
 	"io"
 	"strings"
 	"time"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/llm"
 	"github.com/mayswind/ezbookkeeping/pkg/llm/data"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 	"github.com/mayswind/ezbookkeeping/pkg/templates"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 // LargeLanguageModelsApi represents large language models api
 type LargeLanguageModelsApi struct {
 	ApiUsingConfig
 	transactionCategories *services.TransactionCategoryService
 	transactionTags       *services.TransactionTagService
 	accounts              *services.AccountService
 	users                 *services.UserService
 }
 // Initialize a large language models api singleton instance
 var (
 	LargeLanguageModels = &LargeLanguageModelsApi{
 		ApiUsingConfig: ApiUsingConfig{
 			container: settings.Container,
 		},
 		transactionCategories: services.TransactionCategories,
 		transactionTags:       services.TransactionTags,
 		accounts:              services.Accounts,
 		users:                 services.Users,
 	}
 )
 // RecognizeReceiptImageHandler returns the recognized receipt image result
 func (a *LargeLanguageModelsApi) RecognizeReceiptImageHandler(c *core.WebContext) (any, *errs.Error) {
 	if a.CurrentConfig().ReceiptImageRecognitionLLMConfig == nil || a.CurrentConfig().ReceiptImageRecognitionLLMConfig.LLMProvider == "" || !a.CurrentConfig().TransactionFromAIImageRecognition {
 		return nil, errs.ErrLargeLanguageModelProviderNotEnabled
 	}
 	clientTimezone, err := c.GetClientTimezone()
 	if err != nil {
 		log.Warnf(c, "[large_language_models.RecognizeReceiptImageHandler] cannot get client timezone, because %s", err.Error())
 		return nil, errs.ErrClientTimezoneOffsetInvalid
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		if !errs.IsCustomError(err) {
 			log.Warnf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return false, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_CREATE_TRANSACTION_FROM_AI_IMAGE_RECOGNITION) {
 		return false, errs.ErrNotPermittedToPerformThisAction
 	}
 	form, err := c.MultipartForm()
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get multi-part form data for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrParameterInvalid
 	}
 	imageFiles := form.File["image"]
 	if len(imageFiles) < 1 {
 		log.Warnf(c, "[large_language_models.RecognizeReceiptImageHandler] there is no image in request for user \"uid:%d\"", uid)
 		return nil, errs.ErrNoAIRecognitionImage
 	}
 	if imageFiles[0].Size < 1 {
 		log.Warnf(c, "[large_language_models.RecognizeReceiptImageHandler] the size of image in request is zero for user \"uid:%d\"", uid)
 		return nil, errs.ErrAIRecognitionImageIsEmpty
 	}
 	if imageFiles[0].Size > int64(a.CurrentConfig().MaxAIRecognitionPictureFileSize) {
 		log.Warnf(c, "[large_language_models.RecognizeReceiptImageHandler] the upload file size \"%d\" exceeds the maximum size \"%d\" of image for user \"uid:%d\"", imageFiles[0].Size, a.CurrentConfig().MaxAIRecognitionPictureFileSize, uid)
 		return nil, errs.ErrExceedMaxAIRecognitionImageFileSize
 	}
 	fileExtension := utils.GetFileNameExtension(imageFiles[0].Filename)
 	contentType := utils.GetImageContentType(fileExtension)
 	if contentType == "" {
 		log.Warnf(c, "[large_language_models.RecognizeReceiptImageHandler] the file extension \"%s\" of image in request is not supported for user \"uid:%d\"", fileExtension, uid)
 		return nil, errs.ErrImageTypeNotSupported
 	}
 	imageFile, err := imageFiles[0].Open()
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get image file from request for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrOperationFailed
 	}
 	defer imageFile.Close()
 	imageData, err := io.ReadAll(imageFile)
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to read image file from request for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.ErrOperationFailed
 	}
 	accounts, err := a.accounts.GetAllAccountsByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get all accounts for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	accountMap := a.accounts.GetVisibleAccountNameMapByList(accounts)
 	accountNames := make([]string, 0, len(accounts))
 	for i := 0; i < len(accounts); i++ {
 		if accounts[i].Hidden || accounts[i].Type == models.ACCOUNT_TYPE_MULTI_SUB_ACCOUNTS {
 			continue
 		}
 		accountNames = append(accountNames, accounts[i].Name)
 	}
 	categories, err := a.transactionCategories.GetAllCategoriesByUid(c, uid, 0, -1)
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get categories for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	incomeCategoryMap := make(map[string]*models.TransactionCategory)
 	incomeCategoryNames := make([]string, 0)
 	expenseCategoryMap := make(map[string]*models.TransactionCategory)
 	expenseCategoryNames := make([]string, 0)
 	transferCategoryMap := make(map[string]*models.TransactionCategory)
 	transferCategoryNames := make([]string, 0)
 	for i := 0; i < len(categories); i++ {
 		category := categories[i]
 		if category.Hidden || category.ParentCategoryId == models.LevelOneTransactionCategoryParentId {
 			continue
 		}
 		if category.Type == models.CATEGORY_TYPE_INCOME {
 			incomeCategoryMap[category.Name] = category
 			incomeCategoryNames = append(incomeCategoryNames, category.Name)
 		} else if category.Type == models.CATEGORY_TYPE_EXPENSE {
 			expenseCategoryMap[category.Name] = category
 			expenseCategoryNames = append(expenseCategoryNames, category.Name)
 		} else if category.Type == models.CATEGORY_TYPE_TRANSFER {
 			transferCategoryMap[category.Name] = category
 			transferCategoryNames = append(transferCategoryNames, category.Name)
 		}
 	}
 	tags, err := a.transactionTags.GetAllTagsByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get tags for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	tagMap := a.transactionTags.GetVisibleTagNameMapByList(tags)
 	tagNames := make([]string, 0, len(tags))
 	for i := 0; i < len(tags); i++ {
 		if tags[i].Hidden {
 			continue
 		}
 		tagNames = append(tagNames, tags[i].Name)
 	}
 	systemPrompt, err := templates.GetTemplate(templates.SYSTEM_PROMPT_RECEIPT_IMAGE_RECOGNITION)
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get system prompt template for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	systemPromptParams := map[string]any{
 		"CurrentDateTime":          utils.FormatUnixTimeToLongDateTime(time.Now().Unix(), clientTimezone),
 		"AllExpenseCategoryNames":  strings.Join(expenseCategoryNames, "\n"),
 		"AllIncomeCategoryNames":   strings.Join(incomeCategoryNames, "\n"),
 		"AllTransferCategoryNames": strings.Join(transferCategoryNames, "\n"),
 		"AllAccountNames":          strings.Join(accountNames, "\n"),
 		"AllTagNames":              strings.Join(tagNames, "\n"),
 	}
 	var bodyBuffer bytes.Buffer
 	err = systemPrompt.Execute(&bodyBuffer, systemPromptParams)
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get final system prompt from template for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	llmRequest := &data.LargeLanguageModelRequest{
 		Stream:                false,
 		SystemPrompt:          strings.ReplaceAll(bodyBuffer.String(), "\r\n", "\n"),
 		UserPrompt:            imageData,
 		UserPromptType:        data.LARGE_LANGUAGE_MODEL_REQUEST_PROMPT_TYPE_IMAGE_URL,
 		UserPromptContentType: contentType,
 	}
 	llmResponse, err := llm.Container.GetJsonResponseByReceiptImageRecognitionModel(c, c.GetCurrentUid(), a.CurrentConfig(), llmRequest)
 	if err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to get llm response user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	if llmResponse == nil || len(llmResponse.Content) == 0 || strings.HasPrefix(llmResponse.Content, "{}") {
 		return nil, errs.ErrNoTransactionInformationInImage
 	}
 	var result *models.RecognizedReceiptImageResult
 	if err := json.Unmarshal([]byte(llmResponse.Content), &result); err != nil {
 		log.Errorf(c, "[large_language_models.RecognizeReceiptImageHandler] failed to unmarshal recognized receipt image result from llm response \"%s\" for user \"uid:%d\", because %s", llmResponse.Content, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	return a.parseRecognizedReceiptImageResponse(c, uid, clientTimezone, result, accountMap, expenseCategoryMap, incomeCategoryMap, transferCategoryMap, tagMap)
 }
 func (a *LargeLanguageModelsApi) parseRecognizedReceiptImageResponse(c *core.WebContext, uid int64, clientTimezone *time.Location, recognizedResult *models.RecognizedReceiptImageResult, accountMap map[string]*models.Account, expenseCategoryMap map[string]*models.TransactionCategory, incomeCategoryMap map[string]*models.TransactionCategory, transferCategoryMap map[string]*models.TransactionCategory, tagMap map[string]*models.TransactionTag) (*models.RecognizedReceiptImageResponse, *errs.Error) {
 	recognizedReceiptImageResponse := &models.RecognizedReceiptImageResponse{
 		Type: models.TRANSACTION_TYPE_EXPENSE,
 	}
 	if recognizedResult == nil {
 		log.Errorf(c, "[large_language_models.parseRecognizedReceiptImageResponse] recoginzed result is null")
 		return nil, errs.ErrNoTransactionInformationInImage
 	}
 	if recognizedResult.Type == "income" {
 		recognizedReceiptImageResponse.Type = models.TRANSACTION_TYPE_INCOME
 		if len(recognizedResult.CategoryName) > 0 {
 			category, exists := incomeCategoryMap[recognizedResult.CategoryName]
 			if exists {
 				recognizedReceiptImageResponse.CategoryId = category.CategoryId
 			}
 		}
 	} else if recognizedResult.Type == "expense" {
 		recognizedReceiptImageResponse.Type = models.TRANSACTION_TYPE_EXPENSE
 		if len(recognizedResult.CategoryName) > 0 {
 			category, exists := expenseCategoryMap[recognizedResult.CategoryName]
 			if exists {
 				recognizedReceiptImageResponse.CategoryId = category.CategoryId
 			}
 		}
 	} else if recognizedResult.Type == "transfer" {
 		recognizedReceiptImageResponse.Type = models.TRANSACTION_TYPE_TRANSFER
 		if len(recognizedResult.CategoryName) > 0 {
 			category, exists := transferCategoryMap[recognizedResult.CategoryName]
 			if exists {
 				recognizedReceiptImageResponse.CategoryId = category.CategoryId
 			}
 		}
 	} else if len(recognizedResult.Type) == 0 {
 		return nil, errs.ErrNoTransactionInformationInImage
 	} else {
 		log.Errorf(c, "[large_language_models.parseRecognizedReceiptImageResponse] recoginzed transaction type \"%s\" is invalid", recognizedResult.Type)
 		return nil, errs.ErrOperationFailed
 	}
 	if len(recognizedResult.Time) > 0 {
 		longDateTime := a.getLongDateTime(recognizedResult.Time)
 		timestamp, err := utils.ParseFromLongDateTimeInTimeZone(longDateTime, clientTimezone)
 		if err != nil {
 			log.Warnf(c, "[large_language_models.parseRecognizedReceiptImageResponse] recoginzed time \"%s\" is invalid", recognizedResult.Time)
 		} else {
 			recognizedReceiptImageResponse.Time = timestamp.Unix()
 		}
 	}
 	if len(recognizedResult.Amount) > 0 {
 		amount, err := utils.ParseAmount(recognizedResult.Amount)
 		if err != nil {
 			log.Errorf(c, "[large_language_models.parseRecognizedReceiptImageResponse] recoginzed amount \"%s\" is invalid", recognizedResult.Amount)
 			return nil, errs.ErrOperationFailed
 		}
 		recognizedReceiptImageResponse.SourceAmount = amount
 		if recognizedReceiptImageResponse.Type == models.TRANSACTION_TYPE_TRANSFER && len(recognizedResult.DestinationAmount) > 0 {
 			destinationAmount, err := utils.ParseAmount(recognizedResult.DestinationAmount)
 			if err != nil {
 				log.Errorf(c, "[large_language_models.parseRecognizedReceiptImageResponse] recoginzed destination amount \"%s\" is invalid", recognizedResult.DestinationAmount)
 				return nil, errs.ErrOperationFailed
 			}
 			recognizedReceiptImageResponse.DestinationAmount = destinationAmount
 		}
 	}
 	if len(recognizedResult.AccountName) > 0 {
 		account, exists := accountMap[recognizedResult.AccountName]
 		if exists {
 			recognizedReceiptImageResponse.SourceAccountId = account.AccountId
 		}
 	}
 	if len(recognizedResult.DestinationAccountName) > 0 {
 		account, exists := accountMap[recognizedResult.DestinationAccountName]
 		if exists {
 			recognizedReceiptImageResponse.DestinationAccountId = account.AccountId
 		}
 	}
 	if len(recognizedResult.TagNames) > 0 {
 		tagIds := make([]string, 0, len(recognizedResult.TagNames))
 		for i := 0; i < len(recognizedResult.TagNames); i++ {
 			tagName := recognizedResult.TagNames[i]
 			tag, exists := tagMap[tagName]
 			if exists {
 				tagIds = append(tagIds, utils.Int64ToString(tag.TagId))
 			}
 		}
 		recognizedReceiptImageResponse.TagIds = tagIds
 	}
 	if len(recognizedResult.Description) > 0 {
 		recognizedReceiptImageResponse.Comment = recognizedResult.Description
 	}
 	return recognizedReceiptImageResponse, nil
 }
 func (a *LargeLanguageModelsApi) getLongDateTime(dateTime string) string {
 	if utils.IsValidLongDateTimeFormat(dateTime) {
 		return dateTime
 	}
 	if utils.IsValidLongDateTimeWithoutSecondFormat(dateTime) {
 		return dateTime + ":00"
 	}
 	if utils.IsValidLongDateFormat(dateTime) {
 		return dateTime + " 00:00:00"
 	}
 	return dateTime
 }
@@ -5,11 +5,12 @@ import (
 	"net/http/httputil"
 	"net/url"
 	"strings"
 	"sync"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/httpclient"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 const openStreetMapTileImageUrlFormat = "https://tile.openstreetmap.org/{z}/{x}/{y}.png"                                                                                                                              // https://tile.openstreetmap.org/{z}/{x}/{y}.png
@@ -25,6 +26,8 @@ const tianDiTuMapAnnotationUrlFormat = "https://t0.tianditu.gov.cn/cva_w/wmts?SE
 // MapImageProxy represents map image proxy
 type MapImageProxy struct {
 	ApiUsingConfig
 	mutex     sync.Mutex
 	transport *http.Transport
 }
 // Initialize a map image proxy singleton instance
@@ -36,6 +39,18 @@ var (
 	}
 )
 func (p *MapImageProxy) initializeHttpTransport() {
 	p.mutex.Lock()
 	defer p.mutex.Unlock()
 	if p.transport != nil {
 		return
 	}
 	p.transport = http.DefaultTransport.(*http.Transport).Clone()
 	httpclient.SetProxyUrl(p.transport, p.CurrentConfig().MapProxy)
 }
 // MapTileImageProxyHandler returns map tile image
 func (p *MapImageProxy) MapTileImageProxyHandler(c *core.WebContext) (*httputil.ReverseProxy, *errs.Error) {
 	return p.mapImageProxyHandler(c, func(c *core.WebContext, mapProvider string) (string, *errs.Error) {
@@ -109,8 +124,9 @@ func (p *MapImageProxy) mapImageProxyHandler(c *core.WebContext, fn func(c *core
 		return nil, err
 	}
-	transport := http.DefaultTransport.(*http.Transport).Clone()
+	if p.transport == nil {
-	utils.SetProxyUrl(transport, p.CurrentConfig().MapProxy)
+		p.initializeHttpTransport()
 	}
 	director := func(req *http.Request) {
 		imageRawUrl := targetUrl
@@ -126,7 +142,7 @@ func (p *MapImageProxy) mapImageProxyHandler(c *core.WebContext, fn func(c *core
 	}
 	return &httputil.ReverseProxy{
-		Transport: transport,
+		Transport: p.transport,
 		Director:  director,
 	}, nil
 }
@@ -0,0 +1,265 @@
 package api
 import (
 	"encoding/json"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/mcp"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 const mcpServerName = core.ApplicationName + "-mcp"
 // ModelContextProtocolAPI represents model context protocol api
 type ModelContextProtocolAPI struct {
 	ApiUsingConfig
 	transactions          *services.TransactionService
 	transactionCategories *services.TransactionCategoryService
 	transactionTags       *services.TransactionTagService
 	accounts              *services.AccountService
 	users                 *services.UserService
 	tokens                *services.TokenService
 }
 // Initialize a model context protocol api singleton instance
 var (
 	ModelContextProtocols = &ModelContextProtocolAPI{
 		ApiUsingConfig: ApiUsingConfig{
 			container: settings.Container,
 		},
 		transactions:          services.Transactions,
 		transactionCategories: services.TransactionCategories,
 		transactionTags:       services.TransactionTags,
 		accounts:              services.Accounts,
 		users:                 services.Users,
 		tokens:                services.Tokens,
 	}
 )
 // InitializeHandler returns the initialize response for model context protocol
 func (a *ModelContextProtocolAPI) InitializeHandler(c *core.WebContext, jsonRPCRequest *core.JSONRPCRequest) (any, *errs.Error) {
 	var initRequest mcp.MCPInitializeRequest
 	if jsonRPCRequest.Params != nil {
 		if err := json.Unmarshal(jsonRPCRequest.Params, &initRequest); err != nil {
 			return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 		}
 	} else {
 		return nil, errs.ErrIncompleteOrIncorrectSubmission
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Warnf(c, "[model_context_protocols.InitializeHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_MCP_ACCESS) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	tokenClaims := c.GetTokenClaims()
 	userTokenId, err := utils.StringToInt64(tokenClaims.UserTokenId)
 	if err != nil {
 		log.Warnf(c, "[model_context_protocols.InitializeHandler] parse user token id failed, because %s", err.Error())
 	} else {
 		tokenRecord := &models.TokenRecord{
 			Uid:             tokenClaims.Uid,
 			UserTokenId:     userTokenId,
 			CreatedUnixTime: tokenClaims.IssuedAt,
 		}
 		tokenId := a.tokens.GenerateTokenId(tokenRecord)
 		err = a.tokens.UpdateTokenLastSeen(c, tokenRecord)
 		if err != nil {
 			log.Warnf(c, "[model_context_protocols.InitializeHandler] failed to update last seen of token \"id:%s\" for user \"uid:%d\", because %s", tokenId, uid, err.Error())
 		}
 	}
 	protocolVersion := mcp.MCPProtocolVersion(initRequest.ProtocolVersion)
 	_, exists := mcp.SupportedMCPVersion[protocolVersion]
 	if !exists {
 		protocolVersion = mcp.LatestSupportedMCPVersion
 	}
 	initResp := mcp.MCPInitializeResponse{
 		ProtocolVersion: string(protocolVersion),
 		Capabilities: &mcp.MCPCapabilities{
 			Tools: &mcp.MCPToolCapabilities{
 				ListChanged: false,
 			},
 		},
 		ServerInfo: &mcp.MCPImplementation{
 			Name:    mcpServerName,
 			Title:   core.ApplicationName,
 			Version: core.Version,
 		},
 	}
 	return initResp, nil
 }
 // ListResourcesHandler returns the list of resources for model context protocol
 func (a *ModelContextProtocolAPI) ListResourcesHandler(c *core.WebContext, jsonRPCRequest *core.JSONRPCRequest) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Warnf(c, "[model_context_protocols.ListResourcesHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_MCP_ACCESS) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	listResourcesResp := mcp.MCPListResourcesResponse{
 		Resources: make([]*mcp.MCPResource, 0),
 	}
 	return listResourcesResp, nil
 }
 // ReadResourceHandler returns the resource details for a specific resource in model context protocol
 func (a *ModelContextProtocolAPI) ReadResourceHandler(c *core.WebContext, jsonRPCRequest *core.JSONRPCRequest) (any, *errs.Error) {
 	var readResourceReq mcp.MCPReadResourceRequest
 	if jsonRPCRequest.Params != nil {
 		if err := json.Unmarshal(jsonRPCRequest.Params, &readResourceReq); err != nil {
 			return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 		}
 	} else {
 		return nil, errs.ErrIncompleteOrIncorrectSubmission
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Warnf(c, "[model_context_protocols.ReadResourceHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_MCP_ACCESS) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	return nil, errs.ErrApiNotFound
 }
 // ListToolsHandler returns the list of tools for model context protocol
 func (a *ModelContextProtocolAPI) ListToolsHandler(c *core.WebContext, jsonRPCRequest *core.JSONRPCRequest) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Warnf(c, "[model_context_protocols.ListToolsHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_MCP_ACCESS) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	mcpVersion := a.getMCPVersion(c)
 	toolsInfo := mcp.Container.GetMCPTools()
 	finalToolsInfos := make([]*mcp.MCPTool, len(toolsInfo))
 	for i := 0; i < len(toolsInfo); i++ {
 		finalToolsInfos[i] = &mcp.MCPTool{
 			Name:        toolsInfo[i].Name,
 			InputSchema: toolsInfo[i].InputSchema,
 			Title:       toolsInfo[i].Title,
 			Description: toolsInfo[i].Description,
 		}
 		if mcpVersion >= string(mcp.ToolResultStructuredContentMinVersion) {
 			finalToolsInfos[i].OutputSchema = toolsInfo[i].OutputSchema
 		}
 	}
 	listToolsResp := mcp.MCPListToolsResponse{
 		Tools: finalToolsInfos,
 	}
 	return listToolsResp, nil
 }
 // CallToolHandler returns the result of calling a specific tool for model context protocol
 func (a *ModelContextProtocolAPI) CallToolHandler(c *core.WebContext, jsonRPCRequest *core.JSONRPCRequest) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Warnf(c, "[model_context_protocols.CallToolHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_MCP_ACCESS) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	var callToolReq mcp.MCPCallToolRequest
 	if jsonRPCRequest.Params != nil {
 		if err := json.Unmarshal(jsonRPCRequest.Params, &callToolReq); err != nil {
 			return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 		}
 	} else {
 		return nil, errs.ErrIncompleteOrIncorrectSubmission
 	}
 	result, err := mcp.Container.HandleTool(c, &callToolReq, user, a.CurrentConfig(), a)
 	if err != nil {
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	return result, nil
 }
 // PingHandler return the ping response for model context protocol
 func (a *ModelContextProtocolAPI) PingHandler(c *core.WebContext, jsonRPCRequest *core.JSONRPCRequest) (any, *errs.Error) {
 	return core.O{}, nil
 }
 // GetTransactionService implements the MCPAvailableServices interface
 func (a *ModelContextProtocolAPI) GetTransactionService() *services.TransactionService {
 	return a.transactions
 }
 // GetTransactionCategoryService implements the MCPAvailableServices interface
 func (a *ModelContextProtocolAPI) GetTransactionCategoryService() *services.TransactionCategoryService {
 	return a.transactionCategories
 }
 // GetTransactionTagService implements the MCPAvailableServices interface
 func (a *ModelContextProtocolAPI) GetTransactionTagService() *services.TransactionTagService {
 	return a.transactionTags
 }
 // GetAccountService implements the MCPAvailableServices interface
 func (a *ModelContextProtocolAPI) GetAccountService() *services.AccountService {
 	return a.accounts
 }
 // GetUserService implements the MCPAvailableServices interface
 func (a *ModelContextProtocolAPI) GetUserService() *services.UserService {
 	return a.users
 }
 // getMCPVersion returns the MCP protocol version from the request header
 func (a *ModelContextProtocolAPI) getMCPVersion(c *core.WebContext) string {
 	return c.GetHeader(mcp.MCPProtocolVersionHeaderName)
 }
@@ -0,0 +1,423 @@
 package api
 import (
 	"encoding/json"
 	"errors"
 	"fmt"
 	"net/url"
 	"strings"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/duplicatechecker"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/locales"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 	"github.com/mayswind/ezbookkeeping/pkg/validators"
 )
 const oauth2CallbackPageUrlSuccessFormat = "%sdesktop#/oauth2_callback?platform=%s&provider=%s&token=%s"
 const oauth2CallbackPageUrlNeedVerifyFormat = "%sdesktop#/oauth2_callback?platform=%s&provider=%s&userName=%s&token=%s"
 const oauth2CallbackPageUrlFailedFormat = "%sdesktop#/oauth2_callback?errorCode=%d&errorMessage=%s"
 const oauth2CallbackPageUrlErrorMessageFormat = "%sdesktop#/oauth2_callback?errorMessage=%s"
 // OAuth2AuthenticationApi represents OAuth 2.0 authorization api
 type OAuth2AuthenticationApi struct {
 	ApiUsingConfig
 	ApiUsingDuplicateChecker
 	users             *services.UserService
 	tokens            *services.TokenService
 	userExternalAuths *services.UserExternalAuthService
 }
 // Initialize a OAuth 2.0 authentication api singleton instance
 var (
 	OAuth2Authentications = &OAuth2AuthenticationApi{
 		ApiUsingConfig: ApiUsingConfig{
 			container: settings.Container,
 		},
 		ApiUsingDuplicateChecker: ApiUsingDuplicateChecker{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
 			},
 			container: duplicatechecker.Container,
 		},
 		users:             services.Users,
 		tokens:            services.Tokens,
 		userExternalAuths: services.UserExternalAuths,
 	}
 )
 // LoginHandler handles user login request via OAuth 2.0
 func (a *OAuth2AuthenticationApi) LoginHandler(c *core.WebContext) (string, *errs.Error) {
 	var oauth2LoginReq models.OAuth2LoginRequest
 	err := c.ShouldBindQuery(&oauth2LoginReq)
 	if err != nil {
 		log.Warnf(c, "[oauth2_authentications.LoginHandler] parse request failed, because %s", err.Error())
 		return a.redirectToFailedCallbackPage(c, errs.NewIncompleteOrIncorrectSubmissionError(err))
 	}
 	if oauth2LoginReq.Platform != "mobile" && oauth2LoginReq.Platform != "desktop" {
 		return a.redirectToFailedCallbackPage(c, errs.ErrInvalidOAuth2LoginRequest)
 	}
 	found, remark := a.GetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_OAUTH2_REDIRECT, 0, oauth2LoginReq.ClientSessionId)
 	if found {
 		log.Errorf(c, "[oauth2_authentications.LoginHandler] another oauth 2.0 state \"%s\" has been processing for client session id \"%s\"", remark, oauth2LoginReq.ClientSessionId)
 		return a.redirectToFailedCallbackPage(c, errs.ErrRepeatedRequest)
 	}
 	uid := int64(0)
 	if oauth2LoginReq.Token != "" {
 		_, claims, _, err := a.tokens.ParseToken(c, oauth2LoginReq.Token)
 		if err != nil {
 			log.Errorf(c, "[oauth2_authentications.LoginHandler] failed to parse token, because %s", err.Error())
 			return a.redirectToFailedCallbackPage(c, errs.ErrInvalidToken)
 		}
 		uid = claims.Uid
 		user, err := a.users.GetUserById(c, uid)
 		if err != nil && !errors.Is(err, errs.ErrUserNotFound) {
 			log.Errorf(c, "[oauth2_authentications.LoginHandler] failed to get user by id %d, because %s", uid, err.Error())
 			return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrOperationFailed))
 		}
 		if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_OAUTH2_LOGIN) {
 			return a.redirectToFailedCallbackPage(c, errs.ErrNotPermittedToPerformThisAction)
 		}
 	}
 	verifier, err := utils.GetRandomNumberOrLowercaseLetter(64)
 	if err != nil {
 		log.Errorf(c, "[oauth2_authentications.LoginHandler] failed to generate random string for oauth 2.0 state, because %s", err.Error())
 		return a.redirectToFailedCallbackPage(c, errs.ErrSystemError)
 	}
 	remark = fmt.Sprintf("%s|%s|%d|%s", oauth2LoginReq.Platform, oauth2LoginReq.ClientSessionId, uid, verifier)
 	state := fmt.Sprintf("%s|%s|%s", oauth2LoginReq.Platform, oauth2LoginReq.ClientSessionId, utils.MD5EncodeToString([]byte(remark)))
 	redirectUrl, err := oauth2.GetOAuth2AuthUrl(c, state, verifier)
 	if err != nil {
 		log.Errorf(c, "[oauth2_authentications.LoginHandler] failed to get oauth 2.0 auth url, because %s", err.Error())
 		return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrSystemError))
 	}
 	a.SetSubmissionRemarkWithCustomExpiration(duplicatechecker.DUPLICATE_CHECKER_TYPE_OAUTH2_REDIRECT, 0, oauth2LoginReq.ClientSessionId, remark, a.CurrentConfig().OAuth2StateExpiredTimeDuration)
 	return redirectUrl, nil
 }
 // CallbackHandler handles OAuth 2.0 callback request
 func (a *OAuth2AuthenticationApi) CallbackHandler(c *core.WebContext) (string, *errs.Error) {
 	var oauth2CallbackReq models.OAuth2CallbackRequest
 	err := c.ShouldBindQuery(&oauth2CallbackReq)
 	if err != nil {
 		log.Warnf(c, "[oauth2_authentications.CallbackHandler] parse request failed, because %s", err.Error())
 		return a.redirectToFailedCallbackPage(c, errs.NewIncompleteOrIncorrectSubmissionError(err))
 	}
 	if oauth2CallbackReq.State == "" {
 		return a.redirectToFailedCallbackPage(c, errs.ErrMissingOAuth2State)
 	}
 	if oauth2CallbackReq.Code == "" {
 		if oauth2CallbackReq.ErrorDescription != "" {
 			log.Errorf(c, "[oauth2_authentications.CallbackHandler] oauth 2.0 provider returned error: %s, description: %s", oauth2CallbackReq.Error, oauth2CallbackReq.ErrorDescription)
 			return a.redirectToErrorMessageCallbackPage(c, oauth2CallbackReq.ErrorDescription)
 		}
 		return a.redirectToFailedCallbackPage(c, errs.ErrMissingOAuth2Code)
 	}
 	platform := ""
 	clientSessionId := ""
 	stateParts := strings.Split(oauth2CallbackReq.State, "|")
 	if len(stateParts) == 3 {
 		platform = stateParts[0]
 		clientSessionId = stateParts[1]
 	} else {
 		return a.redirectToFailedCallbackPage(c, errs.ErrInvalidOAuth2State)
 	}
 	if platform != "mobile" && platform != "desktop" {
 		return a.redirectToFailedCallbackPage(c, errs.ErrInvalidOAuth2LoginRequest)
 	}
 	found, remark := a.GetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_OAUTH2_REDIRECT, 0, clientSessionId)
 	if !found {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] cannot find oauth 2.0 state in duplicate checker for client session id \"%s\"", clientSessionId)
 		return a.redirectToFailedCallbackPage(c, errs.ErrInvalidOAuth2Callback)
 	}
 	remarkParts := strings.Split(remark, "|")
 	if len(remarkParts) != 4 || remarkParts[0] != platform || remarkParts[1] != clientSessionId {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] invalid oauth 2.0 state \"%s\" in duplicate checker for client session id \"%s\"", remark, clientSessionId)
 		return a.redirectToFailedCallbackPage(c, errs.ErrInvalidOAuth2State)
 	}
 	uid, err := utils.StringToInt64(remarkParts[2])
 	if err != nil {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] invalid uid \"%s\" in oauth 2.0 state \"%s\"", remarkParts[2], remark)
 		return a.redirectToFailedCallbackPage(c, errs.ErrInvalidOAuth2State)
 	}
 	verifier := remarkParts[3]
 	expectedRemark := fmt.Sprintf("%s|%s|%d|%s", platform, clientSessionId, uid, verifier)
 	expectedState := fmt.Sprintf("%s|%s|%s", platform, clientSessionId, utils.MD5EncodeToString([]byte(expectedRemark)))
 	if oauth2CallbackReq.State != expectedState {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] mismatched random string in oauth 2.0 state, expected \"%s\", got \"%s\"", expectedState, oauth2CallbackReq.State)
 		return a.redirectToFailedCallbackPage(c, errs.ErrInvalidOAuth2State)
 	}
 	a.RemoveSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_OAUTH2_REDIRECT, 0, clientSessionId)
 	oauth2Token, err := oauth2.GetOAuth2Token(c, oauth2CallbackReq.Code, verifier)
 	if err != nil {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to retrieve oauth 2.0 token, because %s", err.Error())
 		return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrCannotRetrieveOAuth2Token))
 	}
 	oauth2UserInfo, err := oauth2.GetOAuth2UserInfo(c, oauth2Token)
 	if err != nil {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to retrieve oauth 2.0 user info, because %s", err.Error())
 		return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrInvalidOAuth2Token))
 	}
 	if oauth2UserInfo == nil {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to retrieve oauth 2.0 user info, because user info is nil")
 		return a.redirectToFailedCallbackPage(c, errs.ErrCannotRetrieveUserInfo)
 	}
 	log.Infof(c, "[oauth2_authentications.CallbackHandler] oauth 2.0 user info, userName: %s, email: %s", oauth2UserInfo.UserName, oauth2UserInfo.Email)
 	if oauth2UserInfo.UserName == "" && oauth2UserInfo.Email == "" {
 		return a.redirectToFailedCallbackPage(c, errs.ErrOAuth2UserNameAndEmailEmpty)
 	}
 	if a.CurrentConfig().OAuth2UserIdentifier == settings.OAuth2UserIdentifierEmail && oauth2UserInfo.Email == "" {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] invalid oauth 2.0 user info, email is empty")
 		return a.redirectToFailedCallbackPage(c, errs.ErrOAuth2EmailEmpty)
 	}
 	if a.CurrentConfig().OAuth2UserIdentifier == settings.OAuth2UserIdentifierUsername && oauth2UserInfo.UserName == "" {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] invalid oauth 2.0 user info, userName is empty")
 		return a.redirectToFailedCallbackPage(c, errs.ErrOAuth2UserNameEmpty)
 	}
 	userExternalAuthType := oauth2.GetExternalUserAuthType()
 	var userExternalAuth *models.UserExternalAuth
 	if a.CurrentConfig().OAuth2UserIdentifier == settings.OAuth2UserIdentifierEmail {
 		userExternalAuth, err = a.userExternalAuths.GetUserExternalAuthByExternalEmail(c, oauth2UserInfo.Email, userExternalAuthType)
 	} else if a.CurrentConfig().OAuth2UserIdentifier == settings.OAuth2UserIdentifierUsername {
 		userExternalAuth, err = a.userExternalAuths.GetUserExternalAuthByExternalUserName(c, oauth2UserInfo.UserName, userExternalAuthType)
 	} else {
 		return a.redirectToFailedCallbackPage(c, errs.ErrNotSupported)
 	}
 	if err != nil && !errors.Is(err, errs.ErrUserExternalAuthNotFound) {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to get user external auth, because %s", err.Error())
 		return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrOperationFailed))
 	}
 	if uid != 0 && userExternalAuth != nil && userExternalAuth.Uid != uid {
 		log.Errorf(c, "[oauth2_authentications.CallbackHandler] oauth 2.0 external auth has been bound to another user \"uid:%d\", current user \"uid:%d\"", userExternalAuth.Uid, uid)
 		return a.redirectToFailedCallbackPage(c, errs.ErrOAuth2UserAlreadyBoundToAnotherUser)
 	}
 	var user *models.User
 	if err == nil { // user already bound to external auth, redirect to success page
 		user, err = a.users.GetUserById(c, userExternalAuth.Uid)
 		if err != nil {
 			log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to get user by id %d, because %s", userExternalAuth.Uid, err.Error())
 			return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrOperationFailed))
 		}
 	} else { // errors.Is(err, errs.ErrUserExternalAuthNotFound) // user not bound to external auth, try to bind or register new user
 		if uid != 0 {
 			user, err = a.users.GetUserById(c, uid)
 			if err != nil && !errors.Is(err, errs.ErrUserNotFound) {
 				log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to get user by id %d, because %s", uid, err.Error())
 				return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrOperationFailed))
 			}
 		} else {
 			if a.CurrentConfig().OAuth2UserIdentifier == settings.OAuth2UserIdentifierEmail {
 				user, err = a.users.GetUserByEmail(c, oauth2UserInfo.Email)
 			} else if a.CurrentConfig().OAuth2UserIdentifier == settings.OAuth2UserIdentifierUsername {
 				user, err = a.users.GetUserByUsername(c, oauth2UserInfo.UserName)
 			} else {
 				err = errs.ErrNotSupported
 			}
 			if err != nil && !errors.Is(err, errs.ErrUserNotFound) {
 				log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to get user, because %s", err.Error())
 				return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrOperationFailed))
 			}
 		}
 		if user == nil && a.CurrentConfig().EnableUserRegister && a.CurrentConfig().OAuth2AutoRegister {
 			if oauth2UserInfo.UserName == "" {
 				return a.redirectToFailedCallbackPage(c, errs.ErrOAuth2UserNameEmptyCannotRegister)
 			}
 			if oauth2UserInfo.Email == "" {
 				return a.redirectToFailedCallbackPage(c, errs.ErrOAuth2EmailEmptyCannotRegister)
 			}
 			userName := strings.TrimSpace(oauth2UserInfo.UserName)
 			email := strings.TrimSpace(oauth2UserInfo.Email)
 			nickName := strings.TrimSpace(oauth2UserInfo.NickName)
 			languageCode := ""
 			currencyCode := "USD"
 			if nickName == "" {
 				nickName = userName
 			}
 			if !utils.IsValidUsername(userName) {
 				return a.redirectToFailedCallbackPage(c, errs.ErrUserNameIsInvalid)
 			}
 			if !utils.IsValidEmail(email) {
 				return a.redirectToFailedCallbackPage(c, errs.ErrEmailIsInvalid)
 			}
 			if !utils.IsValidNickName(nickName) {
 				return a.redirectToFailedCallbackPage(c, errs.ErrNickNameIsInvalid)
 			}
 			if _, exists := locales.AllLanguages[oauth2UserInfo.LanguageCode]; exists {
 				languageCode = oauth2UserInfo.LanguageCode
 			}
 			if _, exists := validators.AllCurrencyNames[oauth2UserInfo.CurrencyCode]; exists {
 				currencyCode = oauth2UserInfo.CurrencyCode
 			}
 			user = &models.User{
 				Username:             userName,
 				Email:                email,
 				Nickname:             nickName,
 				Language:             languageCode,
 				DefaultCurrency:      currencyCode,
 				FirstDayOfWeek:       oauth2UserInfo.FirstDayOfWeek,
 				FiscalYearStart:      core.FISCAL_YEAR_START_DEFAULT,
 				TransactionEditScope: models.TRANSACTION_EDIT_SCOPE_ALL,
 				FeatureRestriction:   a.CurrentConfig().DefaultFeatureRestrictions,
 			}
 			if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_OAUTH2_LOGIN) {
 				return a.redirectToFailedCallbackPage(c, errs.ErrNotPermittedToPerformThisAction)
 			}
 			err = a.users.CreateUser(c, user, true)
 			if err != nil {
 				log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to create user \"%s\", because %s", user.Username, err.Error())
 				return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrOperationFailed))
 			}
 			log.Infof(c, "[oauth2_authentications.CallbackHandler] user \"%s\" has registered successfully, uid is %d", user.Username, user.Uid)
 			userExternalAuth = &models.UserExternalAuth{
 				Uid:              user.Uid,
 				ExternalAuthType: userExternalAuthType,
 				ExternalUsername: oauth2UserInfo.UserName,
 				ExternalEmail:    oauth2UserInfo.Email,
 			}
 			err = a.userExternalAuths.CreateUserExternalAuth(c, userExternalAuth)
 			if err != nil {
 				log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to create user external auth for user \"uid:%d\", because %s", user.Uid, err.Error())
 				return a.redirectToFailedCallbackPage(c, errs.Or(err, errs.ErrOperationFailed))
 			}
 			log.Infof(c, "[oauth2_authentications.CallbackHandler] user external auth has been created for user \"uid:%d\"", user.Uid)
 		} else if user == nil {
 			return a.redirectToFailedCallbackPage(c, errs.ErrOAuth2AutoRegistrationNotEnabled)
 		}
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_OAUTH2_LOGIN) {
 		return a.redirectToFailedCallbackPage(c, errs.ErrNotPermittedToPerformThisAction)
 	}
 	if userExternalAuth == nil {
 		tokenContext, err := json.Marshal(&models.OAuth2CallbackTokenContext{
 			ExternalAuthType: userExternalAuthType,
 			ExternalUsername: oauth2UserInfo.UserName,
 			ExternalEmail:    oauth2UserInfo.Email,
 		})
 		if err != nil {
 			log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to marshal oauth 2.0 callback verify token context, because %s", err.Error())
 			return a.redirectToFailedCallbackPage(c, errs.ErrOperationFailed)
 		}
 		token, _, err := a.tokens.CreateOAuth2CallbackRequireVerifyToken(c, user, string(tokenContext))
 		if err != nil {
 			log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to create oauth 2.0 callback verify token, because %s", err.Error())
 			return a.redirectToFailedCallbackPage(c, errs.ErrTokenGenerating)
 		}
 		return a.redirectToVerifyCallbackPage(c, platform, userExternalAuthType, user.Username, token)
 	} else {
 		tokenContext, err := json.Marshal(&models.OAuth2CallbackTokenContext{
 			ExternalAuthType: userExternalAuthType,
 		})
 		if err != nil {
 			log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to marshal oauth 2.0 callback token context, because %s", err.Error())
 			return a.redirectToFailedCallbackPage(c, errs.ErrOperationFailed)
 		}
 		token, _, err := a.tokens.CreateOAuth2CallbackToken(c, user, string(tokenContext))
 		if err != nil {
 			log.Errorf(c, "[oauth2_authentications.CallbackHandler] failed to create oauth 2.0 callback token, because %s", err.Error())
 			return a.redirectToFailedCallbackPage(c, errs.ErrTokenGenerating)
 		}
 		return a.redirectToSuccessCallbackPage(c, platform, userExternalAuthType, token)
 	}
 }
 func (a *OAuth2AuthenticationApi) redirectToSuccessCallbackPage(c *core.WebContext, platform string, externalAuthType core.UserExternalAuthType, token string) (string, *errs.Error) {
 	return fmt.Sprintf(oauth2CallbackPageUrlSuccessFormat, a.CurrentConfig().RootUrl, platform, externalAuthType, url.QueryEscape(token)), nil
 }
 func (a *OAuth2AuthenticationApi) redirectToVerifyCallbackPage(c *core.WebContext, platform string, externalAuthType core.UserExternalAuthType, userName string, token string) (string, *errs.Error) {
 	return fmt.Sprintf(oauth2CallbackPageUrlNeedVerifyFormat, a.CurrentConfig().RootUrl, platform, externalAuthType, userName, url.QueryEscape(token)), nil
 }
 func (a *OAuth2AuthenticationApi) redirectToFailedCallbackPage(c *core.WebContext, err *errs.Error) (string, *errs.Error) {
 	return fmt.Sprintf(oauth2CallbackPageUrlFailedFormat, a.CurrentConfig().RootUrl, err.Code(), url.QueryEscape(utils.GetDisplayErrorMessage(err))), nil
 }
 func (a *OAuth2AuthenticationApi) redirectToErrorMessageCallbackPage(c *core.WebContext, message string) (string, *errs.Error) {
 	return fmt.Sprintf(oauth2CallbackPageUrlErrorMessageFormat, a.CurrentConfig().RootUrl, url.QueryEscape(message)), nil
 }
@@ -0,0 +1,227 @@
 package api
 import (
 	"fmt"
 	"strings"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 const ezbookkeepingServerSettingsGlobalVariableName = "EZBOOKKEEPING_SERVER_SETTINGS"
 const ezbookkeepingServerSettingsGlobalVariableFullName = "window." + ezbookkeepingServerSettingsGlobalVariableName
 const ezbookkeepingServerSettingsJavascriptFileHeader = ezbookkeepingServerSettingsGlobalVariableFullName +
 	"=" + ezbookkeepingServerSettingsGlobalVariableFullName + "||{};\n"
 // ServerSettingsApi represents server settings api
 type ServerSettingsApi struct {
 	ApiUsingConfig
 }
 // Initialize a server settings api singleton instance
 var (
 	ServerSettings = &ServerSettingsApi{
 		ApiUsingConfig: ApiUsingConfig{
 			container: settings.Container,
 		},
 	}
 )
 // ServerSettingsJavascriptHandler returns the javascript contains server settings
 func (a *ServerSettingsApi) ServerSettingsJavascriptHandler(c *core.WebContext) ([]byte, string, *errs.Error) {
 	config := a.CurrentConfig()
 	builder := &strings.Builder{}
 	builder.WriteString(ezbookkeepingServerSettingsJavascriptFileHeader)
 	a.appendBooleanSetting(builder, "a", config.EnableInternalAuth)
 	a.appendBooleanSetting(builder, "o", config.EnableOAuth2Login)
 	a.appendBooleanSetting(builder, "r", config.EnableInternalAuth && config.EnableUserRegister)
 	a.appendBooleanSetting(builder, "f", config.EnableInternalAuth && config.EnableUserForgetPassword)
 	a.appendBooleanSetting(builder, "t", config.EnableAPIToken)
 	a.appendBooleanSetting(builder, "v", config.EnableUserVerifyEmail)
 	a.appendBooleanSetting(builder, "p", config.EnableTransactionPictures)
 	a.appendBooleanSetting(builder, "s", config.EnableScheduledTransaction)
 	a.appendBooleanSetting(builder, "e", config.EnableDataExport)
 	a.appendBooleanSetting(builder, "i", config.EnableDataImport)
 	a.appendStringSetting(builder, "op", config.OAuth2Provider)
 	if config.OAuth2Provider == settings.OAuth2ProviderOIDC && config.OAuth2OIDCCustomDisplayNameConfig.Enabled {
 		a.appendMultiLanguageTipSetting(builder, "ocn", config.OAuth2OIDCCustomDisplayNameConfig)
 	}
 	if config.EnableMCPServer {
 		a.appendBooleanSetting(builder, "mcp", config.EnableMCPServer)
 	}
 	if config.ReceiptImageRecognitionLLMConfig != nil && config.ReceiptImageRecognitionLLMConfig.LLMProvider != "" {
 		if config.TransactionFromAIImageRecognition {
 			a.appendBooleanSetting(builder, "llmt", config.TransactionFromAIImageRecognition)
 		}
 	}
 	if config.LoginPageTips.Enabled {
 		a.appendMultiLanguageTipSetting(builder, "lpt", config.LoginPageTips)
 	}
 	a.appendStringSetting(builder, "m", config.MapProvider)
 	if config.EnableMapDataFetchProxy &&
 		(config.MapProvider == settings.OpenStreetMapProvider ||
 			config.MapProvider == settings.OpenStreetMapHumanitarianStyleProvider ||
 			config.MapProvider == settings.OpenTopoMapProvider ||
 			config.MapProvider == settings.OPNVKarteMapProvider ||
 			config.MapProvider == settings.CyclOSMMapProvider ||
 			config.MapProvider == settings.CartoDBMapProvider ||
 			config.MapProvider == settings.TomTomMapProvider ||
 			config.MapProvider == settings.TianDiTuProvider ||
 			config.MapProvider == settings.CustomProvider) {
 		a.appendBooleanSetting(builder, "mp", config.EnableMapDataFetchProxy)
 	}
 	if config.MapProvider == settings.CustomProvider {
 		a.appendStringSetting(builder, "cmzl", fmt.Sprintf("%d-%d-%d", config.CustomMapTileServerMinZoomLevel, config.CustomMapTileServerMaxZoomLevel, config.CustomMapTileServerDefaultZoomLevel))
 		if !config.EnableMapDataFetchProxy {
 			a.appendStringSetting(builder, "cmsu", config.CustomMapTileServerTileLayerUrl)
 			if config.CustomMapTileServerAnnotationLayerUrl != "" {
 				a.appendStringSetting(builder, "cmau", config.CustomMapTileServerAnnotationLayerUrl)
 			}
 		} else {
 			if config.CustomMapTileServerAnnotationLayerUrl != "" {
 				a.appendBooleanSetting(builder, "cmap", config.EnableMapDataFetchProxy)
 			}
 		}
 	}
 	if config.MapProvider == settings.TomTomMapProvider && config.TomTomMapAPIKey != "" && !config.EnableMapDataFetchProxy {
 		a.appendStringSetting(builder, "tmak", config.TomTomMapAPIKey)
 	}
 	if config.MapProvider == settings.TianDiTuProvider && config.TianDiTuAPIKey != "" && !config.EnableMapDataFetchProxy {
 		a.appendStringSetting(builder, "tdak", config.TianDiTuAPIKey)
 	}
 	if config.MapProvider == settings.GoogleMapProvider && config.GoogleMapAPIKey != "" {
 		a.appendStringSetting(builder, "gmak", config.GoogleMapAPIKey)
 	}
 	if config.MapProvider == settings.BaiduMapProvider && config.BaiduMapAK != "" {
 		a.appendStringSetting(builder, "bmak", config.BaiduMapAK)
 	}
 	if config.MapProvider == settings.AmapProvider && config.AmapApplicationKey != "" {
 		a.appendStringSetting(builder, "amak", config.AmapApplicationKey)
 	}
 	if config.MapProvider == settings.AmapProvider && config.AmapSecurityVerificationMethod != "" {
 		a.appendStringSetting(builder, "amsv", config.AmapSecurityVerificationMethod)
 		if config.AmapSecurityVerificationMethod == settings.AmapSecurityVerificationExternalProxyMethod {
 			a.appendStringSetting(builder, "amep", config.AmapApiExternalProxyUrl)
 		}
 		if config.AmapSecurityVerificationMethod == settings.AmapSecurityVerificationPlainTextMethod {
 			a.appendStringSetting(builder, "amas", config.AmapApplicationSecret)
 		}
 	}
 	if config.ExchangeRatesRequestTimeoutExceedDefaultValue {
 		a.appendIntegerSetting(builder, "errt", int(config.ExchangeRatesRequestTimeout))
 	}
 	return []byte(builder.String()), "", nil
 }
 func (a *ServerSettingsApi) appendStringSetting(builder *strings.Builder, key string, value string) {
 	builder.WriteString(ezbookkeepingServerSettingsGlobalVariableFullName)
 	builder.WriteString("[")
 	a.appendEncodedString(builder, key)
 	builder.WriteString("]=")
 	a.appendEncodedString(builder, value)
 	builder.WriteString(";\n")
 }
 func (a *ServerSettingsApi) appendMultiLanguageTipSetting(builder *strings.Builder, key string, value settings.MultiLanguageContentConfig) {
 	builder.WriteString(ezbookkeepingServerSettingsGlobalVariableFullName)
 	builder.WriteString("[")
 	a.appendEncodedString(builder, key)
 	builder.WriteString("]={\n")
 	builder.WriteString("'default'")
 	builder.WriteRune(':')
 	a.appendEncodedString(builder, value.DefaultContent)
 	for languageTag, content := range value.MultiLanguageContent {
 		builder.WriteString(",\n")
 		a.appendEncodedString(builder, languageTag)
 		builder.WriteRune(':')
 		a.appendEncodedString(builder, content)
 	}
 	builder.WriteString("\n};\n")
 }
 func (a *ServerSettingsApi) appendBooleanSetting(builder *strings.Builder, key string, value bool) {
 	builder.WriteString(ezbookkeepingServerSettingsGlobalVariableFullName)
 	builder.WriteString("[")
 	a.appendEncodedString(builder, key)
 	builder.WriteString("]=")
 	if value {
 		builder.WriteRune('1')
 	} else {
 		builder.WriteRune('0')
 	}
 	builder.WriteString(";\n")
 }
 func (a *ServerSettingsApi) appendIntegerSetting(builder *strings.Builder, key string, value int) {
 	builder.WriteString(ezbookkeepingServerSettingsGlobalVariableFullName)
 	builder.WriteString("[")
 	a.appendEncodedString(builder, key)
 	builder.WriteString("]=")
 	builder.WriteString(utils.IntToString(value))
 	builder.WriteString(";\n")
 }
 func (a *ServerSettingsApi) appendEncodedString(builder *strings.Builder, content string) {
 	builder.WriteRune('\'')
 	runes := []rune(content)
 	for i := 0; i < len(runes); i++ {
 		switch runes[i] {
 		case '\\':
 			builder.WriteRune('\\')
 			builder.WriteRune('\\')
 		case '\'':
 			builder.WriteRune('\\')
 			builder.WriteRune('\'')
 		case '\n':
 			builder.WriteRune('\\')
 			builder.WriteRune('n')
 		case '\r':
 			builder.WriteRune('\\')
 			builder.WriteRune('r')
 		case '\t':
 			builder.WriteRune('\\')
 			builder.WriteRune('t')
 		case '\f':
 			builder.WriteRune('\\')
 			builder.WriteRune('f')
 		case '\b':
 			builder.WriteRune('\\')
 			builder.WriteRune('b')
 		default:
 			builder.WriteRune(runes[i])
 		}
 	}
 	builder.WriteRune('\'')
 }
@@ -0,0 +1,28 @@
 package api
 import (
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 )
 // SystemsApi represents system api
 type SystemsApi struct{}
 // Initialize a system api singleton instance
 var (
 	Systems = &SystemsApi{}
 )
 // VersionHandler returns the server version and commit hash
 func (a *SystemsApi) VersionHandler(c *core.WebContext) (any, *errs.Error) {
 	result := make(map[string]string)
 	result["version"] = core.Version
 	result["commitHash"] = core.CommitHash
 	if core.BuildTime != "" {
 		result["buildTime"] = core.BuildTime
 	}
 	return result, nil
 }
@@ -20,6 +20,7 @@ type TokensApi struct {
 	ApiWithUserInfo
 	tokens               *services.TokenService
 	users                *services.UserService
 	userAppCloudSettings *services.UserApplicationCloudSettingsService
 }
 // Initialize a token api singleton instance
@@ -38,13 +39,14 @@ var (
 		},
 		tokens:               services.Tokens,
 		users:                services.Users,
 		userAppCloudSettings: services.UserApplicationCloudSettings,
 	}
 )
 // TokenListHandler returns available token list of current user
 func (a *TokensApi) TokenListHandler(c *core.WebContext) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
-	tokens, err := a.tokens.GetAllUnexpiredNormalTokensByUid(c, uid)
+	tokens, err := a.tokens.GetAllUnexpiredNormalAndMCPTokensByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[tokens.TokenListHandler] failed to get all tokens for user \"uid:%d\", because %s", uid, err.Error())
@@ -67,6 +69,12 @@ func (a *TokensApi) TokenListHandler(c *core.WebContext) (any, *errs.Error) {
 			tokenResp.IsCurrent = true
 		}
 		if token.TokenType == core.USER_TOKEN_TYPE_API && token.UserAgent != core.TokenUserAgentCreatedViaCli {
 			tokenResp.UserAgent = core.TokenUserAgentForAPI
 		} else if token.TokenType == core.USER_TOKEN_TYPE_MCP && token.UserAgent != core.TokenUserAgentCreatedViaCli {
 			tokenResp.UserAgent = core.TokenUserAgentForMCP
 		}
 		tokenResps[i] = tokenResp
 	}
@@ -75,9 +83,109 @@ func (a *TokensApi) TokenListHandler(c *core.WebContext) (any, *errs.Error) {
 	return tokenResps, nil
 }
 // TokenGenerateAPIHandler generates a new API token for current user
 func (a *TokensApi) TokenGenerateAPIHandler(c *core.WebContext) (any, *errs.Error) {
 	if !a.CurrentConfig().EnableAPIToken {
 		return nil, errs.ErrAPITokenNotEnabled
 	}
 	var generateAPITokenReq models.TokenGenerateAPIRequest
 	err := c.ShouldBindJSON(&generateAPITokenReq)
 	if err != nil {
 		log.Warnf(c, "[tokens.TokenGenerateAPIHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Warnf(c, "[tokens.TokenGenerateAPIHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_GENERATE_API_TOKEN) {
 		return false, errs.ErrNotPermittedToPerformThisAction
 	}
 	if !a.users.IsPasswordEqualsUserPassword(generateAPITokenReq.Password, user) {
 		return nil, errs.ErrUserPasswordWrong
 	}
 	token, claims, err := a.tokens.CreateAPIToken(c, user, generateAPITokenReq.ExpiredInSeconds)
 	if err != nil {
 		log.Errorf(c, "[tokens.TokenGenerateAPIHandler] failed to create api token for user \"uid:%d\", because %s", user.Uid, err.Error())
 		return nil, errs.Or(err, errs.ErrTokenGenerating)
 	}
 	log.Infof(c, "[tokens.TokenGenerateAPIHandler] user \"uid:%d\" has generated api token, new token will be expired at %d", user.Uid, claims.ExpiresAt)
 	generateAPITokenResp := &models.TokenGenerateAPIResponse{
 		Token:      token,
 		APIBaseUrl: a.CurrentConfig().RootUrl + "api",
 	}
 	return generateAPITokenResp, nil
 }
 // TokenGenerateMCPHandler generates a new MCP token for current user
 func (a *TokensApi) TokenGenerateMCPHandler(c *core.WebContext) (any, *errs.Error) {
 	if !a.CurrentConfig().EnableMCPServer {
 		return nil, errs.ErrMCPServerNotEnabled
 	}
 	var generateMCPTokenReq models.TokenGenerateMCPRequest
 	err := c.ShouldBindJSON(&generateMCPTokenReq)
 	if err != nil {
 		log.Warnf(c, "[tokens.TokenGenerateMCPHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		log.Warnf(c, "[tokens.TokenGenerateMCPHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_MCP_ACCESS) {
 		return false, errs.ErrNotPermittedToPerformThisAction
 	}
 	if !a.users.IsPasswordEqualsUserPassword(generateMCPTokenReq.Password, user) {
 		return nil, errs.ErrUserPasswordWrong
 	}
 	token, claims, err := a.tokens.CreateMCPToken(c, user, generateMCPTokenReq.ExpiredInSeconds)
 	if err != nil {
 		log.Errorf(c, "[tokens.TokenGenerateMCPHandler] failed to create mcp token for user \"uid:%d\", because %s", user.Uid, err.Error())
 		return nil, errs.Or(err, errs.ErrTokenGenerating)
 	}
 	log.Infof(c, "[tokens.TokenGenerateMCPHandler] user \"uid:%d\" has generated mcp token, new token will be expired at %d", user.Uid, claims.ExpiresAt)
 	generateMCPTokenResp := &models.TokenGenerateMCPResponse{
 		Token:  token,
 		MCPUrl: a.CurrentConfig().RootUrl + "mcp",
 	}
 	return generateMCPTokenResp, nil
 }
 // TokenRevokeCurrentHandler revokes current token of current user
 func (a *TokensApi) TokenRevokeCurrentHandler(c *core.WebContext) (any, *errs.Error) {
-	_, claims, err := a.tokens.ParseTokenByHeader(c)
+	tokenString := c.GetTokenStringFromHeader()
 	if tokenString == "" {
 		return false, errs.ErrTokenIsEmpty
 	}
 	_, claims, _, err := a.tokens.ParseToken(c, tokenString)
 	if err != nil {
 		return nil, errs.Or(err, errs.NewIncompleteOrIncorrectSubmissionError(err))
@@ -100,11 +208,11 @@ func (a *TokensApi) TokenRevokeCurrentHandler(c *core.WebContext) (any, *errs.Er
 	err = a.tokens.DeleteToken(c, tokenRecord)
 	if err != nil {
-		log.Errorf(c, "[token.TokenRevokeCurrentHandler] failed to revoke token \"id:%s\" for user \"uid:%d\", because %s", tokenId, claims.Uid, err.Error())
+		log.Errorf(c, "[tokens.TokenRevokeCurrentHandler] failed to revoke token \"id:%s\" for user \"uid:%d\", because %s", tokenId, claims.Uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-	log.Infof(c, "[token.TokenRevokeCurrentHandler] user \"uid:%d\" has revoked token \"id:%s\"", claims.Uid, tokenId)
+	log.Infof(c, "[tokens.TokenRevokeCurrentHandler] user \"uid:%d\" has revoked token \"id:%s\"", claims.Uid, tokenId)
 	return true, nil
 }
@@ -122,7 +230,7 @@ func (a *TokensApi) TokenRevokeHandler(c *core.WebContext) (any, *errs.Error) {
 	if err != nil {
 		if !errs.IsCustomError(err) {
-			log.Errorf(c, "[token.TokenRevokeHandler] failed to parse token \"id:%s\", because %s", tokenRevokeReq.TokenId, err.Error())
+			log.Errorf(c, "[tokens.TokenRevokeHandler] failed to parse token \"id:%s\", because %s", tokenRevokeReq.TokenId, err.Error())
 		}
 		return nil, errs.Or(err, errs.ErrInvalidTokenId)
@@ -131,18 +239,34 @@ func (a *TokensApi) TokenRevokeHandler(c *core.WebContext) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	if tokenRecord.Uid != uid {
-		log.Warnf(c, "[token.TokenRevokeHandler] token \"id:%s\" is not owned by user \"uid:%d\"", tokenRevokeReq.TokenId, uid)
+		log.Warnf(c, "[tokens.TokenRevokeHandler] token \"id:%s\" is not owned by user \"uid:%d\"", tokenRevokeReq.TokenId, uid)
 		return nil, errs.ErrInvalidTokenId
 	}
 	if utils.Int64ToString(tokenRecord.UserTokenId) != c.GetTokenClaims().UserTokenId || tokenRecord.CreatedUnixTime != c.GetTokenClaims().IssuedAt {
 		user, err := a.users.GetUserById(c, uid)
 		if err != nil {
 			if !errs.IsCustomError(err) {
 				log.Errorf(c, "[tokens.TokenRevokeHandler] failed to get user, because %s", err.Error())
 			}
 			return nil, errs.ErrUserNotFound
 		}
 		if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_REVOKE_OTHER_SESSION) {
 			return nil, errs.ErrNotPermittedToPerformThisAction
 		}
 	}
 	err = a.tokens.DeleteToken(c, tokenRecord)
 	if err != nil {
-		log.Errorf(c, "[token.TokenRevokeHandler] failed to revoke token \"id:%s\" for user \"uid:%d\", because %s", tokenRevokeReq.TokenId, uid, err.Error())
+		log.Errorf(c, "[tokens.TokenRevokeHandler] failed to revoke token \"id:%s\" for user \"uid:%d\", because %s", tokenRevokeReq.TokenId, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-	log.Infof(c, "[token.TokenRevokeHandler] user \"uid:%d\" has revoked token \"id:%s\"", uid, tokenRevokeReq.TokenId)
+	log.Infof(c, "[tokens.TokenRevokeHandler] user \"uid:%d\" has revoked token \"id:%s\"", uid, tokenRevokeReq.TokenId)
 	return true, nil
 }
@@ -170,14 +294,32 @@ func (a *TokensApi) TokenRevokeAllHandler(c *core.WebContext) (any, *errs.Error)
 	tokens = append(tokens[:currentTokenIndex], tokens[currentTokenIndex+1:]...)
 	if len(tokens) < 1 {
 		return nil, errs.ErrTokenRecordNotFound
 	}
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		if !errs.IsCustomError(err) {
 			log.Errorf(c, "[tokens.TokenRevokeAllHandler] failed to get user, because %s", err.Error())
 		}
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_REVOKE_OTHER_SESSION) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	err = a.tokens.DeleteTokens(c, uid, tokens)
 	if err != nil {
-		log.Errorf(c, "[token.TokenRevokeAllHandler] failed to revoke all tokens for user \"uid:%d\", because %s", uid, err.Error())
+		log.Errorf(c, "[tokens.TokenRevokeAllHandler] failed to revoke all tokens for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-	log.Infof(c, "[token.TokenRevokeAllHandler] user \"uid:%d\" has revoked all tokens", uid)
+	log.Infof(c, "[tokens.TokenRevokeAllHandler] user \"uid:%d\" has revoked all tokens", uid)
 	return true, nil
 }
@@ -187,7 +329,7 @@ func (a *TokensApi) TokenRefreshHandler(c *core.WebContext) (any, *errs.Error) {
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
-		log.Warnf(c, "[token.TokenRefreshHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
+		log.Warnf(c, "[tokens.TokenRefreshHandler] failed to get user \"uid:%d\" info, because %s", uid, err.Error())
 		return nil, errs.ErrUserNotFound
 	}
@@ -195,7 +337,7 @@ func (a *TokensApi) TokenRefreshHandler(c *core.WebContext) (any, *errs.Error) {
 	oldTokenClaims := c.GetTokenClaims()
 	if now-oldTokenClaims.IssuedAt < int64(a.CurrentConfig().TokenMinRefreshInterval) {
-		log.Infof(c, "[token.TokenRefreshHandler] token of user \"uid:%d\" does not need to be refreshed", uid)
+		log.Infof(c, "[tokens.TokenRefreshHandler] token of user \"uid:%d\" does not need to be refreshed", uid)
 		userTokenId, err := utils.StringToInt64(oldTokenClaims.UserTokenId)
@@ -213,12 +355,22 @@ func (a *TokensApi) TokenRefreshHandler(c *core.WebContext) (any, *errs.Error) {
 			err = a.tokens.UpdateTokenLastSeen(c, tokenRecord)
 			if err != nil {
-				log.Warnf(c, "[token.TokenRefreshHandler] failed to update last seen of token \"id:%s\" for user \"uid:%d\", because %s", tokenId, uid, err.Error())
+				log.Warnf(c, "[tokens.TokenRefreshHandler] failed to update last seen of token \"id:%s\" for user \"uid:%d\", because %s", tokenId, uid, err.Error())
 			}
 		}
 		userApplicationCloudSettings, err := a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, user.Uid)
 		var applicationCloudSettingSlice *models.ApplicationCloudSettingSlice = nil
 		if err != nil {
 			log.Warnf(c, "[tokens.TokenRefreshHandler] failed to get latest user application cloud settings for user \"uid:%d\", because %s", user.Uid, err.Error())
 		} else if userApplicationCloudSettings != nil && len(userApplicationCloudSettings.Settings) > 0 {
 			applicationCloudSettingSlice = &userApplicationCloudSettings.Settings
 		}
 		refreshResp := &models.TokenRefreshResponse{
 			User:                     a.GetUserBasicInfo(user),
 			ApplicationCloudSettings: applicationCloudSettingSlice,
 			NotificationContent:      a.GetAfterOpenNotificationContent(user.Language, c.GetClientLocale()),
 		}
@@ -228,7 +380,7 @@ func (a *TokensApi) TokenRefreshHandler(c *core.WebContext) (any, *errs.Error) {
 	token, claims, err := a.tokens.CreateToken(c, user)
 	if err != nil {
-		log.Errorf(c, "[token.TokenRefreshHandler] failed to create token for user \"uid:%d\", because %s", user.Uid, err.Error())
+		log.Errorf(c, "[tokens.TokenRefreshHandler] failed to create token for user \"uid:%d\", because %s", user.Uid, err.Error())
 		return nil, errs.Or(err, errs.ErrTokenGenerating)
 	}
@@ -241,13 +393,24 @@ func (a *TokensApi) TokenRefreshHandler(c *core.WebContext) (any, *errs.Error) {
 	c.SetTextualToken(token)
 	c.SetTokenClaims(claims)
 	c.SetTokenContext("")
-	log.Infof(c, "[token.TokenRefreshHandler] user \"uid:%d\" token refreshed, new token will be expired at %d", user.Uid, claims.ExpiresAt)
+	userApplicationCloudSettings, err := a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, user.Uid)
 	var applicationCloudSettingSlice *models.ApplicationCloudSettingSlice = nil
 	if err != nil {
 		log.Warnf(c, "[tokens.TokenRefreshHandler] failed to get latest user application cloud settings for user \"uid:%d\", because %s", user.Uid, err.Error())
 	} else if userApplicationCloudSettings != nil && len(userApplicationCloudSettings.Settings) > 0 {
 		applicationCloudSettingSlice = &userApplicationCloudSettings.Settings
 	}
 	log.Infof(c, "[tokens.TokenRefreshHandler] user \"uid:%d\" token refreshed, new token will be expired at %d", user.Uid, claims.ExpiresAt)
 	refreshResp := &models.TokenRefreshResponse{
 		NewToken:                 token,
 		OldTokenId:               a.tokens.GenerateTokenId(oldTokenRecord),
 		User:                     a.GetUserBasicInfo(user),
 		ApplicationCloudSettings: applicationCloudSettingSlice,
 		NotificationContent:      a.GetAfterOpenNotificationContent(user.Language, c.GetClientLocale()),
 	}
@@ -29,6 +29,9 @@ var (
 			container: settings.Container,
 		},
 		ApiUsingDuplicateChecker: ApiUsingDuplicateChecker{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
 			},
 			container: duplicatechecker.Container,
 		},
 		categories: services.TransactionCategories,
@@ -161,7 +164,7 @@ func (a *TransactionCategoriesApi) CategoryCreateHandler(c *core.WebContext) (an
 	log.Infof(c, "[transaction_categories.CategoryCreateHandler] user \"uid:%d\" has created a new category \"id:%d\" successfully", uid, category.CategoryId)
-	a.SetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_CATEGORY, uid, categoryCreateReq.ClientSessionId, utils.Int64ToString(category.CategoryId))
+	a.SetSubmissionRemarkIfEnable(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_CATEGORY, uid, categoryCreateReq.ClientSessionId, utils.Int64ToString(category.CategoryId))
 	categoryResp := category.ToTransactionCategoryInfoResponse()
 	return categoryResp, nil
@@ -211,6 +214,7 @@ func (a *TransactionCategoriesApi) CategoryModifyHandler(c *core.WebContext) (an
 		Uid:              uid,
 		ParentCategoryId: categoryModifyReq.ParentId,
 		Name:             categoryModifyReq.Name,
 		DisplayOrder:     category.DisplayOrder,
 		Icon:             categoryModifyReq.Icon,
 		Color:            categoryModifyReq.Color,
 		Comment:          categoryModifyReq.Comment,
@@ -226,11 +230,11 @@ func (a *TransactionCategoriesApi) CategoryModifyHandler(c *core.WebContext) (an
 		return nil, errs.ErrNothingWillBeUpdated
 	}
-	if category.ParentCategoryId == 0 && newCategory.ParentCategoryId != 0 {
+	if category.ParentCategoryId == models.LevelOneTransactionCategoryParentId && newCategory.ParentCategoryId != models.LevelOneTransactionCategoryParentId {
 		return nil, errs.Or(err, errs.ErrNotAllowChangePrimaryTransactionCategoryToSecondary)
 	}
-	if category.ParentCategoryId != 0 && newCategory.ParentCategoryId == 0 {
+	if category.ParentCategoryId != models.LevelOneTransactionCategoryParentId && newCategory.ParentCategoryId == models.LevelOneTransactionCategoryParentId {
 		return nil, errs.Or(err, errs.ErrNotAllowChangeSecondaryTransactionCategoryToPrimary)
 	}
@@ -253,9 +257,18 @@ func (a *TransactionCategoriesApi) CategoryModifyHandler(c *core.WebContext) (an
 			return nil, errs.Or(err, errs.ErrNotAllowChangePrimaryTransactionType)
 		}
-		if toPrimaryCategory.ParentCategoryId != 0 {
+		if toPrimaryCategory.ParentCategoryId != models.LevelOneTransactionCategoryParentId {
 			return nil, errs.Or(err, errs.ErrNotAllowUseSecondaryTransactionAsPrimaryCategory)
 		}
 		maxOrderId, err := a.categories.GetMaxSubCategoryDisplayOrder(c, uid, category.Type, newCategory.ParentCategoryId)
 		if err != nil {
 			log.Errorf(c, "[transaction_categories.CategoryModifyHandler] failed to get max display order for user \"uid:%d\", because %s", uid, err.Error())
 			return nil, errs.Or(err, errs.ErrOperationFailed)
 		}
 		newCategory.DisplayOrder = maxOrderId + 1
 	}
 	err = a.categories.ModifyCategory(c, newCategory)
@@ -268,7 +281,6 @@ func (a *TransactionCategoriesApi) CategoryModifyHandler(c *core.WebContext) (an
 	log.Infof(c, "[transaction_categories.CategoryModifyHandler] user \"uid:%d\" has updated category \"id:%d\" successfully", uid, categoryModifyReq.Id)
 	newCategory.Type = category.Type
 	newCategory.DisplayOrder = category.DisplayOrder
 	categoryResp := newCategory.ToTransactionCategoryInfoResponse()
 	return categoryResp, nil
@@ -430,7 +442,7 @@ func (a *TransactionCategoriesApi) getTransactionCategoryListByTypeResponse(cate
 	for i := 0; i < len(categoryResps); i++ {
 		categoryResp := categoryResps[i]
-		if categoryResp.ParentId <= models.LevelOneTransactionParentId {
+		if categoryResp.ParentId <= models.LevelOneTransactionCategoryParentId {
 			continue
 		}
@@ -446,7 +458,7 @@ func (a *TransactionCategoriesApi) getTransactionCategoryListByTypeResponse(cate
 	finalCategoryResps := make(models.TransactionCategoryInfoResponseSlice, 0)
 	for i := 0; i < len(categoryResps); i++ {
-		if parentId <= 0 && categoryResps[i].ParentId == models.LevelOneTransactionParentId {
+		if parentId <= 0 && categoryResps[i].ParentId == models.LevelOneTransactionCategoryParentId {
 			sort.Sort(categoryResps[i].SubCategories)
 			finalCategoryResps = append(finalCategoryResps, categoryResps[i])
 		} else if parentId > 0 && categoryResps[i].ParentId == parentId {
@@ -26,6 +26,9 @@ var (
 			container: settings.Container,
 		},
 		ApiUsingDuplicateChecker: ApiUsingDuplicateChecker{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
 			},
 			container: duplicatechecker.Container,
 		},
 		users:    services.Users,
@@ -112,7 +115,7 @@ func (a *TransactionPicturesApi) TransactionPictureUploadHandler(c *core.WebCont
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
-	a.SetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_PICTURE, uid, clientSessionId, utils.Int64ToString(pictureInfo.PictureId))
+	a.SetSubmissionRemarkIfEnable(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_PICTURE, uid, clientSessionId, utils.Int64ToString(pictureInfo.PictureId))
 	pictureInfoResp := a.GetTransactionPictureInfoResponse(pictureInfo)
 	return pictureInfoResp, nil
@@ -0,0 +1,210 @@
 package api
 import (
 	"sort"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 )
 // TransactionTagGroupsApi represents transaction tag group api
 type TransactionTagGroupsApi struct {
 	tagGroups *services.TransactionTagGroupService
 }
 // Initialize a transaction tag group api singleton instance
 var (
 	TransactionTagGroups = &TransactionTagGroupsApi{
 		tagGroups: services.TransactionTagGroups,
 	}
 )
 // TagGroupListHandler returns transaction tag group list of current user
 func (a *TransactionTagGroupsApi) TagGroupListHandler(c *core.WebContext) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	tagGroups, err := a.tagGroups.GetAllTagGroupsByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupListHandler] failed to get tag groups for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	tagGroupResps := make(models.TransactionTagGroupInfoResponseSlice, len(tagGroups))
 	for i := 0; i < len(tagGroups); i++ {
 		tagGroupResps[i] = tagGroups[i].ToTransactionTagGroupInfoResponse()
 	}
 	sort.Sort(tagGroupResps)
 	return tagGroupResps, nil
 }
 // TagGroupGetHandler returns one specific transaction tag group of current user
 func (a *TransactionTagGroupsApi) TagGroupGetHandler(c *core.WebContext) (any, *errs.Error) {
 	var tagGroupGetReq models.TransactionTagGroupGetRequest
 	err := c.ShouldBindQuery(&tagGroupGetReq)
 	if err != nil {
 		log.Warnf(c, "[transaction_tag_groups.TagGroupGetHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	tagGroup, err := a.tagGroups.GetTagGroupByTagGroupId(c, uid, tagGroupGetReq.Id)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupGetHandler] failed to get tag group \"id:%d\" for user \"uid:%d\", because %s", tagGroupGetReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	tagGroupResp := tagGroup.ToTransactionTagGroupInfoResponse()
 	return tagGroupResp, nil
 }
 // TagGroupCreateHandler saves a new transaction tag group by request parameters for current user
 func (a *TransactionTagGroupsApi) TagGroupCreateHandler(c *core.WebContext) (any, *errs.Error) {
 	var tagGroupCreateReq models.TransactionTagGroupCreateRequest
 	err := c.ShouldBindJSON(&tagGroupCreateReq)
 	if err != nil {
 		log.Warnf(c, "[transaction_tag_groups.TagGroupCreateHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	maxOrderId, err := a.tagGroups.GetMaxDisplayOrder(c, uid)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupCreateHandler] failed to get max display order for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	tagGroup := a.createNewTagGroupModel(uid, &tagGroupCreateReq, maxOrderId+1)
 	err = a.tagGroups.CreateTagGroup(c, tagGroup)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupCreateHandler] failed to create tag group \"id:%d\" for user \"uid:%d\", because %s", tagGroup.TagGroupId, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[transaction_tag_groups.TagGroupCreateHandler] user \"uid:%d\" has created a new tag group \"id:%d\" successfully", uid, tagGroup.TagGroupId)
 	tagGroupResp := tagGroup.ToTransactionTagGroupInfoResponse()
 	return tagGroupResp, nil
 }
 // TagGroupModifyHandler saves an existed transaction tag group by request parameters for current user
 func (a *TransactionTagGroupsApi) TagGroupModifyHandler(c *core.WebContext) (any, *errs.Error) {
 	var tagGroupModifyReq models.TransactionTagGroupModifyRequest
 	err := c.ShouldBindJSON(&tagGroupModifyReq)
 	if err != nil {
 		log.Warnf(c, "[transaction_tag_groups.TagGroupModifyHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	tagGroup, err := a.tagGroups.GetTagGroupByTagGroupId(c, uid, tagGroupModifyReq.Id)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupModifyHandler] failed to get tag group \"id:%d\" for user \"uid:%d\", because %s", tagGroupModifyReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	newTagGroup := &models.TransactionTagGroup{
 		TagGroupId: tagGroup.TagGroupId,
 		Uid:        uid,
 		Name:       tagGroupModifyReq.Name,
 	}
 	if newTagGroup.Name == tagGroup.Name {
 		return nil, errs.ErrNothingWillBeUpdated
 	}
 	err = a.tagGroups.ModifyTagGroup(c, newTagGroup)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupModifyHandler] failed to update tag group \"id:%d\" for user \"uid:%d\", because %s", tagGroupModifyReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[transaction_tag_groups.TagGroupModifyHandler] user \"uid:%d\" has updated tag group \"id:%d\" successfully", uid, tagGroupModifyReq.Id)
 	tagGroup.Name = newTagGroup.Name
 	tagGroupResp := tagGroup.ToTransactionTagGroupInfoResponse()
 	return tagGroupResp, nil
 }
 // TagGroupMoveHandler moves display order of existed transaction tag groups by request parameters for current user
 func (a *TransactionTagGroupsApi) TagGroupMoveHandler(c *core.WebContext) (any, *errs.Error) {
 	var tagGroupMoveReq models.TransactionTagGroupMoveRequest
 	err := c.ShouldBindJSON(&tagGroupMoveReq)
 	if err != nil {
 		log.Warnf(c, "[transaction_tag_groups.TagGroupMoveHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	tagGroups := make([]*models.TransactionTagGroup, len(tagGroupMoveReq.NewDisplayOrders))
 	for i := 0; i < len(tagGroupMoveReq.NewDisplayOrders); i++ {
 		newDisplayOrder := tagGroupMoveReq.NewDisplayOrders[i]
 		tagGroup := &models.TransactionTagGroup{
 			Uid:          uid,
 			TagGroupId:   newDisplayOrder.Id,
 			DisplayOrder: newDisplayOrder.DisplayOrder,
 		}
 		tagGroups[i] = tagGroup
 	}
 	err = a.tagGroups.ModifyTagGroupDisplayOrders(c, uid, tagGroups)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupMoveHandler] failed to move tag groups for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[transaction_tag_groups.TagGroupMoveHandler] user \"uid:%d\" has moved tag groups", uid)
 	return true, nil
 }
 // TagGroupDeleteHandler deletes an existed transaction tag group by request parameters for current user
 func (a *TransactionTagGroupsApi) TagGroupDeleteHandler(c *core.WebContext) (any, *errs.Error) {
 	var tagGroupDeleteReq models.TransactionTagGroupDeleteRequest
 	err := c.ShouldBindJSON(&tagGroupDeleteReq)
 	if err != nil {
 		log.Warnf(c, "[transaction_tag_groups.TagGroupDeleteHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	err = a.tagGroups.DeleteTagGroup(c, uid, tagGroupDeleteReq.Id)
 	if err != nil {
 		log.Errorf(c, "[transaction_tag_groups.TagGroupDeleteHandler] failed to delete tag group \"id:%d\" for user \"uid:%d\", because %s", tagGroupDeleteReq.Id, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[transaction_tag_groups.TagGroupDeleteHandler] user \"uid:%d\" has deleted tag group \"id:%d\"", uid, tagGroupDeleteReq.Id)
 	return true, nil
 }
 func (a *TransactionTagGroupsApi) createNewTagGroupModel(uid int64, tagGroupCreateReq *models.TransactionTagGroupCreateRequest, order int32) *models.TransactionTagGroup {
 	return &models.TransactionTagGroup{
 		Uid:          uid,
 		Name:         tagGroupCreateReq.Name,
 		DisplayOrder: order,
 	}
 }
@@ -13,12 +13,14 @@ import (
 // TransactionTagsApi represents transaction tag api
 type TransactionTagsApi struct {
 	tags      *services.TransactionTagService
 	tagGroups *services.TransactionTagGroupService
 }
 // Initialize a transaction tag api singleton instance
 var (
 	TransactionTags = &TransactionTagsApi{
 		tags:      services.TransactionTags,
 		tagGroups: services.TransactionTagGroups,
 	}
 )
@@ -78,7 +80,21 @@ func (a *TransactionTagsApi) TagCreateHandler(c *core.WebContext) (any, *errs.Er
 	uid := c.GetCurrentUid()
-	maxOrderId, err := a.tags.GetMaxDisplayOrder(c, uid)
+	if tagCreateReq.GroupId > 0 {
 		tagGroup, err := a.tagGroups.GetTagGroupByTagGroupId(c, uid, tagCreateReq.GroupId)
 		if err != nil {
 			log.Errorf(c, "[transaction_tags.TagCreateHandler] failed to get tag group \"id:%d\" for user \"uid:%d\", because %s", tagCreateReq.GroupId, uid, err.Error())
 			return nil, errs.Or(err, errs.ErrOperationFailed)
 		}
 		if tagGroup == nil {
 			log.Warnf(c, "[transaction_tags.TagCreateHandler] the tag group \"id:%d\" does not exist for user \"uid:%d\"", tagCreateReq.GroupId, uid)
 			return nil, errs.ErrTransactionTagGroupNotFound
 		}
 	}
 	maxOrderId, err := a.tags.GetMaxDisplayOrder(c, uid, tagCreateReq.GroupId)
 	if err != nil {
 		log.Errorf(c, "[transaction_tags.TagCreateHandler] failed to get max display order for user \"uid:%d\", because %s", uid, err.Error())
@@ -101,6 +117,68 @@ func (a *TransactionTagsApi) TagCreateHandler(c *core.WebContext) (any, *errs.Er
 	return tagResp, nil
 }
 // TagCreateBatchHandler saves some new transaction tags by request parameters for current user
 func (a *TransactionTagsApi) TagCreateBatchHandler(c *core.WebContext) (any, *errs.Error) {
 	var tagCreateBatchReq models.TransactionTagCreateBatchRequest
 	err := c.ShouldBindJSON(&tagCreateBatchReq)
 	if err != nil {
 		log.Warnf(c, "[transaction_tags.TagCreateBatchHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	for i := 0; i < len(tagCreateBatchReq.Tags); i++ {
 		if tagCreateBatchReq.Tags[i].GroupId != tagCreateBatchReq.GroupId {
 			log.Warnf(c, "[transaction_tags.TagCreateBatchHandler] the group id \"%d\" of tag#%d is inconsistent with the batch group id \"%d\"", tagCreateBatchReq.Tags[i].GroupId, i, tagCreateBatchReq.GroupId)
 			return nil, errs.ErrTransactionTagGroupIdInvalid
 		}
 	}
 	uid := c.GetCurrentUid()
 	if tagCreateBatchReq.GroupId > 0 {
 		tagGroup, err := a.tagGroups.GetTagGroupByTagGroupId(c, uid, tagCreateBatchReq.GroupId)
 		if err != nil {
 			log.Errorf(c, "[transaction_tags.TagCreateBatchHandler] failed to get tag group \"id:%d\" for user \"uid:%d\", because %s", tagCreateBatchReq.GroupId, uid, err.Error())
 			return nil, errs.Or(err, errs.ErrOperationFailed)
 		}
 		if tagGroup == nil {
 			log.Warnf(c, "[transaction_tags.TagCreateBatchHandler] the tag group \"id:%d\" does not exist for user \"uid:%d\"", tagCreateBatchReq.GroupId, uid)
 			return nil, errs.ErrTransactionTagGroupNotFound
 		}
 	}
 	maxOrderId, err := a.tags.GetMaxDisplayOrder(c, uid, tagCreateBatchReq.GroupId)
 	if err != nil {
 		log.Errorf(c, "[transaction_tags.TagCreateBatchHandler] failed to get max display order for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	tags := a.createNewTagModels(uid, &tagCreateBatchReq, maxOrderId+1)
 	err = a.tags.CreateTags(c, uid, tags, tagCreateBatchReq.SkipExists)
 	if err != nil {
 		log.Errorf(c, "[transaction_tags.TagCreateBatchHandler] failed to create tags for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	log.Infof(c, "[transaction_tags.TagCreateBatchHandler] user \"uid:%d\" has created tags successfully", uid)
 	tagResps := make(models.TransactionTagInfoResponseSlice, len(tags))
 	for i := 0; i < len(tags); i++ {
 		tagResps[i] = tags[i].ToTransactionTagInfoResponse()
 	}
 	sort.Sort(tagResps)
 	return tagResps, nil
 }
 // TagModifyHandler saves an existed transaction tag by request parameters for current user
 func (a *TransactionTagsApi) TagModifyHandler(c *core.WebContext) (any, *errs.Error) {
 	var tagModifyReq models.TransactionTagModifyRequest
@@ -119,17 +197,46 @@ func (a *TransactionTagsApi) TagModifyHandler(c *core.WebContext) (any, *errs.Er
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	if tagModifyReq.GroupId != tag.TagGroupId && tagModifyReq.GroupId > 0 {
 		tagGroup, err := a.tagGroups.GetTagGroupByTagGroupId(c, uid, tagModifyReq.GroupId)
 		if err != nil {
 			log.Errorf(c, "[transaction_tags.TagModifyHandler] failed to get tag group \"id:%d\" for user \"uid:%d\", because %s", tagModifyReq.GroupId, uid, err.Error())
 			return nil, errs.Or(err, errs.ErrOperationFailed)
 		}
 		if tagGroup == nil {
 			log.Warnf(c, "[transaction_tags.TagModifyHandler] the tag group \"id:%d\" does not exist for user \"uid:%d\"", tagModifyReq.GroupId, uid)
 			return nil, errs.ErrTransactionTagGroupNotFound
 		}
 	}
 	newTag := &models.TransactionTag{
 		TagId:        tag.TagId,
 		Uid:          uid,
 		Name:         tagModifyReq.Name,
 		TagGroupId:   tagModifyReq.GroupId,
 		DisplayOrder: tag.DisplayOrder,
 	}
-	if newTag.Name == tag.Name {
+	tagNameChanged := newTag.Name != tag.Name
 	if !tagNameChanged && newTag.TagGroupId == tag.TagGroupId {
 		return nil, errs.ErrNothingWillBeUpdated
 	}
-	err = a.tags.ModifyTag(c, newTag)
+	if newTag.TagGroupId != tag.TagGroupId {
 		maxOrderId, err := a.tags.GetMaxDisplayOrder(c, uid, newTag.TagGroupId)
 		if err != nil {
 			log.Errorf(c, "[transaction_tags.TagModifyHandler] failed to get max display order for user \"uid:%d\", because %s", uid, err.Error())
 			return nil, errs.Or(err, errs.ErrOperationFailed)
 		}
 		newTag.DisplayOrder = maxOrderId + 1
 	}
 	err = a.tags.ModifyTag(c, newTag, tagNameChanged)
 	if err != nil {
 		log.Errorf(c, "[transaction_tags.TagModifyHandler] failed to update tag \"id:%d\" for user \"uid:%d\", because %s", tagModifyReq.Id, uid, err.Error())
@@ -139,6 +246,8 @@ func (a *TransactionTagsApi) TagModifyHandler(c *core.WebContext) (any, *errs.Er
 	log.Infof(c, "[transaction_tags.TagModifyHandler] user \"uid:%d\" has updated tag \"id:%d\" successfully", uid, tagModifyReq.Id)
 	tag.Name = newTag.Name
 	tag.TagGroupId = newTag.TagGroupId
 	tag.DisplayOrder = newTag.DisplayOrder
 	tagResp := tag.ToTransactionTagInfoResponse()
 	return tagResp, nil
@@ -227,6 +336,20 @@ func (a *TransactionTagsApi) createNewTagModel(uid int64, tagCreateReq *models.T
 	return &models.TransactionTag{
 		Uid:          uid,
 		Name:         tagCreateReq.Name,
 		TagGroupId:   tagCreateReq.GroupId,
 		DisplayOrder: order,
 	}
 }
 func (a *TransactionTagsApi) createNewTagModels(uid int64, tagCreateBatchReq *models.TransactionTagCreateBatchRequest, order int32) []*models.TransactionTag {
 	tags := make([]*models.TransactionTag, len(tagCreateBatchReq.Tags))
 	for i := 0; i < len(tagCreateBatchReq.Tags); i++ {
 		tagCreateReq := tagCreateBatchReq.Tags[i]
 		tag := a.createNewTagModel(uid, tagCreateReq, order+int32(i))
 		tag.TagGroupId = tagCreateBatchReq.GroupId
 		tags[i] = tag
 	}
 	return tags
 }
@@ -31,6 +31,9 @@ var (
 			container: settings.Container,
 		},
 		ApiUsingDuplicateChecker: ApiUsingDuplicateChecker{
 			ApiUsingConfig: ApiUsingConfig{
 				container: settings.Container,
 			},
 			container: duplicatechecker.Container,
 		},
 		templates: services.TransactionTemplates,
@@ -156,7 +159,12 @@ func (a *TransactionTemplatesApi) TemplateCreateHandler(c *core.WebContext) (any
 	}
 	serverUtcOffset := utils.GetServerTimezoneOffsetMinutes()
-	template := a.createNewTemplateModel(uid, &templateCreateReq, maxOrderId+1)
+	template, err := a.createNewTemplateModel(uid, &templateCreateReq, maxOrderId+1)
 	if err != nil {
 		log.Errorf(c, "[transaction_templates.TemplateCreateHandler] failed to create new template for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	if a.CurrentConfig().EnableDuplicateSubmissionsCheck && templateCreateReq.ClientSessionId != "" {
 		found, remark := a.GetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_TEMPLATE, uid, templateCreateReq.ClientSessionId)
@@ -189,7 +197,7 @@ func (a *TransactionTemplatesApi) TemplateCreateHandler(c *core.WebContext) (any
 	log.Infof(c, "[transaction_templates.TemplateCreateHandler] user \"uid:%d\" has created a new template \"id:%d\" successfully", uid, template.TemplateId)
-	a.SetSubmissionRemark(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_TEMPLATE, uid, templateCreateReq.ClientSessionId, utils.Int64ToString(template.TemplateId))
+	a.SetSubmissionRemarkIfEnable(duplicatechecker.DUPLICATE_CHECKER_TYPE_NEW_TEMPLATE, uid, templateCreateReq.ClientSessionId, utils.Int64ToString(template.TemplateId))
 	templateResp := template.ToTransactionTemplateInfoResponse(serverUtcOffset)
 	return templateResp, nil
@@ -260,6 +268,34 @@ func (a *TransactionTemplatesApi) TemplateModifyHandler(c *core.WebContext) (any
 		newTemplate.ScheduledFrequency = a.getOrderedFrequencyValues(*templateModifyReq.ScheduledFrequency)
 		newTemplate.ScheduledAt = a.getUTCScheduledAt(*templateModifyReq.ScheduledTimezoneUtcOffset)
 		newTemplate.ScheduledTimezoneUtcOffset = *templateModifyReq.ScheduledTimezoneUtcOffset
 		if templateModifyReq.ScheduledStartDate != nil {
 			startTime, err := utils.ParseFromLongDateFirstTime(*templateModifyReq.ScheduledStartDate, *templateModifyReq.ScheduledTimezoneUtcOffset)
 			if err != nil {
 				log.Errorf(c, "[transaction_templates.TemplateModifyHandler] failed to parse scheduled start date for user \"uid:%d\", because %s", uid, err.Error())
 				return nil, errs.Or(err, errs.ErrOperationFailed)
 			}
 			startUnixTime := startTime.Unix()
 			newTemplate.ScheduledStartTime = &startUnixTime
 		}
 		if templateModifyReq.ScheduledEndDate != nil {
 			endTime, err := utils.ParseFromLongDateLastTime(*templateModifyReq.ScheduledEndDate, *templateModifyReq.ScheduledTimezoneUtcOffset)
 			if err != nil {
 				log.Errorf(c, "[transaction_templates.TemplateModifyHandler] failed to parse scheduled end date for user \"uid:%d\", because %s", uid, err.Error())
 				return nil, errs.Or(err, errs.ErrOperationFailed)
 			}
 			endUnixTime := endTime.Unix()
 			newTemplate.ScheduledEndTime = &endUnixTime
 		}
 		if newTemplate.ScheduledStartTime != nil && newTemplate.ScheduledEndTime != nil && *newTemplate.ScheduledStartTime > *newTemplate.ScheduledEndTime {
 			return nil, errs.ErrScheduledTransactionTemplateStartDataLaterThanEndDate
 		}
 	}
 	if newTemplate.Name == template.Name &&
@@ -277,6 +313,8 @@ func (a *TransactionTemplatesApi) TemplateModifyHandler(c *core.WebContext) (any
 		} else if template.TemplateType == models.TRANSACTION_TEMPLATE_TYPE_SCHEDULE {
 			if newTemplate.ScheduledFrequencyType == template.ScheduledFrequencyType &&
 				newTemplate.ScheduledFrequency == template.ScheduledFrequency &&
 				newTemplate.ScheduledStartTime == template.ScheduledStartTime &&
 				newTemplate.ScheduledEndTime == template.ScheduledEndTime &&
 				newTemplate.ScheduledAt == template.ScheduledAt &&
 				newTemplate.ScheduledTimezoneUtcOffset == template.ScheduledTimezoneUtcOffset {
 				return nil, errs.ErrNothingWillBeUpdated
@@ -419,7 +457,7 @@ func (a *TransactionTemplatesApi) TemplateDeleteHandler(c *core.WebContext) (any
 	return true, nil
 }
-func (a *TransactionTemplatesApi) createNewTemplateModel(uid int64, templateCreateReq *models.TransactionTemplateCreateRequest, order int32) *models.TransactionTemplate {
+func (a *TransactionTemplatesApi) createNewTemplateModel(uid int64, templateCreateReq *models.TransactionTemplateCreateRequest, order int32) (*models.TransactionTemplate, error) {
 	template := &models.TransactionTemplate{
 		Uid:                  uid,
 		TemplateType:         templateCreateReq.TemplateType,
@@ -441,9 +479,35 @@ func (a *TransactionTemplatesApi) createNewTemplateModel(uid int64, templateCrea
 		template.ScheduledFrequency = a.getOrderedFrequencyValues(*templateCreateReq.ScheduledFrequency)
 		template.ScheduledAt = a.getUTCScheduledAt(*templateCreateReq.ScheduledTimezoneUtcOffset)
 		template.ScheduledTimezoneUtcOffset = *templateCreateReq.ScheduledTimezoneUtcOffset
 		if templateCreateReq.ScheduledStartDate != nil {
 			startTime, err := utils.ParseFromLongDateFirstTime(*templateCreateReq.ScheduledStartDate, *templateCreateReq.ScheduledTimezoneUtcOffset)
 			if err != nil {
 				return nil, err
 			}
-	return template
+			startUnixTime := startTime.Unix()
 			template.ScheduledStartTime = &startUnixTime
 		}
 		if templateCreateReq.ScheduledEndDate != nil {
 			endTime, err := utils.ParseFromLongDateLastTime(*templateCreateReq.ScheduledEndDate, *templateCreateReq.ScheduledTimezoneUtcOffset)
 			if err != nil {
 				return nil, err
 			}
 			endUnixTime := endTime.Unix()
 			template.ScheduledEndTime = &endUnixTime
 		}
 		if template.ScheduledStartTime != nil && template.ScheduledEndTime != nil && *template.ScheduledStartTime > *template.ScheduledEndTime {
 			return nil, errs.ErrScheduledTransactionTemplateStartDataLaterThanEndDate
 		}
 	}
 	return template, nil
 }
 func (a *TransactionTemplatesApi) getUTCScheduledAt(scheduledTimezoneUtcOffset int16) int16 {
@@ -81,7 +81,11 @@ func (a *TwoFactorAuthorizationsApi) TwoFactorEnableRequestHandler(c *core.WebCo
 		return nil, errs.ErrUserNotFound
 	}
-	key, err := a.twoFactorAuthorizations.GenerateTwoFactorSecret(c, user)
+	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_ENABLE_2FA) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	key, err := a.twoFactorAuthorizations.GenerateTwoFactorSecret(c, user, c.GetClientLocale())
 	if err != nil {
 		log.Errorf(c, "[twofactor_authorizations.TwoFactorEnableRequestHandler] failed to generate two-factor secret, because %s", err.Error())
@@ -141,6 +145,10 @@ func (a *TwoFactorAuthorizationsApi) TwoFactorEnableConfirmHandler(c *core.WebCo
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_ENABLE_2FA) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	twoFactorSetting := &models.TwoFactor{
 		Uid:    uid,
 		Secret: confirmReq.Secret,
@@ -197,6 +205,7 @@ func (a *TwoFactorAuthorizationsApi) TwoFactorEnableConfirmHandler(c *core.WebCo
 	c.SetTextualToken(token)
 	c.SetTokenClaims(claims)
 	c.SetTokenContext("")
 	log.Infof(c, "[twofactor_authorizations.TwoFactorEnableConfirmHandler] user \"uid:%d\" token refreshed, new token will be expired at %d", user.Uid, claims.ExpiresAt)
@@ -229,6 +238,10 @@ func (a *TwoFactorAuthorizationsApi) TwoFactorDisableHandler(c *core.WebContext)
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_DISABLE_2FA) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	if !a.users.IsPasswordEqualsUserPassword(disableReq.Password, user) {
 		return nil, errs.ErrUserPasswordWrong
 	}
@@ -0,0 +1,235 @@
 package api
 import (
 	"encoding/json"
 	"time"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 // UserApplicationCloudSettingsApi represents user application cloud settings api
 type UserApplicationCloudSettingsApi struct {
 	userAppCloudSettings *services.UserApplicationCloudSettingsService
 	users                *services.UserService
 }
 // Initialize a user application cloud settings api singleton instance
 var (
 	UserApplicationCloudSettings = &UserApplicationCloudSettingsApi{
 		userAppCloudSettings: services.UserApplicationCloudSettings,
 		users:                services.Users,
 	}
 )
 // ApplicationSettingsGetHandler returns application cloud settings of current user
 func (a *UserApplicationCloudSettingsApi) ApplicationSettingsGetHandler(c *core.WebContext) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	userApplicationCloudSettings, err := a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[user_app_cloud_settings.ApplicationSettingsGetHandler] failed to get latest user application cloud settings for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	if userApplicationCloudSettings == nil {
 		return false, nil
 	}
 	applicationCloudSettingSlice := userApplicationCloudSettings.Settings
 	if len(applicationCloudSettingSlice) < 1 {
 		return false, nil
 	}
 	return applicationCloudSettingSlice, nil
 }
 // ApplicationSettingsUpdateHandler updates user application cloud settings by request parameters for current user
 func (a *UserApplicationCloudSettingsApi) ApplicationSettingsUpdateHandler(c *core.WebContext) (any, *errs.Error) {
 	var userAppCloudSettingUpdateReq models.UserApplicationCloudSettingsUpdateRequest
 	err := c.ShouldBindJSON(&userAppCloudSettingUpdateReq)
 	if err != nil {
 		log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] parse request failed, because %s", err.Error())
 		return false, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		if !errs.IsCustomError(err) {
 			log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return false, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_SYNC_APPLICATION_SETTINGS) {
 		return false, errs.ErrNotPermittedToPerformThisAction
 	}
 	var userApplicationCloudSettings *models.UserApplicationCloudSetting
 	// Retry up to 3 times
 	for i := 0; i < 3; i++ {
 		userApplicationCloudSettings, err = a.userAppCloudSettings.GetUserApplicationCloudSettingsByUid(c, uid)
 		if err != nil {
 			log.Errorf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] failed to get latest user application cloud settings for user \"uid:%d\" (try count %d), because %s", uid, i+1, err.Error())
 			return false, errs.Or(err, errs.ErrOperationFailed)
 		}
 		oldApplicationCloudSettingsMap := make(map[string]models.ApplicationCloudSetting)
 		lastUpdateTime := int64(0)
 		if userApplicationCloudSettings != nil {
 			for _, setting := range userApplicationCloudSettings.Settings {
 				oldApplicationCloudSettingsMap[setting.SettingKey] = setting
 			}
 			lastUpdateTime = userApplicationCloudSettings.UpdatedUnixTime
 		}
 		// Check if the full update settings are the same as the existing settings
 		if userAppCloudSettingUpdateReq.FullUpdate {
 			if len(userAppCloudSettingUpdateReq.Settings) == len(oldApplicationCloudSettingsMap) {
 				needUpdate := false
 				for _, setting := range userAppCloudSettingUpdateReq.Settings {
 					oldSetting, exists := oldApplicationCloudSettingsMap[setting.SettingKey]
 					if !exists || oldSetting.SettingValue != setting.SettingValue {
 						needUpdate = true
 						break
 					}
 				}
 				if !needUpdate {
 					return false, errs.ErrNothingWillBeUpdated
 				}
 			}
 		} else { // Check if the partial update settings are the same as the existing settings or the settings to update are not set to sync
 			needUpdate := true
 			for _, setting := range userAppCloudSettingUpdateReq.Settings {
 				cloudSetting, exists := oldApplicationCloudSettingsMap[setting.SettingKey]
 				if !exists {
 					needUpdate = false
 					log.Infof(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user application cloud setting key \"%s\" is not set to sync (try count %d)", setting.SettingKey, i+1)
 				} else if cloudSetting.SettingValue == setting.SettingValue {
 					needUpdate = false
 					log.Infof(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user application cloud setting key \"%s\" value \"%s\" is not changed, no need to update (try count %d)", setting.SettingKey, setting.SettingValue, i+1)
 				}
 			}
 			if !needUpdate {
 				log.Infof(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] no user application cloud settings need to update for user \"uid:%d\" (try count %d)", uid, i+1)
 				return true, nil
 			}
 		}
 		newApplicationCloudSettingsMap := make(map[string]models.ApplicationCloudSetting)
 		var newApplicationCloudSettingSlice models.ApplicationCloudSettingSlice
 		if userAppCloudSettingUpdateReq.FullUpdate {
 			log.Infof(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user \"uid:%d\" application cloud settings force update, will overwrite all existing settings (try count %d)", uid, i+1)
 		} else {
 			if len(oldApplicationCloudSettingsMap) > 0 {
 				log.Infof(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user \"uid:%d\" application cloud settings exists, try to merge it with request settings (try count %d)", uid, i+1)
 				newApplicationCloudSettingsMap = oldApplicationCloudSettingsMap
 			}
 		}
 		for _, setting := range userAppCloudSettingUpdateReq.Settings {
 			newApplicationCloudSettingsMap[setting.SettingKey] = setting
 		}
 		for settingKey, setting := range newApplicationCloudSettingsMap {
 			settingType, exists := models.ALL_ALLOWED_CLOUD_SYNC_APP_SETTING_KEY_TYPES[settingKey]
 			if !exists {
 				log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user application cloud setting key \"%s\" is not supported to sync (try count %d)", settingKey, i+1)
 				continue
 			}
 			if settingType == models.USER_APPLICATION_CLOUD_SETTING_TYPE_STRING {
 				// Do Nothing
 			} else if settingType == models.USER_APPLICATION_CLOUD_SETTING_TYPE_NUMBER {
 				_, err := utils.StringToFloat64(setting.SettingValue)
 				if err != nil {
 					log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user application cloud setting key \"%s\" has invalid number value \"%s\" (try count %d)", settingKey, setting.SettingValue, i+1)
 					continue
 				}
 			} else if settingType == models.USER_APPLICATION_CLOUD_SETTING_TYPE_BOOLEAN {
 				if setting.SettingValue != "true" && setting.SettingValue != "false" {
 					log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user application cloud setting key \"%s\" has invalid boolean value \"%s\" (try count %d)", settingKey, setting.SettingValue, i+1)
 					continue
 				}
 			} else if settingType == models.USER_APPLICATION_CLOUD_SETTING_TYPE_STRING_BOOLEAN_MAP {
 				var settingValueMap map[string]bool
 				err := json.Unmarshal([]byte(setting.SettingValue), &settingValueMap)
 				if err != nil {
 					log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user application cloud setting key \"%s\" has invalid map value \"%s\" (try count %d), because %s", settingKey, setting.SettingValue, i+1, err.Error())
 					continue
 				}
 			} else {
 				log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] user application cloud setting key \"%s\" has unknown type \"%s\" (try count %d)", settingKey, settingType, i+1)
 				continue
 			}
 			newApplicationCloudSettingSlice = append(newApplicationCloudSettingSlice, setting)
 		}
 		err = a.userAppCloudSettings.UpdateUserApplicationCloudSettings(c, uid, newApplicationCloudSettingSlice, userAppCloudSettingUpdateReq.FullUpdate, lastUpdateTime)
 		if err == nil {
 			break
 		}
 		time.Sleep(100 * time.Millisecond) // Wait for 100 milliseconds before retrying
 	}
 	if err != nil {
 		log.Errorf(c, "[user_app_cloud_settings.ApplicationSettingsUpdateHandler] failed to update user application cloud settings for user \"uid:%d\", because %s", uid, err.Error())
 		return false, errs.Or(err, errs.ErrOperationFailed)
 	}
 	return true, nil
 }
 // ApplicationSettingsDisableHandler disabled user application cloud settings by request parameters for current user
 func (a *UserApplicationCloudSettingsApi) ApplicationSettingsDisableHandler(c *core.WebContext) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		if !errs.IsCustomError(err) {
 			log.Warnf(c, "[user_app_cloud_settings.ApplicationSettingsDisableHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return false, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_SYNC_APPLICATION_SETTINGS) {
 		return false, errs.ErrNotPermittedToPerformThisAction
 	}
 	err = a.userAppCloudSettings.ClearUserApplicationCloudSettings(c, uid)
 	if err != nil {
 		log.Errorf(c, "[user_app_cloud_settings.ApplicationSettingsDisableHandler] failed to clear user application cloud settings for user \"uid:%d\", because %s", uid, err.Error())
 		return false, errs.Or(err, errs.ErrOperationFailed)
 	}
 	return true, nil
 }
@@ -0,0 +1,108 @@
 package api
 import (
 	"sort"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/services"
 )
 // UserExternalAuthsApi represents user external auth api
 type UserExternalAuthsApi struct {
 	users             *services.UserService
 	userExternalAuths *services.UserExternalAuthService
 }
 // Initialize a user external auth api singleton instance
 var (
 	UserExternalAuths = &UserExternalAuthsApi{
 		users:             services.Users,
 		userExternalAuths: services.UserExternalAuths,
 	}
 )
 // ExternalAuthListHanlder returns external authentications list of current user
 func (a *UserExternalAuthsApi) ExternalAuthListHanlder(c *core.WebContext) (any, *errs.Error) {
 	uid := c.GetCurrentUid()
 	userExternalAuths, err := a.userExternalAuths.GetUserAllExternalAuthsByUid(c, uid)
 	if err != nil {
 		log.Errorf(c, "[user_external_auths.ExternalAuthListHanlder] failed to get all external authentications for user \"uid:%d\", because %s", uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	userExternalAuthResps := make(models.UserExternalAuthInfoResponsesSlice, 0, len(userExternalAuths)+1)
 	currentExternalAuthType := oauth2.GetExternalUserAuthType()
 	hasCurrentExternalAuth := false
 	for i := 0; i < len(userExternalAuths); i++ {
 		userExternalAuth := userExternalAuths[i]
 		if userExternalAuth.ExternalAuthType == currentExternalAuthType {
 			hasCurrentExternalAuth = true
 		}
 		userExternalAuthResps = append(userExternalAuthResps, userExternalAuth.ToUserExternalAuthInfoResponse())
 	}
 	if !hasCurrentExternalAuth {
 		userExternalAuthResps = append(userExternalAuthResps, &models.UserExternalAuthInfoResponse{
 			ExternalAuthCategory: currentExternalAuthType.GetCategory(),
 			ExternalAuthType:     currentExternalAuthType,
 			Linked:               false,
 		})
 	}
 	sort.Sort(userExternalAuthResps)
 	return userExternalAuthResps, nil
 }
 // UnlinkExternalAuthHandler unlinks external authentication for current user
 func (a *UserExternalAuthsApi) UnlinkExternalAuthHandler(c *core.WebContext) (any, *errs.Error) {
 	var externalAuthLinkReq models.UserExternalAuthUnlinkRequest
 	err := c.ShouldBindJSON(&externalAuthLinkReq)
 	if err != nil {
 		log.Warnf(c, "[user_external_auths.UnlinkExternalAuthHandler] parse request failed, because %s", err.Error())
 		return nil, errs.NewIncompleteOrIncorrectSubmissionError(err)
 	}
 	uid := c.GetCurrentUid()
 	user, err := a.users.GetUserById(c, uid)
 	if err != nil {
 		if !errs.IsCustomError(err) {
 			log.Warnf(c, "[user_external_auths.UnlinkExternalAuthHandler] failed to get user for user \"uid:%d\", because %s", uid, err.Error())
 		}
 		return nil, errs.ErrUserNotFound
 	}
 	if !a.users.IsPasswordEqualsUserPassword(externalAuthLinkReq.Password, user) {
 		return nil, errs.ErrUserPasswordWrong
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_UNLINK_THIRD_PARTY_LOGIN) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	externalAuthType := core.UserExternalAuthType(externalAuthLinkReq.ExternalAuthType)
 	if !externalAuthType.IsValid() {
 		return nil, errs.ErrUserExternalAuthNotFound
 	}
 	err = a.userExternalAuths.DeleteUserExternalAuth(c, uid, externalAuthType)
 	if err != nil {
 		log.Errorf(c, "[user_external_auths.UnlinkExternalAuthHandler] failed to unlink external authentication \"%s\" for user \"uid:%d\", because %s", externalAuthLinkReq.ExternalAuthType, uid, err.Error())
 		return nil, errs.Or(err, errs.ErrOperationFailed)
 	}
 	return true, nil
 }
@@ -78,10 +78,12 @@ func (a *UsersApi) UserRegisterHandler(c *core.WebContext) (any, *errs.Error) {
 		Language:             userRegisterReq.Language,
 		DefaultCurrency:      userRegisterReq.DefaultCurrency,
 		FirstDayOfWeek:       userRegisterReq.FirstDayOfWeek,
 		FiscalYearStart:      core.FISCAL_YEAR_START_DEFAULT,
 		TransactionEditScope: models.TRANSACTION_EDIT_SCOPE_ALL,
 		FeatureRestriction:   a.CurrentConfig().DefaultFeatureRestrictions,
 	}
-	err = a.users.CreateUser(c, user)
+	err = a.users.CreateUser(c, user, false)
 	if err != nil {
 		log.Errorf(c, "[users.UserRegisterHandler] failed to create user \"%s\", because %s", user.Username, err.Error())
@@ -140,8 +142,9 @@ func (a *UsersApi) UserRegisterHandler(c *core.WebContext) (any, *errs.Error) {
 	authResp.Token = token
 	c.SetTextualToken(token)
 	c.SetTokenClaims(claims)
 	c.SetTokenContext("")
-	log.Infof(c, "[users.UserRegisterHandler] user \"uid:%d\" has logined, token will be expired at %d", user.Uid, claims.ExpiresAt)
+	log.Infof(c, "[users.UserRegisterHandler] user \"uid:%d\" has logged in, token will be expired at %d", user.Uid, claims.ExpiresAt)
 	return authResp, nil
 }
@@ -203,6 +206,7 @@ func (a *UsersApi) UserEmailVerifyHandler(c *core.WebContext) (any, *errs.Error)
 		c.SetTextualToken(token)
 		c.SetTokenClaims(claims)
 		c.SetTokenContext("")
 		log.Infof(c, "[users.UserEmailVerifyHandler] user \"uid:%d\" token created, new token will be expired at %d", user.Uid, claims.ExpiresAt)
 	}
@@ -251,6 +255,7 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	userUpdateReq.Email = strings.TrimSpace(userUpdateReq.Email)
 	userUpdateReq.Nickname = strings.TrimSpace(userUpdateReq.Nickname)
 	modifyProfileBasicInfo := false
 	anythingUpdate := false
 	userNew := &models.User{
 		Uid:  user.Uid,
@@ -258,13 +263,21 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	}
 	if userUpdateReq.Email != "" && userUpdateReq.Email != user.Email {
 		if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_UPDATE_EMAIL) {
 			return nil, errs.ErrNotPermittedToPerformThisAction
 		}
 		user.Email = userUpdateReq.Email
 		userNew.Email = userUpdateReq.Email
 		anythingUpdate = true
 	}
 	if userUpdateReq.Password != "" {
-		if !a.users.IsPasswordEqualsUserPassword(userUpdateReq.OldPassword, user) {
+		if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_UPDATE_PASSWORD) {
 			return nil, errs.ErrNotPermittedToPerformThisAction
 		}
 		if user.Password != "" && !a.users.IsPasswordEqualsUserPassword(userUpdateReq.OldPassword, user) {
 			return nil, errs.ErrUserPasswordWrong
 		}
@@ -277,6 +290,7 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	if userUpdateReq.Nickname != "" && userUpdateReq.Nickname != user.Nickname {
 		user.Nickname = userUpdateReq.Nickname
 		userNew.Nickname = userUpdateReq.Nickname
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	}
@@ -299,12 +313,14 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 		user.DefaultAccountId = userUpdateReq.DefaultAccountId
 		userNew.DefaultAccountId = userUpdateReq.DefaultAccountId
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	}
 	if userUpdateReq.TransactionEditScope != nil && *userUpdateReq.TransactionEditScope != user.TransactionEditScope {
 		user.TransactionEditScope = *userUpdateReq.TransactionEditScope
 		userNew.TransactionEditScope = *userUpdateReq.TransactionEditScope
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.TransactionEditScope = models.TRANSACTION_EDIT_SCOPE_INVALID
@@ -316,26 +332,57 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 		user.Language = userUpdateReq.Language
 		userNew.Language = userUpdateReq.Language
 		modifyUserLanguage = true
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	}
 	if userUpdateReq.DefaultCurrency != "" && userUpdateReq.DefaultCurrency != user.DefaultCurrency {
 		user.DefaultCurrency = userUpdateReq.DefaultCurrency
 		userNew.DefaultCurrency = userUpdateReq.DefaultCurrency
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	}
 	if userUpdateReq.FirstDayOfWeek != nil && *userUpdateReq.FirstDayOfWeek != user.FirstDayOfWeek {
 		user.FirstDayOfWeek = *userUpdateReq.FirstDayOfWeek
 		userNew.FirstDayOfWeek = *userUpdateReq.FirstDayOfWeek
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.FirstDayOfWeek = core.WEEKDAY_INVALID
 	}
 	if userUpdateReq.FiscalYearStart != nil && *userUpdateReq.FiscalYearStart != user.FiscalYearStart {
 		user.FiscalYearStart = *userUpdateReq.FiscalYearStart
 		userNew.FiscalYearStart = *userUpdateReq.FiscalYearStart
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.FiscalYearStart = core.FISCAL_YEAR_START_INVALID
 	}
 	if userUpdateReq.CalendarDisplayType != nil && *userUpdateReq.CalendarDisplayType != user.CalendarDisplayType {
 		user.CalendarDisplayType = *userUpdateReq.CalendarDisplayType
 		userNew.CalendarDisplayType = *userUpdateReq.CalendarDisplayType
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.CalendarDisplayType = core.CALENDAR_DISPLAY_TYPE_INVALID
 	}
 	if userUpdateReq.DateDisplayType != nil && *userUpdateReq.DateDisplayType != user.DateDisplayType {
 		user.DateDisplayType = *userUpdateReq.DateDisplayType
 		userNew.DateDisplayType = *userUpdateReq.DateDisplayType
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.DateDisplayType = core.DATE_DISPLAY_TYPE_INVALID
 	}
 	if userUpdateReq.LongDateFormat != nil && *userUpdateReq.LongDateFormat != user.LongDateFormat {
 		user.LongDateFormat = *userUpdateReq.LongDateFormat
 		userNew.LongDateFormat = *userUpdateReq.LongDateFormat
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.LongDateFormat = core.LONG_DATE_FORMAT_INVALID
@@ -344,6 +391,7 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	if userUpdateReq.ShortDateFormat != nil && *userUpdateReq.ShortDateFormat != user.ShortDateFormat {
 		user.ShortDateFormat = *userUpdateReq.ShortDateFormat
 		userNew.ShortDateFormat = *userUpdateReq.ShortDateFormat
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.ShortDateFormat = core.SHORT_DATE_FORMAT_INVALID
@@ -352,6 +400,7 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	if userUpdateReq.LongTimeFormat != nil && *userUpdateReq.LongTimeFormat != user.LongTimeFormat {
 		user.LongTimeFormat = *userUpdateReq.LongTimeFormat
 		userNew.LongTimeFormat = *userUpdateReq.LongTimeFormat
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.LongTimeFormat = core.LONG_TIME_FORMAT_INVALID
@@ -360,14 +409,43 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	if userUpdateReq.ShortTimeFormat != nil && *userUpdateReq.ShortTimeFormat != user.ShortTimeFormat {
 		user.ShortTimeFormat = *userUpdateReq.ShortTimeFormat
 		userNew.ShortTimeFormat = *userUpdateReq.ShortTimeFormat
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.ShortTimeFormat = core.SHORT_TIME_FORMAT_INVALID
 	}
 	if userUpdateReq.FiscalYearFormat != nil && *userUpdateReq.FiscalYearFormat != user.FiscalYearFormat {
 		user.FiscalYearFormat = *userUpdateReq.FiscalYearFormat
 		userNew.FiscalYearFormat = *userUpdateReq.FiscalYearFormat
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.FiscalYearFormat = core.FISCAL_YEAR_FORMAT_INVALID
 	}
 	if userUpdateReq.CurrencyDisplayType != nil && *userUpdateReq.CurrencyDisplayType != user.CurrencyDisplayType {
 		user.CurrencyDisplayType = *userUpdateReq.CurrencyDisplayType
 		userNew.CurrencyDisplayType = *userUpdateReq.CurrencyDisplayType
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.CurrencyDisplayType = core.CURRENCY_DISPLAY_TYPE_INVALID
 	}
 	if userUpdateReq.NumeralSystem != nil && *userUpdateReq.NumeralSystem != user.NumeralSystem {
 		user.NumeralSystem = *userUpdateReq.NumeralSystem
 		userNew.NumeralSystem = *userUpdateReq.NumeralSystem
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.NumeralSystem = core.NUMERAL_SYSTEM_INVALID
 	}
 	if userUpdateReq.DecimalSeparator != nil && *userUpdateReq.DecimalSeparator != user.DecimalSeparator {
 		user.DecimalSeparator = *userUpdateReq.DecimalSeparator
 		userNew.DecimalSeparator = *userUpdateReq.DecimalSeparator
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.DecimalSeparator = core.DECIMAL_SEPARATOR_INVALID
@@ -376,6 +454,7 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	if userUpdateReq.DigitGroupingSymbol != nil && *userUpdateReq.DigitGroupingSymbol != user.DigitGroupingSymbol {
 		user.DigitGroupingSymbol = *userUpdateReq.DigitGroupingSymbol
 		userNew.DigitGroupingSymbol = *userUpdateReq.DigitGroupingSymbol
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.DigitGroupingSymbol = core.DIGIT_GROUPING_SYMBOL_INVALID
@@ -384,22 +463,25 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	if userUpdateReq.DigitGrouping != nil && *userUpdateReq.DigitGrouping != user.DigitGrouping {
 		user.DigitGrouping = *userUpdateReq.DigitGrouping
 		userNew.DigitGrouping = *userUpdateReq.DigitGrouping
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.DigitGrouping = core.DIGIT_GROUPING_TYPE_INVALID
 	}
-	if userUpdateReq.CurrencyDisplayType != nil && *userUpdateReq.CurrencyDisplayType != user.CurrencyDisplayType {
+	if userUpdateReq.CoordinateDisplayType != nil && *userUpdateReq.CoordinateDisplayType != user.CoordinateDisplayType {
-		user.CurrencyDisplayType = *userUpdateReq.CurrencyDisplayType
+		user.CoordinateDisplayType = *userUpdateReq.CoordinateDisplayType
-		userNew.CurrencyDisplayType = *userUpdateReq.CurrencyDisplayType
+		userNew.CoordinateDisplayType = *userUpdateReq.CoordinateDisplayType
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
-		userNew.CurrencyDisplayType = core.CURRENCY_DISPLAY_TYPE_INVALID
+		userNew.CoordinateDisplayType = core.COORDINATE_DISPLAY_TYPE_INVALID
 	}
 	if userUpdateReq.ExpenseAmountColor != nil && *userUpdateReq.ExpenseAmountColor != user.ExpenseAmountColor {
 		user.ExpenseAmountColor = *userUpdateReq.ExpenseAmountColor
 		userNew.ExpenseAmountColor = *userUpdateReq.ExpenseAmountColor
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.ExpenseAmountColor = models.AMOUNT_COLOR_TYPE_INVALID
@@ -408,11 +490,16 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 	if userUpdateReq.IncomeAmountColor != nil && *userUpdateReq.IncomeAmountColor != user.IncomeAmountColor {
 		user.IncomeAmountColor = *userUpdateReq.IncomeAmountColor
 		userNew.IncomeAmountColor = *userUpdateReq.IncomeAmountColor
 		modifyProfileBasicInfo = true
 		anythingUpdate = true
 	} else {
 		userNew.IncomeAmountColor = models.AMOUNT_COLOR_TYPE_INVALID
 	}
 	if modifyProfileBasicInfo && user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_UPDATE_PROFILE_BASIC_INFO) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	if modifyUserLanguage || userNew.DecimalSeparator != core.DECIMAL_SEPARATOR_INVALID || userNew.DigitGroupingSymbol != core.DIGIT_GROUPING_SYMBOL_INVALID {
 		decimalSeparator := userNew.DecimalSeparator
 		digitGroupingSymbol := userNew.DigitGroupingSymbol
@@ -503,6 +590,7 @@ func (a *UsersApi) UserUpdateProfileHandler(c *core.WebContext) (any, *errs.Erro
 		resp.NewToken = token
 		c.SetTextualToken(token)
 		c.SetTokenClaims(claims)
 		c.SetTokenContext("")
 		log.Infof(c, "[users.UserUpdateProfileHandler] user \"uid:%d\" token refreshed, new token will be expired at %d", user.Uid, claims.ExpiresAt)
@@ -525,6 +613,10 @@ func (a *UsersApi) UserUpdateAvatarHandler(c *core.WebContext) (any, *errs.Error
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_UPDATE_AVATAR) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	form, err := c.MultipartForm()
 	if err != nil {
@@ -588,6 +680,10 @@ func (a *UsersApi) UserRemoveAvatarHandler(c *core.WebContext) (any, *errs.Error
 		return nil, errs.ErrUserNotFound
 	}
 	if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_UPDATE_AVATAR) {
 		return nil, errs.ErrNotPermittedToPerformThisAction
 	}
 	if user.CustomAvatarType == "" {
 		return nil, errs.ErrNothingWillBeUpdated
 	}
@@ -0,0 +1,13 @@
 package data
 import "github.com/mayswind/ezbookkeeping/pkg/core"
 // OAuth2UserInfo represents the user info retrieved from OAuth 2.0 provider
 type OAuth2UserInfo struct {
 	UserName       string
 	Email          string
 	NickName       string
 	LanguageCode   string
 	CurrencyCode   string
 	FirstDayOfWeek core.WeekDay
 }
@@ -0,0 +1,122 @@
 package oauth2
 import (
 	"net/http"
 	"golang.org/x/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/data"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/gitea"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/github"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/nextcloud"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/oidc"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/httpclient"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 // OAuth2Container contains the current OAuth 2.0 authentication provider
 type OAuth2Container struct {
 	current              provider.OAuth2Provider
 	usePKCE              bool
 	oauth2HttpClient     *http.Client
 	externalUserAuthType core.UserExternalAuthType
 }
 // Initialize a OAuth 2.0 container singleton instance
 var (
 	Container = &OAuth2Container{}
 )
 // InitializeOAuth2Provider initializes the current OAuth 2.0 provider according to the config
 func InitializeOAuth2Provider(config *settings.Config) error {
 	if !config.EnableOAuth2Login {
 		return nil
 	}
 	if config.OAuth2ClientID == "" || config.OAuth2ClientSecret == "" || config.OAuth2UserIdentifier == "" || config.OAuth2Provider == "" {
 		return errs.ErrInvalidOAuth2Config
 	}
 	var err error
 	var oauth2Provider provider.OAuth2Provider
 	var externalUserAuthType core.UserExternalAuthType
 	redirectUrl := config.RootUrl + "oauth2/callback"
 	if config.OAuth2Provider == settings.OAuth2ProviderOIDC {
 		oauth2Provider, err = oidc.NewOIDCProvider(config, redirectUrl)
 		externalUserAuthType = core.USER_EXTERNAL_AUTH_TYPE_OAUTH2_OIDC
 	} else if config.OAuth2Provider == settings.OAuth2ProviderNextcloud {
 		oauth2Provider, err = nextcloud.NewNextcloudOAuth2Provider(config, redirectUrl)
 		externalUserAuthType = core.USER_EXTERNAL_AUTH_TYPE_OAUTH2_NEXTCLOUD
 	} else if config.OAuth2Provider == settings.OAuth2ProviderGitea {
 		oauth2Provider, err = gitea.NewGiteaOAuth2Provider(config, redirectUrl)
 		externalUserAuthType = core.USER_EXTERNAL_AUTH_TYPE_OAUTH2_GITEA
 	} else if config.OAuth2Provider == settings.OAuth2ProviderGithub {
 		oauth2Provider, err = github.NewGithubOAuth2Provider(config, redirectUrl)
 		externalUserAuthType = core.USER_EXTERNAL_AUTH_TYPE_OAUTH2_GITHUB
 	} else {
 		return errs.ErrInvalidOAuth2Provider
 	}
 	if err != nil {
 		return err
 	}
 	Container.current = oauth2Provider
 	Container.usePKCE = config.OAuth2UsePKCE
 	Container.oauth2HttpClient = httpclient.NewHttpClient(config.OAuth2RequestTimeout, config.OAuth2Proxy, config.OAuth2SkipTLSVerify, core.GetOutgoingUserAgent(), config.EnableDebugLog)
 	Container.externalUserAuthType = externalUserAuthType
 	return nil
 }
 // GetOAuth2AuthUrl returns the OAuth 2.0 authentication url
 func GetOAuth2AuthUrl(c core.Context, state string, verifier string) (string, error) {
 	if Container.current == nil {
 		return "", errs.ErrOAuth2NotEnabled
 	}
 	var opts []oauth2.AuthCodeOption
 	if Container.usePKCE {
 		opts = append(opts, oauth2.S256ChallengeOption(verifier))
 	}
 	return Container.current.GetOAuth2AuthUrl(wrapOAuth2Context(c, Container.oauth2HttpClient), state, opts...)
 }
 // GetOAuth2Token exchanges the authorization code for an OAuth 2.0 token
 func GetOAuth2Token(c core.Context, code string, verifier string) (*oauth2.Token, error) {
 	if Container.current == nil || Container.oauth2HttpClient == nil {
 		return nil, errs.ErrOAuth2NotEnabled
 	}
 	var opts []oauth2.AuthCodeOption
 	if Container.usePKCE {
 		opts = append(opts, oauth2.VerifierOption(verifier))
 	}
 	return Container.current.GetOAuth2Token(wrapOAuth2Context(c, Container.oauth2HttpClient), code, opts...)
 }
 // GetOAuth2UserInfo retrieves the OAuth 2.0 user info using the provided OAuth 2.0 token
 func GetOAuth2UserInfo(c core.Context, token *oauth2.Token) (*data.OAuth2UserInfo, error) {
 	if Container.current == nil || Container.oauth2HttpClient == nil {
 		return nil, errs.ErrOAuth2NotEnabled
 	}
 	if token == nil {
 		return nil, errs.ErrInvalidOAuth2Token
 	}
 	return Container.current.GetUserInfo(wrapOAuth2Context(c, Container.oauth2HttpClient), token)
 }
 // GetExternalUserAuthType returns the external user auth type of the current OAuth 2.0 provider
 func GetExternalUserAuthType() core.UserExternalAuthType {
 	return Container.externalUserAuthType
 }
@@ -0,0 +1,31 @@
 package oauth2
 import (
 	"net/http"
 	"golang.org/x/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 )
 // OAuth2Context represents the context for OAuth 2.0 operations
 type OAuth2Context struct {
 	core.Context
 	httpClient *http.Client
 }
 // Value returns the value associated with key
 func (c *OAuth2Context) Value(key any) any {
 	if key == oauth2.HTTPClient {
 		return c.httpClient
 	}
 	return c.Context.Value(key)
 }
 func wrapOAuth2Context(ctx core.Context, httpClient *http.Client) core.Context {
 	return &OAuth2Context{
 		Context:    ctx,
 		httpClient: httpClient,
 	}
 }
@@ -0,0 +1,108 @@
 package common
 import (
 	"io"
 	"net/http"
 	"golang.org/x/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/data"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/httpclient"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 // CommonOAuth2Provider represents common OAuth 2.0 provider
 type CommonOAuth2Provider struct {
 	provider.OAuth2Provider
 	oauth2Config *oauth2.Config
 	dataSource   CommonOAuth2DataSource
 }
 // CommonOAuth2DataSource defines the structure of OAuth 2.0 data source
 type CommonOAuth2DataSource interface {
 	// GetAuthUrl returns the authentication url of the data source
 	GetAuthUrl() string
 	// GetTokenUrl returns the token url of the data source
 	GetTokenUrl() string
 	// GetUserInfoRequest returns the user info request of the data source
 	GetUserInfoRequest() (*http.Request, error)
 	// GetScopes returns the scopes required by the data source
 	GetScopes() []string
 	// ParseUserInfo returns the user info by parsing the response body
 	ParseUserInfo(c core.Context, body []byte) (*data.OAuth2UserInfo, error)
 }
 // GetOAuth2AuthUrl returns the authentication url of the common OAuth 2.0 provider
 func (p *CommonOAuth2Provider) GetOAuth2AuthUrl(c core.Context, state string, opts ...oauth2.AuthCodeOption) (string, error) {
 	return p.oauth2Config.AuthCodeURL(state, opts...), nil
 }
 // GetOAuth2Token returns the OAuth 2.0 token of the common OAuth 2.0 provider
 func (p *CommonOAuth2Provider) GetOAuth2Token(c core.Context, code string, opts ...oauth2.AuthCodeOption) (*oauth2.Token, error) {
 	return p.oauth2Config.Exchange(c, code, opts...)
 }
 // GetUserInfo returns the user info by the common OAuth 2.0 provider
 func (p *CommonOAuth2Provider) GetUserInfo(c core.Context, oauth2Token *oauth2.Token) (*data.OAuth2UserInfo, error) {
 	req, err := p.dataSource.GetUserInfoRequest()
 	if err != nil {
 		log.Errorf(c, "[common_oauth2_provider.GetUserInfo] failed to get user info request, because %s", err.Error())
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	oauth2Client := oauth2.NewClient(c, oauth2.StaticTokenSource(oauth2Token))
 	req = req.WithContext(httpclient.CustomHttpResponseLog(c, func(data []byte) {
 		log.Debugf(c, "[common_oauth2_provider.GetUserInfo] response is %s", data)
 	}))
 	resp, err := oauth2Client.Do(req)
 	if err != nil {
 		log.Errorf(c, "[common_oauth2_provider.GetUserInfo] failed to get user info response, because %s", err.Error())
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	defer resp.Body.Close()
 	body, err := io.ReadAll(resp.Body)
 	if resp.StatusCode != 200 {
 		log.Errorf(c, "[common_oauth2_provider.GetUserInfo] failed to get user info response, because response code is %d", resp.StatusCode)
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	return p.dataSource.ParseUserInfo(c, body)
 }
 // GetDataSource returns the data source of the common OAuth 2.0 provider
 func (p *CommonOAuth2Provider) GetDataSource() CommonOAuth2DataSource {
 	return p.dataSource
 }
 // NewCommonOAuth2Provider returns a new common OAuth 2.0 provider
 func NewCommonOAuth2Provider(config *settings.Config, redirectUrl string, dataSource CommonOAuth2DataSource) *CommonOAuth2Provider {
 	oauth2Config := &oauth2.Config{
 		ClientID:     config.OAuth2ClientID,
 		ClientSecret: config.OAuth2ClientSecret,
 		Endpoint: oauth2.Endpoint{
 			AuthURL:  dataSource.GetAuthUrl(),
 			TokenURL: dataSource.GetTokenUrl(),
 		},
 		RedirectURL: redirectUrl,
 		Scopes:      dataSource.GetScopes(),
 	}
 	return &CommonOAuth2Provider{
 		oauth2Config: oauth2Config,
 		dataSource:   dataSource,
 	}
 }
@@ -0,0 +1,95 @@
 package gitea
 import (
 	"encoding/json"
 	"net/http"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/data"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/common"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 type giteaUserInfoResponse struct {
 	Login    string `json:"login"`
 	FullName string `json:"full_name"`
 	Email    string `json:"email"`
 }
 // GiteaOAuth2DataSource represents Gitea OAuth 2.0 data source
 type GiteaOAuth2DataSource struct {
 	common.CommonOAuth2DataSource
 	baseUrl string
 }
 // GetAuthUrl returns the authentication url of the Gitea data source
 func (s *GiteaOAuth2DataSource) GetAuthUrl() string {
 	// Reference: https://docs.gitea.com/development/oauth2-provider
 	return s.baseUrl + "login/oauth/authorize"
 }
 // GetTokenUrl returns the token url of the Gitea data source
 func (s *GiteaOAuth2DataSource) GetTokenUrl() string {
 	// Reference: https://docs.gitea.com/development/oauth2-provider
 	return s.baseUrl + "login/oauth/access_token"
 }
 // GetUserInfoRequest returns the user info request of the Gitea data source
 func (s *GiteaOAuth2DataSource) GetUserInfoRequest() (*http.Request, error) {
 	// Reference: https://gitea.com/api/swagger#/user/userGetCurrent
 	req, err := http.NewRequest("GET", s.baseUrl+"api/v1/user", nil)
 	if err != nil {
 		return nil, err
 	}
 	req.Header.Set("Accept", "application/json")
 	return req, nil
 }
 // GetScopes returns the scopes required by the Gitea provider
 func (s *GiteaOAuth2DataSource) GetScopes() []string {
 	return []string{"read:user"}
 }
 // ParseUserInfo returns the user info by parsing the response body
 func (s *GiteaOAuth2DataSource) ParseUserInfo(c core.Context, body []byte) (*data.OAuth2UserInfo, error) {
 	userInfoResp := &giteaUserInfoResponse{}
 	err := json.Unmarshal(body, &userInfoResp)
 	if err != nil {
 		log.Warnf(c, "[gitea_oauth2_datasource.ParseUserInfo] failed to parse user profile response body, because %s", err.Error())
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	if userInfoResp.Login == "" {
 		log.Warnf(c, "[gitea_oauth2_datasource.ParseUserInfo] invalid user profile response body")
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	return &data.OAuth2UserInfo{
 		UserName: userInfoResp.Login,
 		Email:    userInfoResp.Email,
 		NickName: userInfoResp.FullName,
 	}, nil
 }
 // NewGiteaOAuth2Provider creates a new Gitea OAuth 2.0 provider instance
 func NewGiteaOAuth2Provider(config *settings.Config, redirectUrl string) (provider.OAuth2Provider, error) {
 	if len(config.OAuth2GiteaBaseUrl) < 1 {
 		return nil, errs.ErrInvalidOAuth2Config
 	}
 	baseUrl := config.OAuth2GiteaBaseUrl
 	if baseUrl[len(baseUrl)-1] != '/' {
 		baseUrl += "/"
 	}
 	return common.NewCommonOAuth2Provider(config, redirectUrl, &GiteaOAuth2DataSource{
 		baseUrl: baseUrl,
 	}), nil
 }
@@ -0,0 +1,71 @@
 package gitea
 import (
 	"testing"
 	"github.com/stretchr/testify/assert"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/common"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 func TestNewGiteaOAuth2Provider(t *testing.T) {
 	provider, err := NewGiteaOAuth2Provider(&settings.Config{
 		OAuth2GiteaBaseUrl: "https://example.com/",
 	}, "")
 	assert.Nil(t, err)
 	assert.Equal(t, "https://example.com/login/oauth/authorize", provider.(*common.CommonOAuth2Provider).GetDataSource().GetAuthUrl())
 	assert.Equal(t, "https://example.com/login/oauth/access_token", provider.(*common.CommonOAuth2Provider).GetDataSource().GetTokenUrl())
 	provider, err = NewGiteaOAuth2Provider(&settings.Config{
 		OAuth2GiteaBaseUrl: "https://example.com",
 	}, "")
 	assert.Nil(t, err)
 	assert.Equal(t, "https://example.com/login/oauth/authorize", provider.(*common.CommonOAuth2Provider).GetDataSource().GetAuthUrl())
 	assert.Equal(t, "https://example.com/login/oauth/access_token", provider.(*common.CommonOAuth2Provider).GetDataSource().GetTokenUrl())
 	provider, err = NewGiteaOAuth2Provider(&settings.Config{}, "")
 	assert.Equal(t, errs.ErrInvalidOAuth2Config, err)
 }
 func TestGiteaOAuth2Datasource_GetUserInfoRequest(t *testing.T) {
 	datasource := &GiteaOAuth2DataSource{baseUrl: "https://example.com/"}
 	req, err := datasource.GetUserInfoRequest()
 	assert.Nil(t, err)
 	assert.Equal(t, "GET", req.Method)
 	assert.Equal(t, "https://example.com/api/v1/user", req.URL.String())
 	assert.Equal(t, "application/json", req.Header.Get("Accept"))
 }
 func TestGiteaOAuth2Datasource_ParseUserInfo_Success(t *testing.T) {
 	datasource := &GiteaOAuth2DataSource{}
 	responseContent := `{
 		"login": "user1",
 		"full_name": "User",
 		"email": "user1@example.com"
 	}`
 	info, err := datasource.ParseUserInfo(core.NewNullContext(), []byte(responseContent))
 	assert.Nil(t, err)
 	assert.Equal(t, "user1", info.UserName)
 	assert.Equal(t, "user1@example.com", info.Email)
 	assert.Equal(t, "User", info.NickName)
 }
 func TestGiteaOAuth2Datasource_ParseUserInfo_InvalidJson(t *testing.T) {
 	datasource := &GiteaOAuth2DataSource{}
 	_, err := datasource.ParseUserInfo(core.NewNullContext(), []byte("invalid"))
 	assert.Equal(t, errs.ErrCannotRetrieveUserInfo, err)
 }
 func TestGiteaOAuth2Datasource_ParseUserInfo_EmptyLogin(t *testing.T) {
 	datasource := &GiteaOAuth2DataSource{}
 	responseContent := `{"login": ""}`
 	_, err := datasource.ParseUserInfo(core.NewNullContext(), []byte(responseContent))
 	assert.Equal(t, errs.ErrCannotRetrieveUserInfo, err)
 }
@@ -0,0 +1,193 @@
 package github
 import (
 	"encoding/json"
 	"io"
 	"net/http"
 	"golang.org/x/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/data"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/httpclient"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 const githubOAuth2AuthUrl = "https://github.com/login/oauth/authorize"     // Reference: https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/authorizing-oauth-apps
 const githubOAuth2TokenUrl = "https://github.com/login/oauth/access_token" // Reference: https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/authorizing-oauth-apps
 const githubUserProfileApiUrl = "https://api.github.com/user"              // Reference: https://docs.github.com/en/rest/users/users
 const githubUserEmailApiUrl = "https://api.github.com/user/emails"         // Reference: https://docs.github.com/en/rest/users/emails
 var githubOAuth2Scopes = []string{"user:email"}
 type githubUserProfileResponse struct {
 	Login string `json:"login"`
 	Name  string `json:"name"`
 	Email string `json:"email"`
 }
 type githubUserEmailsResponse struct {
 	Email    string `json:"email"`
 	Primary  bool   `json:"primary"`
 	Verified bool   `json:"verified"`
 }
 // GithubOAuth2Provider represents Github OAuth 2.0 provider
 type GithubOAuth2Provider struct {
 	provider.OAuth2Provider
 	oauth2Config *oauth2.Config
 }
 // GetOAuth2AuthUrl returns the authentication url of the GitHub OAuth 2.0 provider
 func (p *GithubOAuth2Provider) GetOAuth2AuthUrl(c core.Context, state string, opts ...oauth2.AuthCodeOption) (string, error) {
 	return p.oauth2Config.AuthCodeURL(state, opts...), nil
 }
 // GetOAuth2Token returns the OAuth 2.0 token of the GitHub OAuth 2.0 provider
 func (p *GithubOAuth2Provider) GetOAuth2Token(c core.Context, code string, opts ...oauth2.AuthCodeOption) (*oauth2.Token, error) {
 	return p.oauth2Config.Exchange(c, code, opts...)
 }
 // GetUserInfo returns the user info by the Github OAuth 2.0 provider
 func (p *GithubOAuth2Provider) GetUserInfo(c core.Context, oauth2Token *oauth2.Token) (*data.OAuth2UserInfo, error) {
 	// first get user name and nick name from user profile
 	req, err := p.buildAPIRequest(githubUserProfileApiUrl)
 	if err != nil {
 		log.Errorf(c, "[github_oauth2_provider.GetUserInfo] failed to get user info request, because %s", err.Error())
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	oauth2Client := oauth2.NewClient(c, oauth2.StaticTokenSource(oauth2Token))
 	req = req.WithContext(httpclient.CustomHttpResponseLog(c, func(data []byte) {
 		log.Debugf(c, "[github_oauth2_provider.GetUserInfo] user profile response is %s", data)
 	}))
 	resp, err := oauth2Client.Do(req)
 	if err != nil {
 		log.Errorf(c, "[github_oauth2_provider.GetUserInfo] failed to get user info response, because %s", err.Error())
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	defer resp.Body.Close()
 	body, err := io.ReadAll(resp.Body)
 	if resp.StatusCode != 200 {
 		log.Errorf(c, "[github_oauth2_provider.GetUserInfo] failed to get user info response, because response code is %d", resp.StatusCode)
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	userProfileResp, err := p.parseUserProfile(c, body)
 	if err != nil {
 		return nil, err
 	}
 	// then get user primary email
 	req, err = p.buildAPIRequest(githubUserEmailApiUrl)
 	if err != nil {
 		log.Errorf(c, "[github_oauth2_provider.GetUserInfo] failed to get user emails request, because %s", err.Error())
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	req = req.WithContext(httpclient.CustomHttpResponseLog(c, func(data []byte) {
 		log.Debugf(c, "[github_oauth2_provider.GetUserInfo] user emails response is %s", data)
 	}))
 	resp, err = oauth2Client.Do(req)
 	if err != nil {
 		log.Errorf(c, "[github_oauth2_provider.GetUserInfo] failed to get user emails response, because %s", err.Error())
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	defer resp.Body.Close()
 	body, err = io.ReadAll(resp.Body)
 	if resp.StatusCode != 200 {
 		log.Errorf(c, "[github_oauth2_provider.GetUserInfo] failed to get user emails response, because response code is %d", resp.StatusCode)
 		return nil, errs.ErrFailedToRequestRemoteApi
 	}
 	email, err := p.parsePrimaryEmail(c, body)
 	if err != nil {
 		return nil, err
 	}
 	return &data.OAuth2UserInfo{
 		UserName: userProfileResp.Login,
 		Email:    email,
 		NickName: userProfileResp.Name,
 	}, nil
 }
 func (p *GithubOAuth2Provider) parseUserProfile(c core.Context, body []byte) (*githubUserProfileResponse, error) {
 	userProfileResp := &githubUserProfileResponse{}
 	err := json.Unmarshal(body, &userProfileResp)
 	if err != nil {
 		log.Warnf(c, "[github_oauth2_provider.parseUserProfile] failed to parse user profile response body, because %s", err.Error())
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	if userProfileResp.Login == "" {
 		log.Warnf(c, "[github_oauth2_provider.parseUserProfile] invalid user profile response body")
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	return userProfileResp, nil
 }
 func (p *GithubOAuth2Provider) parsePrimaryEmail(c core.Context, body []byte) (string, error) {
 	emailsResp := make([]githubUserEmailsResponse, 0)
 	err := json.Unmarshal(body, &emailsResp)
 	if err != nil {
 		log.Warnf(c, "[github_oauth2_provider.parsePrimaryEmail] failed to parse user emails response body, because %s", err.Error())
 		return "", errs.ErrCannotRetrieveUserInfo
 	}
 	for _, emailEntry := range emailsResp {
 		if emailEntry.Primary && emailEntry.Verified {
 			return emailEntry.Email, nil
 		}
 	}
 	return "", nil
 }
 func (p *GithubOAuth2Provider) buildAPIRequest(url string) (*http.Request, error) {
 	req, err := http.NewRequest("GET", url, nil)
 	if err != nil {
 		return nil, err
 	}
 	req.Header.Set("Accept", "application/vnd.github+json")
 	return req, nil
 }
 // NewGithubOAuth2Provider creates a new Github OAuth 2.0 provider instance
 func NewGithubOAuth2Provider(config *settings.Config, redirectUrl string) (provider.OAuth2Provider, error) {
 	oauth2Config := &oauth2.Config{
 		ClientID:     config.OAuth2ClientID,
 		ClientSecret: config.OAuth2ClientSecret,
 		Endpoint: oauth2.Endpoint{
 			AuthURL:  githubOAuth2AuthUrl,
 			TokenURL: githubOAuth2TokenUrl,
 		},
 		RedirectURL: redirectUrl,
 		Scopes:      githubOAuth2Scopes,
 	}
 	return &GithubOAuth2Provider{
 		oauth2Config: oauth2Config,
 	}, nil
 }
@@ -0,0 +1,95 @@
 package github
 import (
 	"testing"
 	"github.com/stretchr/testify/assert"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 )
 func TestGithubOAuth2Datasource_ParseUserProfile_Success(t *testing.T) {
 	datasource := &GithubOAuth2Provider{}
 	responseContent := `{
 		"login": "octocat",
 		"id": 1,
 		"node_id": "MDQ6VXNlcjE=",
 		"avatar_url": "https://github.com/images/error/octocat_happy.gif",
 		"gravatar_id": "",
 		"url": "https://api.github.com/users/octocat",
 		"html_url": "https://github.com/octocat",
 		"followers_url": "https://api.github.com/users/octocat/followers",
 		"following_url": "https://api.github.com/users/octocat/following{/other_user}",
 		"gists_url": "https://api.github.com/users/octocat/gists{/gist_id}",
 		"starred_url": "https://api.github.com/users/octocat/starred{/owner}{/repo}",
 		"subscriptions_url": "https://api.github.com/users/octocat/subscriptions",
 		"organizations_url": "https://api.github.com/users/octocat/orgs",
 		"repos_url": "https://api.github.com/users/octocat/repos",
 		"events_url": "https://api.github.com/users/octocat/events{/privacy}",
 		"received_events_url": "https://api.github.com/users/octocat/received_events",
 		"type": "User",
 		"site_admin": false,
 		"name": "monalisa octocat",
 		"company": "GitHub",
 		"blog": "https://github.com/blog",
 		"location": "San Francisco",
 		"email": "octocat@github.com",
 		"hireable": false,
 		"bio": "There once was...",
 		"twitter_username": "monatheoctocat",
 		"public_repos": 2,
 		"public_gists": 1,
 		"followers": 20,
 		"following": 0,
 		"created_at": "2008-01-14T04:33:35Z",
 		"updated_at": "2008-01-14T04:33:35Z",
 		"private_gists": 81,
 		"total_private_repos": 100,
 		"owned_private_repos": 100,
 		"disk_usage": 10000,
 		"collaborators": 8,
 		"two_factor_authentication": true,
 		"plan": {
 			"name": "Medium",
 			"space": 400,
 			"private_repos": 20,
 			"collaborators": 0
 		}
 	}`
 	info, err := datasource.parseUserProfile(core.NewNullContext(), []byte(responseContent))
 	assert.Nil(t, err)
 	assert.Equal(t, "octocat", info.Login)
 	assert.Equal(t, "monalisa octocat", info.Name)
 }
 func TestGithubOAuth2Datasource_ParseUserProfile_EmptyLogin(t *testing.T) {
 	datasource := &GithubOAuth2Provider{}
 	responseContent := `{"login": ""}`
 	_, err := datasource.parseUserProfile(core.NewNullContext(), []byte(responseContent))
 	assert.Equal(t, errs.ErrCannotRetrieveUserInfo, err)
 }
 func TestGithubOAuth2Datasource_ParsePrimaryEmail(t *testing.T) {
 	datasource := &GithubOAuth2Provider{}
 	responseContent := `[
 	    {
 			"email": "foo@bar.com",
 			"primary": false,
 			"verified": true,
 			"visibility": null
 		},
 	    {
 			"email": "octocat@github.com",
 			"primary": true,
 			"verified": true,
 			"visibility": "public"
 	    }
 	]`
 	email, err := datasource.parsePrimaryEmail(core.NewNullContext(), []byte(responseContent))
 	assert.Nil(t, err)
 	assert.Equal(t, "octocat@github.com", email)
 }
@@ -0,0 +1,114 @@
 package nextcloud
 import (
 	"encoding/json"
 	"net/http"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/data"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/common"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 type nextcloudUserInfoResponse struct {
 	OCS *struct {
 		Meta *struct {
 			Status     string `json:"status"`
 			StatusCode int    `json:"statuscode"`
 		} `json:"meta"`
 		Data *struct {
 			ID          string `json:"id"`
 			Email       string `json:"email"`
 			DisplayName string `json:"display-name"`
 		} `json:"data"`
 	} `json:"ocs"`
 }
 // NextcloudOAuth2DataSource represents Nextcloud OAuth 2.0 data source
 type NextcloudOAuth2DataSource struct {
 	common.CommonOAuth2DataSource
 	baseUrl string
 }
 // GetAuthUrl returns the authentication url of the Nextcloud data source
 func (s *NextcloudOAuth2DataSource) GetAuthUrl() string {
 	// Reference: https://docs.nextcloud.com/server/stable/developer_manual/_static/openapi.html#/operations/oauth2-login_redirector-authorize
 	return s.baseUrl + "apps/oauth2/authorize"
 }
 // GetTokenUrl returns the token url of the Nextcloud data source
 func (s *NextcloudOAuth2DataSource) GetTokenUrl() string {
 	// Reference: https://docs.nextcloud.com/server/stable/developer_manual/_static/openapi.html#/operations/oauth2-oauth_api-get-token
 	return s.baseUrl + "apps/oauth2/api/v1/token"
 }
 // GetUserInfoRequest returns the user info request of the Nextcloud data source
 func (s *NextcloudOAuth2DataSource) GetUserInfoRequest() (*http.Request, error) {
 	// Reference: https://docs.nextcloud.com/server/stable/developer_manual/_static/openapi.html#/operations/provisioning_api-users-get-current-user
 	req, err := http.NewRequest("GET", s.baseUrl+"ocs/v2.php/cloud/user", nil)
 	if err != nil {
 		return nil, err
 	}
 	req.Header.Set("Accept", "application/json")
 	req.Header.Set("OCS-APIRequest", "true")
 	return req, nil
 }
 // GetScopes returns the scopes required by the Nextcloud provider
 func (s *NextcloudOAuth2DataSource) GetScopes() []string {
 	return []string{}
 }
 // ParseUserInfo returns the user info by parsing the response body
 func (s *NextcloudOAuth2DataSource) ParseUserInfo(c core.Context, body []byte) (*data.OAuth2UserInfo, error) {
 	userInfoResp := &nextcloudUserInfoResponse{}
 	err := json.Unmarshal(body, &userInfoResp)
 	if err != nil {
 		log.Warnf(c, "[nextcloud_oauth2_datasource.ParseUserInfo] failed to parse user info response body, because %s", err.Error())
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	if userInfoResp.OCS == nil || userInfoResp.OCS.Meta == nil || userInfoResp.OCS.Data == nil {
 		log.Warnf(c, "[nextcloud_oauth2_datasource.ParseUserInfo] invalid user info response body")
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	if userInfoResp.OCS.Meta.StatusCode != 200 {
 		log.Warnf(c, "[nextcloud_oauth2_datasource.ParseUserInfo] user info response status code is %d", userInfoResp.OCS.Meta.StatusCode)
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	if userInfoResp.OCS.Data.ID == "" {
 		log.Warnf(c, "[nextcloud_oauth2_datasource.ParseUserInfo] user info id is empty")
 		return nil, errs.ErrCannotRetrieveUserInfo
 	}
 	return &data.OAuth2UserInfo{
 		UserName: userInfoResp.OCS.Data.ID,
 		Email:    userInfoResp.OCS.Data.Email,
 		NickName: userInfoResp.OCS.Data.DisplayName,
 	}, nil
 }
 // NewNextcloudOAuth2Provider creates a new Nextcloud OAuth 2.0 provider instance
 func NewNextcloudOAuth2Provider(config *settings.Config, redirectUrl string) (provider.OAuth2Provider, error) {
 	if len(config.OAuth2NextcloudBaseUrl) < 1 {
 		return nil, errs.ErrInvalidOAuth2Config
 	}
 	baseUrl := config.OAuth2NextcloudBaseUrl
 	if baseUrl[len(baseUrl)-1] != '/' {
 		baseUrl += "/"
 	}
 	return common.NewCommonOAuth2Provider(config, redirectUrl, &NextcloudOAuth2DataSource{
 		baseUrl: baseUrl,
 	}), nil
 }
@@ -0,0 +1,116 @@
 package nextcloud
 import (
 	"testing"
 	"github.com/stretchr/testify/assert"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider/common"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 func TestNewNextcloudOAuth2Provider(t *testing.T) {
 	provider, err := NewNextcloudOAuth2Provider(&settings.Config{
 		OAuth2NextcloudBaseUrl: "https://example.com/",
 	}, "")
 	assert.Nil(t, err)
 	assert.Equal(t, "https://example.com/apps/oauth2/authorize", provider.(*common.CommonOAuth2Provider).GetDataSource().GetAuthUrl())
 	assert.Equal(t, "https://example.com/apps/oauth2/api/v1/token", provider.(*common.CommonOAuth2Provider).GetDataSource().GetTokenUrl())
 	provider, err = NewNextcloudOAuth2Provider(&settings.Config{
 		OAuth2NextcloudBaseUrl: "https://example.com/index.php",
 	}, "")
 	assert.Nil(t, err)
 	assert.Equal(t, "https://example.com/index.php/apps/oauth2/authorize", provider.(*common.CommonOAuth2Provider).GetDataSource().GetAuthUrl())
 	assert.Equal(t, "https://example.com/index.php/apps/oauth2/api/v1/token", provider.(*common.CommonOAuth2Provider).GetDataSource().GetTokenUrl())
 	provider, err = NewNextcloudOAuth2Provider(&settings.Config{}, "")
 	assert.Equal(t, errs.ErrInvalidOAuth2Config, err)
 }
 func TestNextcloudOAuth2Datasource_GetUserInfoRequest(t *testing.T) {
 	datasource := &NextcloudOAuth2DataSource{baseUrl: "https://example.com/"}
 	req, err := datasource.GetUserInfoRequest()
 	assert.Nil(t, err)
 	assert.Equal(t, "GET", req.Method)
 	assert.Equal(t, "https://example.com/ocs/v2.php/cloud/user", req.URL.String())
 	assert.Equal(t, "application/json", req.Header.Get("Accept"))
 	assert.Equal(t, "true", req.Header.Get("OCS-APIRequest"))
 }
 func TestNextcloudOAuth2Datasource_ParseUserInfo_Success(t *testing.T) {
 	datasource := &NextcloudOAuth2DataSource{}
 	responseContent := `{
 		"ocs": {
 			"meta": {
 				"status": "ok",
 				"statuscode": 200
 			},
 			"data": {
 				"id": "user1",
 				"email": "user1@example.com",
 				"display-name": "User"
 			}
 		}
 	}`
 	info, err := datasource.ParseUserInfo(core.NewNullContext(), []byte(responseContent))
 	assert.Nil(t, err)
 	assert.Equal(t, "user1", info.UserName)
 	assert.Equal(t, "user1@example.com", info.Email)
 	assert.Equal(t, "User", info.NickName)
 }
 func TestNextcloudOAuth2Datasource_ParseUserInfo_InvalidJson(t *testing.T) {
 	datasource := &NextcloudOAuth2DataSource{}
 	_, err := datasource.ParseUserInfo(core.NewNullContext(), []byte("invalid"))
 	assert.Equal(t, errs.ErrCannotRetrieveUserInfo, err)
 }
 func TestNextcloudOAuth2Datasource_ParseUserInfo_MissingFields(t *testing.T) {
 	datasource := &NextcloudOAuth2DataSource{}
 	responseContent := `{"ocs": {}}`
 	_, err := datasource.ParseUserInfo(core.NewNullContext(), []byte(responseContent))
 	assert.Equal(t, errs.ErrCannotRetrieveUserInfo, err)
 }
 func TestNextcloudOAuth2Datasource_ParseUserInfo_Non200StatusCode(t *testing.T) {
 	datasource := &NextcloudOAuth2DataSource{}
 	responseContent := `{
 		"ocs": {
 			"meta": {
 				"status": "error",
 				"statuscode": 400
 			},
 			"data": {}
 		}
 	}`
 	_, err := datasource.ParseUserInfo(core.NewNullContext(), []byte(responseContent))
 	assert.Equal(t, errs.ErrCannotRetrieveUserInfo, err)
 }
 func TestNextcloudOAuth2Datasource_ParseUserInfo_EmptyID(t *testing.T) {
 	datasource := &NextcloudOAuth2DataSource{}
 	responseContent := `{
 		"ocs": {
 			"meta": {
 				"status": "ok",
 				"statuscode": 200
 			},
 			"data": {
 				"id": "",
 				"email": "user1@example.com",
 				"display-name": "User One"
 			}
 		}
 	}`
 	_, err := datasource.ParseUserInfo(core.NewNullContext(), []byte(responseContent))
 	assert.Equal(t, errs.ErrCannotRetrieveUserInfo, err)
 }
@@ -0,0 +1,20 @@
 package provider
 import (
 	"golang.org/x/oauth2"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/data"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 )
 // OAuth2Provider defines the structure of OAuth 2.0 provider
 type OAuth2Provider interface {
 	// GetOAuth2AuthUrl returns the authentication url of the provider
 	GetOAuth2AuthUrl(c core.Context, state string, opts ...oauth2.AuthCodeOption) (string, error)
 	// GetOAuth2Token returns the OAuth 2.0 token of the provider
 	GetOAuth2Token(c core.Context, code string, opts ...oauth2.AuthCodeOption) (*oauth2.Token, error)
 	// GetUserInfo returns the user info
 	GetUserInfo(c core.Context, oauth2Token *oauth2.Token) (*data.OAuth2UserInfo, error)
 }
@@ -0,0 +1,188 @@
 package oidc
 import (
 	"context"
 	"golang.org/x/oauth2"
 	"github.com/coreos/go-oidc/v3/oidc"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/data"
 	"github.com/mayswind/ezbookkeeping/pkg/auth/oauth2/provider"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/httpclient"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/settings"
 )
 // OIDCClaims represents OIDC claims
 type OIDCClaims struct {
 	PreferredUserName string `json:"preferred_username"`
 	UserName          string `json:"username"`
 	Name              string `json:"name"`
 	Email             string `json:"email"`
 }
 // OIDCProvider represents OIDC provider
 type OIDCProvider struct {
 	provider.OAuth2Provider
 	oidcIssuerURL      string
 	oidcCheckIssuerURL bool
 	redirectUrl        string
 	oauth2ClientID     string
 	oauth2ClientSecret string
 	oauth2Config       *oauth2.Config
 	oidcProvider       *oidc.Provider
 	oidcVerifier       *oidc.IDTokenVerifier
 }
 // GetOAuth2AuthUrl returns the authentication url of the OIDC provider
 func (p *OIDCProvider) GetOAuth2AuthUrl(c core.Context, state string, opts ...oauth2.AuthCodeOption) (string, error) {
 	oauth2Config, err := p.getOAuth2Config(c)
 	if err != nil {
 		return "", err
 	}
 	return oauth2Config.AuthCodeURL(state, opts...), nil
 }
 // GetOAuth2Token returns the OAuth 2.0 token of the OIDC provider
 func (p *OIDCProvider) GetOAuth2Token(c core.Context, code string, opts ...oauth2.AuthCodeOption) (*oauth2.Token, error) {
 	oauth2Config, err := p.getOAuth2Config(c)
 	if err != nil {
 		return nil, err
 	}
 	return oauth2Config.Exchange(c, code, opts...)
 }
 // GetUserInfo returns the user info by the OIDC provider
 func (p *OIDCProvider) GetUserInfo(c core.Context, oauth2Token *oauth2.Token) (*data.OAuth2UserInfo, error) {
 	_, err := p.getOAuth2Config(c)
 	if err != nil {
 		return nil, err
 	}
 	rawIDToken, ok := oauth2Token.Extra("id_token").(string)
 	if !ok {
 		log.Errorf(c, "[oidc_provider.GetUserInfo] missing \"id_token\" field in oauth 2.0 token")
 		return nil, errs.ErrInvalidOAuth2Token
 	}
 	idToken, err := p.oidcVerifier.Verify(c, rawIDToken)
 	if err != nil {
 		log.Errorf(c, "[oidc_provider.GetUserInfo] failed to verify \"id_token\" field in oauth 2.0 token, because %s", err.Error())
 		return nil, errs.ErrInvalidOAuth2Token
 	}
 	var claims OIDCClaims
 	err = idToken.Claims(&claims)
 	if err != nil {
 		log.Errorf(c, "[oidc_provider.GetUserInfo] failed to parse claims in oauth 2.0 token, because %s", err.Error())
 		return nil, errs.ErrInvalidOAuth2Token
 	}
 	userName := claims.PreferredUserName
 	email := claims.Email
 	nickName := claims.Name
 	if userName == "" || email == "" || nickName == "" {
 		userInfo, err := p.oidcProvider.UserInfo(httpclient.CustomHttpResponseLog(c, func(data []byte) {
 			log.Debugf(c, "[oidc_provider.GetUserInfo] response is %s", data)
 		}), oauth2.StaticTokenSource(oauth2Token))
 		if err != nil {
 			log.Errorf(c, "[oidc_provider.GetUserInfo] failed to get user info, because %s", err.Error())
 			return nil, errs.ErrCannotRetrieveUserInfo
 		}
 		err = userInfo.Claims(&claims)
 		if err != nil {
 			log.Errorf(c, "[oidc_provider.GetUserInfo] failed to parse user info, because %s", err.Error())
 			return nil, errs.ErrCannotRetrieveUserInfo
 		}
 		if userName == "" {
 			userName = claims.PreferredUserName
 		}
 		if userName == "" {
 			userName = claims.UserName
 		}
 		if email == "" {
 			email = claims.Email
 		}
 		if nickName == "" {
 			nickName = claims.Name
 		}
 	}
 	return &data.OAuth2UserInfo{
 		UserName: userName,
 		Email:    email,
 		NickName: nickName,
 	}, nil
 }
 func (p *OIDCProvider) getOAuth2Config(c core.Context) (*oauth2.Config, error) {
 	if p.oauth2Config != nil {
 		return p.oauth2Config, nil
 	}
 	var ctx context.Context = c
 	if !p.oidcCheckIssuerURL {
 		ctx = oidc.InsecureIssuerURLContext(c, p.oidcIssuerURL)
 	}
 	oidcProvider, err := oidc.NewProvider(ctx, p.oidcIssuerURL)
 	if err != nil {
 		log.Errorf(c, "[oidc_provider.getOAuth2Config] failed to create oidc provider, because %s", err.Error())
 		return nil, err
 	}
 	oidcVerifier := oidcProvider.Verifier(&oidc.Config{
 		ClientID:        p.oauth2ClientID,
 		SkipIssuerCheck: !p.oidcCheckIssuerURL,
 	})
 	oauth2Config := &oauth2.Config{
 		ClientID:     p.oauth2ClientID,
 		ClientSecret: p.oauth2ClientSecret,
 		Endpoint:     oidcProvider.Endpoint(),
 		RedirectURL:  p.redirectUrl,
 		Scopes:       []string{oidc.ScopeOpenID, "profile", "email"},
 	}
 	p.oauth2Config = oauth2Config
 	p.oidcProvider = oidcProvider
 	p.oidcVerifier = oidcVerifier
 	return oauth2Config, nil
 }
 // NewOIDCProvider returns a new OIDC provider
 func NewOIDCProvider(config *settings.Config, redirectUrl string) (*OIDCProvider, error) {
 	if len(config.OAuth2OIDCProviderIssuerURL) < 1 {
 		return nil, errs.ErrInvalidOAuth2Config
 	}
 	return &OIDCProvider{
 		oidcIssuerURL:      config.OAuth2OIDCProviderIssuerURL,
 		oidcCheckIssuerURL: config.OAuth2OIDCProviderCheckIssuerURL,
 		redirectUrl:        redirectUrl,
 		oauth2ClientID:     config.OAuth2ClientID,
 		oauth2ClientSecret: config.OAuth2ClientSecret,
 		oauth2Config:       nil,
 	}, nil
 }
@@ -9,7 +9,7 @@ import (
 // AvatarProviderContainer contains the current user avatar provider
 type AvatarProviderContainer struct {
-	Current AvatarProvider
+	current AvatarProvider
 }
 // Initialize a user avatar provider container singleton instance
@@ -20,13 +20,13 @@ var (
 // InitializeAvatarProvider initializes the current user avatar provider according to the config
 func InitializeAvatarProvider(config *settings.Config) error {
 	if config.AvatarProvider == core.USER_AVATAR_PROVIDER_INTERNAL {
-		Container.Current = NewInternalStorageAvatarProvider(config)
+		Container.current = NewInternalStorageAvatarProvider(config)
 		return nil
 	} else if config.AvatarProvider == core.USER_AVATAR_PROVIDER_GRAVATAR {
-		Container.Current = NewGravatarAvatarProvider()
+		Container.current = NewGravatarAvatarProvider()
 		return nil
 	} else if config.AvatarProvider == "" {
-		Container.Current = NewNullAvatarProvider()
+		Container.current = NewNullAvatarProvider()
 		return nil
 	}
@@ -35,5 +35,9 @@ func InitializeAvatarProvider(config *settings.Config) error {
 // GetAvatarUrl returns the avatar url by the current user avatar provider
 func (p *AvatarProviderContainer) GetAvatarUrl(user *models.User) string {
-	return p.Current.GetAvatarUrl(user)
+	if p.current == nil {
 		return ""
 	}
 	return p.current.GetAvatarUrl(user)
 }
@@ -9,5 +9,5 @@ type CliUsingConfig struct {
 // CurrentConfig returns the current config
 func (l *CliUsingConfig) CurrentConfig() *settings.Config {
-	return l.container.Current
+	return l.container.GetCurrentConfig()
 }
@@ -5,6 +5,7 @@ import (
 	"time"
 	"github.com/mayswind/ezbookkeeping/pkg/converters"
 	"github.com/mayswind/ezbookkeeping/pkg/converters/converter"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
@@ -88,9 +89,10 @@ func (l *UserDataCli) AddNewUser(c *core.CliContext, username string, email stri
 		DefaultCurrency:      defaultCurrency,
 		FirstDayOfWeek:       core.WEEKDAY_SUNDAY,
 		TransactionEditScope: models.TRANSACTION_EDIT_SCOPE_ALL,
 		FeatureRestriction:   l.CurrentConfig().DefaultFeatureRestrictions,
 	}
-	err := l.users.CreateUser(c, user)
+	err := l.users.CreateUser(c, user, false)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.AddNewUser] failed to create user \"%s\", because %s", user.Username, err.Error())
@@ -148,7 +150,7 @@ func (l *UserDataCli) ModifyUserPassword(c *core.CliContext, username string, pa
 		Password: password,
 	}
-	_, _, err = l.users.UpdateUser(c, userNew, false)
+	err = l.users.UpdateUserPassword(c, userNew)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.ModifyUserPassword] failed to update user \"%s\" password, because %s", user.Username, err.Error())
@@ -237,6 +239,57 @@ func (l *UserDataCli) DisableUser(c *core.CliContext, username string) error {
 	return nil
 }
 // SetUserFeatureRestrictions sets user feature restrictions according to the specified user name
 func (l *UserDataCli) SetUserFeatureRestrictions(c *core.CliContext, username string, featureRestriction core.UserFeatureRestrictions) error {
 	if username == "" {
 		log.CliErrorf(c, "[user_data.SetUserFeatureRestrictions] user name is empty")
 		return errs.ErrUsernameIsEmpty
 	}
 	err := l.users.UpdateUserFeatureRestriction(c, username, featureRestriction)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.SetUserFeatureRestrictions] failed to set user feature restrictions by user name \"%s\", because %s", username, err.Error())
 		return err
 	}
 	return nil
 }
 // AddUserFeatureRestrictions adds user feature restrictions according to the specified user name
 func (l *UserDataCli) AddUserFeatureRestrictions(c *core.CliContext, username string, featureRestriction core.UserFeatureRestrictions) error {
 	if username == "" {
 		log.CliErrorf(c, "[user_data.AddUserFeatureRestrictions] user name is empty")
 		return errs.ErrUsernameIsEmpty
 	}
 	err := l.users.AddUserFeatureRestriction(c, username, featureRestriction)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.AddUserFeatureRestrictions] failed to add user feature restrictions by user name \"%s\", because %s", username, err.Error())
 		return err
 	}
 	return nil
 }
 // RemoveUserFeatureRestrictions removes user feature restrictions according to the specified user name
 func (l *UserDataCli) RemoveUserFeatureRestrictions(c *core.CliContext, username string, featureRestriction core.UserFeatureRestrictions) error {
 	if username == "" {
 		log.CliErrorf(c, "[user_data.RemoveUserFeatureRestrictions] user name is empty")
 		return errs.ErrUsernameIsEmpty
 	}
 	err := l.users.RemoveUserFeatureRestriction(c, username, featureRestriction)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.RemoveUserFeatureRestrictions] failed to remove user feature restrictions by user name \"%s\", because %s", username, err.Error())
 		return err
 	}
 	return nil
 }
 // ResendVerifyEmail resends an email with account activation link
 func (l *UserDataCli) ResendVerifyEmail(c *core.CliContext, username string) error {
 	if !l.CurrentConfig().EnableUserVerifyEmail {
@@ -342,7 +395,7 @@ func (l *UserDataCli) ListUserTokens(c *core.CliContext, username string) ([]*mo
 		return nil, err
 	}
-	tokens, err := l.tokens.GetAllUnexpiredNormalTokensByUid(c, uid)
+	tokens, err := l.tokens.GetAllUnexpiredNormalAndMCPTokensByUid(c, uid)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.ListUserTokens] failed to get tokens of user \"%s\", because %s", username, err.Error())
@@ -352,6 +405,88 @@ func (l *UserDataCli) ListUserTokens(c *core.CliContext, username string) ([]*mo
 	return tokens, nil
 }
 // CreateNewUserToken returns a new token for the specified user
 func (l *UserDataCli) CreateNewUserToken(c *core.CliContext, username string, tokenType string, expiresInSeconds int64) (*models.TokenRecord, string, error) {
 	if username == "" {
 		log.CliErrorf(c, "[user_data.CreateNewUserToken] user name is empty")
 		return nil, "", errs.ErrUsernameIsEmpty
 	}
 	user, err := l.GetUserByUsername(c, username)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.CreateNewUserToken] error occurs when getting user by user name")
 		return nil, "", err
 	}
 	var token string
 	var tokenRecord *models.TokenRecord
 	if tokenType == "api" {
 		if !l.CurrentConfig().EnableAPIToken {
 			return nil, "", errs.ErrAPITokenNotEnabled
 		}
 		if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_GENERATE_API_TOKEN) {
 			return nil, "", errs.ErrNotPermittedToPerformThisAction
 		}
 		token, tokenRecord, err = l.tokens.CreateAPITokenViaCli(c, user, expiresInSeconds)
 	} else if tokenType == "mcp" {
 		if !l.CurrentConfig().EnableMCPServer {
 			return nil, "", errs.ErrMCPServerNotEnabled
 		}
 		if user.FeatureRestriction.Contains(core.USER_FEATURE_RESTRICTION_TYPE_MCP_ACCESS) {
 			return nil, "", errs.ErrNotPermittedToPerformThisAction
 		}
 		token, tokenRecord, err = l.tokens.CreateMCPTokenViaCli(c, user, expiresInSeconds)
 	} else {
 		return nil, "", errs.ErrParameterInvalid
 	}
 	if err != nil {
 		log.CliErrorf(c, "[user_data.CreateNewUserToken] failed to create token for user \"%s\", because %s", username, err.Error())
 		return nil, "", err
 	}
 	return tokenRecord, token, nil
 }
 // RevokeUserToken revokes the specified token of the user
 func (l *UserDataCli) RevokeUserToken(c *core.CliContext, token string) error {
 	_, claims, _, err := l.tokens.ParseToken(c, token)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.RevokeUserToken] failed to parse token, because %s", err.Error())
 		return err
 	}
 	userTokenId, err := utils.StringToInt64(claims.UserTokenId)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.RevokeUserToken] failed to get user token id, because %s", err.Error())
 		return err
 	}
 	tokenRecord := &models.TokenRecord{
 		Uid:             claims.Uid,
 		UserTokenId:     userTokenId,
 		CreatedUnixTime: claims.IssuedAt,
 	}
 	tokenId := l.tokens.GenerateTokenId(tokenRecord)
 	err = l.tokens.DeleteToken(c, tokenRecord)
 	if err != nil {
 		log.Errorf(c, "[user_data.RevokeUserToken] failed to revoke token \"id:%s\" for user \"uid:%d\", because %s", tokenId, claims.Uid, err.Error())
 		return err
 	}
 	return nil
 }
 // ClearUserTokens clears all tokens of the specified user
 func (l *UserDataCli) ClearUserTokens(c *core.CliContext, username string) error {
 	if username == "" {
@@ -684,7 +819,7 @@ func (l *UserDataCli) ImportTransaction(c *core.CliContext, username string, fil
 		return err
 	}
-	parsedTransactions, newAccounts, newSubExpenseCategories, newSubIncomeCategories, newSubTransferCategories, newTags, err := dataImporter.ParseImportedData(c, user, data, utils.GetTimezoneOffsetMinutes(time.Local), accountMap, expenseCategoryMap, incomeCategoryMap, transferCategoryMap, tagMap)
+	parsedTransactions, newAccounts, newSubExpenseCategories, newSubIncomeCategories, newSubTransferCategories, newTags, err := dataImporter.ParseImportedData(c, user, data, time.Local, converter.DefaultImporterOptions, accountMap, expenseCategoryMap, incomeCategoryMap, transferCategoryMap, tagMap)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.ImportTransaction] failed to parse imported data for \"%s\", because %s", username, err.Error())
@@ -734,7 +869,7 @@ func (l *UserDataCli) ImportTransaction(c *core.CliContext, username string, fil
 		return errs.ErrOperationFailed
 	}
-	err = l.transactions.BatchCreateTransactions(c, user.Uid, newTransactions, newTransactionTagIdsMap)
+	err = l.transactions.BatchCreateTransactions(c, user.Uid, newTransactions, newTransactionTagIdsMap, nil)
 	if err != nil {
 		log.CliErrorf(c, "[user_data.ImportTransaction] failed to create transaction, because %s", err.Error())
@@ -800,7 +935,7 @@ func (l *UserDataCli) getUserEssentialData(c *core.CliContext, uid int64, userna
 	return accountMap, categoryMap, tagMap, tagIndexes, tagIndexesMap, nil
 }
-func (l *UserDataCli) getUserEssentialDataForImport(c *core.CliContext, uid int64, username string) (accountMap map[string]*models.Account, expenseCategoryMap map[string]*models.TransactionCategory, incomeCategoryMap map[string]*models.TransactionCategory, transferCategoryMap map[string]*models.TransactionCategory, tagMap map[string]*models.TransactionTag, err error) {
+func (l *UserDataCli) getUserEssentialDataForImport(c *core.CliContext, uid int64, username string) (accountMap map[string]*models.Account, expenseCategoryMap map[string]map[string]*models.TransactionCategory, incomeCategoryMap map[string]map[string]*models.TransactionCategory, transferCategoryMap map[string]map[string]*models.TransactionCategory, tagMap map[string]*models.TransactionTag, err error) {
 	if uid <= 0 {
 		log.CliErrorf(c, "[user_data.getUserEssentialDataForImport] user uid \"%d\" is invalid", uid)
 		return nil, nil, nil, nil, nil, errs.ErrUserIdInvalid
@@ -813,7 +948,7 @@ func (l *UserDataCli) getUserEssentialDataForImport(c *core.CliContext, uid int6
 		return nil, nil, nil, nil, nil, err
 	}
-	accountMap = l.accounts.GetAccountNameMapByList(accounts)
+	accountMap = l.accounts.GetVisibleAccountNameMapByList(accounts)
 	categories, err := l.categories.GetAllCategoriesByUid(c, uid, 0, -1)
@@ -822,7 +957,7 @@ func (l *UserDataCli) getUserEssentialDataForImport(c *core.CliContext, uid int6
 		return nil, nil, nil, nil, nil, err
 	}
-	expenseCategoryMap, incomeCategoryMap, transferCategoryMap = l.categories.GetCategoryNameMapByList(categories)
+	expenseCategoryMap, incomeCategoryMap, transferCategoryMap = l.categories.GetVisibleSubCategoryNameMapByList(categories)
 	tags, err := l.tags.GetAllTagsByUid(c, uid)
@@ -831,7 +966,7 @@ func (l *UserDataCli) getUserEssentialDataForImport(c *core.CliContext, uid int6
 		return nil, nil, nil, nil, nil, err
 	}
-	tagMap = l.tags.GetTagNameMapByList(tags)
+	tagMap = l.tags.GetVisibleTagNameMapByList(tags)
 	return accountMap, expenseCategoryMap, incomeCategoryMap, transferCategoryMap, tagMap, nil
 }
@@ -883,7 +1018,7 @@ func (l *UserDataCli) checkTransactionCategory(c *core.CliContext, transaction *
 		return errs.ErrTransactionCategoryNotFound
 	}
-	if category.ParentCategoryId == models.LevelOneTransactionParentId {
+	if category.ParentCategoryId == models.LevelOneTransactionCategoryParentId {
 		log.CliErrorf(c, "[user_data.checkTransactionCategory] the transaction category \"id:%d\" of transaction \"id:%d\" is not a sub category", transaction.CategoryId, transaction.TransactionId)
 		return errs.ErrOperationFailed
 	}
@@ -10,7 +10,7 @@ var (
 	AlipayAppTransactionDataCsvFileImporter = &alipayAppTransactionDataCsvFileImporter{
 		alipayTransactionDataCsvFileImporter{
 			fileHeaderLine:         "------------------------------------------------------------------------------------",
-			dataHeaderStartContent: "支付宝（中国）网络技术有限公司  电子客户回单",
+			dataHeaderStartContent: []string{"支付宝（中国）网络技术有限公司  电子客户回单", "支付宝支付科技有限公司  电子客户回单"},
 			originalColumnNames: alipayTransactionColumnNames{
 				timeColumnName:           "交易时间",
 				categoryColumnName:       "交易分类",
@@ -2,20 +2,18 @@ package alipay
 import (
 	"bytes"
-	"encoding/csv"
+	"time"
 	"io"
 	"strings"
 	"golang.org/x/text/encoding/simplifiedchinese"
 	"golang.org/x/text/transform"
-	csvdatatable "github.com/mayswind/ezbookkeeping/pkg/converters/csv"
+	"github.com/mayswind/ezbookkeeping/pkg/converters/converter"
 	"github.com/mayswind/ezbookkeeping/pkg/converters/csv"
 	"github.com/mayswind/ezbookkeeping/pkg/converters/datatable"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 var alipayTransactionSupportedColumns = map[datatable.TransactionDataTableColumn]bool{
@@ -50,23 +48,29 @@ type alipayTransactionColumnNames struct {
 // alipayTransactionDataCsvFileImporter defines the structure of alipay csv importer for transaction data
 type alipayTransactionDataCsvFileImporter struct {
 	fileHeaderLine         string
-	dataHeaderStartContent string
+	dataHeaderStartContent []string
 	dataBottomEndLineRune  rune
 	originalColumnNames    alipayTransactionColumnNames
 }
 // ParseImportedData returns the imported data by parsing the alipay transaction csv data
-func (c *alipayTransactionDataCsvFileImporter) ParseImportedData(ctx core.Context, user *models.User, data []byte, defaultTimezoneOffset int16, accountMap map[string]*models.Account, expenseCategoryMap map[string]*models.TransactionCategory, incomeCategoryMap map[string]*models.TransactionCategory, transferCategoryMap map[string]*models.TransactionCategory, tagMap map[string]*models.TransactionTag) (models.ImportedTransactionSlice, []*models.Account, []*models.TransactionCategory, []*models.TransactionCategory, []*models.TransactionCategory, []*models.TransactionTag, error) {
+func (c *alipayTransactionDataCsvFileImporter) ParseImportedData(ctx core.Context, user *models.User, data []byte, defaultTimezone *time.Location, additionalOptions converter.TransactionDataImporterOptions, accountMap map[string]*models.Account, expenseCategoryMap map[string]map[string]*models.TransactionCategory, incomeCategoryMap map[string]map[string]*models.TransactionCategory, transferCategoryMap map[string]map[string]*models.TransactionCategory, tagMap map[string]*models.TransactionTag) (models.ImportedTransactionSlice, []*models.Account, []*models.TransactionCategory, []*models.TransactionCategory, []*models.TransactionCategory, []*models.TransactionTag, error) {
 	enc := simplifiedchinese.GB18030
 	reader := transform.NewReader(bytes.NewReader(data), enc.NewDecoder())
-	dataTable, err := c.createNewAlipayImportedDataTable(ctx, reader, c.fileHeaderLine, c.dataHeaderStartContent, c.dataBottomEndLineRune)
+	csvDataTable, err := csv.CreateNewCsvBasicDataTable(ctx, reader, false)
 	if err != nil {
 		return nil, nil, nil, nil, nil, nil, err
 	}
-	commonDataTable := datatable.CreateNewImportedCommonDataTable(dataTable)
+	dataTable, err := createNewAlipayTransactionBasicDataTable(ctx, csvDataTable, c.fileHeaderLine, c.dataHeaderStartContent, c.dataBottomEndLineRune)
 	if err != nil {
 		return nil, nil, nil, nil, nil, nil, err
 	}
 	commonDataTable := datatable.CreateNewCommonDataTableFromBasicDataTable(dataTable)
 	if !commonDataTable.HasColumn(c.originalColumnNames.timeColumnName) ||
 		!commonDataTable.HasColumn(c.originalColumnNames.amountColumnName) ||
@@ -76,86 +80,9 @@ func (c *alipayTransactionDataCsvFileImporter) ParseImportedData(ctx core.Contex
 		return nil, nil, nil, nil, nil, nil, errs.ErrMissingRequiredFieldInHeaderRow
 	}
-	transactionRowParser := createAlipayTransactionDataRowParser(c.originalColumnNames)
+	transactionRowParser := createAlipayTransactionDataRowParser(c.originalColumnNames, dataTable.HeaderColumnNames())
-	transactionDataTable := datatable.CreateNewCommonTransactionDataTable(commonDataTable, alipayTransactionSupportedColumns, transactionRowParser)
+	transactionDataTable := datatable.CreateNewTransactionDataTableFromCommonDataTable(commonDataTable, alipayTransactionSupportedColumns, transactionRowParser)
-	dataTableImporter := datatable.CreateNewSimpleImporter(alipayTransactionTypeNameMapping)
+	dataTableImporter := converter.CreateNewSimpleImporterWithTypeNameMapping(alipayTransactionTypeNameMapping)
-	return dataTableImporter.ParseImportedData(ctx, user, transactionDataTable, defaultTimezoneOffset, accountMap, expenseCategoryMap, incomeCategoryMap, transferCategoryMap, tagMap)
+	return dataTableImporter.ParseImportedData(ctx, user, transactionDataTable, defaultTimezone, additionalOptions, accountMap, expenseCategoryMap, incomeCategoryMap, transferCategoryMap, tagMap)
 }
 func (c *alipayTransactionDataCsvFileImporter) createNewAlipayImportedDataTable(ctx core.Context, reader io.Reader, fileHeaderLine string, dataHeaderStartContent string, dataBottomEndLineRune rune) (datatable.ImportedDataTable, error) {
 	csvReader := csv.NewReader(reader)
 	csvReader.FieldsPerRecord = -1
 	allOriginalLines := make([][]string, 0)
 	hasFileHeader := false
 	foundContentBeforeDataHeaderLine := false
 	for {
 		items, err := csvReader.Read()
 		if err == io.EOF {
 			break
 		}
 		if err != nil {
 			log.Errorf(ctx, "[alipay_transaction_csv_data_table.createNewAlipayImportedDataTable] cannot parse alipay csv data, because %s", err.Error())
 			return nil, errs.ErrInvalidCSVFile
 		}
 		if !hasFileHeader {
 			if len(items) <= 0 {
 				continue
 			} else if strings.Index(items[0], fileHeaderLine) == 0 {
 				hasFileHeader = true
 				continue
 			} else {
 				log.Warnf(ctx, "[alipay_transaction_csv_data_table.createNewAlipayImportedDataTable] read unexpected line before read file header, line content is %s", strings.Join(items, ","))
 				continue
 			}
 		}
 		if !foundContentBeforeDataHeaderLine {
 			if len(items) <= 0 {
 				continue
 			} else if strings.Index(items[0], dataHeaderStartContent) >= 0 {
 				foundContentBeforeDataHeaderLine = true
 				continue
 			} else {
 				continue
 			}
 		}
 		if foundContentBeforeDataHeaderLine {
 			if len(items) <= 0 {
 				continue
 			} else if len(items) == 1 && dataBottomEndLineRune > 0 && utils.ContainsOnlyOneRune(items[0], dataBottomEndLineRune) {
 				break
 			}
 			for i := 0; i < len(items); i++ {
 				items[i] = strings.Trim(items[i], " ")
 			}
 			if len(allOriginalLines) > 0 && len(items) < len(allOriginalLines[0]) {
 				log.Errorf(ctx, "[alipay_transaction_csv_data_table.createNewAlipayImportedDataTable] cannot parse row \"index:%d\", because may missing some columns (column count %d in data row is less than header column count %d)", len(allOriginalLines), len(items), len(allOriginalLines[0]))
 				return nil, errs.ErrFewerFieldsInDataRowThanInHeaderRow
 			}
 			allOriginalLines = append(allOriginalLines, items)
 		}
 	}
 	if !hasFileHeader || !foundContentBeforeDataHeaderLine {
 		return nil, errs.ErrInvalidFileHeader
 	}
 	if len(allOriginalLines) < 2 {
 		log.Errorf(ctx, "[alipay_transaction_csv_data_table.createNewAlipayImportedDataTable] cannot parse import data, because data table row count is less 1")
 		return nil, errs.ErrNotFoundTransactionDataInFile
 	}
 	dataTable := csvdatatable.CreateNewCustomCsvImportedDataTable(allOriginalLines)
 	return dataTable, nil
 }
@@ -8,6 +8,7 @@ import (
 	"golang.org/x/text/encoding/simplifiedchinese"
 	"github.com/mayswind/ezbookkeeping/pkg/converters/converter"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/models"
@@ -15,7 +16,7 @@ import (
 )
 func TestAlipayCsvFileImporterParseImportedData_MinimumValidData(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -35,7 +36,7 @@ func TestAlipayCsvFileImporterParseImportedData_MinimumValidData(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, allNewAccounts, allNewSubExpenseCategories, allNewSubIncomeCategories, allNewSubTransferCategories, allNewTags, err := converter.ParseImportedData(context, user, []byte(data), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, allNewAccounts, allNewSubExpenseCategories, allNewSubIncomeCategories, allNewSubTransferCategories, allNewTags, err := importer.ParseImportedData(context, user, []byte(data), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 4, len(allNewTransactions))
@@ -94,7 +95,7 @@ func TestAlipayCsvFileImporterParseImportedData_MinimumValidData(t *testing.T) {
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseRefundTransaction(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -102,6 +103,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseRefundTransaction(t *testin
 		DefaultCurrency: "CNY",
 	}
 	// refund
 	data1, err := simplifiedchinese.GB18030.NewEncoder().String("支付宝交易记录明细查询\n" +
 		"账号:[xxx@xxx.xxx]\n" +
 		"起始日期:[2024-01-01 00:00:00]    终止日期:[2024-09-01 23:59:59]\n" +
@@ -111,7 +113,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseRefundTransaction(t *testin
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err := converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err := importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, int64(1234567890), allNewTransactions[0].Uid)
@@ -121,6 +123,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseRefundTransaction(t *testin
 	assert.Equal(t, "", allNewTransactions[0].OriginalSourceAccountName)
 	assert.Equal(t, "", allNewTransactions[0].OriginalCategoryName)
 	// tax refund
 	data2, err := simplifiedchinese.GB18030.NewEncoder().String("支付宝交易记录明细查询\n" +
 		"账号:[xxx@xxx.xxx]\n" +
 		"起始日期:[2024-01-01 00:00:00]    终止日期:[2024-09-01 23:59:59]\n" +
@@ -130,7 +133,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseRefundTransaction(t *testin
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data2), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data2), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, int64(1234567890), allNewTransactions[0].Uid)
@@ -141,8 +144,48 @@ func TestAlipayCsvFileImporterParseImportedData_ParseRefundTransaction(t *testin
 	assert.Equal(t, "", allNewTransactions[0].OriginalCategoryName)
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseInvestmentRefundTransaction(t *testing.T) {
 	importer := AlipayAppTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
 		Uid:             1234567890,
 		DefaultCurrency: "CNY",
 	}
 	data1, err := simplifiedchinese.GB18030.NewEncoder().String("------------------------------------------------------------------------------------\n" +
 		"导出信息：\n" +
 		"姓名：xxx\n" +
 		"支付宝账户：xxx@xxx.xxx\n" +
 		"起始时间：[2024-01-01 00:00:00]    终止时间：[2024-09-01 23:59:59]\n" +
 		"导出交易类型：[全部]\n" +
 		"------------------------支付宝（中国）网络技术有限公司  电子客户回单------------------------\n" +
 		"交易时间,交易对方,商品说明,收/支,金额,收/付款方式,交易状态,\n" +
 		"2024-09-01 01:00:00,Test Account2,xxx-买入,不计收支,0.01,Test Account,退款成功,\n" +
 		"2024-09-01 02:00:00,Test Account2,xxx-买入退款,不计收支,0.01,Test Account,退款成功,\n")
 	allNewTransactions, _, _, _, _, _, err := importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 2, len(allNewTransactions))
 	assert.Equal(t, int64(1234567890), allNewTransactions[0].Uid)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[0].Type)
 	assert.Equal(t, "2024-09-01 01:00:00", utils.FormatUnixTimeToLongDateTime(utils.GetUnixTimeFromTransactionTime(allNewTransactions[0].TransactionTime), time.UTC))
 	assert.Equal(t, int64(1), allNewTransactions[0].Amount)
 	assert.Equal(t, "Test Account", allNewTransactions[0].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account2", allNewTransactions[0].OriginalDestinationAccountName)
 	assert.Equal(t, int64(1234567890), allNewTransactions[1].Uid)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[1].Type)
 	assert.Equal(t, "2024-09-01 02:00:00", utils.FormatUnixTimeToLongDateTime(utils.GetUnixTimeFromTransactionTime(allNewTransactions[1].TransactionTime), time.UTC))
 	assert.Equal(t, int64(1), allNewTransactions[1].Amount)
 	assert.Equal(t, "Test Account2", allNewTransactions[1].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account", allNewTransactions[1].OriginalDestinationAccountName)
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseInvalidTime(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -159,7 +202,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseInvalidTime(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrTransactionTimeInvalid.Message)
 	data2, err := simplifiedchinese.GB18030.NewEncoder().String("支付宝交易记录明细查询\n" +
@@ -171,12 +214,12 @@ func TestAlipayCsvFileImporterParseImportedData_ParseInvalidTime(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data2), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data2), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrTransactionTimeInvalid.Message)
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseInvalidType(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -193,12 +236,12 @@ func TestAlipayCsvFileImporterParseImportedData_ParseInvalidType(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrNotFoundTransactionDataInFile.Message)
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -216,7 +259,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err := converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err := importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -232,7 +275,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data2), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data2), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -248,7 +291,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data3), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data3), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -265,7 +308,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data4), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data4), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -282,7 +325,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data5), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data5), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -299,7 +342,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data6), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data6), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -316,7 +359,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data7), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data7), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -325,7 +368,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseAccountName(t *testing.T) {
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseCategory(t *testing.T) {
-	converter := AlipayAppTransactionDataCsvFileImporter
+	importer := AlipayAppTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -346,7 +389,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseCategory(t *testing.T) {
 		"2024-09-01 23:59:59,Test Category3,充值-普通充值,不计收支,0.05,交易成功,\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, allNewSubExpenseCategories, allNewSubIncomeCategories, allNewSubTransferCategories, _, err := converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, allNewSubExpenseCategories, allNewSubIncomeCategories, allNewSubTransferCategories, _, err := importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 3, len(allNewTransactions))
@@ -365,7 +408,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseCategory(t *testing.T) {
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseRelatedAccount(t *testing.T) {
-	converter := AlipayAppTransactionDataCsvFileImporter
+	importer := AlipayAppTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -380,42 +423,114 @@ func TestAlipayCsvFileImporterParseImportedData_ParseRelatedAccount(t *testing.T
 		"起始时间：[2024-01-01 00:00:00]    终止时间：[2024-09-01 23:59:59]\n" +
 		"导出交易类型：[全部]\n" +
 		"------------------------支付宝（中国）网络技术有限公司  电子客户回单------------------------\n" +
-		"交易时间,商品说明,收/支,金额,收/付款方式,交易状态,\n" +
+		"交易时间,交易对方,商品说明,收/支,金额,收/付款方式,交易状态,备注,\n" +
-		"2024-09-01 03:45:07,余额宝-单次转入,不计收支,0.01,Test Account,交易成功,\n" +
+		"2024-09-01 00:00:00,xxx,xxx-收益发放,不计收支,0.01,Test Account,交易成功,earning,\n" +
-		"2024-09-01 05:07:29,信用卡还款,不计收支,0.02,Test Account2,交易成功,\n")
+		"2024-09-01 01:00:00,Test Account2,xxx-买入,不计收支,0.01,Test Account,交易成功,purchase investment,\n" +
 		"2024-09-01 02:00:00,Test Account2,xxx-卖出至xxx,不计收支,0.01,Test Account,交易成功,sell investment,\n" +
 		"2024-09-01 03:00:00,xxx,充值-普通充值,不计收支,0.01,Test Account,交易成功,transfer to alipay wallet,\n" +
 		"2024-09-01 04:00:00,Test Account3,提现-实时提现,不计收支,0.01,Test Account,交易成功,transfer from alipay wallet,\n" +
 		"2024-09-01 05:00:00,Test Account3,xxx-单次转入,不计收支,0.01,Test Account,交易成功,transfer in,\n" +
 		"2024-09-01 06:00:00,Test Account3,xxx-转出到银行卡,不计收支,0.01,Test Account,交易成功,transfer out,\n" +
 		"2024-09-01 07:00:00,Test Account3,转账xxx,不计收支,0.01,Test Account,交易成功,transfer,\n" +
 		"2024-09-01 08:00:00,Test Account4,信用卡还款,不计收支,0.01,Test Account,还款成功,repayment,\n")
 	assert.Nil(t, err)
-	allNewTransactions, allNewAccounts, _, _, _, _, err := converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, allNewAccounts, _, _, _, _, err := importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
-	assert.Equal(t, 2, len(allNewTransactions))
+	assert.Equal(t, 9, len(allNewTransactions))
-	assert.Equal(t, 3, len(allNewAccounts))
+	assert.Equal(t, 6, len(allNewAccounts))
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_INCOME, allNewTransactions[0].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[0].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[0].Amount)
 	assert.Equal(t, "Test Account", allNewTransactions[0].OriginalSourceAccountName)
 	assert.Equal(t, "", allNewTransactions[0].OriginalDestinationAccountName)
 	assert.Equal(t, "earning", allNewTransactions[0].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[1].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[1].Uid)
-	assert.Equal(t, int64(2), allNewTransactions[1].Amount)
+	assert.Equal(t, int64(1), allNewTransactions[1].Amount)
-	assert.Equal(t, "Test Account2", allNewTransactions[1].OriginalSourceAccountName)
+	assert.Equal(t, "Test Account", allNewTransactions[1].OriginalSourceAccountName)
-	assert.Equal(t, "", allNewTransactions[1].OriginalDestinationAccountName)
+	assert.Equal(t, "Test Account2", allNewTransactions[1].OriginalDestinationAccountName)
 	assert.Equal(t, "purchase investment", allNewTransactions[1].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[2].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[2].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[2].Amount)
 	assert.Equal(t, "Test Account2", allNewTransactions[2].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account", allNewTransactions[2].OriginalDestinationAccountName)
 	assert.Equal(t, "sell investment", allNewTransactions[2].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[3].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[3].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[3].Amount)
 	assert.Equal(t, "", allNewTransactions[3].OriginalSourceAccountName)
 	assert.Equal(t, "Alipay", allNewTransactions[3].OriginalDestinationAccountName)
 	assert.Equal(t, "transfer to alipay wallet", allNewTransactions[3].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[4].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[4].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[4].Amount)
 	assert.Equal(t, "Alipay", allNewTransactions[4].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account3", allNewTransactions[4].OriginalDestinationAccountName)
 	assert.Equal(t, "transfer from alipay wallet", allNewTransactions[4].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[5].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[5].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[5].Amount)
 	assert.Equal(t, "Test Account", allNewTransactions[5].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account3", allNewTransactions[5].OriginalDestinationAccountName)
 	assert.Equal(t, "transfer in", allNewTransactions[5].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[6].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[6].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[6].Amount)
 	assert.Equal(t, "Test Account", allNewTransactions[6].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account3", allNewTransactions[6].OriginalDestinationAccountName)
 	assert.Equal(t, "transfer out", allNewTransactions[6].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[7].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[7].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[7].Amount)
 	assert.Equal(t, "Test Account", allNewTransactions[7].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account3", allNewTransactions[7].OriginalDestinationAccountName)
 	assert.Equal(t, "transfer", allNewTransactions[7].Comment)
 	assert.Equal(t, models.TRANSACTION_DB_TYPE_TRANSFER_OUT, allNewTransactions[8].Type)
 	assert.Equal(t, int64(1234567890), allNewTransactions[8].Uid)
 	assert.Equal(t, int64(1), allNewTransactions[8].Amount)
 	assert.Equal(t, "Test Account", allNewTransactions[8].OriginalSourceAccountName)
 	assert.Equal(t, "Test Account4", allNewTransactions[8].OriginalDestinationAccountName)
 	assert.Equal(t, "repayment", allNewTransactions[8].Comment)
 	assert.Equal(t, int64(1234567890), allNewAccounts[0].Uid)
 	assert.Equal(t, "Test Account", allNewAccounts[0].Name)
 	assert.Equal(t, "CNY", allNewAccounts[0].Currency)
 	assert.Equal(t, int64(1234567890), allNewAccounts[1].Uid)
-	assert.Equal(t, "", allNewAccounts[1].Name)
+	assert.Equal(t, "Test Account2", allNewAccounts[1].Name)
 	assert.Equal(t, "CNY", allNewAccounts[1].Currency)
 	assert.Equal(t, int64(1234567890), allNewAccounts[2].Uid)
-	assert.Equal(t, "Test Account2", allNewAccounts[2].Name)
+	assert.Equal(t, "", allNewAccounts[2].Name)
 	assert.Equal(t, "CNY", allNewAccounts[2].Currency)
 	assert.Equal(t, int64(1234567890), allNewAccounts[3].Uid)
 	assert.Equal(t, "Alipay", allNewAccounts[3].Name)
 	assert.Equal(t, "CNY", allNewAccounts[3].Currency)
 	assert.Equal(t, int64(1234567890), allNewAccounts[4].Uid)
 	assert.Equal(t, "Test Account3", allNewAccounts[4].Name)
 	assert.Equal(t, "CNY", allNewAccounts[4].Currency)
 	assert.Equal(t, int64(1234567890), allNewAccounts[5].Uid)
 	assert.Equal(t, "Test Account4", allNewAccounts[5].Name)
 	assert.Equal(t, "CNY", allNewAccounts[5].Currency)
 }
 func TestAlipayCsvFileImporterParseImportedData_ParseDescription(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -432,7 +547,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseDescription(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err := converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err := importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -447,7 +562,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseDescription(t *testing.T) {
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	allNewTransactions, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data2), 0, nil, nil, nil, nil, nil)
+	allNewTransactions, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data2), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(allNewTransactions))
@@ -455,7 +570,7 @@ func TestAlipayCsvFileImporterParseImportedData_ParseDescription(t *testing.T) {
 }
 func TestAlipayCsvFileImporterParseImportedData_SkipClosedIncomeOrTransferTransaction(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -472,12 +587,12 @@ func TestAlipayCsvFileImporterParseImportedData_SkipClosedIncomeOrTransferTransa
 		"2024-09-01 23:59:59 ,充值-普通充值             ,0.05   ,不计收支    ,交易关闭    ,\n" +
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrNotFoundTransactionDataInFile.Message)
 }
 func TestAlipayCsvFileImporterParseImportedData_SkipUnknownProductTransferTransaction(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -493,12 +608,12 @@ func TestAlipayCsvFileImporterParseImportedData_SkipUnknownProductTransferTransa
 		"2024-09-01 23:59:59 ,xxxx                ,0.05   ,不计收支    ,交易成功    ,\n" +
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrNotFoundTransactionDataInFile.Message)
 }
 func TestAlipayCsvFileImporterParseImportedData_SkipUnknownStatusTransaction(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -514,12 +629,12 @@ func TestAlipayCsvFileImporterParseImportedData_SkipUnknownStatusTransaction(t *
 		"2024-09-01 01:23:45 ,xxxx            ,0.12   ,收入      ,xxxx    ,\n" +
 		"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrNotFoundTransactionDataInFile.Message)
 }
 func TestAlipayCsvFileImporterParseImportedData_MissingFileHeader(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -533,15 +648,15 @@ func TestAlipayCsvFileImporterParseImportedData_MissingFileHeader(t *testing.T)
 			"------------------------------------------------------------------------------------\n")
 	assert.Nil(t, err)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrInvalidFileHeader.Message)
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(""), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(""), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrInvalidFileHeader.Message)
 }
 func TestAlipayCsvFileImporterParseImportedData_MissingRequiredColumn(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -557,7 +672,7 @@ func TestAlipayCsvFileImporterParseImportedData_MissingRequiredColumn(t *testing
 		"金额（元）,收/支     ,交易状态    ,\n" +
 		"0.12   ,收入      ,交易成功    ,\n" +
 		"------------------------------------------------------------------------------------\n")
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrMissingRequiredFieldInHeaderRow.Message)
 	// Missing Amount Column
@@ -568,7 +683,7 @@ func TestAlipayCsvFileImporterParseImportedData_MissingRequiredColumn(t *testing
 		"交易创建时间              ,收/支     ,交易状态    ,\n" +
 		"2024-09-01 12:34:56 ,收入      ,交易成功    ,\n" +
 		"------------------------------------------------------------------------------------\n")
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data2), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data2), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrMissingRequiredFieldInHeaderRow.Message)
 	// Missing Status Column
@@ -579,7 +694,7 @@ func TestAlipayCsvFileImporterParseImportedData_MissingRequiredColumn(t *testing
 		"交易创建时间              ,金额（元）,收/支     ,\n" +
 		"2024-09-01 12:34:56 ,0.12   ,收入      ,\n" +
 		"------------------------------------------------------------------------------------\n")
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data3), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data3), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrMissingRequiredFieldInHeaderRow.Message)
 	// Missing Type Column
@@ -590,12 +705,12 @@ func TestAlipayCsvFileImporterParseImportedData_MissingRequiredColumn(t *testing
 		"交易创建时间              ,金额（元）,交易状态    ,\n" +
 		"2024-09-01 12:34:56 ,0.12   ,交易成功    ,\n" +
 		"------------------------------------------------------------------------------------\n")
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data4), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data4), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrMissingRequiredFieldInHeaderRow.Message)
 }
 func TestAlipayCsvFileImporterParseImportedData_NoTransactionData(t *testing.T) {
-	converter := AlipayWebTransactionDataCsvFileImporter
+	importer := AlipayWebTransactionDataCsvFileImporter
 	context := core.NewNullContext()
 	user := &models.User{
@@ -609,6 +724,6 @@ func TestAlipayCsvFileImporterParseImportedData_NoTransactionData(t *testing.T)
 		"---------------------------------交易记录明细列表------------------------------------\n" +
 		"交易创建时间              ,金额（元）,收/支     ,交易状态    ,\n" +
 		"------------------------------------------------------------------------------------\n")
-	_, _, _, _, _, _, err = converter.ParseImportedData(context, user, []byte(data1), 0, nil, nil, nil, nil, nil)
+	_, _, _, _, _, _, err = importer.ParseImportedData(context, user, []byte(data1), time.UTC, converter.DefaultImporterOptions, nil, nil, nil, nil, nil)
 	assert.EqualError(t, err, errs.ErrNotFoundTransactionDataInFile.Message)
 }
@@ -0,0 +1,78 @@
 package alipay
 import (
 	"strings"
 	"github.com/mayswind/ezbookkeeping/pkg/converters/csv"
 	"github.com/mayswind/ezbookkeeping/pkg/converters/datatable"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 func createNewAlipayTransactionBasicDataTable(ctx core.Context, originalDataTable datatable.BasicDataTable, fileHeaderLine string, dataHeaderStartContent []string, dataBottomEndLineRune rune) (datatable.BasicDataTable, error) {
 	iterator := originalDataTable.DataRowIterator()
 	allOriginalLines := make([][]string, 0)
 	hasFileHeader := false
 	foundContentBeforeDataHeaderLine := false
 	for iterator.HasNext() {
 		row := iterator.Next()
 		if !hasFileHeader {
 			if row.ColumnCount() <= 0 {
 				continue
 			} else if strings.Index(row.GetData(0), fileHeaderLine) == 0 {
 				hasFileHeader = true
 				continue
 			} else {
 				log.Warnf(ctx, "[alipay_transaction_data_extrator.createNewAlipayTransactionBasicDataTable] read unexpected line in row \"%s\" before read file header", iterator.CurrentRowId())
 				continue
 			}
 		}
 		if !foundContentBeforeDataHeaderLine {
 			if row.ColumnCount() <= 0 {
 				continue
 			} else if utils.ContainsAnyString(row.GetData(0), dataHeaderStartContent) {
 				foundContentBeforeDataHeaderLine = true
 				continue
 			} else {
 				continue
 			}
 		}
 		if foundContentBeforeDataHeaderLine {
 			if row.ColumnCount() <= 0 {
 				continue
 			} else if row.ColumnCount() == 1 && dataBottomEndLineRune > 0 && utils.ContainsOnlyOneRune(row.GetData(0), dataBottomEndLineRune) {
 				break
 			}
 			items := make([]string, row.ColumnCount())
 			for i := 0; i < row.ColumnCount(); i++ {
 				items[i] = strings.Trim(row.GetData(i), " ")
 			}
 			if len(allOriginalLines) > 0 && len(items) < len(allOriginalLines[0]) {
 				log.Errorf(ctx, "[alipay_transaction_data_extrator.createNewAlipayTransactionBasicDataTable] cannot parse row \"%s\", because may missing some columns (column count %d in data row is less than header column count %d)", iterator.CurrentRowId(), len(items), len(allOriginalLines[0]))
 				return nil, errs.ErrFewerFieldsInDataRowThanInHeaderRow
 			}
 			allOriginalLines = append(allOriginalLines, items)
 		}
 	}
 	if !hasFileHeader || !foundContentBeforeDataHeaderLine {
 		return nil, errs.ErrInvalidFileHeader
 	}
 	if len(allOriginalLines) < 2 {
 		log.Errorf(ctx, "[alipay_transaction_data_extrator.createNewAlipayTransactionBasicDataTable] cannot parse import data, because data table row count is less 1")
 		return nil, errs.ErrNotFoundTransactionDataInFile
 	}
 	return csv.CreateNewCustomCsvBasicDataTable(allOriginalLines, true), nil
 }
@@ -13,24 +13,31 @@ import (
 const alipayTransactionDataStatusSuccessName = "交易成功"
 const alipayTransactionDataStatusPaymentSuccessName = "支付成功"
 const alipayTransactionDataStatusPendingGoodsReceiptConfirmationName = "等待确认收货"
 const alipayTransactionDataStatusRepaymentSuccessName = "还款成功"
 const alipayTransactionDataStatusClosedName = "交易关闭"
 const alipayTransactionDataStatusRefundSuccessName = "退款成功"
 const alipayTransactionDataStatusTaxRefundSuccessName = "退税成功"
 const alipayTransactionDataProductNameEarningText = "-收益发放"
 const alipayTransactionDataProductNamePurchaseInvestmentText = "-买入"
 const alipayTransactionDataProductNamePurchaseInvestmentRefundText = "-买入退款"
 const alipayTransactionDataProductNameSellInvestmentRefundText = "-卖出"
 const alipayTransactionDataProductNameTransferToAlipayPrefix = "充值-"
 const alipayTransactionDataProductNameTransferFromAlipayPrefix = "提现-"
 const alipayTransactionDataProductNameTransferInText = "转入"
 const alipayTransactionDataProductNameTransferOutText = "转出"
 const alipayTransactionDataProductNameTransferText = "转账"
 const alipayTransactionDataProductNameRepaymentText = "还款"
 // alipayTransactionDataRowParser defines the structure of alipay transaction data row parser
 type alipayTransactionDataRowParser struct {
 	columns                    alipayTransactionColumnNames
 	existedOriginalDataColumns map[string]bool
 }
 // Parse returns the converted transaction data row
-func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.User, dataTable *datatable.CommonTransactionDataTable, dataRow datatable.CommonDataRow, rowId string) (rowData map[datatable.TransactionDataTableColumn]string, rowDataValid bool, err error) {
+func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.User, dataRow datatable.CommonDataTableRow, rowId string) (rowData map[datatable.TransactionDataTableColumn]string, rowDataValid bool, err error) {
 	if dataRow.GetData(p.columns.typeColumnName) != alipayTransactionTypeNameMapping[models.TRANSACTION_TYPE_INCOME] &&
 		dataRow.GetData(p.columns.typeColumnName) != alipayTransactionTypeNameMapping[models.TRANSACTION_TYPE_EXPENSE] &&
 		dataRow.GetData(p.columns.typeColumnName) != alipayTransactionTypeNameMapping[models.TRANSACTION_TYPE_TRANSFER] {
@@ -40,6 +47,7 @@ func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.Us
 	if dataRow.GetData(p.columns.statusColumnName) != alipayTransactionDataStatusSuccessName &&
 		dataRow.GetData(p.columns.statusColumnName) != alipayTransactionDataStatusPaymentSuccessName &&
 		dataRow.GetData(p.columns.statusColumnName) != alipayTransactionDataStatusPendingGoodsReceiptConfirmationName &&
 		dataRow.GetData(p.columns.statusColumnName) != alipayTransactionDataStatusRepaymentSuccessName &&
 		dataRow.GetData(p.columns.statusColumnName) != alipayTransactionDataStatusClosedName &&
 		dataRow.GetData(p.columns.statusColumnName) != alipayTransactionDataStatusRefundSuccessName &&
@@ -50,23 +58,23 @@ func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.Us
 	data := make(map[datatable.TransactionDataTableColumn]string, len(alipayTransactionSupportedColumns))
-	if dataTable.HasOriginalColumn(p.columns.timeColumnName) {
+	if p.hasOriginalColumn(p.columns.timeColumnName) {
 		data[datatable.TRANSACTION_DATA_TABLE_TRANSACTION_TIME] = dataRow.GetData(p.columns.timeColumnName)
 	}
-	if dataTable.HasOriginalColumn(p.columns.categoryColumnName) {
+	if p.hasOriginalColumn(p.columns.categoryColumnName) {
 		data[datatable.TRANSACTION_DATA_TABLE_SUB_CATEGORY] = dataRow.GetData(p.columns.categoryColumnName)
 	} else {
 		data[datatable.TRANSACTION_DATA_TABLE_SUB_CATEGORY] = ""
 	}
-	if dataTable.HasOriginalColumn(p.columns.amountColumnName) {
+	if p.hasOriginalColumn(p.columns.amountColumnName) {
 		data[datatable.TRANSACTION_DATA_TABLE_AMOUNT] = dataRow.GetData(p.columns.amountColumnName)
 	}
-	if dataTable.HasOriginalColumn(p.columns.descriptionColumnName) && dataRow.GetData(p.columns.descriptionColumnName) != "" {
+	if p.hasOriginalColumn(p.columns.descriptionColumnName) && dataRow.GetData(p.columns.descriptionColumnName) != "" {
 		data[datatable.TRANSACTION_DATA_TABLE_DESCRIPTION] = dataRow.GetData(p.columns.descriptionColumnName)
-	} else if dataTable.HasOriginalColumn(p.columns.productNameColumnName) && dataRow.GetData(p.columns.productNameColumnName) != "" {
+	} else if p.hasOriginalColumn(p.columns.productNameColumnName) && dataRow.GetData(p.columns.productNameColumnName) != "" {
 		data[datatable.TRANSACTION_DATA_TABLE_DESCRIPTION] = dataRow.GetData(p.columns.productNameColumnName)
 	} else {
 		data[datatable.TRANSACTION_DATA_TABLE_DESCRIPTION] = ""
@@ -74,13 +82,13 @@ func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.Us
 	relatedAccountName := ""
-	if dataTable.HasOriginalColumn(p.columns.relatedAccountColumnName) {
+	if p.hasOriginalColumn(p.columns.relatedAccountColumnName) {
 		relatedAccountName = dataRow.GetData(p.columns.relatedAccountColumnName)
 	}
 	statusName := ""
-	if dataTable.HasOriginalColumn(p.columns.statusColumnName) {
+	if p.hasOriginalColumn(p.columns.statusColumnName) {
 		statusName = dataRow.GetData(p.columns.statusColumnName)
 	}
@@ -92,7 +100,7 @@ func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.Us
 	localeTextItems := locales.GetLocaleTextItems(locale)
-	if dataTable.HasOriginalColumn(p.columns.typeColumnName) {
+	if p.hasOriginalColumn(p.columns.typeColumnName) {
 		data[datatable.TRANSACTION_DATA_TABLE_TRANSACTION_TYPE] = dataRow.GetData(p.columns.typeColumnName)
 		if dataRow.GetData(p.columns.typeColumnName) == alipayTransactionTypeNameMapping[models.TRANSACTION_TYPE_INCOME] {
@@ -117,20 +125,38 @@ func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.Us
 			targetName := ""
 			productName := ""
-			if dataTable.HasOriginalColumn(p.columns.targetNameColumnName) {
+			if p.hasOriginalColumn(p.columns.targetNameColumnName) {
 				targetName = dataRow.GetData(p.columns.targetNameColumnName)
 			}
-			if dataTable.HasOriginalColumn(p.columns.productNameColumnName) {
+			if p.hasOriginalColumn(p.columns.productNameColumnName) {
 				productName = dataRow.GetData(p.columns.productNameColumnName)
 			}
 			if statusName == alipayTransactionDataStatusRefundSuccessName {
 				if len(productName) > len(alipayTransactionDataProductNamePurchaseInvestmentText) && strings.Index(productName, alipayTransactionDataProductNamePurchaseInvestmentText) == len(productName)-len(alipayTransactionDataProductNamePurchaseInvestmentText) { // purchase investment
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = relatedAccountName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = targetName
 				} else if len(productName) > len(alipayTransactionDataProductNamePurchaseInvestmentRefundText) && strings.Index(productName, alipayTransactionDataProductNamePurchaseInvestmentRefundText) == len(productName)-len(alipayTransactionDataProductNamePurchaseInvestmentRefundText) { // purchase investment refund
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = targetName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = relatedAccountName
 				} else {
 					data[datatable.TRANSACTION_DATA_TABLE_TRANSACTION_TYPE] = alipayTransactionTypeNameMapping[models.TRANSACTION_TYPE_INCOME]
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = relatedAccountName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = ""
 				}
 			} else {
-				if strings.Index(productName, alipayTransactionDataProductNameTransferToAlipayPrefix) == 0 { // transfer to alipay wallet
+				if len(productName) > len(alipayTransactionDataProductNameEarningText) && strings.Index(productName, alipayTransactionDataProductNameEarningText) == len(productName)-len(alipayTransactionDataProductNameEarningText) { // earning
 					data[datatable.TRANSACTION_DATA_TABLE_TRANSACTION_TYPE] = alipayTransactionTypeNameMapping[models.TRANSACTION_TYPE_INCOME]
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = relatedAccountName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = targetName
 				} else if len(productName) > len(alipayTransactionDataProductNamePurchaseInvestmentText) && strings.Index(productName, alipayTransactionDataProductNamePurchaseInvestmentText) == len(productName)-len(alipayTransactionDataProductNamePurchaseInvestmentText) { // purchase investment
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = relatedAccountName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = targetName
 				} else if strings.Index(productName, alipayTransactionDataProductNameSellInvestmentRefundText) >= 0 { // sell investment
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = targetName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = relatedAccountName
 				} else if strings.Index(productName, alipayTransactionDataProductNameTransferToAlipayPrefix) == 0 { // transfer to alipay wallet
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = ""
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = localeTextItems.DataConverterTextItems.Alipay
 				} else if strings.Index(productName, alipayTransactionDataProductNameTransferFromAlipayPrefix) == 0 { // transfer from alipay wallet
@@ -142,6 +168,9 @@ func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.Us
 				} else if strings.Index(productName, alipayTransactionDataProductNameTransferOutText) >= 0 { // transfer out
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = relatedAccountName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = targetName
 				} else if strings.Index(productName, alipayTransactionDataProductNameTransferText) >= 0 { // transfer
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = relatedAccountName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = targetName
 				} else if strings.Index(productName, alipayTransactionDataProductNameRepaymentText) >= 0 { // repayment
 					data[datatable.TRANSACTION_DATA_TABLE_ACCOUNT_NAME] = relatedAccountName
 					data[datatable.TRANSACTION_DATA_TABLE_RELATED_ACCOUNT_NAME] = targetName
@@ -170,9 +199,21 @@ func (p *alipayTransactionDataRowParser) Parse(ctx core.Context, user *models.Us
 	return data, true, nil
 }
 func (p *alipayTransactionDataRowParser) hasOriginalColumn(columnName string) bool {
 	_, exists := p.existedOriginalDataColumns[columnName]
 	return exists
 }
 // createAlipayTransactionDataRowParser returns alipay transaction data row parser
-func createAlipayTransactionDataRowParser(originalColumnNames alipayTransactionColumnNames) datatable.CommonTransactionDataRowParser {
+func createAlipayTransactionDataRowParser(originalColumnNames alipayTransactionColumnNames, headerColumnNames []string) datatable.CommonTransactionDataRowParser {
 	existedOriginalDataColumns := make(map[string]bool, len(headerColumnNames))
 	for i := 0; i < len(headerColumnNames); i++ {
 		existedOriginalDataColumns[headerColumnNames[i]] = true
 	}
 	return &alipayTransactionDataRowParser{
 		columns:                    originalColumnNames,
 		existedOriginalDataColumns: existedOriginalDataColumns,
 	}
 }
@@ -10,7 +10,7 @@ var (
 	AlipayWebTransactionDataCsvFileImporter = &alipayWebTransactionDataCsvFileImporter{
 		alipayTransactionDataCsvFileImporter{
 			fileHeaderLine:         "支付宝交易记录明细查询",
-			dataHeaderStartContent: "交易记录明细列表",
+			dataHeaderStartContent: []string{"交易记录明细列表"},
 			dataBottomEndLineRune:  '-',
 			originalColumnNames: alipayTransactionColumnNames{
 				timeColumnName:           "交易创建时间",
@@ -0,0 +1,242 @@
 package beancount
 import (
 	"math/big"
 	"strings"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 const maxAllowedDecimalCount = 6
 const normalizeFactor = int64(1000000)
 const normalizedDecimalsMaxZeroString = "000000"
 const normalizedNumberToAmountFactor = int64(10000) // 1000000 / 100
 var operatorPriority = map[rune]int{
 	'+': 1,
 	'-': 1,
 	'*': 2,
 	'/': 2,
 }
 func normalizeNumber(textualNumber string) (*big.Int, error) {
 	decimalSeparatorPos := strings.Index(textualNumber, ".")
 	if decimalSeparatorPos < 0 {
 		result := big.NewInt(0)
 		_, ok := result.SetString(textualNumber+normalizedDecimalsMaxZeroString, 10)
 		if !ok {
 			return nil, errs.ErrAmountInvalid
 		}
 		return result, nil
 	}
 	integer := utils.SubString(textualNumber, 0, decimalSeparatorPos)
 	decimals := utils.SubString(textualNumber, decimalSeparatorPos+1, len(textualNumber))
 	if len(decimals) > maxAllowedDecimalCount {
 		return nil, errs.ErrAmountInvalid
 	}
 	paddedDecimals := utils.SubString(decimals+normalizedDecimalsMaxZeroString, 0, maxAllowedDecimalCount)
 	result := big.NewInt(0)
 	_, ok := result.SetString(integer+paddedDecimals, 10)
 	if !ok {
 		return nil, errs.ErrAmountInvalid
 	}
 	return result, nil
 }
 func denormalizeNumberToTextualAmount(num *big.Int) string {
 	result := big.NewInt(0).Add(num, big.NewInt(0)) // make a copy of num
 	result = result.Div(result, big.NewInt(normalizedNumberToAmountFactor))
 	return utils.FormatAmount(result.Int64())
 }
 func toPostfixExprTokens(ctx core.Context, expr string) ([]string, error) {
 	finalTokens := make([]string, 0)
 	operatorStack := make([]rune, 0)
 	currentNumberBuilder := strings.Builder{}
 	isLastTokenOperator := true
 	expr = strings.ReplaceAll(expr, " ", "")
 	for i := 0; i < len(expr); i++ {
 		ch := rune(expr[i])
 		// number
 		if '0' <= ch && ch <= '9' || ch == '.' {
 			currentNumberBuilder.WriteRune(ch)
 			continue
 		} else if ch == '-' && i+1 < len(expr) && '0' <= expr[i+1] && expr[i+1] <= '9' && currentNumberBuilder.Len() == 0 && isLastTokenOperator {
 			currentNumberBuilder.WriteRune(ch)
 			continue
 		}
 		// operator or parenthesis
 		if currentNumberBuilder.Len() > 0 {
 			finalTokens = append(finalTokens, currentNumberBuilder.String())
 			currentNumberBuilder.Reset()
 			isLastTokenOperator = false
 		}
 		switch ch {
 		case '+', '-', '*', '/':
 			if ch == '-' && isLastTokenOperator {
 				currentNumberBuilder.WriteRune(ch)
 				continue
 			}
 			for len(operatorStack) > 0 {
 				topOperator := operatorStack[len(operatorStack)-1]
 				if topOperator == '(' {
 					break
 				}
 				if operatorPriority[topOperator] >= operatorPriority[ch] {
 					finalTokens = append(finalTokens, string(topOperator))
 					operatorStack = operatorStack[:len(operatorStack)-1]
 				} else {
 					break
 				}
 			}
 			operatorStack = append(operatorStack, ch)
 			isLastTokenOperator = true
 		case '(':
 			operatorStack = append(operatorStack, ch)
 			isLastTokenOperator = true
 		case ')':
 			hasLeftParenthesis := false
 			for len(operatorStack) > 0 {
 				topOperator := operatorStack[len(operatorStack)-1]
 				operatorStack = operatorStack[:len(operatorStack)-1]
 				if topOperator == '(' {
 					hasLeftParenthesis = true
 					break
 				}
 				finalTokens = append(finalTokens, string(topOperator))
 			}
 			if !hasLeftParenthesis {
 				log.Warnf(ctx, "[beancount_amount_expression_evaluator.toPostfixExprTokens] cannot parse expression \"%s\", because missing left parenthesis", expr)
 				return nil, errs.ErrInvalidAmountExpression
 			}
 			isLastTokenOperator = false
 		default:
 			log.Warnf(ctx, "[beancount_amount_expression_evaluator.toPostfixExprTokens] cannot parse expression \"%s\", because containing unknown token \"%c\"", expr, ch)
 			return nil, errs.ErrInvalidAmountExpression
 		}
 	}
 	if currentNumberBuilder.Len() > 0 {
 		finalTokens = append(finalTokens, currentNumberBuilder.String())
 	}
 	for len(operatorStack) > 0 {
 		topOperator := operatorStack[len(operatorStack)-1]
 		operatorStack = operatorStack[:len(operatorStack)-1]
 		if topOperator == '(' {
 			log.Warnf(ctx, "[beancount_amount_expression_evaluator.toPostfixExprTokens] cannot parse expression \"%s\", because missing right parenthesis", expr)
 			return nil, errs.ErrInvalidAmountExpression
 		}
 		finalTokens = append(finalTokens, string(topOperator))
 	}
 	return finalTokens, nil
 }
 func evaluatePostfixExpr(ctx core.Context, tokens []string) (*big.Int, error) {
 	stack := make([]*big.Int, 0)
 	for i := 0; i < len(tokens); i++ {
 		token := tokens[i]
 		switch token {
 		case "+", "-", "*", "/": // operators
 			if len(stack) < 2 {
 				log.Warnf(ctx, "[beancount_amount_expression_evaluator.evaluatePostfixExpr] cannot evaluate expression \"%s\", because not enough operands", strings.Join(tokens, " "))
 				return nil, errs.ErrInvalidAmountExpression
 			}
 			// pop the top two operands
 			b := stack[len(stack)-1]
 			stack = stack[:len(stack)-1]
 			a := stack[len(stack)-1]
 			stack = stack[:len(stack)-1]
 			// evaluate the operation
 			result := big.NewInt(0)
 			switch token {
 			case "+":
 				result.Add(a, b)
 			case "-":
 				result.Sub(a, b)
 			case "*":
 				result.Mul(a, b)
 				result.Div(result, big.NewInt(normalizeFactor))
 			case "/":
 				if b.Int64() == 0 {
 					log.Warnf(ctx, "[beancount_amount_expression_evaluator.evaluatePostfixExpr] cannot evaluate expression \"%s\", because division by zero", strings.Join(tokens, " "))
 					return nil, errs.ErrInvalidAmountExpression
 				}
 				result.Mul(a, big.NewInt(normalizeFactor))
 				result.Div(result, b)
 			}
 			// push the result back to the stack
 			stack = append(stack, result)
 		default: // operands
 			normalizedNum, err := normalizeNumber(token)
 			if err != nil {
 				log.Warnf(ctx, "[beancount_amount_expression_evaluator.evaluatePostfixExpr] cannot evaluate expression \"%s\", because containing invalid number", strings.Join(tokens, " "))
 				return nil, errs.ErrInvalidAmountExpression
 			}
 			stack = append(stack, normalizedNum)
 		}
 	}
 	if len(stack) != 1 {
 		log.Warnf(ctx, "[beancount_amount_expression_evaluator.evaluatePostfixExpr] cannot evaluate expression \"%s\", because missing operator", strings.Join(tokens, " "))
 		return nil, errs.ErrInvalidAmountExpression
 	}
 	return stack[0], nil
 }
 func evaluateBeancountAmountExpression(ctx core.Context, expr string) (string, error) {
 	if expr == "" {
 		return "", nil
 	}
 	postfixExprTokens, err := toPostfixExprTokens(ctx, expr)
 	if err != nil {
 		return "", err
 	}
 	result, err := evaluatePostfixExpr(ctx, postfixExprTokens)
 	if err != nil {
 		return "", err
 	}
 	return denormalizeNumberToTextualAmount(result), nil
 }
@@ -0,0 +1,235 @@
 package beancount
 import (
 	"math/big"
 	"testing"
 	"github.com/stretchr/testify/assert"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 )
 func TestToPostfixExprTokens_ValidExpression(t *testing.T) {
 	context := core.NewNullContext()
 	result, err := toPostfixExprTokens(context, "1+2")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"1", "2", "+"}, result)
 	result, err = toPostfixExprTokens(context, "3-4")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"3", "4", "-"}, result)
 	result, err = toPostfixExprTokens(context, "5*6")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"5", "6", "*"}, result)
 	result, err = toPostfixExprTokens(context, "8/2")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"8", "2", "/"}, result)
 	result, err = toPostfixExprTokens(context, "1+2*3-(4/2)")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"1", "2", "3", "*", "+", "4", "2", "/", "-"}, result)
 	result, err = toPostfixExprTokens(context, "1 + 2 * 3")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"1", "2", "3", "*", "+"}, result)
 	result, err = toPostfixExprTokens(context, "-1+2")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"-1", "2", "+"}, result)
 	result, err = toPostfixExprTokens(context, "1.5+2.3")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"1.5", "2.3", "+"}, result)
 	result, err = toPostfixExprTokens(context, "(1+2)-3")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"1", "2", "+", "3", "-"}, result)
 	result, err = toPostfixExprTokens(context, "2*-3-3/-2")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"2", "-3", "*", "3", "-2", "/", "-"}, result)
 	result, err = toPostfixExprTokens(context, "-1.2-3.4*(-5.6/7.8*(9.0-1.2))")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"-1.2", "3.4", "-5.6", "7.8", "/", "9.0", "1.2", "-", "*", "*", "-"}, result)
 	result, err = toPostfixExprTokens(context, "((((((1+2)*(3+4))))))")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"1", "2", "+", "3", "4", "+", "*"}, result)
 	result, err = toPostfixExprTokens(context, "(((())))")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{}, result)
 	result, err = toPostfixExprTokens(context, "+-*/")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{"-", "*", "/", "+"}, result)
 	result, err = toPostfixExprTokens(context, "")
 	assert.Nil(t, err)
 	assert.Equal(t, []string{}, result)
 }
 func TestToPostfixExprTokens_InvalidExpression(t *testing.T) {
 	context := core.NewNullContext()
 	_, err := toPostfixExprTokens(context, "1=2")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = toPostfixExprTokens(context, "(1")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = toPostfixExprTokens(context, "2)")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = toPostfixExprTokens(context, "((((1+2)))")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = toPostfixExprTokens(context, ")(")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 }
 func TestEvaluatePostfixExpr_ValidExpression(t *testing.T) {
 	context := core.NewNullContext()
 	result, err := evaluatePostfixExpr(context, []string{"1", "2", "+"})
 	assert.Nil(t, err)
 	assert.Equal(t, big.NewInt(3000000), result)
 	result, err = evaluatePostfixExpr(context, []string{"5", "3", "-"})
 	assert.Nil(t, err)
 	assert.Equal(t, big.NewInt(2000000), result)
 	result, err = evaluatePostfixExpr(context, []string{"4", "3", "*"})
 	assert.Nil(t, err)
 	assert.Equal(t, big.NewInt(12000000), result)
 	result, err = evaluatePostfixExpr(context, []string{"6", "2", "/"})
 	assert.Nil(t, err)
 	assert.Equal(t, big.NewInt(3000000), result)
 	result, err = evaluatePostfixExpr(context, []string{"1", "2", "3", "*", "+", "4", "2", "/", "-"})
 	assert.Nil(t, err)
 	assert.Equal(t, big.NewInt(5000000), result)
 }
 func TestEvaluatePostfixExpr_InvalidExpression(t *testing.T) {
 	context := core.NewNullContext()
 	_, err := evaluatePostfixExpr(context, []string{"1", "0", "/"})
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluatePostfixExpr(context, []string{"1", "+"})
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluatePostfixExpr(context, []string{"1", "="})
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluatePostfixExpr(context, []string{"1", "("})
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluatePostfixExpr(context, []string{"1", ")"})
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluatePostfixExpr(context, []string{"1", "2", "+", "3"})
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluatePostfixExpr(context, []string{"abc"})
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 }
 func TestEvaluateBeancountAmountExpression_ValidExpression(t *testing.T) {
 	context := core.NewNullContext()
 	result, err := evaluateBeancountAmountExpression(context, "")
 	assert.Nil(t, err)
 	assert.Equal(t, "", result)
 	result, err = evaluateBeancountAmountExpression(context, "1+2")
 	assert.Nil(t, err)
 	assert.Equal(t, "3.00", result)
 	result, err = evaluateBeancountAmountExpression(context, "(1+2)*3")
 	assert.Nil(t, err)
 	assert.Equal(t, "9.00", result)
 	result, err = evaluateBeancountAmountExpression(context, "-1+2")
 	assert.Nil(t, err)
 	assert.Equal(t, "1.00", result)
 	result, err = evaluateBeancountAmountExpression(context, "1.5+2.5")
 	assert.Nil(t, err)
 	assert.Equal(t, "4.00", result)
 	result, err = evaluateBeancountAmountExpression(context, "1+2*3-(4/2)")
 	assert.Nil(t, err)
 	assert.Equal(t, "5.00", result)
 	result, err = evaluateBeancountAmountExpression(context, "2*-3-3/-2")
 	assert.Nil(t, err)
 	assert.Equal(t, "-4.50", result)
 	result, err = evaluateBeancountAmountExpression(context, "-1.2-3.4*(-5.6/7.8*(9.0-1.2))")
 	assert.Nil(t, err)
 	assert.Equal(t, "17.84", result)
 	result, err = evaluateBeancountAmountExpression(context, "(((2+3)))*(((((-5+7)))))")
 	assert.Nil(t, err)
 	assert.Equal(t, "10.00", result)
 	result, err = evaluateBeancountAmountExpression(context, "3.5+0.1")
 	assert.Nil(t, err)
 	assert.Equal(t, "3.60", result)
 	result, err = evaluateBeancountAmountExpression(context, "3.55+0.11")
 	assert.Nil(t, err)
 	assert.Equal(t, "3.66", result)
 	result, err = evaluateBeancountAmountExpression(context, "3.555+0.111")
 	assert.Nil(t, err)
 	assert.Equal(t, "3.66", result)
 }
 func TestEvaluateBeancountAmountExpression_InvalidExpression(t *testing.T) {
 	context := core.NewNullContext()
 	_, err := evaluateBeancountAmountExpression(context, "1++2")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "1^2")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "+-*/")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "a+b")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "1/0")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "1+(2*3")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "1+2*3)")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "1+((((2*3)))")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "1+2(3)")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "1)*(2")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "0.abcd+1")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 	_, err = evaluateBeancountAmountExpression(context, "0.1234567+1")
 	assert.Equal(t, errs.ErrInvalidAmountExpression, err)
 }
@@ -0,0 +1,93 @@
 package beancount
 import "strings"
 const beancountEquityAccountNameOpeningBalance = "Opening-Balances"
 // beancountDirective represents the Beancount directive
 type beancountDirective string
 // Beancount directives
 const (
 	beancountDirectiveOpen                  beancountDirective = "open"
 	beancountDirectiveClose                 beancountDirective = "close"
 	beancountDirectiveTransaction           beancountDirective = "txn"
 	beancountDirectiveCompletedTransaction  beancountDirective = "*"
 	beancountDirectiveInCompleteTransaction beancountDirective = "!"
 	beancountDirectivePaddingTransaction    beancountDirective = "P"
 	beancountDirectiveCommodity             beancountDirective = "commodity"
 	beancountDirectivePrice                 beancountDirective = "price"
 	beancountDirectiveNote                  beancountDirective = "note"
 	beancountDirectiveDocument              beancountDirective = "document"
 	beancountDirectiveEvent                 beancountDirective = "event"
 	beancountDirectiveBalance               beancountDirective = "balance"
 	beancountDirectivePad                   beancountDirective = "pad"
 	beancountDirectiveQuery                 beancountDirective = "query"
 	beancountDirectiveCustom                beancountDirective = "custom"
 )
 // beancountAccountType represents the Beancount account type
 type beancountAccountType byte
 // Beancount account types
 const (
 	beancountUnknownAccountType     beancountAccountType = 0
 	beancountAssetsAccountType      beancountAccountType = 1
 	beancountLiabilitiesAccountType beancountAccountType = 2
 	beancountEquityAccountType      beancountAccountType = 3
 	beancountIncomeAccountType      beancountAccountType = 4
 	beancountExpensesAccountType    beancountAccountType = 5
 )
 // beancountData defines the structure of beancount data
 type beancountData struct {
 	Accounts     map[string]*beancountAccount
 	Transactions []*beancountTransactionEntry
 }
 // beancountAccount defines the structure of beancount account
 type beancountAccount struct {
 	Name        string
 	AccountType beancountAccountType
 	OpenDate    string
 	CloseDate   string
 }
 // beancountTransactionEntry defines the structure of beancount transaction entry
 type beancountTransactionEntry struct {
 	Date      string
 	Directive beancountDirective
 	Payee     string
 	Narration string
 	Postings  []*beancountPosting
 	Tags      []string
 	Links     []string
 	Metadata  map[string]string
 }
 // beancountPosting defines the structure of beancount transaction posting
 type beancountPosting struct {
 	Account            string
 	Amount             string
 	OriginalAmount     string
 	Commodity          string
 	TotalCost          string
 	TotalCostCommodity string
 	Price              string
 	PriceCommodity     string
 	Metadata           map[string]string
 }
 func (a *beancountAccount) isOpeningBalanceEquityAccount() bool {
 	if a.AccountType != beancountEquityAccountType {
 		return false
 	}
 	nameItems := strings.Split(a.Name, string(beancountMetadataKeySuffix))
 	if len(nameItems) != 2 {
 		return false
 	}
 	return nameItems[1] == beancountEquityAccountNameOpeningBalance
 }
@@ -0,0 +1,655 @@
 package beancount
 import (
 	"bytes"
 	"encoding/csv"
 	"io"
 	"strings"
 	"golang.org/x/text/encoding/unicode"
 	"golang.org/x/text/transform"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 	"github.com/mayswind/ezbookkeeping/pkg/log"
 	"github.com/mayswind/ezbookkeeping/pkg/utils"
 )
 const beancountDefaultAssetsAccountTypeName = "Assets"
 const beancountDefaultLiabilitiesAccountTypeName = "Liabilities"
 const beancountDefaultEquityAccountTypeName = "Equity"
 const beancountDefaultIncomeAccountTypeName = "Income"
 const beancountDefaultExpenseAccountTypeName = "Expenses"
 const beancountOptionAssetsAccountTypeName = "name_assets"
 const beancountOptionLiabilitiesAccountTypeName = "name_liabilities"
 const beancountOptionEquityAccountTypeName = "name_equity"
 const beancountOptionIncomeAccountTypeName = "name_income"
 const beancountOptionExpenseAccountTypeName = "name_expenses"
 const beancountCommentPrefix = ';'
 const beancountAccountNameItemsSeparator = ":"
 const beancountMetadataKeySuffix = ':'
 const beancountPricePrefix = '@'
 const beancountLinkPrefix = '^'
 const beancountTagPrefix = '#'
 // beancountDataReader defines the structure of Beancount data reader
 type beancountDataReader struct {
 	accountTypeNameMap         map[string]beancountAccountType
 	accountTypeNameReversedMap map[beancountAccountType]string
 	allData                    [][]string
 }
 // read returns the imported Beancount data
 // Reference: https://beancount.github.io/docs/beancount_language_syntax.html
 func (r *beancountDataReader) read(ctx core.Context) (*beancountData, error) {
 	if len(r.allData) < 1 {
 		return nil, errs.ErrNotFoundTransactionDataInFile
 	}
 	data := &beancountData{
 		Accounts:     make(map[string]*beancountAccount),
 		Transactions: make([]*beancountTransactionEntry, 0),
 	}
 	var err error
 	var currentTransactionEntry *beancountTransactionEntry
 	var currentTransactionPosting *beancountPosting
 	var currentTags []string
 	for i := 0; i < len(r.allData); i++ {
 		items := r.allData[i]
 		if len(items) == 0 || (len(items) == 1 && len(items[0]) == 0) || (len(r.getNotEmptyItemByIndex(items, 0)) > 0 && r.getNotEmptyItemByIndex(items, 0)[0] == beancountCommentPrefix) { // skip empty or comment lines
 			continue
 		}
 		if r.getNotEmptyItemsCount(items) < 2 {
 			log.Warnf(ctx, "[beancount_data_reader.read] cannot parse line#%d \"%s\", because not enough items in line", i, strings.Join(items, " "))
 			continue
 		}
 		firstItem := items[0]
 		if firstItem == "include" { // not support include directive
 			return nil, errs.ErrBeancountFileNotSupportInclude
 		} else if firstItem == "plugin" { // skip plugin directive lines
 			currentTransactionEntry, currentTransactionPosting = r.updateCurrentState(data, currentTransactionEntry, currentTransactionPosting)
 			continue
 		} else if firstItem == "option" {
 			currentTransactionEntry, currentTransactionPosting = r.updateCurrentState(data, currentTransactionEntry, currentTransactionPosting)
 			r.readAndSetOption(ctx, i, items)
 			continue
 		} else if firstItem == "pushtag" {
 			currentTransactionEntry, currentTransactionPosting = r.updateCurrentState(data, currentTransactionEntry, currentTransactionPosting)
 			currentTags = r.readAndSetTags(ctx, i, items, currentTags, true)
 			continue
 		} else if firstItem == "poptag" {
 			currentTransactionEntry, currentTransactionPosting = r.updateCurrentState(data, currentTransactionEntry, currentTransactionPosting)
 			currentTags = r.readAndSetTags(ctx, i, items, currentTags, false)
 			continue
 		}
 		if len(firstItem) == 0 { // original line has space prefix, maybe transaction posting or metadata line
 			actualFirstItem := r.getNotEmptyItemByIndex(items, 0)
 			if len(actualFirstItem) == 0 { // skip empty lines
 				continue
 			}
 			if ('A' <= actualFirstItem[0] && actualFirstItem[0] <= 'Z') || actualFirstItem[0] == '!' { // transaction posting
 				if currentTransactionEntry != nil && currentTransactionPosting != nil {
 					currentTransactionEntry.Postings = append(currentTransactionEntry.Postings, currentTransactionPosting)
 					currentTransactionPosting = nil
 				}
 				currentTransactionPosting, err = r.readTransactionPostingLine(ctx, i, items, data, actualFirstItem[0] == '!')
 				if err != nil {
 					return nil, err
 				}
 			} else if 'a' <= actualFirstItem[0] && actualFirstItem[0] <= 'z' { // metadata
 				metadata := r.readTransactionMetadataLine(ctx, i, items)
 				if metadata == nil {
 					continue
 				}
 				metadataKey := metadata[0]
 				metadataValue := metadata[1]
 				if currentTransactionPosting != nil {
 					if _, exists := currentTransactionPosting.Metadata[metadataKey]; !exists {
 						currentTransactionPosting.Metadata[metadataKey] = metadataValue
 					}
 				} else if currentTransactionEntry != nil {
 					if _, exists := currentTransactionEntry.Metadata[metadataKey]; !exists {
 						currentTransactionEntry.Metadata[metadataKey] = metadataValue
 					}
 				}
 			} else {
 				log.Warnf(ctx, "[beancount_data_reader.read] cannot parse line#%d \"%s\", because line prefix is invalid", i, strings.Join(items, " "))
 				currentTransactionEntry, currentTransactionPosting = r.updateCurrentState(data, currentTransactionEntry, currentTransactionPosting)
 				continue
 			}
 		} else if _, err := utils.ParseFromLongDateFirstTime(firstItem, 0); err == nil { // original line has date as first item
 			currentTransactionEntry, currentTransactionPosting = r.updateCurrentState(data, currentTransactionEntry, currentTransactionPosting)
 			directive := r.getNotEmptyItemByIndex(items, 1)
 			if directive == string(beancountDirectiveOpen) ||
 				directive == string(beancountDirectiveClose) {
 				_, err := r.readAccountLine(ctx, i, items, firstItem, beancountDirective(directive), data)
 				if err != nil {
 					return nil, err
 				}
 			} else if directive == string(beancountDirectiveTransaction) ||
 				directive == string(beancountDirectiveCompletedTransaction) ||
 				directive == string(beancountDirectiveInCompleteTransaction) ||
 				directive == string(beancountDirectivePaddingTransaction) {
 				currentTransactionEntry = r.readTransactionLine(ctx, i, items, firstItem, beancountDirective(directive), currentTags)
 			} else if directive == string(beancountDirectiveCommodity) ||
 				directive == string(beancountDirectivePrice) ||
 				directive == string(beancountDirectiveNote) ||
 				directive == string(beancountDirectiveDocument) ||
 				directive == string(beancountDirectiveEvent) ||
 				directive == string(beancountDirectiveBalance) ||
 				directive == string(beancountDirectivePad) ||
 				directive == string(beancountDirectiveQuery) ||
 				directive == string(beancountDirectiveCustom) { // skip commodity / price / note / document / event / balance / pad / query / custom lines
 				continue
 			} else {
 				log.Warnf(ctx, "[beancount_data_reader.read] cannot parse line#%d \"%s\", because directive is unknown", i, strings.Join(items, " "))
 				continue
 			}
 		} else { // first item not start with date or space
 			currentTransactionEntry, currentTransactionPosting = r.updateCurrentState(data, currentTransactionEntry, currentTransactionPosting)
 			continue
 		}
 	}
 	if currentTransactionEntry != nil {
 		if currentTransactionPosting != nil {
 			currentTransactionEntry.Postings = append(currentTransactionEntry.Postings, currentTransactionPosting)
 			currentTransactionPosting = nil
 		}
 		data.Transactions = append(data.Transactions, currentTransactionEntry)
 		currentTransactionEntry = nil
 	}
 	return data, nil
 }
 func (r *beancountDataReader) updateCurrentState(data *beancountData, currentTransactionEntry *beancountTransactionEntry, currentTransactionPosting *beancountPosting) (*beancountTransactionEntry, *beancountPosting) {
 	if currentTransactionEntry != nil {
 		if currentTransactionPosting != nil {
 			currentTransactionEntry.Postings = append(currentTransactionEntry.Postings, currentTransactionPosting)
 			currentTransactionPosting = nil
 		}
 		data.Transactions = append(data.Transactions, currentTransactionEntry)
 		currentTransactionEntry = nil
 		currentTransactionPosting = nil
 	}
 	return currentTransactionEntry, currentTransactionPosting
 }
 func (r *beancountDataReader) readAndSetOption(ctx core.Context, lineIndex int, items []string) {
 	if r.getNotEmptyItemsCount(items) != 3 {
 		log.Warnf(ctx, "[beancount_data_reader.readAndSetOption] cannot parse account type name option line#%d \"%s\", because items count in line not correct", lineIndex, strings.Join(items, " "))
 		return
 	}
 	optionName := r.getNotEmptyItemByIndex(items, 1)
 	optionValue := r.getNotEmptyItemByIndex(items, 2)
 	switch optionName {
 	case beancountOptionAssetsAccountTypeName:
 		r.setAccountTypeNameMap(beancountAssetsAccountType, optionValue)
 		break
 	case beancountOptionLiabilitiesAccountTypeName:
 		r.setAccountTypeNameMap(beancountLiabilitiesAccountType, optionValue)
 		break
 	case beancountOptionEquityAccountTypeName:
 		r.setAccountTypeNameMap(beancountEquityAccountType, optionValue)
 		break
 	case beancountOptionIncomeAccountTypeName:
 		r.setAccountTypeNameMap(beancountIncomeAccountType, optionValue)
 		break
 	case beancountOptionExpenseAccountTypeName:
 		r.setAccountTypeNameMap(beancountExpensesAccountType, optionValue)
 		break
 	default:
 		log.Warnf(ctx, "[beancount_data_reader.readAndSetOption] skip option line#%d \"%s\"", lineIndex, strings.Join(items, " "))
 		break
 	}
 }
 func (r *beancountDataReader) readAndSetTags(ctx core.Context, lineIndex int, items []string, currentTags []string, pushTag bool) []string {
 	if r.getNotEmptyItemsCount(items) != 2 {
 		log.Warnf(ctx, "[beancount_data_reader.readAndSetTags] cannot parse push/pop tag line#%d \"%s\", because items count in line not correct", lineIndex, strings.Join(items, " "))
 		return currentTags
 	}
 	tag := r.getNotEmptyItemByIndex(items, 1)
 	if len(tag) < 2 || tag[0] != beancountTagPrefix {
 		log.Warnf(ctx, "[beancount_data_reader.readAndSetTags] cannot parse push/pop tag line#%d \"%s\", because tag is invalid", lineIndex, strings.Join(items, " "))
 		return currentTags
 	}
 	tag = tag[1:]
 	if pushTag {
 		for i := 0; i < len(currentTags); i++ {
 			if currentTags[i] == tag {
 				return currentTags
 			}
 		}
 		return append(currentTags, tag)
 	} else { // pop tag
 		for i := 0; i < len(currentTags); i++ {
 			if currentTags[i] == tag {
 				return append(currentTags[:i], currentTags[i+1:]...)
 			}
 		}
 		return currentTags
 	}
 }
 func (r *beancountDataReader) setAccountTypeNameMap(accountType beancountAccountType, accountTypeName string) {
 	delete(r.accountTypeNameMap, r.accountTypeNameReversedMap[accountType])
 	r.accountTypeNameMap[accountTypeName] = accountType
 	r.accountTypeNameReversedMap[accountType] = accountTypeName
 }
 func (r *beancountDataReader) readAccountLine(ctx core.Context, lineIndex int, items []string, date string, directive beancountDirective, data *beancountData) (*beancountAccount, error) {
 	if r.getNotEmptyItemsCount(items) < 3 {
 		log.Warnf(ctx, "[beancount_data_reader.parseAccount] cannot parse account line#%d \"%s\", because items count in line not correct", lineIndex, strings.Join(items, " "))
 		return nil, nil
 	}
 	var err error
 	accountName := r.getNotEmptyItemByIndex(items, 2)
 	account, exists := data.Accounts[accountName]
 	if !exists {
 		account, err = r.createAccount(ctx, data, accountName)
 		if err != nil {
 			return nil, err
 		}
 	}
 	if directive == beancountDirectiveOpen {
 		account.OpenDate = date
 		return account, nil
 	} else if directive == beancountDirectiveClose {
 		account.CloseDate = date
 		return account, nil
 	} else {
 		log.Warnf(ctx, "[beancount_data_reader.parseAccount] cannot parse account line#%d \"%s\", because directive is invalid", lineIndex, strings.Join(items, " "))
 		return nil, nil
 	}
 }
 func (r *beancountDataReader) createAccount(ctx core.Context, data *beancountData, accountName string) (*beancountAccount, error) {
 	account := &beancountAccount{
 		Name:        accountName,
 		AccountType: beancountUnknownAccountType,
 	}
 	accountNameItems := strings.Split(accountName, beancountAccountNameItemsSeparator)
 	if len(accountNameItems) > 1 {
 		accountType, exists := r.accountTypeNameMap[accountNameItems[0]]
 		if exists {
 			account.AccountType = accountType
 		} else {
 			log.Warnf(ctx, "[beancount_data_reader.createAccount] cannot parse account \"%s\", because account type \"%s\" is invalid", accountName, accountNameItems[0])
 			return nil, errs.ErrInvalidBeancountFile
 		}
 	}
 	data.Accounts[accountName] = account
 	return account, nil
 }
 func (r *beancountDataReader) readTransactionLine(ctx core.Context, lineIndex int, items []string, date string, directive beancountDirective, tags []string) *beancountTransactionEntry {
 	transactionEntry := &beancountTransactionEntry{
 		Date:      date,
 		Directive: directive,
 		Tags:      make([]string, 0),
 		Links:     make([]string, 0),
 		Metadata:  make(map[string]string),
 	}
 	transactionEntry.Tags = append(transactionEntry.Tags, tags...)
 	allTags := make(map[string]bool, len(transactionEntry.Tags))
 	for _, tag := range transactionEntry.Tags {
 		allTags[tag] = true
 	}
 	// YYYY-MM-DD [txn|Flag] [[Payee] Narration] [#tag] [ˆlink]
 	payeeNarrationFirstIndex := 2
 	payeeNarrationLastIndex := len(items) - 1
 	// parse remain items
 	for i := payeeNarrationFirstIndex; i < len(items); i++ {
 		item := items[i]
 		if len(item) == 0 {
 			continue
 		}
 		if item[0] == beancountCommentPrefix { // ; comment
 			if i-1 < payeeNarrationLastIndex {
 				payeeNarrationLastIndex = i - 1
 			}
 			break
 		}
 		if item[0] == beancountTagPrefix { // [#tag]
 			tagName := item[1:]
 			if _, exists := allTags[tagName]; !exists {
 				transactionEntry.Tags = append(transactionEntry.Tags, tagName)
 				allTags[tagName] = true
 			}
 			if i-1 < payeeNarrationLastIndex {
 				payeeNarrationLastIndex = i - 1
 			}
 		} else if item[0] == beancountLinkPrefix { // [ˆlink]
 			transactionEntry.Links = append(transactionEntry.Links, item[1:])
 			if i-1 < payeeNarrationLastIndex {
 				payeeNarrationLastIndex = i - 1
 			}
 		}
 	}
 	if payeeNarrationLastIndex-payeeNarrationFirstIndex >= 1 {
 		transactionEntry.Payee = items[payeeNarrationFirstIndex]
 		transactionEntry.Narration = items[payeeNarrationFirstIndex+1]
 	} else if payeeNarrationLastIndex-payeeNarrationFirstIndex >= 0 {
 		transactionEntry.Narration = items[payeeNarrationFirstIndex]
 	}
 	return transactionEntry
 }
 func (r *beancountDataReader) readTransactionPostingLine(ctx core.Context, lineIndex int, items []string, data *beancountData, hasFlag bool) (*beancountPosting, error) {
 	// [Flag] Account Amount [{Cost}] [@ Price]
 	accountNameExpectedIndex := 0
 	if hasFlag {
 		accountNameExpectedIndex = 1
 	}
 	if r.getNotEmptyItemsCount(items) <= accountNameExpectedIndex {
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionPostingLine] cannot parse transaction posting line#%d \"%s\", because items count in line not correct", lineIndex, strings.Join(items, " "))
 		return nil, nil
 	}
 	accountName, accountNameActualIndex := r.getNotEmptyItemAndIndexByIndex(items, accountNameExpectedIndex)
 	if accountName == "" || accountNameActualIndex < 0 {
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionPostingLine] cannot parse transaction posting line#%d \"%s\", because missing account name", lineIndex, strings.Join(items, " "))
 		return nil, errs.ErrMissingAccountData
 	}
 	transactionPositing := &beancountPosting{
 		Account:  accountName,
 		Metadata: make(map[string]string),
 	}
 	amountActualLastIndex := -1
 	transactionPositing.OriginalAmount, amountActualLastIndex = r.getOriginalAmountAndLastIndexFromIndex(items, accountNameActualIndex+1)
 	if transactionPositing.OriginalAmount == "" || amountActualLastIndex < 0 {
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionPostingLine] cannot parse transaction posting line#%d \"%s\", because missing amount", lineIndex, strings.Join(items, " "))
 		return nil, errs.ErrAmountInvalid
 	}
 	finalAmount, err := evaluateBeancountAmountExpression(ctx, transactionPositing.OriginalAmount)
 	if err != nil {
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionPostingLine] cannot evaluate amount expression in line#%d \"%s\", because %s", lineIndex, strings.Join(items, " "), err.Error())
 		return nil, errs.ErrAmountInvalid
 	} else {
 		transactionPositing.Amount = finalAmount
 	}
 	commodityActualIndex := -1
 	transactionPositing.Commodity, commodityActualIndex = r.getNotEmptyItemAndIndexFromIndex(items, amountActualLastIndex+1)
 	if transactionPositing.Commodity == "" || commodityActualIndex < 0 {
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionPostingLine] cannot parse transaction posting line#%d \"%s\", because missing commodity", lineIndex, strings.Join(items, " "))
 		return nil, errs.ErrInvalidBeancountFile
 	}
 	if strings.ToUpper(transactionPositing.Commodity) != transactionPositing.Commodity { // The syntax for a currency is a word all in capital letters
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionPostingLine] cannot parse transaction posting line#%d \"%s\", because commodity name is not capital letters", lineIndex, strings.Join(items, " "))
 		return nil, errs.ErrInvalidBeancountFile
 	}
 	// parse remain items
 	if commodityActualIndex > 0 {
 		for i := commodityActualIndex + 1; i < len(items); i++ {
 			item := items[i]
 			if len(item) == 0 {
 				continue
 			}
 			if item[0] == beancountCommentPrefix { // ; comment
 				break
 			}
 			if len(item) == 2 && item[0] == beancountPricePrefix && item[1] == beancountPricePrefix { // [@@ TotalCost]
 				totalCost, totalCostActualIndex := r.getNotEmptyItemAndIndexFromIndex(items, i+1)
 				if totalCostActualIndex > 0 {
 					transactionPositing.TotalCost = totalCost
 					i = totalCostActualIndex
 					totalCostCommodity, totalCostCommodityActualIndex := r.getNotEmptyItemAndIndexFromIndex(items, totalCostActualIndex+1)
 					if totalCostCommodityActualIndex > 0 {
 						transactionPositing.TotalCostCommodity = totalCostCommodity
 						i = totalCostCommodityActualIndex
 					}
 				}
 			} else if len(item) == 1 && item[0] == beancountPricePrefix { // [@ Price]
 				price, priceActualIndex := r.getNotEmptyItemAndIndexFromIndex(items, i+1)
 				if priceActualIndex > 0 {
 					transactionPositing.Price = price
 					i = priceActualIndex
 					priceCommodity, priceCommodityActualIndex := r.getNotEmptyItemAndIndexFromIndex(items, priceActualIndex+1)
 					if priceCommodityActualIndex > 0 {
 						transactionPositing.PriceCommodity = priceCommodity
 						i = priceCommodityActualIndex
 					}
 				}
 			}
 		}
 	}
 	if transactionPositing.Account != "" {
 		_, exists := data.Accounts[transactionPositing.Account]
 		if !exists {
 			_, err := r.createAccount(ctx, data, transactionPositing.Account)
 			if err != nil {
 				return nil, err
 			}
 		}
 	}
 	return transactionPositing, nil
 }
 func (r *beancountDataReader) readTransactionMetadataLine(ctx core.Context, lineIndex int, items []string) []string {
 	key := r.getNotEmptyItemByIndex(items, 0)
 	value := r.getNotEmptyItemByIndex(items, 1)
 	if key == "" || value == "" {
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionMetadataLine] cannot parse metadata line#%d \"%s\", because key or value is empty", lineIndex, strings.Join(items, " "))
 		return nil
 	}
 	if len(key) == 0 || key[len(key)-1] != beancountMetadataKeySuffix {
 		log.Warnf(ctx, "[beancount_data_reader.readTransactionMetadataLine] cannot parse metadata line#%d \"%s\", because key is invalid correct", lineIndex, strings.Join(items, " "))
 		return nil
 	}
 	key = key[:len(key)-1]
 	return []string{key, value}
 }
 func (r *beancountDataReader) getNotEmptyItemByIndex(items []string, index int) string {
 	item, _ := r.getNotEmptyItemAndIndexByIndex(items, index)
 	return item
 }
 func (r *beancountDataReader) getNotEmptyItemAndIndexByIndex(items []string, index int) (string, int) {
 	count := -1
 	for i := 0; i < len(items); i++ {
 		item := items[i]
 		if len(item) == 0 {
 			continue
 		}
 		count++
 		if count == index {
 			return items[i], i
 		}
 	}
 	return "", -1
 }
 func (r *beancountDataReader) getNotEmptyItemAndIndexFromIndex(items []string, startIndex int) (string, int) {
 	for i := startIndex; i < len(items); i++ {
 		item := items[i]
 		if len(item) == 0 {
 			continue
 		}
 		return item, i
 	}
 	return "", -1
 }
 func (r *beancountDataReader) getNotEmptyItemsCount(items []string) int {
 	count := 0
 	for i := 0; i < len(items); i++ {
 		if len(items[i]) > 0 {
 			count++
 		}
 	}
 	return count
 }
 func (r *beancountDataReader) getOriginalAmountAndLastIndexFromIndex(items []string, startIndex int) (string, int) {
 	amountBuilder := strings.Builder{}
 	lastIndex := -1
 	for i := startIndex; i < len(items); i++ {
 		item := items[i]
 		if len(item) == 0 {
 			continue
 		}
 		valid := true
 		// The Amount in “Postings” can also be an arithmetic expression using ( ) * / - +
 		for j := 0; j < len(item); j++ {
 			if !(item[j] >= '0' && item[j] <= '9') && item[j] != '.' && item[j] != '(' && item[j] != ')' &&
 				item[j] != '*' && item[j] != '/' && item[j] != '-' && item[j] != '+' {
 				valid = false
 				break
 			}
 		}
 		if !valid {
 			break
 		}
 		if amountBuilder.Len() > 0 {
 			amountBuilder.WriteRune(' ')
 		}
 		amountBuilder.WriteString(item)
 		lastIndex = i
 	}
 	return amountBuilder.String(), lastIndex
 }
 func createNewBeancountDataReader(ctx core.Context, data []byte) (*beancountDataReader, error) {
 	fallback := unicode.UTF8.NewDecoder()
 	reader := transform.NewReader(bytes.NewReader(data), unicode.BOMOverride(fallback))
 	csvReader := csv.NewReader(reader)
 	csvReader.Comma = ' '
 	csvReader.FieldsPerRecord = -1
 	allData := make([][]string, 0)
 	for {
 		items, err := csvReader.Read()
 		if err == io.EOF {
 			break
 		}
 		if err != nil {
 			log.Errorf(ctx, "[beancount_data_reader.createNewBeancountDataReader] cannot parse data, because %s", err.Error())
 			return nil, errs.ErrInvalidBeancountFile
 		}
 		allData = append(allData, items)
 	}
 	return &beancountDataReader{
 		accountTypeNameMap: map[string]beancountAccountType{
 			beancountDefaultAssetsAccountTypeName:      beancountAssetsAccountType,
 			beancountDefaultLiabilitiesAccountTypeName: beancountLiabilitiesAccountType,
 			beancountDefaultEquityAccountTypeName:      beancountEquityAccountType,
 			beancountDefaultIncomeAccountTypeName:      beancountIncomeAccountType,
 			beancountDefaultExpenseAccountTypeName:     beancountExpensesAccountType,
 		},
 		accountTypeNameReversedMap: map[beancountAccountType]string{
 			beancountAssetsAccountType:      beancountDefaultAssetsAccountTypeName,
 			beancountLiabilitiesAccountType: beancountDefaultLiabilitiesAccountTypeName,
 			beancountEquityAccountType:      beancountDefaultEquityAccountTypeName,
 			beancountIncomeAccountType:      beancountDefaultIncomeAccountTypeName,
 			beancountExpensesAccountType:    beancountDefaultExpenseAccountTypeName,
 		},
 		allData: allData,
 	}, nil
 }
@@ -0,0 +1,520 @@
 package beancount
 import (
 	"testing"
 	"github.com/stretchr/testify/assert"
 	"github.com/mayswind/ezbookkeeping/pkg/core"
 	"github.com/mayswind/ezbookkeeping/pkg/errs"
 )
 func TestBeancountDataReaderRead(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"; Test Beancount Data\n"+
 		"option \"name_assets\" \"AssetsAccount\"\n"+
 		"option \"name_liabilities\" \"LiabilitiesAccount\"\n"+
 		"option \"name_equity\" \"EquityAccount\"\n"+
 		"option \"name_income\" \"IncomeAccount\"\n"+
 		"option \"name_expenses\" \"ExpensesAccount\"\n"+
 		"\n"+
 		"2024-01-01 open AssetsAccount:TestAccount\n"+
 		"2024-01-02 open LiabilitiesAccount:TestAccount2\n"+
 		"2024-01-03 open EquityAccount:Opening-Balances\n"+
 		"\n"+
 		"; The following transactions with tag1 and tag2\n"+
 		"pushtag #tag1\n"+
 		"pushtag #tag2\n"+
 		"\n"+
 		"2024-01-05 * \"Payee Name\" \"Foo Bar\" #tag3 #tag4 ^test-link\n"+
 		"  IncomeAccount:TestCategory -123.45 CNY\n"+
 		"  AssetsAccount:TestAccount 123.45 CNY\n"+
 		"; The following transactions with tag2\n"+
 		"poptag #tag1\n"+
 		"2024-01-06 * \"test\n#test2\" #tag5 #tag6 ^test-link2\n"+
 		"  LiabilitiesAccount:TestAccount2 -0.12 USD\n"+
 		"  ExpensesAccount:TestCategory2 0.12 USD\n"+
 		"2024-01-07 close AssetsAccount:TestAccount\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 5, len(actualData.Accounts))
 	assert.Equal(t, "AssetsAccount:TestAccount", actualData.Accounts["AssetsAccount:TestAccount"].Name)
 	assert.Equal(t, beancountAssetsAccountType, actualData.Accounts["AssetsAccount:TestAccount"].AccountType)
 	assert.Equal(t, "2024-01-01", actualData.Accounts["AssetsAccount:TestAccount"].OpenDate)
 	assert.Equal(t, "2024-01-07", actualData.Accounts["AssetsAccount:TestAccount"].CloseDate)
 	assert.Equal(t, "LiabilitiesAccount:TestAccount2", actualData.Accounts["LiabilitiesAccount:TestAccount2"].Name)
 	assert.Equal(t, beancountLiabilitiesAccountType, actualData.Accounts["LiabilitiesAccount:TestAccount2"].AccountType)
 	assert.Equal(t, "2024-01-02", actualData.Accounts["LiabilitiesAccount:TestAccount2"].OpenDate)
 	assert.Equal(t, 2, len(actualData.Transactions))
 	assert.Equal(t, "2024-01-05", actualData.Transactions[0].Date)
 	assert.Equal(t, "Payee Name", actualData.Transactions[0].Payee)
 	assert.Equal(t, "Foo Bar", actualData.Transactions[0].Narration)
 	assert.Equal(t, 2, len(actualData.Transactions[0].Postings))
 	assert.Equal(t, "IncomeAccount:TestCategory", actualData.Transactions[0].Postings[0].Account)
 	assert.Equal(t, "-123.45", actualData.Transactions[0].Postings[0].Amount)
 	assert.Equal(t, "CNY", actualData.Transactions[0].Postings[0].Commodity)
 	assert.Equal(t, "AssetsAccount:TestAccount", actualData.Transactions[0].Postings[1].Account)
 	assert.Equal(t, "123.45", actualData.Transactions[0].Postings[1].Amount)
 	assert.Equal(t, "CNY", actualData.Transactions[0].Postings[1].Commodity)
 	assert.Equal(t, 4, len(actualData.Transactions[0].Tags))
 	assert.Equal(t, actualData.Transactions[0].Tags[0], "tag1")
 	assert.Equal(t, actualData.Transactions[0].Tags[1], "tag2")
 	assert.Equal(t, actualData.Transactions[0].Tags[2], "tag3")
 	assert.Equal(t, actualData.Transactions[0].Tags[3], "tag4")
 	assert.Equal(t, 1, len(actualData.Transactions[0].Links))
 	assert.Equal(t, actualData.Transactions[0].Links[0], "test-link")
 	assert.Equal(t, "2024-01-06", actualData.Transactions[1].Date)
 	assert.Equal(t, "", actualData.Transactions[1].Payee)
 	assert.Equal(t, "test\n#test2", actualData.Transactions[1].Narration)
 	assert.Equal(t, 2, len(actualData.Transactions[1].Postings))
 	assert.Equal(t, "LiabilitiesAccount:TestAccount2", actualData.Transactions[1].Postings[0].Account)
 	assert.Equal(t, "-0.12", actualData.Transactions[1].Postings[0].Amount)
 	assert.Equal(t, "USD", actualData.Transactions[1].Postings[0].Commodity)
 	assert.Equal(t, "ExpensesAccount:TestCategory2", actualData.Transactions[1].Postings[1].Account)
 	assert.Equal(t, "0.12", actualData.Transactions[1].Postings[1].Amount)
 	assert.Equal(t, "USD", actualData.Transactions[1].Postings[1].Commodity)
 	assert.Equal(t, 3, len(actualData.Transactions[1].Tags))
 	assert.Equal(t, actualData.Transactions[1].Tags[0], "tag2")
 	assert.Equal(t, actualData.Transactions[1].Tags[1], "tag5")
 	assert.Equal(t, actualData.Transactions[1].Tags[2], "tag6")
 	assert.Equal(t, 1, len(actualData.Transactions[1].Links))
 	assert.Equal(t, actualData.Transactions[1].Links[0], "test-link2")
 }
 func TestBeancountDataReaderRead_EmptyContent(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrNotFoundTransactionDataInFile.Message)
 }
 func TestBeancountDataReaderRead_UnsupportedInclude(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte("include \"other.beancount\""))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrBeancountFileNotSupportInclude.Message)
 }
 func TestBeancountDataReaderRead_SkipUnsupportedDirective(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"plugin \"beancount.plugins.plugin_name\"\n"+
 		"unknown directive\n"+
 		"2024-01-01 commodity USD\n"+
 		"2024-01-01 price USD 1.08 CAD\n"+
 		"2024-01-01 note Assets:Test \"some text\"\n"+
 		"2024-01-01 document Assets:Test \"scheme://path\"\n"+
 		"2024-01-01 event \"location\" \"address\"\n"+
 		"2024-01-01 balance Assets:Test 100.00 USD\n"+
 		"2024-01-01 pad Assets:Test Equity:Opening-Balances\n"+
 		"2024-01-01 query \"Name\" \"\nSELECT FIELDS FROM TABLE\"\n"+
 		"2024-01-01 custom \"Type\" \"Value\"\n"+
 		"2024-01-01 unknown directive\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.Nil(t, err)
 }
 func TestBeancountDataReaderReadAndSetOption_AccountTypeName(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"option \"name_assets\" \"A\"\n"+
 		"option \"name_liabilities\" \"L\"\n"+
 		"option \"name_equity\" \"E\"\n"+
 		"\n"+
 		"2024-01-01 open A:TestAccount\n"+
 		"2024-01-02 open L:TestAccount2\n"+
 		"2024-01-03 open E:Opening-Balances\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 3, len(actualData.Accounts))
 	assert.Equal(t, "A:TestAccount", actualData.Accounts["A:TestAccount"].Name)
 	assert.Equal(t, beancountAssetsAccountType, actualData.Accounts["A:TestAccount"].AccountType)
 	assert.Equal(t, "L:TestAccount2", actualData.Accounts["L:TestAccount2"].Name)
 	assert.Equal(t, beancountLiabilitiesAccountType, actualData.Accounts["L:TestAccount2"].AccountType)
 	assert.Equal(t, "E:Opening-Balances", actualData.Accounts["E:Opening-Balances"].Name)
 	assert.Equal(t, beancountEquityAccountType, actualData.Accounts["E:Opening-Balances"].AccountType)
 	assert.True(t, actualData.Accounts["E:Opening-Balances"].isOpeningBalanceEquityAccount())
 }
 func TestBeancountDataReaderReadAndSetOption_InvalidLineOrUnsupportedOption(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"option \"test\" \"Test\" \"Test2\"\n"+
 		"option \"test\" \"Test\"\n"+
 		"option \"test\"\n"+
 		"option \n"+
 		"option\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.Nil(t, err)
 }
 func TestBeancountDataReaderReadAndSetTags(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"pushtag #tag1\n"+
 		"pushtag #tag2\n"+
 		"pushtag #tag2\n"+
 		"pushtag #tag1\n"+
 		"\n"+
 		"2024-01-01 * #tag3 #tag4\n"+
 		"poptag #tag1\n"+
 		"poptag #tag2\n"+
 		"pushtag\n"+
 		"pushtag    \n"+
 		"pushtag tag\n"+
 		"2024-01-02 * #tag5 #tag6\n"+
 		"poptag #tag1\n"+
 		"poptag #tag2\n"+
 		"poptag\n"+
 		"poptag \n"+
 		"2024-01-03 * #tag5 #tag6\n"+
 		"pushtag #tag3\n"+
 		"pushtag #tag6\n"+
 		"2024-01-04 * #tag5 #tag6\n"+
 		"2024-01-05 * #tag5 #tag6 #tag6 #tag5\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 5, len(actualData.Transactions))
 	assert.Equal(t, 4, len(actualData.Transactions[0].Tags))
 	assert.Equal(t, actualData.Transactions[0].Tags[0], "tag1")
 	assert.Equal(t, actualData.Transactions[0].Tags[1], "tag2")
 	assert.Equal(t, actualData.Transactions[0].Tags[2], "tag3")
 	assert.Equal(t, actualData.Transactions[0].Tags[3], "tag4")
 	assert.Equal(t, 2, len(actualData.Transactions[1].Tags))
 	assert.Equal(t, actualData.Transactions[1].Tags[0], "tag5")
 	assert.Equal(t, actualData.Transactions[1].Tags[1], "tag6")
 	assert.Equal(t, 2, len(actualData.Transactions[2].Tags))
 	assert.Equal(t, actualData.Transactions[2].Tags[0], "tag5")
 	assert.Equal(t, actualData.Transactions[2].Tags[1], "tag6")
 	assert.Equal(t, 3, len(actualData.Transactions[3].Tags))
 	assert.Equal(t, actualData.Transactions[3].Tags[0], "tag3")
 	assert.Equal(t, actualData.Transactions[3].Tags[1], "tag6")
 	assert.Equal(t, actualData.Transactions[3].Tags[2], "tag5")
 	assert.Equal(t, 3, len(actualData.Transactions[4].Tags))
 	assert.Equal(t, actualData.Transactions[4].Tags[0], "tag3")
 	assert.Equal(t, actualData.Transactions[4].Tags[1], "tag6")
 	assert.Equal(t, actualData.Transactions[4].Tags[2], "tag5")
 }
 func TestBeancountDataReaderReadAccountLine_InvalidLine(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 open\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 0, len(actualData.Accounts))
 }
 func TestBeancountDataReaderReadAccountLine_InvalidAccountType(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 open Test:TestAccount\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrInvalidBeancountFile.Message)
 	reader, err = createNewBeancountDataReader(context, []byte(""+
 		"option \"name_assets\" \"A\"\n"+
 		"\n"+
 		"2024-01-01 open Assets:TestAccount\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrInvalidBeancountFile.Message)
 }
 func TestBeancountDataReaderReadTransactionLine(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"2024-01-02 * \"test\ttest2\ntest3\" ; some comment\n"+
 		"2024-01-03 ! \"test\" \"test2\"\n"+
 		"2024-01-04 P \"test\" #tag #tag2 ; some comment\n"+
 		"2024-01-05 txn \"test\" ^scheme://path/to/test/link ; some comment\n"+
 		"2024-01-06 txn ; \"test\" \"test2\" #tag ^link\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 6, len(actualData.Transactions))
 	assert.Equal(t, "2024-01-01", actualData.Transactions[0].Date)
 	assert.Equal(t, beancountDirectiveCompletedTransaction, actualData.Transactions[0].Directive)
 	assert.Equal(t, "", actualData.Transactions[0].Payee)
 	assert.Equal(t, "", actualData.Transactions[0].Narration)
 	assert.Equal(t, "2024-01-02", actualData.Transactions[1].Date)
 	assert.Equal(t, beancountDirectiveCompletedTransaction, actualData.Transactions[1].Directive)
 	assert.Equal(t, "", actualData.Transactions[1].Payee)
 	assert.Equal(t, "test\ttest2\ntest3", actualData.Transactions[1].Narration)
 	assert.Equal(t, "2024-01-03", actualData.Transactions[2].Date)
 	assert.Equal(t, beancountDirectiveInCompleteTransaction, actualData.Transactions[2].Directive)
 	assert.Equal(t, "test", actualData.Transactions[2].Payee)
 	assert.Equal(t, "test2", actualData.Transactions[2].Narration)
 	assert.Equal(t, "2024-01-04", actualData.Transactions[3].Date)
 	assert.Equal(t, beancountDirectivePaddingTransaction, actualData.Transactions[3].Directive)
 	assert.Equal(t, "", actualData.Transactions[3].Payee)
 	assert.Equal(t, "test", actualData.Transactions[3].Narration)
 	assert.Equal(t, 2, len(actualData.Transactions[3].Tags))
 	assert.Equal(t, actualData.Transactions[3].Tags[0], "tag")
 	assert.Equal(t, actualData.Transactions[3].Tags[1], "tag2")
 	assert.Equal(t, "2024-01-05", actualData.Transactions[4].Date)
 	assert.Equal(t, beancountDirectiveTransaction, actualData.Transactions[4].Directive)
 	assert.Equal(t, "", actualData.Transactions[4].Payee)
 	assert.Equal(t, "test", actualData.Transactions[4].Narration)
 	assert.Equal(t, 1, len(actualData.Transactions[4].Links))
 	assert.Equal(t, actualData.Transactions[4].Links[0], "scheme://path/to/test/link")
 	assert.Equal(t, "2024-01-06", actualData.Transactions[5].Date)
 	assert.Equal(t, beancountDirectiveTransaction, actualData.Transactions[5].Directive)
 	assert.Equal(t, "", actualData.Transactions[5].Payee)
 	assert.Equal(t, "", actualData.Transactions[5].Narration)
 }
 func TestBeancountDataReaderReadTransactionPostingLine(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Income:TestCategory -123.45 CNY ; some comment\n"+
 		"  Assets:TestAccount 123.45   CNY\n"+
 		"2024-01-02 *\n"+
 		"  Liabilities:TestAccount2 -0.23 USD ; some comment\n"+
 		"  Expenses:TestCategory2    0.12 USD @@ 0.84 CNY\n"+
 		"  Expenses:TestCategory3    0.11 USD @ 7.12 CNY\n"+
 		"  ! Expenses:TestCategory4  0.00 USD {0.00 CNY}\n"+
 		"  Expenses:TestCategory5 \n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 2, len(actualData.Transactions))
 	assert.Equal(t, "2024-01-01", actualData.Transactions[0].Date)
 	assert.Equal(t, 2, len(actualData.Transactions[0].Postings))
 	assert.Equal(t, "Income:TestCategory", actualData.Transactions[0].Postings[0].Account)
 	assert.Equal(t, "-123.45", actualData.Transactions[0].Postings[0].Amount)
 	assert.Equal(t, "CNY", actualData.Transactions[0].Postings[0].Commodity)
 	assert.Equal(t, "Assets:TestAccount", actualData.Transactions[0].Postings[1].Account)
 	assert.Equal(t, "123.45", actualData.Transactions[0].Postings[1].Amount)
 	assert.Equal(t, "CNY", actualData.Transactions[0].Postings[1].Commodity)
 	assert.Equal(t, "2024-01-02", actualData.Transactions[1].Date)
 	assert.Equal(t, 4, len(actualData.Transactions[1].Postings))
 	assert.Equal(t, "Liabilities:TestAccount2", actualData.Transactions[1].Postings[0].Account)
 	assert.Equal(t, "-0.23", actualData.Transactions[1].Postings[0].Amount)
 	assert.Equal(t, "USD", actualData.Transactions[1].Postings[0].Commodity)
 	assert.Equal(t, "Expenses:TestCategory2", actualData.Transactions[1].Postings[1].Account)
 	assert.Equal(t, "0.12", actualData.Transactions[1].Postings[1].Amount)
 	assert.Equal(t, "USD", actualData.Transactions[1].Postings[1].Commodity)
 	assert.Equal(t, "0.84", actualData.Transactions[1].Postings[1].TotalCost)
 	assert.Equal(t, "CNY", actualData.Transactions[1].Postings[1].TotalCostCommodity)
 	assert.Equal(t, "Expenses:TestCategory3", actualData.Transactions[1].Postings[2].Account)
 	assert.Equal(t, "0.11", actualData.Transactions[1].Postings[2].Amount)
 	assert.Equal(t, "USD", actualData.Transactions[1].Postings[2].Commodity)
 	assert.Equal(t, "7.12", actualData.Transactions[1].Postings[2].Price)
 	assert.Equal(t, "CNY", actualData.Transactions[1].Postings[2].PriceCommodity)
 	assert.Equal(t, "0.00", actualData.Transactions[1].Postings[3].Amount)
 	assert.Equal(t, "USD", actualData.Transactions[1].Postings[3].Commodity)
 }
 func TestBeancountDataReaderReadTransactionPostingLine_AmountExpression(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Income:TestCategory (1.2-3.4) * 5.6 / 7.8 CNY\n"+
 		"  Assets:TestAccount 1.2 * 3.4/-5.6 - 7.8 CNY\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(actualData.Transactions))
 	assert.Equal(t, "2024-01-01", actualData.Transactions[0].Date)
 	assert.Equal(t, 2, len(actualData.Transactions[0].Postings))
 	assert.Equal(t, "Income:TestCategory", actualData.Transactions[0].Postings[0].Account)
 	assert.Equal(t, "(1.2-3.4) * 5.6 / 7.8", actualData.Transactions[0].Postings[0].OriginalAmount)
 	assert.Equal(t, "-1.58", actualData.Transactions[0].Postings[0].Amount)
 	assert.Equal(t, "CNY", actualData.Transactions[0].Postings[0].Commodity)
 	assert.Equal(t, "Assets:TestAccount", actualData.Transactions[0].Postings[1].Account)
 	assert.Equal(t, "1.2 * 3.4/-5.6 - 7.8", actualData.Transactions[0].Postings[1].OriginalAmount)
 	assert.Equal(t, "-8.53", actualData.Transactions[0].Postings[1].Amount)
 	assert.Equal(t, "CNY", actualData.Transactions[0].Postings[1].Commodity)
 }
 func TestBeancountDataReaderReadTransactionPostingLine_InvalidAmountExpression(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Income:TestCategory (1.2-3.4)*5.6/0 CNY\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrAmountInvalid.Message)
 	reader, err = createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Assets:TestAccount abc CNY\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrAmountInvalid.Message)
 }
 func TestBeancountDataReaderReadTransactionPostingLine_InvalidAccountType(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Income:TestCategory -123.45 CNY\n"+
 		"  Test:TestAccount 123.45 CNY\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrInvalidBeancountFile.Message)
 }
 func TestBeancountDataReaderReadTransactionPostingLine_InvalidCommodity(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Income:TestCategory -123.45 cny\n"+
 		"  Assets:TestAccount 123.45 cny\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrInvalidBeancountFile.Message)
 }
 func TestBeancountDataReaderReadTransactionPostingLine_MissingAmount(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Assets:TestAccount\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(actualData.Transactions))
 	assert.Equal(t, 0, len(actualData.Transactions[0].Postings))
 	reader, err = createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Assets:TestAccount \n"))
 	assert.Nil(t, err)
 	actualData, err = reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 1, len(actualData.Transactions))
 	assert.Equal(t, 0, len(actualData.Transactions[0].Postings))
 }
 func TestBeancountDataReaderReadTransactionPostingLine_MissingCommodity(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Assets:TestAccount 123.45\n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrInvalidBeancountFile.Message)
 	reader, err = createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  Assets:TestAccount 123.45 \n"))
 	assert.Nil(t, err)
 	_, err = reader.read(context)
 	assert.EqualError(t, err, errs.ErrInvalidBeancountFile.Message)
 }
 func TestBeancountDataReaderReadTransactionMetadataLine(t *testing.T) {
 	context := core.NewNullContext()
 	reader, err := createNewBeancountDataReader(context, []byte(""+
 		"2024-01-01 *\n"+
 		"  key: value\n"+
 		"  key2: \"value 2\"\n"+
 		"  key3: \n"+
 		"  key4: \"\"\n"+
 		"  key5 : \"\"\n"+
 		"  key2: \"new value\"\n"+
 		"  Income:TestCategory -123.45 CNY\n"+
 		"  Assets:TestAccount 123.45 CNY\n"+
 		"2024-01-02 *\n"+
 		"  Liabilities:TestAccount2 -0.23 USD\n"+
 		"    key6: value6\n"+
 		"    key7: \"value 7\"\n"+
 		"    key8: \n"+
 		"    key9: \"\"\n"+
 		"    key0 : \"\"\n"+
 		"    key6: \"new value\"\n"+
 		"  Expenses:TestCategory2 0.12 USD\n"))
 	assert.Nil(t, err)
 	actualData, err := reader.read(context)
 	assert.Nil(t, err)
 	assert.Equal(t, 2, len(actualData.Transactions))
 	assert.Equal(t, "2024-01-01", actualData.Transactions[0].Date)
 	assert.Equal(t, 2, len(actualData.Transactions[0].Postings))
 	assert.Equal(t, 2, len(actualData.Transactions[0].Metadata))
 	assert.Equal(t, "value", actualData.Transactions[0].Metadata["key"])
 	assert.Equal(t, "value 2", actualData.Transactions[0].Metadata["key2"])
 	assert.Equal(t, "2024-01-02", actualData.Transactions[1].Date)
 	assert.Equal(t, 2, len(actualData.Transactions[1].Postings))
 	assert.Equal(t, 2, len(actualData.Transactions[1].Postings[0].Metadata))
 	assert.Equal(t, "value6", actualData.Transactions[1].Postings[0].Metadata["key6"])
 	assert.Equal(t, "value 7", actualData.Transactions[1].Postings[0].Metadata["key7"])
 	assert.Equal(t, 0, len(actualData.Transactions[1].Postings[1].Metadata))
 }
--- a/Show More
+++ b/Show More