From 56c7c418fdb96f23cb8bbf5d07a6e8d3423c87b3 Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Tue, 9 Jun 2026 12:53:52 +0300
Subject: [PATCH 1/9] feat(core, service): add database storage and RPC routing
 for account-scoped proxies

---
 Cargo.lock                                    |  73 ++
 apps/src/app/accounts/accounts-page-view.tsx  | 198 ++++-
 apps/src/lib/i18n/messages/ru.ts              |   2 +-
 .../lib/i18n/messages/sections/en-accounts.ts |   2 +-
 .../lib/i18n/messages/sections/ko-accounts.ts |   2 +-
 .../lib/i18n/messages/sections/ru-accounts.ts | 199 +++--
 .../migrations/069_account_proxy_settings.sql |  14 +
 .../src/storage/account_proxy_settings.rs     | 207 +++++
 crates/core/src/storage/accounts.rs           |   5 +-
 crates/core/src/storage/mod.rs                |  20 +
 crates/core/src/storage/model_sources.rs      |   8 +-
 crates/core/tests/storage.rs                  | 154 ++++
 crates/core/tests/storage/migration_tests.rs  |  52 +-
 crates/service/Cargo.toml                     |   1 +
 crates/service/src/account/account_delete.rs  |   1 +
 .../src/account/account_delete_many.rs        |   1 +
 crates/service/src/account/account_proxy.rs   | 766 ++++++++++++++++++
 .../src/account/account_proxy_health.rs       | 338 ++++++++
 crates/service/src/account/mod.rs             |   4 +
 .../src/gateway/auth/openai_fallback.rs       |  10 +-
 .../src/gateway/core/runtime_config.rs        | 312 ++++++-
 .../core/tests/runtime_config_tests.rs        | 294 ++++++-
 crates/service/src/gateway/mod.rs             |   1 +
 .../src/gateway/observability/request_log.rs  |   1 -
 .../upstream/attempt_flow/transport.rs        |  34 +-
 .../src/gateway/upstream/executor/codex.rs    |  10 +-
 crates/service/src/lib.rs                     |   1 +
 crates/service/src/quota/read.rs              |  16 +-
 crates/service/src/rpc_dispatch/account.rs    |  23 +-
 crates/service/src/rpc_dispatch/apikey.rs     |   5 +-
 crates/service/src/rpc_dispatch/mod.rs        |   4 +
 crates/service/src/rpc_dispatch/quota.rs      |   4 +-
 crates/service/src/rpc_dispatch/requestlog.rs |   4 +-
 crates/service/tests/app_settings.rs          |   4 +-
 34 files changed, 2622 insertions(+), 148 deletions(-)
 create mode 100644 crates/core/migrations/069_account_proxy_settings.sql
 create mode 100644 crates/core/src/storage/account_proxy_settings.rs
 create mode 100644 crates/service/src/account/account_proxy.rs
 create mode 100644 crates/service/src/account/account_proxy_health.rs

diff --git a/Cargo.lock b/Cargo.lock
index 3eaaa14a8..d36e9dd48 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -309,6 +309,7 @@ dependencies = [
  "log",
  "os_info",
  "rand 0.8.5",
+ "rcgen",
  "reqwest",
  "rhai",
  "rusqlite",
@@ -531,6 +532,15 @@ version = "2.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d7a1e2f27636f116493b8b860f5546edb47c8d8f8ea73e1d2a20be88e28d1fea"
 
+[[package]]
+name = "deranged"
+version = "0.5.8"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7cd812cc2bc1d69d4764bd80df88b4317eaef9e773c75226407d9bc0876b211c"
+dependencies = [
+ "powerfmt",
+]
+
 [[package]]
 name = "derive_builder"
 version = "0.20.2"
@@ -1432,6 +1442,12 @@ dependencies = [
  "winapi",
 ]
 
+[[package]]
+name = "num-conv"
+version = "0.2.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "521739c6d2bac4aa25192232afe6841231376b2b26d4d9fae5ecf8ca5772e441"
+
 [[package]]
 name = "num-traits"
 version = "0.2.19"
@@ -1684,6 +1700,16 @@ dependencies = [
  "windows-sys 0.61.2",
 ]
 
+[[package]]
+name = "pem"
+version = "3.0.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "1d30c53c26bc5b31a98cd02d20f25a7c8567146caf63ed593a9d87b2775291be"
+dependencies = [
+ "base64",
+ "serde_core",
+]
+
 [[package]]
 name = "percent-encoding"
 version = "2.3.2"
@@ -1732,6 +1758,12 @@ dependencies = [
  "zerovec",
 ]
 
+[[package]]
+name = "powerfmt"
+version = "0.2.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "439ee305def115ba05938db6eb1644ff94165c5ab5e9420d1c1bcedbba909391"
+
 [[package]]
 name = "ppv-lite86"
 version = "0.2.21"
@@ -1905,6 +1937,19 @@ dependencies = [
  "crossbeam-utils",
 ]
 
+[[package]]
+name = "rcgen"
+version = "0.13.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "75e669e5202259b5314d1ea5397316ad400819437857b90861765f24c4cf80a2"
+dependencies = [
+ "pem",
+ "ring",
+ "rustls-pki-types",
+ "time",
+ "yasna",
+]
+
 [[package]]
 name = "regex"
 version = "1.12.3"
@@ -2446,6 +2491,25 @@ dependencies = [
  "syn",
 ]
 
+[[package]]
+name = "time"
+version = "0.3.47"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "743bd48c283afc0388f9b8827b976905fb217ad9e647fae3a379a9283c4def2c"
+dependencies = [
+ "deranged",
+ "num-conv",
+ "powerfmt",
+ "serde_core",
+ "time-core",
+]
+
+[[package]]
+name = "time-core"
+version = "0.1.8"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7694e1cfe791f8d31026952abf09c69ca6f6fa4e1a1229e18988f06a04a12dca"
+
 [[package]]
 name = "tiny-keccak"
 version = "2.0.2"
@@ -3306,6 +3370,15 @@ version = "0.6.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9edde0db4769d2dc68579893f2306b26c6ecfbe0ef499b013d731b7b9247e0b9"
 
+[[package]]
+name = "yasna"
+version = "0.5.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e17bb3549cc1321ae1296b9cdc2698e2b6cb1992adfa19a8c72e5b7a738f44cd"
+dependencies = [
+ "time",
+]
+
 [[package]]
 name = "yoke"
 version = "0.8.1"
diff --git a/apps/src/app/accounts/accounts-page-view.tsx b/apps/src/app/accounts/accounts-page-view.tsx
index 36c516cf2..b841e1660 100644
--- a/apps/src/app/accounts/accounts-page-view.tsx
+++ b/apps/src/app/accounts/accounts-page-view.tsx
@@ -12,6 +12,7 @@ import {
   KeyRound,
   Loader2,
   MoreVertical,
+  Network,
   PencilLine,
   Pin,
   Plus,
@@ -56,6 +57,7 @@ import {
   SelectValue,
 } from "@/components/ui/select";
 import { Skeleton } from "@/components/ui/skeleton";
+import { Switch } from "@/components/ui/switch";
 import {
   Table,
   TableBody,
@@ -73,6 +75,7 @@ import {
 import { useI18n } from "@/lib/i18n/provider";
 import { cn } from "@/lib/utils";
 import { formatCompactNumber } from "@/lib/utils/usage";
+import type { AccountProxySettings } from "@/lib/api/account-client";
 import type { Account } from "@/types";
 import {
   type AccountEditorState,
@@ -135,6 +138,11 @@ export interface AccountsPageViewProps {
   cleanupDialogOpen: boolean;
   cleanupStatusDraft: string[];
   cleanupStatusOptions: CleanupStatusOption[];
+  proxyDialogAccount: Account | null;
+  proxySettings: AccountProxySettings | null;
+  isProxySettingsLoading: boolean;
+  proxyEnabledDraft: boolean;
+  proxyUrlDraft: string;
   selectedAccount: Account | null;
   accountEditorState: AccountEditorState | null;
   deleteDialogState: DeleteDialogState;
@@ -155,6 +163,9 @@ export interface AccountsPageViewProps {
   isDeletingMany: boolean;
   isCleaningAccountsByStatus: boolean;
   isUpdatingPreferred: boolean;
+  isSavingAccountProxy: boolean;
+  isClearingAccountProxy: boolean;
+  isTestingAccountProxy: boolean;
   isReorderingAccounts: boolean;
   isUpdatingProfileAccountId: string | null;
   isUpdatingStatusAccountId: string | null;
@@ -168,6 +179,8 @@ export interface AccountsPageViewProps {
   setExportModeDraft: Dispatch<SetStateAction<AccountExportMode>>;
   setDeleteDialogState: Dispatch<SetStateAction<DeleteDialogState>>;
   setCleanupDialogOpen: Dispatch<SetStateAction<boolean>>;
+  setProxyEnabledDraft: Dispatch<SetStateAction<boolean>>;
+  setProxyUrlDraft: Dispatch<SetStateAction<string>>;
   setAccountEditorState: Dispatch<SetStateAction<AccountEditorState | null>>;
   setLabelDraft: Dispatch<SetStateAction<string>>;
   setTagsDraft: Dispatch<SetStateAction<string>>;
@@ -193,6 +206,11 @@ export interface AccountsPageViewProps {
   openExportDialog: () => void;
   handleConfirmExport: () => Promise<void>;
   handleDeleteSingle: (account: Account) => void;
+  openProxyDialog: (account: Account) => void;
+  handleProxyDialogOpenChange: (open: boolean) => void;
+  handleSaveProxySettings: () => Promise<void>;
+  handleClearProxySettings: () => Promise<void>;
+  handleTestProxySettings: () => Promise<void>;
   openAccountEditor: (account: Account) => void;
   handleMoveAccount: (
     account: Account,
@@ -244,6 +262,11 @@ export function AccountsPageView(props: AccountsPageViewProps) {
     cleanupDialogOpen,
     cleanupStatusDraft,
     cleanupStatusOptions,
+    proxyDialogAccount,
+    proxySettings,
+    isProxySettingsLoading,
+    proxyEnabledDraft,
+    proxyUrlDraft,
     selectedAccount,
     accountEditorState,
     deleteDialogState,
@@ -264,6 +287,9 @@ export function AccountsPageView(props: AccountsPageViewProps) {
     isDeletingMany,
     isCleaningAccountsByStatus,
     isUpdatingPreferred,
+    isSavingAccountProxy,
+    isClearingAccountProxy,
+    isTestingAccountProxy,
     isReorderingAccounts,
     isUpdatingProfileAccountId,
     isUpdatingStatusAccountId,
@@ -277,6 +303,8 @@ export function AccountsPageView(props: AccountsPageViewProps) {
     setExportModeDraft,
     setDeleteDialogState,
     setCleanupDialogOpen,
+    setProxyEnabledDraft,
+    setProxyUrlDraft,
     setAccountEditorState,
     setLabelDraft,
     setTagsDraft,
@@ -302,6 +330,11 @@ export function AccountsPageView(props: AccountsPageViewProps) {
     openExportDialog,
     handleConfirmExport,
     handleDeleteSingle,
+    openProxyDialog,
+    handleProxyDialogOpenChange,
+    handleSaveProxySettings,
+    handleClearProxySettings,
+    handleTestProxySettings,
     openAccountEditor,
     handleMoveAccount,
     handleApplyAccountSizeSort,
@@ -323,6 +356,35 @@ export function AccountsPageView(props: AccountsPageViewProps) {
       cleanupStatusDraft.includes(option.id) ? total + option.count : total,
     0,
   );
+  const accountProxyBusy =
+    isProxySettingsLoading ||
+    isSavingAccountProxy ||
+    isClearingAccountProxy ||
+    isTestingAccountProxy;
+  const accountProxyStatusText = (() => {
+    const status = String(proxySettings?.status || "not_configured");
+    switch (status) {
+      case "ok":
+        return t("可用");
+      case "runtime_error":
+        return t("运行时错误");
+      case "failed":
+        return t("测试失败");
+      case "invalid_url":
+        return t("地址无效");
+      case "checking":
+        return t("测试中");
+      case "unchecked":
+        return t("未测试");
+      case "not_configured":
+      default:
+        return t("未配置");
+    }
+  })();
+  const accountProxyLastCheckText =
+    proxySettings?.lastCheckAt != null
+      ? new Date(proxySettings.lastCheckAt * 1000).toLocaleString()
+      : t("从未检查");
 
   return (
     <div className="space-y-6">
@@ -1040,6 +1102,14 @@ export function AccountsPageView(props: AccountsPageViewProps) {
                                 <Pin className="h-4 w-4" />
                                 {account.preferred ? t("取消优先") : t("设为优先")}
                               </DropdownMenuItem>
+                              <DropdownMenuItem
+                                className="gap-2"
+                                disabled={!isServiceReady}
+                                onClick={() => void openProxyDialog(account)}
+                              >
+                                <Network className="h-4 w-4" />
+                                {t("账号代理")}
+                              </DropdownMenuItem>
                               <DropdownMenuItem
                                 className="gap-2"
                                 disabled={
@@ -1138,7 +1208,7 @@ export function AccountsPageView(props: AccountsPageViewProps) {
         </div>
       </div>
 
-      {addAccountModalOpen ? (
+{addAccountModalOpen ? (
         <AddAccountModal
           open={isPageActive && addAccountModalOpen}
           onOpenChange={setAddAccountModalOpen}
@@ -1158,6 +1228,132 @@ export function AccountsPageView(props: AccountsPageViewProps) {
           !!selectedAccount && isRefreshingRtAccountId === selectedAccount.id
         }
       />
+      <Dialog
+        open={isPageActive && Boolean(proxyDialogAccount)}
+        onOpenChange={handleProxyDialogOpenChange}
+      >
+        <DialogContent className="glass-card p-0 sm:max-w-[560px]">
+          <DialogHeader className="px-6 pt-6">
+            <DialogTitle>{t("账号代理")}</DialogTitle>
+            <DialogDescription>
+              {proxyDialogAccount
+                ? proxyDialogAccount.name
+                : t("为单个 OpenAI 账号配置本地代理。")}
+            </DialogDescription>
+          </DialogHeader>
+          <div className="grid gap-4 px-6 py-4">
+            <div className="flex items-center justify-between gap-4 rounded-xl border border-border/70 bg-muted/20 px-3 py-3">
+              <div className="min-w-0">
+                <Label htmlFor="account-proxy-enabled" className="text-sm">
+                  {t("启用账号代理")}
+                </Label>
+                <p className="mt-1 text-[11px] leading-4 text-muted-foreground">
+                  {t("启用后，该账号会优先使用这里的代理地址。")}
+                </p>
+              </div>
+              <Switch
+                id="account-proxy-enabled"
+                checked={proxyEnabledDraft}
+                disabled={accountProxyBusy}
+                onCheckedChange={(value) => setProxyEnabledDraft(Boolean(value))}
+              />
+            </div>
+            <div className="grid gap-2">
+              <Label htmlFor="account-proxy-url">{t("代理地址")}</Label>
+              <div className="flex gap-2">
+                <Input
+                  id="account-proxy-url"
+                  value={proxyUrlDraft}
+                  disabled={accountProxyBusy}
+                  onChange={(event) => setProxyUrlDraft(event.target.value)}
+                  placeholder="http://127.0.0.1:7891"
+                />
+                <Button
+                  type="button"
+                  variant="outline"
+                  disabled={accountProxyBusy || !proxySettings}
+                  onClick={() => void handleClearProxySettings()}
+                >
+                  {isClearingAccountProxy ? (
+                    <Loader2 className="mr-2 h-4 w-4 animate-spin" />
+                  ) : null}
+                  {t("清除")}
+                </Button>
+              </div>
+              <p className="text-[11px] leading-4 text-muted-foreground">
+                {t("支持 http、https、socks4、socks5；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。")}
+              </p>
+              <p className="text-[11px] leading-4 text-amber-600 dark:text-amber-400">
+                {t("建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。")}
+              </p>
+            </div>
+            <div className="grid gap-2 rounded-xl bg-muted/20 px-3 py-3 text-xs sm:grid-cols-2">
+              <div>
+                <div className="text-muted-foreground">{t("测试状态")}</div>
+                <div className="mt-1 font-medium">{accountProxyStatusText}</div>
+              </div>
+              <div>
+                <div className="text-muted-foreground">{t("最近检查")}</div>
+                <div className="mt-1 font-medium">{accountProxyLastCheckText}</div>
+              </div>
+              <div>
+                <div className="text-muted-foreground">{t("延迟")}</div>
+                <div className="mt-1 font-medium">
+                  {proxySettings?.latencyMs != null
+                    ? `${proxySettings.latencyMs} ms`
+                    : "--"}
+                </div>
+              </div>
+              <div>
+                <div className="text-muted-foreground">{t("当前模式")}</div>
+                <div className="mt-1 font-medium">
+                  {proxySettings?.enabled ? t("账号代理") : t("默认路由")}
+                </div>
+              </div>
+              {proxySettings?.lastError ? (
+                <div className="sm:col-span-2">
+                  <div className="text-muted-foreground">{t("错误")}</div>
+                  <div className="mt-1 break-words rounded-lg bg-background/60 px-2 py-1 font-mono text-[11px] text-destructive [overflow-wrap:anywhere]">
+                    {proxySettings.lastError}
+                  </div>
+                </div>
+              ) : null}
+            </div>
+          </div>
+          <DialogFooter className="mx-0 mb-0 gap-2 rounded-b-xl border-t bg-muted/40 px-6 py-4 sm:gap-2">
+            <DialogClose
+              className={cn(
+                buttonVariants({ variant: "outline" }),
+                "rounded-xl",
+              )}
+              disabled={accountProxyBusy}
+            >
+              {t("关闭")}
+            </DialogClose>
+            <Button
+              type="button"
+              variant="outline"
+              disabled={accountProxyBusy || !proxyDialogAccount}
+              onClick={() => void handleTestProxySettings()}
+            >
+              {isTestingAccountProxy ? (
+                <Loader2 className="mr-2 h-4 w-4 animate-spin" />
+              ) : null}
+              {t("测试")}
+            </Button>
+            <Button
+              type="button"
+              disabled={accountProxyBusy}
+              onClick={() => void handleSaveProxySettings()}
+            >
+              {isSavingAccountProxy ? (
+                <Loader2 className="mr-2 h-4 w-4 animate-spin" />
+              ) : null}
+              {t("保存")}
+            </Button>
+          </DialogFooter>
+        </DialogContent>
+      </Dialog>
       <ConfirmDialog
         open={isPageActive && Boolean(deleteDialogState)}
         onOpenChange={(open) => {
diff --git a/apps/src/lib/i18n/messages/ru.ts b/apps/src/lib/i18n/messages/ru.ts
index ef77ca0e3..ba35c1360 100644
--- a/apps/src/lib/i18n/messages/ru.ts
+++ b/apps/src/lib/i18n/messages/ru.ts
@@ -28,7 +28,7 @@ export const RU_MESSAGES: MessageCatalog = {
 	账号设置: "Аккаунт",
 	号池管理: "Пул аккаунтов",
 	账号管理: "Аккаунты",
-	"OpenAI 账号池": "Пул OpenAI",
+	"OpenAI 账号池": "Пул аккаунтов",
 	"聚合 API": "Агрегированные API",
 	聚合API: "Агрегированные API",
 	平台模型目录: "Каталог моделей",
diff --git a/apps/src/lib/i18n/messages/sections/en-accounts.ts b/apps/src/lib/i18n/messages/sections/en-accounts.ts
index 0797d49b5..e86ce9035 100644
--- a/apps/src/lib/i18n/messages/sections/en-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/en-accounts.ts
@@ -3,7 +3,7 @@
 import type { MessageCatalog } from "../types";
 
 export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
-  "5h 容量覆盖（Token）": "5h capacity override (tokens)",
+"5h 容量覆盖（Token）": "5h capacity override (tokens)",
   "7d 容量覆盖（Token）": "7d capacity override (tokens)",
   "AT/RT 刷新中...": "Refreshing AT/RT...",
   "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
diff --git a/apps/src/lib/i18n/messages/sections/ko-accounts.ts b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
index a11e1fb30..629830313 100644
--- a/apps/src/lib/i18n/messages/sections/ko-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
@@ -3,7 +3,7 @@
 import type { MessageCatalog } from "../types";
 
 export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
-  "5h 容量覆盖（Token）": "5h 용량 오버라이드(Token)",
+"5h 容量覆盖（Token）": "5h 용량 오버라이드(Token)",
   "7d 容量覆盖（Token）": "7d 용량 오버라이드(Token)",
   "AT/RT 刷新中...": "AT/RT 새로고침 중...",
   "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
diff --git a/apps/src/lib/i18n/messages/sections/ru-accounts.ts b/apps/src/lib/i18n/messages/sections/ru-accounts.ts
index e39fe981c..a573b6af8 100644
--- a/apps/src/lib/i18n/messages/sections/ru-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/ru-accounts.ts
@@ -3,80 +3,127 @@
 import type { MessageCatalog } from "../types";
 
 export const RU_ACCOUNTS_MESSAGES: MessageCatalog = {
-  "5h 容量覆盖（Token）": "Переопределение емкости 5h (токены)",
-  "7d 容量覆盖（Token）": "Переопределение емкости 7d (токены)",
-  "AT/RT 刷新中...": "Обновление AT/RT...",
-  "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
-    "Обновление AT/RT завершено: успешно {success}, ошибок {failed}, пропущено {skipped}",
-  "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}":
-    "Обновление AT/RT завершено: успешно {success}, ошибок {failed}, пропущено {skipped}. Первая ошибка: {message}",
-  "AT/RT 刷新完成：成功{success}个，跳过{skipped}个":
-    "Обновление AT/RT завершено: успешно {success}, пропущено {skipped}",
-  "AT/RT 过期、用量接口 401/403 等不可用账号":
-    "Недоступные аккаунты: истекшие AT/RT, usage API 401/403 и подобные случаи",
-  "Refresh Token 失效，需要重新登录": "Refresh Token недействителен. Войдите снова.",
-  "Refresh Token 已被撤销，需要重新登录": "Refresh Token отозван. Войдите снова.",
-  "Refresh Token 已被重复使用，需要重新登录":
-    "Refresh Token был повторно использован. Войдите снова.",
-  "Refresh Token 已过期，需要重新登录": "Refresh Token истек. Войдите снова.",
-  "Refresh Token 授权无效，需要重新登录":
-    "Авторизация Refresh Token недействительна. Войдите снова.",
-  "仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。":
-    "Используется только для статистики принадлежности пула квот. Оставьте пустым, чтобы аккаунт действовал для всех API-доступных моделей.",
-  "代理地区不受支持，已暂停账号刷新":
-    "Регион прокси не поддерживается. Обновление аккаунта приостановлено.",
-  "刷新 AT/RT": "Обновить AT/RT",
-  "刷新 AT/RT 失败": "Не удалось обновить AT/RT",
-  "刷新全部 AT/RT": "Обновить все AT/RT",
-  "刷新用量": "Обновить usage",
-  "刷新登录凭证返回 401，需要重新登录":
-    "Обновление учетных данных вернуло 401. Войдите снова.",
-  "原因码": "Код причины",
-  "容量覆盖": "Переопределение емкости",
-  "当前没有匹配所选状态的账号": "Нет аккаунтов с выбранными статусами",
-  "当前没有可清理的账号": "Нет аккаунтов для очистки",
-  "工作区已停用": "Рабочая область деактивирована",
-  "将删除所有匹配所选状态的账号，不再额外限制账号套餐。":
-    "Будут удалены все аккаунты с выбранными статусами без дополнительного ограничения по тарифу аккаунта.",
-  "已清理 {count} 个账号": "Очищено аккаунтов: {count}",
-  "手动停用或旧版本标记的账号":
-    "Аккаунты, отключенные вручную или отмеченные старыми версиями",
-  "手动禁用的账号": "Аккаунты, отключенные вручную",
-  "批量刷新 AT/RT 失败": "Не удалось массово обновить AT/RT",
-  "按状态清理账号": "Очистить аккаунты по статусу",
-  "明确触发 usage_limit_reached 的账号，不包含低额度账号":
-    "Аккаунты, явно вызвавшие usage_limit_reached, без аккаунтов с низкой квотой",
-  "更多账号操作": "Больше действий с аккаунтом",
-  "未发现可清理的账号": "Аккаунты для очистки не найдены",
-  "未设置账号容量覆盖": "Переопределение емкости аккаунта не задано",
-  "状态原因": "Причина статуса",
-  "用量接口返回 401，账号授权失效":
-    "Usage API вернул 401. Авторизация аккаунта недействительна.",
-  "用量接口返回 403，账号权限不足或被限制":
-    "Usage API вернул 403. Недостаточно прав или аккаунт ограничен.",
-  "用量接口返回 HTTP {status}": "Usage API вернул HTTP {status}",
-  "用量限制": "Лимит usage",
-  "留空使用计划模板": "Оставьте пустым, чтобы использовать шаблон плана",
-  "的名称、标签、备注、排序与额度池配置。":
-    ": имя, теги, заметки, сортировка и настройки пула квот.",
-  "确认清理": "Подтвердить очистку",
-  "缺少授权 Token": "Отсутствует auth token",
-  "账号 AT/RT 已刷新": "AT/RT аккаунта обновлены",
-  "账号已停用": "Аккаунт деактивирован",
-  "账号或工作区被停用的账号": "Аккаунты, где деактивирован аккаунт или рабочая область",
-  "状态字段为 unknown 的账号": "Аккаунты со статусом unknown",
-  "该账号只有用量快照，当前不能参与模型刷新或网关转发。请重新登录或刷新 AT/RT 后再使用。":
-    "У этого аккаунта есть только снимок usage, поэтому сейчас он не может участвовать в обновлении моделей или gateway forwarding. Войдите снова или обновите AT/RT перед использованием.",
-  "请选择至少一种账号状态": "Выберите хотя бы один статус аккаунта",
-  "请至少选择一种账号状态": "Выберите хотя бы один статус аккаунта",
-  "选择导出方式；如果已勾选账号，则只导出当前选中项。":
-    "Выберите способ экспорта. Если аккаунты отмечены, будут экспортированы только выбранные.",
-  "选择要删除的账号状态；删除后不可恢复。":
-    "Выберите статусы аккаунтов для удаления. Удаление нельзя отменить.",
-  "这里展示账号套餐接口同步回来的套餐状态与时间信息。":
-    "Здесь показаны статус тарифа и время, синхронизированные из API тарифов аккаунта.",
-  "额度容量必须是大于 0 的数字，留空表示未覆盖":
-    "Емкость квоты должна быть числом больше 0. Оставьте пустым, чтобы не переопределять.",
-  "额度已耗尽": "Квота исчерпана",
-  "预计删除": "Ожидается удалить",
+	"5h 容量覆盖（Token）": "Переопределение емкости 5h (токены)",
+	"7d 容量覆盖（Token）": "Переопределение емкости 7d (токены)",
+	"AT/RT 刷新中...": "Обновление AT/RT...",
+	"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
+		"Обновление AT/RT завершено: успешно {success}, ошибок {failed}, пропущено {skipped}",
+	"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}":
+		"Обновление AT/RT завершено: успешно {success}, ошибок {failed}, пропущено {skipped}. Первая ошибка: {message}",
+	"AT/RT 刷新完成：成功{success}个，跳过{skipped}个":
+		"Обновление AT/RT завершено: успешно {success}, пропущено {skipped}",
+	"AT/RT 过期、用量接口 401/403 等不可用账号":
+		"Недоступные аккаунты: истекшие AT/RT, usage API 401/403 и подобные случаи",
+	"Refresh Token 失效，需要重新登录":
+		"Refresh Token недействителен. Войдите снова.",
+	"Refresh Token 已被撤销，需要重新登录":
+		"Refresh Token отозван. Войдите снова.",
+	"Refresh Token 已被重复使用，需要重新登录":
+		"Refresh Token был повторно использован. Войдите снова.",
+	"Refresh Token 已过期，需要重新登录": "Refresh Token истек. Войдите снова.",
+	"Refresh Token 授权无效，需要重新登录":
+		"Авторизация Refresh Token недействительна. Войдите снова.",
+	"仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。":
+		"Используется только для статистики принадлежности пула квот. Оставьте пустым, чтобы аккаунт действовал для всех API-доступных моделей.",
+	"代理地区不受支持，已暂停账号刷新":
+		"Регион прокси не поддерживается. Обновление аккаунта приостановлено.",
+	保存账号代理: "Сохранить прокси аккаунта",
+	保存账号代理失败: "Не удалось сохранить прокси аккаунта",
+	测试账号代理: "Проверить прокси аккаунта",
+	测试账号代理失败: "Не удалось проверить прокси аккаунта",
+	测试: "Проверить",
+
+	测试中: "Проверяется",
+	未测试: "Не проверено",
+	测试失败: "Проверка не пройдена",
+	测试状态: "Статус проверки",
+	可用: "Доступен",
+	运行时错误: "Ошибка выполнения",
+	从未检查: "Никогда не проверялось",
+	代理地址: "Адрес прокси",
+	地址无效: "Некорректный адрес",
+	未配置: "Не настроен",
+	"刷新 AT/RT": "Обновить AT/RT",
+	"刷新 AT/RT 失败": "Не удалось обновить AT/RT",
+	"刷新全部 AT/RT": "Обновить все AT/RT",
+	刷新用量: "Обновить usage",
+	"刷新登录凭证返回 401，需要重新登录":
+		"Обновление учетных данных вернуло 401. Войдите снова.",
+	读取账号代理: "Прочитать прокси аккаунта",
+	读取账号代理失败: "Не удалось прочитать прокси аккаунта",
+	"服务未连接，暂时无法读取账号代理":
+		"Сервис не подключен, прокси аккаунта пока нельзя прочитать",
+	保存: "Сохранить",
+	默认路由: "Маршрут по умолчанию",
+	当前模式: "Текущий режим",
+	清除: "Очистить",
+	错误: "Ошибка",
+	"启用后，该账号会优先使用这里的代理地址。":
+		"Если включено, этот аккаунт будет сначала использовать этот адрес прокси.",
+	启用账号代理: "Включить прокси аккаунта",
+	清除账号代理: "Очистить прокси аккаунта",
+	清除账号代理失败: "Не удалось очистить прокси аккаунта",
+	"为单个 OpenAI 账号配置本地代理。":
+		"Настройте локальный прокси для одного аккаунта OpenAI.",
+	延迟: "Задержка",
+	原因码: "Код причины",
+	容量覆盖: "Переопределение емкости",
+	当前没有匹配所选状态的账号: "Нет аккаунтов с выбранными статусами",
+	当前没有可清理的账号: "Нет аккаунтов для очистки",
+	工作区已停用: "Рабочая область деактивирована",
+	"将删除所有匹配所选状态的账号，不再额外限制账号套餐。":
+		"Будут удалены все аккаунты с выбранными статусами без дополнительного ограничения по тарифу аккаунта.",
+	"已清理 {count} 个账号": "Очищено аккаунтов: {count}",
+	手动停用或旧版本标记的账号:
+		"Аккаунты, отключенные вручную или отмеченные старыми версиями",
+	手动禁用的账号: "Аккаунты, отключенные вручную",
+	"批量刷新 AT/RT 失败": "Не удалось массово обновить AT/RT",
+	按状态清理账号: "Очистить аккаунты по статусу",
+	"明确触发 usage_limit_reached 的账号，不包含低额度账号":
+		"Аккаунты, явно вызвавшие usage_limit_reached, без аккаунтов с низкой квотой",
+	更多账号操作: "Больше действий с аккаунтом",
+	未发现可清理的账号: "Аккаунты для очистки не найдены",
+	未设置账号容量覆盖: "Переопределение емкости аккаунта не задано",
+	状态原因: "Причина статуса",
+	"用量接口返回 401，账号授权失效":
+		"Usage API вернул 401. Авторизация аккаунта недействительна.",
+	"用量接口返回 403，账号权限不足或被限制":
+		"Usage API вернул 403. Недостаточно прав или аккаунт ограничен.",
+	"用量接口返回 HTTP {status}": "Usage API вернул HTTP {status}",
+	用量限制: "Лимит usage",
+	留空使用计划模板: "Оставьте пустым, чтобы использовать шаблон плана",
+	"的名称、标签、备注、排序与额度池配置。":
+		": имя, теги, заметки, сортировка и настройки пула квот.",
+	确认清理: "Подтвердить очистку",
+	"缺少授权 Token": "Отсутствует auth token",
+	"账号 AT/RT 已刷新": "AT/RT аккаунта обновлены",
+	账号代理: "Прокси аккаунта",
+	账号代理测试通过: "Прокси аккаунта прошел проверку",
+	账号代理测试未通过: "Прокси аккаунта не прошел проверку",
+	账号代理已保存: "Прокси аккаунта сохранен",
+	账号代理已关闭: "Прокси аккаунта отключен",
+	账号代理已清除: "Прокси аккаунта очищен",
+	账号已停用: "Аккаунт деактивирован",
+	账号或工作区被停用的账号:
+		"Аккаунты, где деактивирован аккаунт или рабочая область",
+	"状态字段为 unknown 的账号": "Аккаунты со статусом unknown",
+	"该账号只有用量快照，当前不能参与模型刷新或网关转发。请重新登录或刷新 AT/RT 后再使用。":
+		"У этого аккаунта есть только снимок usage, поэтому сейчас он не может участвовать в обновлении моделей или gateway forwarding. Войдите снова или обновите AT/RT перед использованием.",
+	请选择至少一种账号状态: "Выберите хотя бы один статус аккаунта",
+	请至少选择一种账号状态: "Выберите хотя бы один статус аккаунта",
+	"选择导出方式；如果已勾选账号，则只导出当前选中项。":
+		"Выберите способ экспорта. Если аккаунты отмечены, будут экспортированы только выбранные.",
+	"选择要删除的账号状态；删除后不可恢复。":
+		"Выберите статусы аккаунтов для удаления. Удаление нельзя отменить.",
+	"建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
+		"Рекомендуется использовать один и тот же прокси и регион для входа, refresh, usage и API-запросов, чтобы снизить риск блокировок и рассинхронизации состояния аккаунта.",
+	"支持 http、https、socks4、socks5；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
+		"Поддерживаются http, https, socks4 и socks5. Для sing-box mixed inbound обычно указывают http://127.0.0.1:port.",
+	最近检查: "Последняя проверка",
+	"这里展示账号套餐接口同步回来的套餐状态与时间信息。":
+		"Здесь показаны статус тарифа и время, синхронизированные из API тарифов аккаунта.",
+	"额度容量必须是大于 0 的数字，留空表示未覆盖":
+		"Емкость квоты должна быть числом больше 0. Оставьте пустым, чтобы не переопределять.",
+	额度已耗尽: "Квота исчерпана",
+	预计删除: "Ожидается удалить",
 };
diff --git a/crates/core/migrations/069_account_proxy_settings.sql b/crates/core/migrations/069_account_proxy_settings.sql
new file mode 100644
index 000000000..e5d701596
--- /dev/null
+++ b/crates/core/migrations/069_account_proxy_settings.sql
@@ -0,0 +1,14 @@
+CREATE TABLE IF NOT EXISTS account_proxy_settings (
+  account_id TEXT PRIMARY KEY REFERENCES accounts(id) ON DELETE CASCADE,
+  enabled INTEGER NOT NULL DEFAULT 0,
+  proxy_url TEXT,
+  status TEXT NOT NULL DEFAULT 'unchecked',
+  latency_ms INTEGER,
+  last_check_at INTEGER,
+  last_error TEXT,
+  created_at INTEGER NOT NULL,
+  updated_at INTEGER NOT NULL
+);
+
+CREATE INDEX IF NOT EXISTS idx_account_proxy_settings_updated_at
+  ON account_proxy_settings(updated_at DESC, account_id ASC);
diff --git a/crates/core/src/storage/account_proxy_settings.rs b/crates/core/src/storage/account_proxy_settings.rs
new file mode 100644
index 000000000..d70bc855d
--- /dev/null
+++ b/crates/core/src/storage/account_proxy_settings.rs
@@ -0,0 +1,207 @@
+use rusqlite::{Result, Row};
+
+use super::{now_ts, AccountProxySettings, Storage};
+
+impl Storage {
+    pub fn upsert_account_proxy_settings(
+        &self,
+        account_id: &str,
+        enabled: bool,
+        proxy_url: Option<&str>,
+        status: &str,
+        latency_ms: Option<i64>,
+        last_check_at: Option<i64>,
+        last_error: Option<&str>,
+    ) -> Result<()> {
+        let now = now_ts();
+        let created_at = self
+            .find_account_proxy_settings(account_id)?
+            .map(|settings| settings.created_at)
+            .unwrap_or(now);
+
+        self.conn.execute(
+            "INSERT INTO account_proxy_settings (
+                account_id,
+                enabled,
+                proxy_url,
+                status,
+                latency_ms,
+                last_check_at,
+                last_error,
+                created_at,
+                updated_at
+            ) VALUES (
+                ?1,
+                ?2,
+                ?3,
+                ?4,
+                ?5,
+                ?6,
+                ?7,
+                ?8,
+                ?9
+            )
+            ON CONFLICT(account_id) DO UPDATE SET
+                enabled = excluded.enabled,
+                proxy_url = excluded.proxy_url,
+                status = excluded.status,
+                latency_ms = excluded.latency_ms,
+                last_check_at = excluded.last_check_at,
+                last_error = excluded.last_error,
+                updated_at = excluded.updated_at",
+            (
+                account_id,
+                if enabled { 1 } else { 0 },
+                normalize_optional_text(proxy_url),
+                normalize_status(status),
+                latency_ms,
+                last_check_at,
+                normalize_optional_text(last_error),
+                created_at,
+                now,
+            ),
+        )?;
+        Ok(())
+    }
+
+    pub fn update_account_proxy_check_status(
+        &self,
+        account_id: &str,
+        status: &str,
+        latency_ms: Option<i64>,
+        last_check_at: Option<i64>,
+        last_error: Option<&str>,
+    ) -> Result<()> {
+        self.conn.execute(
+            "UPDATE account_proxy_settings
+             SET status = ?2,
+                 latency_ms = ?3,
+                 last_check_at = ?4,
+                 last_error = ?5,
+                 updated_at = ?6
+             WHERE account_id = ?1",
+            (
+                account_id,
+                normalize_status(status),
+                latency_ms,
+                last_check_at,
+                normalize_optional_text(last_error),
+                now_ts(),
+            ),
+        )?;
+        Ok(())
+    }
+
+    pub fn clear_account_proxy_settings(&self, account_id: &str) -> Result<()> {
+        self.conn.execute(
+            "DELETE FROM account_proxy_settings WHERE account_id = ?1",
+            [account_id],
+        )?;
+        Ok(())
+    }
+
+    pub fn find_account_proxy_settings(
+        &self,
+        account_id: &str,
+    ) -> Result<Option<AccountProxySettings>> {
+        let mut stmt = self.conn.prepare(
+            "SELECT account_id, enabled, proxy_url, status, latency_ms, last_check_at, last_error, created_at, updated_at
+             FROM account_proxy_settings
+             WHERE account_id = ?1
+             LIMIT 1",
+        )?;
+        let mut rows = stmt.query([account_id])?;
+        if let Some(row) = rows.next()? {
+            Ok(Some(map_account_proxy_settings_row(row)?))
+        } else {
+            Ok(None)
+        }
+    }
+
+    pub fn list_account_proxy_settings(&self) -> Result<Vec<AccountProxySettings>> {
+        let mut stmt = self.conn.prepare(
+            "SELECT account_id, enabled, proxy_url, status, latency_ms, last_check_at, last_error, created_at, updated_at
+             FROM account_proxy_settings
+             ORDER BY updated_at DESC, account_id ASC",
+        )?;
+        let mut rows = stmt.query([])?;
+        let mut out = Vec::new();
+        while let Some(row) = rows.next()? {
+            out.push(map_account_proxy_settings_row(row)?);
+        }
+        Ok(out)
+    }
+
+    pub(super) fn ensure_account_proxy_settings_table(&self) -> Result<()> {
+        self.conn.execute_batch(
+            "CREATE TABLE IF NOT EXISTS account_proxy_settings (
+                account_id TEXT PRIMARY KEY REFERENCES accounts(id) ON DELETE CASCADE,
+                enabled INTEGER NOT NULL DEFAULT 0,
+                proxy_url TEXT,
+                status TEXT NOT NULL DEFAULT 'unchecked',
+                latency_ms INTEGER,
+                last_check_at INTEGER,
+                last_error TEXT,
+                created_at INTEGER NOT NULL,
+                updated_at INTEGER NOT NULL
+            );
+            CREATE INDEX IF NOT EXISTS idx_account_proxy_settings_updated_at
+                ON account_proxy_settings(updated_at DESC, account_id ASC);",
+        )?;
+        self.ensure_column(
+            "account_proxy_settings",
+            "enabled",
+            "INTEGER NOT NULL DEFAULT 0",
+        )?;
+        self.ensure_column("account_proxy_settings", "proxy_url", "TEXT")?;
+        self.ensure_column(
+            "account_proxy_settings",
+            "status",
+            "TEXT NOT NULL DEFAULT 'unchecked'",
+        )?;
+        self.ensure_column("account_proxy_settings", "latency_ms", "INTEGER")?;
+        self.ensure_column("account_proxy_settings", "last_check_at", "INTEGER")?;
+        self.ensure_column("account_proxy_settings", "last_error", "TEXT")?;
+        self.ensure_column(
+            "account_proxy_settings",
+            "created_at",
+            "INTEGER NOT NULL DEFAULT 0",
+        )?;
+        self.ensure_column(
+            "account_proxy_settings",
+            "updated_at",
+            "INTEGER NOT NULL DEFAULT 0",
+        )?;
+        Ok(())
+    }
+}
+
+fn normalize_optional_text(value: Option<&str>) -> Option<String> {
+    value
+        .map(str::trim)
+        .filter(|text| !text.is_empty())
+        .map(ToString::to_string)
+}
+
+fn normalize_status(value: &str) -> String {
+    let trimmed = value.trim();
+    if trimmed.is_empty() {
+        "unchecked".to_string()
+    } else {
+        trimmed.to_string()
+    }
+}
+
+fn map_account_proxy_settings_row(row: &Row<'_>) -> Result<AccountProxySettings> {
+    Ok(AccountProxySettings {
+        account_id: row.get(0)?,
+        enabled: row.get::<_, i64>(1)? != 0,
+        proxy_url: row.get(2)?,
+        status: row.get(3)?,
+        latency_ms: row.get(4)?,
+        last_check_at: row.get(5)?,
+        last_error: row.get(6)?,
+        created_at: row.get(7)?,
+        updated_at: row.get(8)?,
+    })
+}
diff --git a/crates/core/src/storage/accounts.rs b/crates/core/src/storage/accounts.rs
index 632873b87..ff2a7db6f 100644
--- a/crates/core/src/storage/accounts.rs
+++ b/crates/core/src/storage/accounts.rs
@@ -359,6 +359,10 @@ impl Storage {
             "DELETE FROM account_subscriptions WHERE account_id = ?1",
             [account_id],
         )?;
+        tx.execute(
+            "DELETE FROM account_proxy_settings WHERE account_id = ?1",
+            [account_id],
+        )?;
         tx.execute("DELETE FROM tokens WHERE account_id = ?1", [account_id])?;
         tx.execute(
             "DELETE FROM usage_snapshots WHERE account_id = ?1",
@@ -550,7 +554,6 @@ impl Storage {
         }
         Ok(out)
     }
-
 }
 
 /// 函数 `normalize_optional_filter`
diff --git a/crates/core/src/storage/mod.rs b/crates/core/src/storage/mod.rs
index 8f3d0072a..d7ebeff0b 100644
--- a/crates/core/src/storage/mod.rs
+++ b/crates/core/src/storage/mod.rs
@@ -5,6 +5,7 @@ use std::time::{SystemTime, UNIX_EPOCH};
 
 mod account_manager;
 mod account_metadata;
+mod account_proxy_settings;
 mod account_subscriptions;
 mod accounts;
 mod aggregate_apis;
@@ -59,6 +60,19 @@ pub struct AccountSubscription {
     pub updated_at: i64,
 }
 
+#[derive(Debug, Clone)]
+pub struct AccountProxySettings {
+    pub account_id: String,
+    pub enabled: bool,
+    pub proxy_url: Option<String>,
+    pub status: String,
+    pub latency_ms: Option<i64>,
+    pub last_check_at: Option<i64>,
+    pub last_error: Option<String>,
+    pub created_at: i64,
+    pub updated_at: i64,
+}
+
 #[derive(Debug, Clone)]
 pub struct QuotaSourceModelAssignment {
     pub source_kind: String,
@@ -1044,6 +1058,11 @@ impl Storage {
             include_str!("../../migrations/068_request_logs_route_strategy_source.sql"),
             |s| s.ensure_request_log_route_strategy_columns(),
         )?;
+        self.apply_sql_or_compat_migration(
+            "069_account_proxy_settings",
+            include_str!("../../migrations/069_account_proxy_settings.sql"),
+            |s| s.ensure_account_proxy_settings_table(),
+        )?;
         self.ensure_api_key_rotation_columns()?;
         self.ensure_aggregate_apis_table()?;
         self.ensure_aggregate_api_supplier_model_tables()?;
@@ -1061,6 +1080,7 @@ impl Storage {
         self.ensure_request_log_route_detail_columns()?;
         self.ensure_model_catalog_models_table()?;
         self.ensure_account_subscriptions_table()?;
+        self.ensure_account_proxy_settings_table()?;
         self.ensure_quota_pool_tables()?;
         self.ensure_account_manager_tables()?;
         self.ensure_model_source_tables()?;
diff --git a/crates/core/src/storage/model_sources.rs b/crates/core/src/storage/model_sources.rs
index 3a9245776..755e2d93d 100644
--- a/crates/core/src/storage/model_sources.rs
+++ b/crates/core/src/storage/model_sources.rs
@@ -379,7 +379,13 @@ impl Storage {
              ON CONFLICT(source_kind, source_id, upstream_model) DO UPDATE SET
                  preference = excluded.preference,
                  updated_at = excluded.updated_at",
-            params![&source_kind, &source_id, &upstream_model, "unlinked", now_ts()],
+            params![
+                &source_kind,
+                &source_id,
+                &upstream_model,
+                "unlinked",
+                now_ts()
+            ],
         )?;
         tx.execute(
             "DELETE FROM model_source_mappings WHERE id = ?1",
diff --git a/crates/core/tests/storage.rs b/crates/core/tests/storage.rs
index 817a5a8ec..b89392a02 100644
--- a/crates/core/tests/storage.rs
+++ b/crates/core/tests/storage.rs
@@ -114,6 +114,160 @@ fn storage_can_find_token_and_account_by_account_id() {
         .is_none());
 }
 
+#[test]
+fn storage_can_persist_account_proxy_settings() {
+    let storage = Storage::open_in_memory().expect("open in memory");
+    storage.init().expect("init schema");
+    let now = now_ts();
+
+    storage
+        .insert_account(&Account {
+            id: "acc-proxy-1".to_string(),
+            label: "proxy".to_string(),
+            issuer: "https://auth.openai.com".to_string(),
+            chatgpt_account_id: None,
+            workspace_id: None,
+            group_name: None,
+            sort: 0,
+            status: "active".to_string(),
+            created_at: now,
+            updated_at: now,
+        })
+        .expect("insert account");
+
+    storage
+        .upsert_account_proxy_settings(
+            "acc-proxy-1",
+            true,
+            Some("http://127.0.0.1:7891"),
+            "unchecked",
+            None,
+            None,
+            None,
+        )
+        .expect("upsert proxy settings");
+
+    let stored = storage
+        .find_account_proxy_settings("acc-proxy-1")
+        .expect("find proxy settings")
+        .expect("proxy settings exist");
+    assert!(stored.enabled);
+    assert_eq!(stored.proxy_url.as_deref(), Some("http://127.0.0.1:7891"));
+    assert_eq!(stored.status, "unchecked");
+    assert_eq!(stored.latency_ms, None);
+    assert_eq!(stored.last_check_at, None);
+    assert_eq!(stored.last_error, None);
+
+    let listed = storage
+        .list_account_proxy_settings()
+        .expect("list proxy settings");
+    assert_eq!(listed.len(), 1);
+    assert_eq!(listed[0].account_id, "acc-proxy-1");
+}
+
+#[test]
+fn storage_can_update_and_clear_account_proxy_settings() {
+    let storage = Storage::open_in_memory().expect("open in memory");
+    storage.init().expect("init schema");
+    let now = now_ts();
+
+    storage
+        .insert_account(&Account {
+            id: "acc-proxy-2".to_string(),
+            label: "proxy".to_string(),
+            issuer: "https://auth.openai.com".to_string(),
+            chatgpt_account_id: None,
+            workspace_id: None,
+            group_name: None,
+            sort: 0,
+            status: "active".to_string(),
+            created_at: now,
+            updated_at: now,
+        })
+        .expect("insert account");
+
+    storage
+        .upsert_account_proxy_settings(
+            "acc-proxy-2",
+            true,
+            Some("socks5h://127.0.0.1:7892"),
+            "checking",
+            None,
+            None,
+            None,
+        )
+        .expect("seed proxy settings");
+    storage
+        .update_account_proxy_check_status(
+            "acc-proxy-2",
+            "ok",
+            Some(184),
+            Some(1_760_000_000),
+            None,
+        )
+        .expect("update proxy check status");
+
+    let stored = storage
+        .find_account_proxy_settings("acc-proxy-2")
+        .expect("find proxy settings")
+        .expect("proxy settings exist");
+    assert_eq!(stored.status, "ok");
+    assert_eq!(stored.latency_ms, Some(184));
+    assert_eq!(stored.last_check_at, Some(1_760_000_000));
+    assert_eq!(stored.last_error, None);
+
+    storage
+        .clear_account_proxy_settings("acc-proxy-2")
+        .expect("clear proxy settings");
+    assert!(storage
+        .find_account_proxy_settings("acc-proxy-2")
+        .expect("find cleared proxy settings")
+        .is_none());
+}
+
+#[test]
+fn deleting_account_cleans_up_account_proxy_settings() {
+    let storage = Storage::open_in_memory().expect("open in memory");
+    storage.init().expect("init schema");
+    let now = now_ts();
+
+    storage
+        .insert_account(&Account {
+            id: "acc-proxy-delete".to_string(),
+            label: "proxy".to_string(),
+            issuer: "https://auth.openai.com".to_string(),
+            chatgpt_account_id: None,
+            workspace_id: None,
+            group_name: None,
+            sort: 0,
+            status: "active".to_string(),
+            created_at: now,
+            updated_at: now,
+        })
+        .expect("insert account");
+    storage
+        .upsert_account_proxy_settings(
+            "acc-proxy-delete",
+            false,
+            None,
+            "not_configured",
+            None,
+            None,
+            None,
+        )
+        .expect("upsert proxy settings");
+
+    let mut storage = storage;
+    storage
+        .delete_account("acc-proxy-delete")
+        .expect("delete account");
+
+    assert!(storage
+        .find_account_proxy_settings("acc-proxy-delete")
+        .expect("find deleted proxy settings")
+        .is_none());
+}
+
 #[test]
 fn storage_can_upsert_and_resolve_model_source_mappings() {
     let storage = Storage::open_in_memory().expect("open in memory");
diff --git a/crates/core/tests/storage/migration_tests.rs b/crates/core/tests/storage/migration_tests.rs
index e2fd4b6eb..3289350c3 100644
--- a/crates/core/tests/storage/migration_tests.rs
+++ b/crates/core/tests/storage/migration_tests.rs
@@ -331,6 +331,15 @@ fn init_tracks_schema_migrations_and_is_idempotent() {
         )
         .expect("count 068 migration");
     assert_eq!(applied_068, 1);
+    let applied_069: i64 = storage
+        .conn
+        .query_row(
+            "SELECT COUNT(1) FROM schema_migrations WHERE version = '069_account_proxy_settings'",
+            [],
+            |row| row.get(0),
+        )
+        .expect("count 069 migration");
+    assert_eq!(applied_069, 1);
 
     assert!(!storage
         .has_column("accounts", "note")
@@ -437,6 +446,33 @@ fn init_tracks_schema_migrations_and_is_idempotent() {
     assert!(storage
         .has_column("account_subscriptions", "expires_at")
         .expect("check account_subscriptions.expires_at"));
+    assert!(storage
+        .has_table("account_proxy_settings")
+        .expect("check account_proxy_settings table"));
+    assert!(storage
+        .has_column("account_proxy_settings", "enabled")
+        .expect("check account_proxy_settings.enabled"));
+    assert!(storage
+        .has_column("account_proxy_settings", "proxy_url")
+        .expect("check account_proxy_settings.proxy_url"));
+    assert!(storage
+        .has_column("account_proxy_settings", "status")
+        .expect("check account_proxy_settings.status"));
+    assert!(storage
+        .has_column("account_proxy_settings", "latency_ms")
+        .expect("check account_proxy_settings.latency_ms"));
+    assert!(storage
+        .has_column("account_proxy_settings", "last_check_at")
+        .expect("check account_proxy_settings.last_check_at"));
+    assert!(storage
+        .has_column("account_proxy_settings", "last_error")
+        .expect("check account_proxy_settings.last_error"));
+    assert!(storage
+        .has_column("account_proxy_settings", "created_at")
+        .expect("check account_proxy_settings.created_at"));
+    assert!(storage
+        .has_column("account_proxy_settings", "updated_at")
+        .expect("check account_proxy_settings.updated_at"));
     assert!(storage
         .has_column("account_subscriptions", "renews_at")
         .expect("check account_subscriptions.renews_at"));
@@ -1232,9 +1268,19 @@ fn observability_storage_compaction_migration_rolls_up_and_prunes_legacy_rows()
             "053_aggregate_api_model_override",
             "053_api_key_quota_limits",
             "054_aggregate_api_balance_query",
-            "055_model_price_rules",
-            "056_quota_pools",
-        ] {
+            "055_model_price_rules",
+            "056_quota_pools",
+            "057_account_manager",
+            "058_model_source_mappings",
+            "059_aggregate_api_supplier_models",
+            "060_request_logs_route_details",
+            "061_model_groups",
+            "062_observability_storage_compaction",
+            "063_account_subscriptions_account_plan_type",
+            "064_drop_gateway_error_logs",
+            "065_model_source_mapping_preferences",
+            "066_account_proxy_settings",
+        ] {
             storage
                 .conn
                 .execute(
diff --git a/crates/service/Cargo.toml b/crates/service/Cargo.toml
index 1fbe93883..b62f50182 100644
--- a/crates/service/Cargo.toml
+++ b/crates/service/Cargo.toml
@@ -35,6 +35,7 @@ rhai = "1"
 sysinfo = "0.30"
 
 [dev-dependencies]
+rcgen = "0.13"
 
 [target.'cfg(windows)'.build-dependencies]
 winres = "0.1"
diff --git a/crates/service/src/account/account_delete.rs b/crates/service/src/account/account_delete.rs
index f1da925ea..e75cb715a 100644
--- a/crates/service/src/account/account_delete.rs
+++ b/crates/service/src/account/account_delete.rs
@@ -22,6 +22,7 @@ pub(crate) fn delete_account(account_id: &str) -> Result<(), String> {
     storage
         .delete_account(account_id)
         .map_err(|e| e.to_string())?;
+    crate::gateway::invalidate_account_proxy_cache(account_id);
     let _ = storage.insert_event(&Event {
         account_id: Some(account_id.to_string()),
         event_type: "account_delete".to_string(),
diff --git a/crates/service/src/account/account_delete_many.rs b/crates/service/src/account/account_delete_many.rs
index 96877d44d..058b2159d 100644
--- a/crates/service/src/account/account_delete_many.rs
+++ b/crates/service/src/account/account_delete_many.rs
@@ -76,6 +76,7 @@ pub(crate) fn delete_accounts(account_ids: Vec<String>) -> Result<DeleteManyResu
 
         match storage.delete_account(&account_id) {
             Ok(_) => {
+                crate::gateway::invalidate_account_proxy_cache(account_id.as_str());
                 let _ = storage.insert_event(&Event {
                     account_id: Some(account_id.clone()),
                     event_type: "account_delete_many".to_string(),
diff --git a/crates/service/src/account/account_proxy.rs b/crates/service/src/account/account_proxy.rs
new file mode 100644
index 000000000..07bc60497
--- /dev/null
+++ b/crates/service/src/account/account_proxy.rs
@@ -0,0 +1,766 @@
+use codexmanager_core::storage::{now_ts, AccountProxySettings, Storage};
+use serde::Serialize;
+
+use crate::storage_helpers::{open_storage, StorageHandle};
+
+pub(crate) const STATUS_NOT_CONFIGURED: &str = "not_configured";
+pub(crate) const STATUS_UNCHECKED: &str = "unchecked";
+pub(crate) const STATUS_CHECKING: &str = "checking";
+pub(crate) const STATUS_INVALID_URL: &str = "invalid_url";
+pub(crate) const ENV_ACCOUNT_PROXY_DEBUG: &str = "CODEXMANAGER_ACCOUNT_PROXY_DEBUG";
+#[cfg(test)]
+pub(crate) const STATUS_RUNTIME_ERROR: &str = "runtime_error";
+const LOCAL_PROXY_EXPECTED_MESSAGE: &str = "Codex-Manager supports HTTP, HTTPS, SOCKS4, and SOCKS5 proxy URLs, for example http://host:port or socks5://host:port. For sing-box, paste the local mixed inbound address, e.g. http://127.0.0.1:7891.";
+
+#[derive(Debug, Clone, PartialEq, Eq)]
+pub(crate) enum AccountProxyMode {
+    Disabled,
+    Explicit {
+        proxy_url: String,
+    },
+    Invalid {
+        proxy_url: Option<String>,
+        error: String,
+    },
+}
+
+impl AccountProxyMode {
+    pub(crate) fn as_str(&self) -> &'static str {
+        match self {
+            Self::Disabled => "disabled",
+            Self::Explicit { .. } => "explicit",
+            Self::Invalid { .. } => "invalid",
+        }
+    }
+}
+
+#[derive(Debug, Clone, Serialize)]
+#[serde(rename_all = "camelCase")]
+pub(crate) struct AccountProxySettingsResponse {
+    pub account_id: String,
+    pub enabled: bool,
+    pub proxy_url: String,
+    pub status: String,
+    pub latency_ms: Option<i64>,
+    pub last_check_at: Option<i64>,
+    pub last_error: Option<String>,
+}
+
+pub(crate) fn get_account_proxy_settings(
+    account_id: &str,
+) -> Result<AccountProxySettingsResponse, String> {
+    let storage = open_storage_for_account(account_id)?;
+    let account_id = normalize_account_id(account_id)?;
+    ensure_account_exists(&storage, account_id)?;
+    read_or_default_response(&storage, account_id)
+}
+
+pub(crate) fn set_account_proxy_settings(
+    account_id: &str,
+    enabled: bool,
+    proxy_url: Option<&str>,
+) -> Result<AccountProxySettingsResponse, String> {
+    let storage = open_storage_for_account(account_id)?;
+    let account_id = normalize_account_id(account_id)?;
+    ensure_account_exists(&storage, account_id)?;
+
+    let normalized_proxy_url = normalize_proxy_url_for_setting(enabled, proxy_url)?;
+    let status = if enabled {
+        STATUS_UNCHECKED
+    } else {
+        STATUS_NOT_CONFIGURED
+    };
+    storage
+        .upsert_account_proxy_settings(
+            account_id,
+            enabled,
+            normalized_proxy_url.as_deref(),
+            status,
+            None,
+            None,
+            None,
+        )
+        .map_err(|err| format!("store account proxy settings failed: {err}"))?;
+    crate::gateway::invalidate_account_proxy_cache(account_id);
+    read_or_default_response(&storage, account_id)
+}
+
+pub(crate) fn clear_account_proxy_settings(
+    account_id: &str,
+) -> Result<AccountProxySettingsResponse, String> {
+    let storage = open_storage_for_account(account_id)?;
+    let account_id = normalize_account_id(account_id)?;
+    ensure_account_exists(&storage, account_id)?;
+    storage
+        .clear_account_proxy_settings(account_id)
+        .map_err(|err| format!("clear account proxy settings failed: {err}"))?;
+    crate::gateway::invalidate_account_proxy_cache(account_id);
+    Ok(default_response(account_id))
+}
+
+pub(crate) fn test_account_proxy_settings(
+    account_id: &str,
+    enabled: Option<bool>,
+    proxy_url: Option<&str>,
+) -> Result<AccountProxySettingsResponse, String> {
+    let storage = open_storage_for_account(account_id)?;
+    let account_id = normalize_account_id(account_id)?;
+    ensure_account_exists(&storage, account_id)?;
+    match (enabled, proxy_url) {
+        (Some(enabled), proxy_url) => {
+            test_account_proxy_draft_with_checker(account_id, enabled, proxy_url, |proxy_url| {
+                crate::account::proxy_health::check_account_proxy(proxy_url)
+            })
+        }
+        (None, None) => {
+            test_account_proxy_settings_with_checker(&storage, account_id, |proxy_url| {
+                crate::account::proxy_health::check_account_proxy(proxy_url)
+            })
+        }
+        (None, Some(proxy_url)) => {
+            test_account_proxy_draft_with_checker(account_id, true, Some(proxy_url), |proxy_url| {
+                crate::account::proxy_health::check_account_proxy(proxy_url)
+            })
+        }
+    }
+}
+
+fn test_account_proxy_draft_with_checker<F>(
+    account_id: &str,
+    enabled: bool,
+    proxy_url: Option<&str>,
+    checker: F,
+) -> Result<AccountProxySettingsResponse, String>
+where
+    F: FnOnce(&str) -> crate::account::proxy_health::ProxyHealthCheckResult,
+{
+    let proxy_url = proxy_url.map(str::trim).unwrap_or_default();
+    if proxy_url.is_empty() {
+        return Ok(AccountProxySettingsResponse {
+            account_id: account_id.to_string(),
+            enabled,
+            proxy_url: proxy_url.to_string(),
+            status: STATUS_NOT_CONFIGURED.to_string(),
+            latency_ms: None,
+            last_check_at: Some(now_ts()),
+            last_error: None,
+        });
+    }
+
+    let normalized_proxy_url = match normalize_supported_proxy_url(proxy_url) {
+        Ok(normalized_proxy_url) => normalized_proxy_url,
+        Err(err) => {
+            return Ok(AccountProxySettingsResponse {
+                account_id: account_id.to_string(),
+                enabled,
+                proxy_url: proxy_url.to_string(),
+                status: STATUS_INVALID_URL.to_string(),
+                latency_ms: None,
+                last_check_at: Some(now_ts()),
+                last_error: Some(err),
+            });
+        }
+    };
+
+    let outcome = checker(normalized_proxy_url.as_str());
+    Ok(AccountProxySettingsResponse {
+        account_id: account_id.to_string(),
+        enabled,
+        proxy_url: normalized_proxy_url,
+        status: outcome.status.to_string(),
+        latency_ms: outcome.latency_ms,
+        last_check_at: Some(now_ts()),
+        last_error: outcome.last_error,
+    })
+}
+
+pub(crate) fn resolve_account_proxy_mode(account_id: &str) -> AccountProxyMode {
+    let normalized_account_id = account_id.trim();
+    if normalized_account_id.is_empty() {
+        return AccountProxyMode::Disabled;
+    }
+
+    let Some(storage) = open_storage() else {
+        return AccountProxyMode::Disabled;
+    };
+    resolve_account_proxy_mode_from_storage(&storage, normalized_account_id)
+}
+
+pub(crate) fn account_proxy_debug_enabled() -> bool {
+    std::env::var(ENV_ACCOUNT_PROXY_DEBUG)
+        .ok()
+        .map(|value| {
+            let normalized = value.trim();
+            normalized == "1"
+                || normalized.eq_ignore_ascii_case("true")
+                || normalized.eq_ignore_ascii_case("yes")
+                || normalized.eq_ignore_ascii_case("on")
+        })
+        .unwrap_or(false)
+}
+
+pub(crate) fn redact_proxy_url_for_log(proxy_url: &str) -> String {
+    let trimmed = proxy_url.trim();
+    if trimmed.is_empty() {
+        return "-".to_string();
+    }
+    let Ok(parsed) = url::Url::parse(trimmed) else {
+        return "<invalid>".to_string();
+    };
+    let scheme = parsed.scheme();
+    let host = parsed.host_str().unwrap_or("-");
+    match parsed.port_or_known_default() {
+        Some(port) => format!("{scheme}://{host}:{port}"),
+        None => format!("{scheme}://{host}"),
+    }
+}
+
+fn open_storage_for_account(account_id: &str) -> Result<StorageHandle, String> {
+    normalize_account_id(account_id)?;
+    open_storage().ok_or_else(|| "storage unavailable".to_string())
+}
+
+fn normalize_account_id(account_id: &str) -> Result<&str, String> {
+    let trimmed = account_id.trim();
+    if trimmed.is_empty() {
+        Err("missing accountId".to_string())
+    } else {
+        Ok(trimmed)
+    }
+}
+
+fn resolve_account_proxy_mode_from_storage(
+    storage: &Storage,
+    account_id: &str,
+) -> AccountProxyMode {
+    let settings = match storage.find_account_proxy_settings(account_id) {
+        Ok(settings) => settings,
+        Err(err) => {
+            log::warn!(
+                "event=account_proxy_mode_read_failed account_id={} err={}",
+                account_id,
+                err
+            );
+            return AccountProxyMode::Disabled;
+        }
+    };
+    let Some(settings) = settings else {
+        return AccountProxyMode::Disabled;
+    };
+    if !settings.enabled {
+        return AccountProxyMode::Disabled;
+    }
+
+    let trimmed_proxy_url = settings
+        .proxy_url
+        .as_deref()
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+        .map(ToString::to_string);
+    let Some(proxy_url) = trimmed_proxy_url else {
+        return AccountProxyMode::Invalid {
+            proxy_url: None,
+            error: format!(
+                "account explicit proxy for {} is invalid and fail-closed: missing proxy URL",
+                account_id
+            ),
+        };
+    };
+
+    match normalize_supported_proxy_url(proxy_url.as_str()) {
+        Ok(proxy_url) => AccountProxyMode::Explicit { proxy_url },
+        Err(err) => AccountProxyMode::Invalid {
+            proxy_url: Some(proxy_url.clone()),
+            error: format!(
+                "account explicit proxy for {} is invalid and fail-closed: {}. {}",
+                account_id, proxy_url, err
+            ),
+        },
+    }
+}
+
+fn ensure_account_exists(storage: &Storage, account_id: &str) -> Result<(), String> {
+    let found = storage
+        .find_account_by_id(account_id)
+        .map_err(|err| format!("read account failed: {err}"))?
+        .is_some();
+    if found {
+        Ok(())
+    } else {
+        Err("account not found".to_string())
+    }
+}
+
+fn normalize_proxy_url_for_setting(
+    enabled: bool,
+    proxy_url: Option<&str>,
+) -> Result<Option<String>, String> {
+    let trimmed = proxy_url.map(str::trim).filter(|value| !value.is_empty());
+    if !enabled {
+        return Ok(trimmed.map(ToString::to_string));
+    }
+    let Some(proxy_url) = trimmed else {
+        return Err("proxyUrl is required when account proxy is enabled".to_string());
+    };
+    normalize_supported_proxy_url(proxy_url).map(Some)
+}
+
+pub(crate) fn normalize_supported_proxy_url(proxy_url: &str) -> Result<String, String> {
+    let parsed = url::Url::parse(proxy_url)
+        .map_err(|err| format!("invalid proxyUrl: {err}. {LOCAL_PROXY_EXPECTED_MESSAGE}"))?;
+    match parsed.scheme() {
+        "http" | "https" | "socks4" | "socks4a" | "socks5" | "socks5h" => {
+            Ok(proxy_url.trim().to_string())
+        }
+        "vless" | "trojan" | "ss" | "hysteria2" => Err(LOCAL_PROXY_EXPECTED_MESSAGE.to_string()),
+        other => Err(format!(
+            "unsupported proxy URL scheme: {other}. {LOCAL_PROXY_EXPECTED_MESSAGE}"
+        )),
+    }
+}
+
+fn test_account_proxy_settings_with_checker<F>(
+    storage: &Storage,
+    account_id: &str,
+    checker: F,
+) -> Result<AccountProxySettingsResponse, String>
+where
+    F: FnOnce(&str) -> crate::account::proxy_health::ProxyHealthCheckResult,
+{
+    let settings = storage
+        .find_account_proxy_settings(account_id)
+        .map_err(|err| format!("read account proxy settings failed: {err}"))?;
+    let Some(settings) = settings else {
+        return Ok(default_response(account_id));
+    };
+
+    let proxy_url = settings
+        .proxy_url
+        .as_deref()
+        .map(str::trim)
+        .unwrap_or_default();
+    if proxy_url.is_empty() {
+        persist_check_status(storage, account_id, STATUS_NOT_CONFIGURED, None, None)?;
+        crate::gateway::invalidate_account_proxy_cache(account_id);
+        return read_or_default_response(storage, account_id);
+    }
+
+    let normalized_proxy_url = match normalize_supported_proxy_url(proxy_url) {
+        Ok(normalized_proxy_url) => normalized_proxy_url,
+        Err(err) => {
+            persist_check_status(
+                storage,
+                account_id,
+                STATUS_INVALID_URL,
+                None,
+                Some(err.as_str()),
+            )?;
+            crate::gateway::invalidate_account_proxy_cache(account_id);
+            return read_or_default_response(storage, account_id);
+        }
+    };
+
+    if normalized_proxy_url != proxy_url {
+        storage
+            .upsert_account_proxy_settings(
+                account_id,
+                settings.enabled,
+                Some(normalized_proxy_url.as_str()),
+                settings.status.as_str(),
+                settings.latency_ms,
+                settings.last_check_at,
+                settings.last_error.as_deref(),
+            )
+            .map_err(|err| format!("store account proxy settings failed: {err}"))?;
+    }
+
+    persist_check_status(storage, account_id, STATUS_CHECKING, None, None)?;
+    let outcome = checker(normalized_proxy_url.as_str());
+    persist_check_status(
+        storage,
+        account_id,
+        outcome.status,
+        outcome.latency_ms,
+        outcome.last_error.as_deref(),
+    )?;
+    crate::gateway::invalidate_account_proxy_cache(account_id);
+    read_or_default_response(storage, account_id)
+}
+
+fn persist_check_status(
+    storage: &Storage,
+    account_id: &str,
+    status: &str,
+    latency_ms: Option<i64>,
+    last_error: Option<&str>,
+) -> Result<(), String> {
+    storage
+        .update_account_proxy_check_status(
+            account_id,
+            status,
+            latency_ms,
+            Some(now_ts()),
+            last_error,
+        )
+        .map_err(|err| format!("update account proxy status failed: {err}"))
+}
+
+fn read_or_default_response(
+    storage: &Storage,
+    account_id: &str,
+) -> Result<AccountProxySettingsResponse, String> {
+    let settings = storage
+        .find_account_proxy_settings(account_id)
+        .map_err(|err| format!("read account proxy settings failed: {err}"))?;
+    Ok(settings
+        .map(account_proxy_settings_response)
+        .unwrap_or_else(|| default_response(account_id)))
+}
+
+fn default_response(account_id: &str) -> AccountProxySettingsResponse {
+    AccountProxySettingsResponse {
+        account_id: account_id.to_string(),
+        enabled: false,
+        proxy_url: String::new(),
+        status: STATUS_NOT_CONFIGURED.to_string(),
+        latency_ms: None,
+        last_check_at: None,
+        last_error: None,
+    }
+}
+
+fn account_proxy_settings_response(settings: AccountProxySettings) -> AccountProxySettingsResponse {
+    AccountProxySettingsResponse {
+        account_id: settings.account_id,
+        enabled: settings.enabled,
+        proxy_url: settings.proxy_url.unwrap_or_default(),
+        status: settings.status,
+        latency_ms: settings.latency_ms,
+        last_check_at: settings.last_check_at,
+        last_error: settings.last_error,
+    }
+}
+
+#[cfg(test)]
+mod tests {
+    use super::{
+        normalize_supported_proxy_url, resolve_account_proxy_mode_from_storage,
+        test_account_proxy_settings_with_checker, AccountProxyMode, AccountProxySettingsResponse,
+        STATUS_INVALID_URL, STATUS_NOT_CONFIGURED, STATUS_RUNTIME_ERROR, STATUS_UNCHECKED,
+    };
+    use codexmanager_core::storage::{now_ts, Account, Storage};
+    use std::fs;
+    use std::path::PathBuf;
+    use std::sync::atomic::{AtomicUsize, Ordering};
+
+    static ACCOUNT_PROXY_TEST_DIR_SEQ: AtomicUsize = AtomicUsize::new(0);
+    const STATUS_FAILED: &str = "failed";
+    const STATUS_OK: &str = "ok";
+
+    #[test]
+    fn normalize_supported_proxy_url_rewrites_socks5_to_socks5h() {
+        assert_eq!(
+            normalize_supported_proxy_url("socks5://127.0.0.1:7891").expect("normalize"),
+            "socks5h://127.0.0.1:7891"
+        );
+    }
+
+    #[test]
+    fn normalize_supported_proxy_url_rejects_server_links() {
+        let err = normalize_supported_proxy_url("vless://example").expect_err("reject vless");
+        assert!(err.contains("local HTTP/SOCKS proxy URL"));
+    }
+
+    #[test]
+    fn test_account_proxy_settings_runs_checker_for_disabled_proxy_with_url() {
+        let dir = new_test_dir("account-proxy-disabled-with-url");
+        let storage = seed_storage(&dir, "acc-disabled-url");
+        storage
+            .upsert_account_proxy_settings(
+                "acc-disabled-url",
+                false,
+                Some("http://127.0.0.1:7891"),
+                STATUS_UNCHECKED,
+                None,
+                None,
+                None,
+            )
+            .expect("seed disabled proxy settings");
+
+        let response =
+            test_account_proxy_settings_with_checker(&storage, "acc-disabled-url", |_| {
+                crate::account::proxy_health::ProxyHealthCheckResult {
+                    status: STATUS_OK,
+                    latency_ms: Some(123),
+                    last_error: None,
+                }
+            })
+            .expect("test disabled proxy");
+
+        assert_status(&response, STATUS_OK);
+        assert_eq!(response.enabled, false);
+        assert_eq!(response.latency_ms, Some(123));
+        assert_eq!(response.last_error, None);
+        assert!(response.last_check_at.is_some());
+
+        let stored = storage
+            .find_account_proxy_settings("acc-disabled-url")
+            .expect("find stored disabled proxy")
+            .expect("stored disabled proxy");
+        assert_eq!(stored.status, STATUS_OK);
+        assert_eq!(stored.latency_ms, Some(123));
+        assert_eq!(stored.last_error, None);
+
+        let _ = fs::remove_dir_all(dir);
+    }
+
+    #[test]
+    fn test_account_proxy_settings_returns_not_configured_when_url_is_empty() {
+        let dir = new_test_dir("account-proxy-empty-url");
+        let storage = seed_storage(&dir, "acc-empty-url");
+        storage
+            .upsert_account_proxy_settings(
+                "acc-empty-url",
+                true,
+                None,
+                STATUS_UNCHECKED,
+                None,
+                None,
+                None,
+            )
+            .expect("seed empty proxy settings");
+
+        let response = test_account_proxy_settings_with_checker(&storage, "acc-empty-url", |_| {
+            panic!("checker should not run for empty url")
+        })
+        .expect("test empty proxy");
+
+        assert_status(&response, STATUS_NOT_CONFIGURED);
+
+        let _ = fs::remove_dir_all(dir);
+    }
+
+    #[test]
+    fn resolve_account_proxy_mode_treats_disabled_proxy_with_stored_url_as_disabled() {
+        let dir = new_test_dir("account-proxy-mode-disabled");
+        let storage = seed_storage(&dir, "acc-disabled-mode");
+        storage
+            .upsert_account_proxy_settings(
+                "acc-disabled-mode",
+                false,
+                Some("http://127.0.0.1:7891"),
+                STATUS_UNCHECKED,
+                None,
+                None,
+                None,
+            )
+            .expect("seed disabled mode proxy settings");
+
+        let mode = resolve_account_proxy_mode_from_storage(&storage, "acc-disabled-mode");
+        assert_eq!(mode, AccountProxyMode::Disabled);
+
+        let _ = fs::remove_dir_all(dir);
+    }
+
+    #[test]
+    fn resolve_account_proxy_mode_fails_closed_for_enabled_proxy_without_url() {
+        let dir = new_test_dir("account-proxy-mode-empty");
+        let storage = seed_storage(&dir, "acc-empty-mode");
+        storage
+            .upsert_account_proxy_settings(
+                "acc-empty-mode",
+                true,
+                None,
+                STATUS_UNCHECKED,
+                None,
+                None,
+                None,
+            )
+            .expect("seed empty mode proxy settings");
+
+        let mode = resolve_account_proxy_mode_from_storage(&storage, "acc-empty-mode");
+        let AccountProxyMode::Invalid { proxy_url, error } = mode else {
+            panic!("enabled proxy without URL must fail closed");
+        };
+        assert_eq!(proxy_url, None);
+        assert!(error.contains("fail-closed"));
+
+        let _ = fs::remove_dir_all(dir);
+    }
+
+    #[test]
+    fn test_account_proxy_settings_persists_invalid_url_status() {
+        let dir = new_test_dir("account-proxy-invalid");
+        let storage = seed_storage(&dir, "acc-invalid");
+        storage
+            .upsert_account_proxy_settings(
+                "acc-invalid",
+                true,
+                Some("http://"),
+                STATUS_UNCHECKED,
+                None,
+                None,
+                None,
+            )
+            .expect("seed invalid proxy settings");
+
+        let response = test_account_proxy_settings_with_checker(&storage, "acc-invalid", |_| {
+            panic!("checker should not run for invalid proxy URL")
+        })
+        .expect("test invalid proxy");
+
+        assert_status(&response, STATUS_INVALID_URL);
+        assert!(response
+            .last_error
+            .as_deref()
+            .unwrap_or_default()
+            .contains("invalid proxyUrl"));
+        assert!(response.last_check_at.is_some());
+
+        let stored = storage
+            .find_account_proxy_settings("acc-invalid")
+            .expect("find stored invalid proxy")
+            .expect("stored invalid proxy");
+        assert_eq!(stored.status, STATUS_INVALID_URL);
+        assert!(stored
+            .last_error
+            .as_deref()
+            .unwrap_or_default()
+            .contains("invalid proxyUrl"));
+
+        let _ = fs::remove_dir_all(dir);
+    }
+
+    #[test]
+    fn test_account_proxy_settings_persists_checker_outcome() {
+        let dir = new_test_dir("account-proxy-ok");
+        let storage = seed_storage(&dir, "acc-ok");
+        storage
+            .upsert_account_proxy_settings(
+                "acc-ok",
+                true,
+                Some("http://127.0.0.1:7891"),
+                STATUS_UNCHECKED,
+                None,
+                None,
+                None,
+            )
+            .expect("seed valid proxy settings");
+
+        let response = test_account_proxy_settings_with_checker(&storage, "acc-ok", |_| {
+            crate::account::proxy_health::ProxyHealthCheckResult {
+                status: STATUS_OK,
+                latency_ms: Some(184),
+                last_error: None,
+            }
+        })
+        .expect("test proxy success");
+
+        assert_status(&response, STATUS_OK);
+        assert_eq!(response.latency_ms, Some(184));
+        assert_eq!(response.last_error, None);
+        assert!(response.last_check_at.is_some());
+
+        let response = test_account_proxy_settings_with_checker(&storage, "acc-ok", |_| {
+            crate::account::proxy_health::ProxyHealthCheckResult {
+                status: STATUS_FAILED,
+                latency_ms: None,
+                last_error: Some("proxy unreachable".to_string()),
+            }
+        })
+        .expect("test proxy failure");
+
+        assert_status(&response, STATUS_FAILED);
+        assert_eq!(response.latency_ms, None);
+        assert_eq!(response.last_error.as_deref(), Some("proxy unreachable"));
+
+        let stored = storage
+            .find_account_proxy_settings("acc-ok")
+            .expect("find stored proxy")
+            .expect("stored proxy");
+        assert_eq!(stored.status, STATUS_FAILED);
+        assert_eq!(stored.latency_ms, None);
+        assert_eq!(stored.last_error.as_deref(), Some("proxy unreachable"));
+
+        let _ = fs::remove_dir_all(dir);
+    }
+
+    #[test]
+    fn test_account_proxy_settings_persists_runtime_error_status() {
+        let dir = new_test_dir("account-proxy-runtime-error");
+        let storage = seed_storage(&dir, "acc-runtime");
+        storage
+            .upsert_account_proxy_settings(
+                "acc-runtime",
+                true,
+                Some("http://127.0.0.1:7891"),
+                STATUS_UNCHECKED,
+                None,
+                None,
+                None,
+            )
+            .expect("seed runtime proxy settings");
+
+        let response = test_account_proxy_settings_with_checker(&storage, "acc-runtime", |_| {
+            crate::account::proxy_health::ProxyHealthCheckResult {
+                status: STATUS_RUNTIME_ERROR,
+                latency_ms: None,
+                last_error: Some("local proxy runtime unavailable".to_string()),
+            }
+        })
+        .expect("test runtime proxy");
+
+        assert_status(&response, STATUS_RUNTIME_ERROR);
+        assert_eq!(response.latency_ms, None);
+        assert_eq!(
+            response.last_error.as_deref(),
+            Some("local proxy runtime unavailable")
+        );
+
+        let stored = storage
+            .find_account_proxy_settings("acc-runtime")
+            .expect("find stored runtime proxy")
+            .expect("stored runtime proxy");
+        assert_eq!(stored.status, STATUS_RUNTIME_ERROR);
+        assert_eq!(stored.latency_ms, None);
+        assert_eq!(
+            stored.last_error.as_deref(),
+            Some("local proxy runtime unavailable")
+        );
+
+        let _ = fs::remove_dir_all(dir);
+    }
+
+    fn assert_status(response: &AccountProxySettingsResponse, expected: &str) {
+        assert_eq!(response.status, expected);
+    }
+
+    fn new_test_dir(prefix: &str) -> PathBuf {
+        let seq = ACCOUNT_PROXY_TEST_DIR_SEQ.fetch_add(1, Ordering::Relaxed);
+        let mut dir = std::env::temp_dir();
+        dir.push(format!("{prefix}-{}-{seq}", std::process::id()));
+        let _ = fs::create_dir_all(&dir);
+        dir
+    }
+
+    fn seed_storage(dir: &PathBuf, account_id: &str) -> Storage {
+        let storage = Storage::open(dir.join("codexmanager.db")).expect("open test db");
+        storage.init().expect("init test schema");
+        let now = now_ts();
+        storage
+            .insert_account(&Account {
+                id: account_id.to_string(),
+                label: account_id.to_string(),
+                issuer: "https://auth.openai.com".to_string(),
+                chatgpt_account_id: Some(format!("chatgpt-{account_id}")),
+                workspace_id: Some(format!("workspace-{account_id}")),
+                group_name: None,
+                sort: 0,
+                status: "active".to_string(),
+                created_at: now,
+                updated_at: now,
+            })
+            .expect("insert account");
+        storage
+    }
+}
diff --git a/crates/service/src/account/account_proxy_health.rs b/crates/service/src/account/account_proxy_health.rs
new file mode 100644
index 000000000..14bbfe0f4
--- /dev/null
+++ b/crates/service/src/account/account_proxy_health.rs
@@ -0,0 +1,338 @@
+use reqwest::blocking::Client;
+use reqwest::Proxy;
+use std::time::{Duration, Instant};
+use url::{Host, Url};
+
+const STATUS_FAILED: &str = "failed";
+const STATUS_INVALID_URL: &str = "invalid_url";
+const STATUS_OK: &str = "ok";
+const STATUS_RUNTIME_ERROR: &str = "runtime_error";
+const PROXY_TEST_CONNECT_TIMEOUT: Duration = Duration::from_secs(10);
+const PROXY_TEST_TOTAL_TIMEOUT: Duration = Duration::from_secs(20);
+const DEFAULT_PROXY_TEST_TARGETS: &[&str] = &[
+    "https://www.gstatic.com/generate_204",
+    "https://api.ipify.org",
+    "https://chatgpt.com/cdn-cgi/trace",
+];
+
+#[derive(Debug, Clone)]
+pub(crate) struct ProxyHealthCheckResult {
+    pub status: &'static str,
+    pub latency_ms: Option<i64>,
+    pub last_error: Option<String>,
+}
+
+pub(crate) fn check_account_proxy(proxy_url: &str) -> ProxyHealthCheckResult {
+    check_account_proxy_with_options(proxy_url, DEFAULT_PROXY_TEST_TARGETS, false)
+}
+
+fn check_account_proxy_with_options(
+    proxy_url: &str,
+    targets: &[&str],
+    accept_invalid_certs: bool,
+) -> ProxyHealthCheckResult {
+    let (client, parsed_proxy_url) = match build_proxy_test_client(proxy_url, accept_invalid_certs)
+    {
+        Ok(result) => result,
+        Err(err) => {
+            return ProxyHealthCheckResult {
+                status: STATUS_INVALID_URL,
+                latency_ms: None,
+                last_error: Some(err),
+            };
+        }
+    };
+
+    let mut last_error = None;
+    for target in targets
+        .iter()
+        .copied()
+        .filter(|value| !value.trim().is_empty())
+    {
+        let started_at = Instant::now();
+        match client.get(target).send() {
+            Ok(response) if response.status().is_success() => {
+                return ProxyHealthCheckResult {
+                    status: STATUS_OK,
+                    latency_ms: Some(started_at.elapsed().as_millis().min(i64::MAX as u128) as i64),
+                    last_error: None,
+                };
+            }
+            Ok(response) => {
+                last_error = Some(format!(
+                    "proxy test GET {target} returned HTTP {}",
+                    response.status()
+                ));
+            }
+            Err(err) => {
+                if looks_like_local_proxy_runtime_error(&parsed_proxy_url, &err) {
+                    return ProxyHealthCheckResult {
+                        status: STATUS_RUNTIME_ERROR,
+                        latency_ms: None,
+                        last_error: Some(format!("local proxy runtime unavailable: {err}")),
+                    };
+                }
+                last_error = Some(format!("proxy test GET {target} failed: {err}"));
+            }
+        }
+    }
+
+    ProxyHealthCheckResult {
+        status: STATUS_FAILED,
+        latency_ms: None,
+        last_error: Some(
+            last_error.unwrap_or_else(|| "proxy test did not have any target URLs".to_string()),
+        ),
+    }
+}
+
+fn build_proxy_test_client(
+    proxy_url: &str,
+    accept_invalid_certs: bool,
+) -> Result<(Client, Url), String> {
+    let parsed = Url::parse(proxy_url)
+        .map_err(|err| format!("invalid proxyUrl: {err}. Check the local HTTP/SOCKS proxy URL."))?;
+    let proxy = Proxy::all(proxy_url)
+        .map_err(|err| format!("invalid proxyUrl: {err}. Check the local HTTP/SOCKS proxy URL."))?;
+    let client = Client::builder()
+        .connect_timeout(PROXY_TEST_CONNECT_TIMEOUT)
+        .timeout(PROXY_TEST_TOTAL_TIMEOUT)
+        .danger_accept_invalid_certs(accept_invalid_certs)
+        .user_agent(crate::gateway::current_codex_user_agent())
+        .proxy(proxy)
+        .build()
+        .map_err(|err| format!("build proxy test client failed: {err}"))?;
+    Ok((client, parsed))
+}
+
+fn looks_like_local_proxy_runtime_error(proxy_url: &Url, err: &reqwest::Error) -> bool {
+    if !is_loopback_proxy_url(proxy_url) {
+        return false;
+    }
+    if err.is_connect() || err.is_timeout() {
+        return true;
+    }
+    let message = err.to_string().to_ascii_lowercase();
+    message.contains("connection refused")
+        || message.contains("unsuccessful tunnel")
+        || message.contains("tcp connect error")
+        || message.contains("error trying to connect")
+        || message.contains("proxy connect")
+        || message.contains("channel closed")
+}
+
+fn is_loopback_proxy_url(proxy_url: &Url) -> bool {
+    match proxy_url.host() {
+        Some(Host::Ipv4(addr)) => addr.is_loopback(),
+        Some(Host::Ipv6(addr)) => addr.is_loopback(),
+        Some(Host::Domain(domain)) => domain.eq_ignore_ascii_case("localhost"),
+        None => false,
+    }
+}
+
+#[cfg(test)]
+mod tests {
+    use super::{
+        check_account_proxy_with_options, ProxyHealthCheckResult, STATUS_FAILED, STATUS_OK,
+        STATUS_RUNTIME_ERROR,
+    };
+    use rcgen::generate_simple_self_signed;
+    use rustls::pki_types::{CertificateDer, PrivateKeyDer, PrivatePkcs8KeyDer};
+    use rustls::{ServerConfig, ServerConnection, StreamOwned};
+    use std::io::{Read, Write};
+    use std::net::{TcpListener, TcpStream};
+    use std::sync::mpsc::{self, Receiver};
+    use std::sync::{Arc, OnceLock};
+    use std::thread;
+    use std::time::Duration;
+
+    #[test]
+    fn proxy_health_check_succeeds_through_local_http_connect_proxy() {
+        let (target_url, target_addr, request_rx, https_handle) =
+            spawn_https_response_server(204, "/generate_204");
+        let (proxy_url, connect_rx, proxy_handle) = spawn_http_connect_proxy(target_addr);
+
+        let result = check_account_proxy_with_options(&proxy_url, &[target_url.as_str()], true);
+
+        assert_eq!(result.status, STATUS_OK);
+        assert!(result.latency_ms.is_some());
+        assert_eq!(result.last_error, None);
+        assert_eq!(
+            connect_rx
+                .recv_timeout(Duration::from_secs(5))
+                .expect("receive CONNECT line"),
+            format!(
+                "CONNECT localhost:{} HTTP/1.1",
+                target_url
+                    .rsplit(':')
+                    .next()
+                    .expect("target port")
+                    .trim_end_matches("/generate_204")
+            )
+        );
+        assert_eq!(
+            request_rx
+                .recv_timeout(Duration::from_secs(5))
+                .expect("receive HTTPS request line"),
+            "GET /generate_204 HTTP/1.1"
+        );
+
+        proxy_handle.join().expect("join proxy thread");
+        https_handle.join().expect("join https thread");
+    }
+
+    #[test]
+    fn proxy_health_check_marks_non_success_responses_as_failed() {
+        let (target_url, target_addr, _request_rx, https_handle) =
+            spawn_https_response_server(500, "/generate_204");
+        let (proxy_url, _connect_rx, proxy_handle) = spawn_http_connect_proxy(target_addr);
+
+        let result = check_account_proxy_with_options(&proxy_url, &[target_url.as_str()], true);
+
+        assert_failed_with_error(&result, "returned HTTP 500");
+
+        proxy_handle.join().expect("join proxy thread");
+        https_handle.join().expect("join https thread");
+    }
+
+    #[test]
+    fn proxy_health_check_marks_loopback_connect_refused_as_runtime_error() {
+        let free_port = reserve_free_port();
+        let proxy_url = format!("http://127.0.0.1:{free_port}");
+
+        let result = check_account_proxy_with_options(
+            &proxy_url,
+            &["https://www.gstatic.com/generate_204"],
+            true,
+        );
+
+        assert_eq!(result.status, STATUS_RUNTIME_ERROR);
+        assert_eq!(result.latency_ms, None);
+        let error = result.last_error.as_deref().expect("last_error");
+        assert!(error.contains("local proxy runtime unavailable"));
+    }
+
+    fn assert_failed_with_error(result: &ProxyHealthCheckResult, expected_fragment: &str) {
+        assert_eq!(result.status, STATUS_FAILED);
+        assert_eq!(result.latency_ms, None);
+        let error = result.last_error.as_deref().expect("last_error");
+        assert!(
+            error.contains(expected_fragment),
+            "unexpected proxy test error: {error}"
+        );
+    }
+
+    fn spawn_https_response_server(
+        status_code: u16,
+        path: &str,
+    ) -> (String, String, Receiver<String>, thread::JoinHandle<()>) {
+        ensure_rustls_crypto_provider();
+        let cert = generate_simple_self_signed(vec!["localhost".to_string()])
+            .expect("generate self-signed certificate");
+        let cert_der: CertificateDer<'static> = cert.cert.der().clone();
+        let key_der = PrivateKeyDer::Pkcs8(PrivatePkcs8KeyDer::from(cert.key_pair.serialize_der()));
+        let server_config = ServerConfig::builder()
+            .with_no_client_auth()
+            .with_single_cert(vec![cert_der], key_der)
+            .expect("build rustls server config");
+        let server_config = Arc::new(server_config);
+
+        let listener = TcpListener::bind("127.0.0.1:0").expect("bind mock https server");
+        let addr = listener.local_addr().expect("https server local addr");
+        let target_addr = format!("127.0.0.1:{}", addr.port());
+        let target_url = format!("https://localhost:{}{path}", addr.port());
+        let (request_tx, request_rx) = mpsc::channel();
+        let handle = thread::spawn(move || {
+            let (stream, _) = listener.accept().expect("accept https test connection");
+            stream
+                .set_read_timeout(Some(Duration::from_secs(5)))
+                .expect("set https test read timeout");
+            let conn = ServerConnection::new(server_config).expect("create rustls server conn");
+            let mut tls = StreamOwned::new(conn, stream);
+            let request_line = read_http_request_line(&mut tls);
+            let _ = request_tx.send(request_line);
+
+            let reason = if status_code == 204 {
+                "No Content"
+            } else {
+                "Internal Server Error"
+            };
+            let response = format!(
+                "HTTP/1.1 {status_code} {reason}\r\nContent-Length: 0\r\nConnection: close\r\n\r\n"
+            );
+            tls.write_all(response.as_bytes())
+                .expect("write https response");
+            tls.flush().expect("flush https response");
+        });
+        (target_url, target_addr, request_rx, handle)
+    }
+
+    fn spawn_http_connect_proxy(
+        target_addr: String,
+    ) -> (String, Receiver<String>, thread::JoinHandle<()>) {
+        let listener = TcpListener::bind("127.0.0.1:0").expect("bind mock proxy");
+        let proxy_addr = listener.local_addr().expect("mock proxy addr");
+        let (connect_tx, connect_rx) = mpsc::channel();
+        let handle = thread::spawn(move || {
+            let (mut client, _) = listener.accept().expect("accept proxy client");
+            client
+                .set_read_timeout(Some(Duration::from_secs(5)))
+                .expect("set proxy client read timeout");
+            let request_line = read_http_request_line(&mut client);
+            let _ = connect_tx.send(request_line);
+
+            let mut upstream =
+                TcpStream::connect(target_addr.as_str()).expect("connect proxy upstream");
+            client
+                .write_all(b"HTTP/1.1 200 Connection Established\r\n\r\n")
+                .expect("write proxy CONNECT response");
+
+            let mut client_reader = client.try_clone().expect("clone proxy client reader");
+            let mut upstream_writer = upstream.try_clone().expect("clone proxy upstream writer");
+            let upstream_to_client = thread::spawn(move || {
+                let _ = std::io::copy(&mut upstream, &mut client);
+            });
+            let client_to_upstream = thread::spawn(move || {
+                let _ = std::io::copy(&mut client_reader, &mut upstream_writer);
+            });
+            let _ = client_to_upstream.join();
+            let _ = upstream_to_client.join();
+        });
+        (format!("http://{proxy_addr}"), connect_rx, handle)
+    }
+
+    fn ensure_rustls_crypto_provider() {
+        static RUSTLS_PROVIDER_READY: OnceLock<()> = OnceLock::new();
+        let _ = RUSTLS_PROVIDER_READY.get_or_init(|| {
+            let _ = rustls::crypto::ring::default_provider().install_default();
+        });
+    }
+
+    fn read_http_request_line<T>(stream: &mut T) -> String
+    where
+        T: Read,
+    {
+        let mut request = Vec::new();
+        let mut buf = [0_u8; 1024];
+        while !request.windows(4).any(|window| window == b"\r\n\r\n") {
+            let read = stream.read(&mut buf).expect("read HTTP request");
+            if read == 0 {
+                break;
+            }
+            request.extend_from_slice(&buf[..read]);
+        }
+        String::from_utf8_lossy(request.as_slice())
+            .lines()
+            .next()
+            .unwrap_or_default()
+            .to_string()
+    }
+
+    fn reserve_free_port() -> u16 {
+        TcpListener::bind("127.0.0.1:0")
+            .expect("bind free port probe")
+            .local_addr()
+            .expect("free port addr")
+            .port()
+    }
+}
diff --git a/crates/service/src/account/mod.rs b/crates/service/src/account/mod.rs
index e30e74f3c..69a962ec8 100644
--- a/crates/service/src/account/mod.rs
+++ b/crates/service/src/account/mod.rs
@@ -14,6 +14,10 @@ pub(crate) mod import;
 pub(crate) mod list;
 #[path = "account_plan.rs"]
 pub(crate) mod plan;
+#[path = "account_proxy.rs"]
+pub(crate) mod proxy;
+#[path = "account_proxy_health.rs"]
+pub(crate) mod proxy_health;
 #[path = "account_status.rs"]
 pub(crate) mod status;
 #[path = "account_update.rs"]
diff --git a/crates/service/src/gateway/auth/openai_fallback.rs b/crates/service/src/gateway/auth/openai_fallback.rs
index 44d7348d5..b4ab2d66c 100644
--- a/crates/service/src/gateway/auth/openai_fallback.rs
+++ b/crates/service/src/gateway/auth/openai_fallback.rs
@@ -332,7 +332,15 @@ pub(super) fn try_openai_fallback(
     let resp = match build_request(client).send() {
         Ok(resp) => resp,
         Err(first_err) => {
-            let fresh = super::fresh_upstream_client_for_account(account.id.as_str());
+            let fresh = match super::fresh_upstream_client_for_account(account.id.as_str()) {
+                Ok(client) => client,
+                Err(fresh_err) => {
+                    return Err(format!(
+                        "{}; retry_after_fresh_client_build: {}",
+                        first_err, fresh_err
+                    ));
+                }
+            };
             match build_request(&fresh).send() {
                 Ok(resp) => {
                     log::info!(
diff --git a/crates/service/src/gateway/core/runtime_config.rs b/crates/service/src/gateway/core/runtime_config.rs
index 3326f4ba6..dfbe4cc2a 100644
--- a/crates/service/src/gateway/core/runtime_config.rs
+++ b/crates/service/src/gateway/core/runtime_config.rs
@@ -1,13 +1,17 @@
 use codexmanager_core::auth::DEFAULT_ORIGINATOR;
 use codexmanager_core::auth::{DEFAULT_CLIENT_ID, DEFAULT_ISSUER};
+use codexmanager_core::storage::Storage;
 use reqwest::blocking::Client;
 use reqwest::Proxy;
+use std::collections::HashMap;
 use std::sync::atomic::{AtomicBool, AtomicU64, AtomicUsize, Ordering};
 use std::sync::{OnceLock, RwLock};
 use std::time::Duration;
 
 static UPSTREAM_CLIENT: OnceLock<RwLock<Client>> = OnceLock::new();
 static UPSTREAM_CLIENT_POOL: OnceLock<RwLock<UpstreamClientPool>> = OnceLock::new();
+static ACCOUNT_PROXY_CLIENTS: OnceLock<RwLock<HashMap<String, AccountProxyClientCacheEntry>>> =
+    OnceLock::new();
 static RUNTIME_CONFIG_LOADED: OnceLock<()> = OnceLock::new();
 static REQUEST_GATE_WAIT_TIMEOUT_MS: AtomicU64 =
     AtomicU64::new(DEFAULT_REQUEST_GATE_WAIT_TIMEOUT_MS);
@@ -99,6 +103,20 @@ struct UpstreamClientPool {
     clients: Vec<Client>,
 }
 
+#[derive(Clone)]
+enum AccountProxyClientCacheEntry {
+    NotConfigured,
+    Invalid {
+        proxy_url: String,
+        error: String,
+    },
+    Ready {
+        proxy_url: String,
+        blocking_client: Client,
+        async_client: reqwest::Client,
+    },
+}
+
 #[derive(Debug, Clone, PartialEq, Eq)]
 pub(crate) struct ModelForwardRule {
     pub from_pattern: String,
@@ -184,13 +202,17 @@ pub(crate) fn fresh_upstream_client() -> Client {
 ///
 /// # 返回
 /// 返回函数执行结果
-pub(crate) fn upstream_client_for_account(account_id: &str) -> Client {
+pub(crate) fn upstream_client_for_account(account_id: &str) -> Result<Client, String> {
     ensure_runtime_config_loaded();
-    let cached =
-        crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool")
-            .client_for_account(account_id)
-            .cloned();
-    cached.unwrap_or_else(upstream_client)
+    match account_proxy_client_cache_entry(account_id) {
+        AccountProxyClientCacheEntry::Ready {
+            blocking_client, ..
+        } => Ok(blocking_client),
+        AccountProxyClientCacheEntry::Invalid { proxy_url, error } => Err(format!(
+            "account explicit proxy for {account_id} is invalid and fail-closed: {proxy_url}. {error}"
+        )),
+        AccountProxyClientCacheEntry::NotConfigured => fallback_blocking_client_for_account(account_id),
+    }
 }
 
 /// 函数 `fresh_upstream_client_for_account`
@@ -204,40 +226,63 @@ pub(crate) fn upstream_client_for_account(account_id: &str) -> Client {
 ///
 /// # 返回
 /// 返回函数执行结果
-pub(crate) fn fresh_upstream_client_for_account(account_id: &str) -> Client {
+pub(crate) fn fresh_upstream_client_for_account(account_id: &str) -> Result<Client, String> {
     ensure_runtime_config_loaded();
-    let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
-    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
-        return build_upstream_client_with_proxy(Some(proxy_url));
+    match account_proxy_client_cache_entry(account_id) {
+        AccountProxyClientCacheEntry::Ready { proxy_url, .. } => {
+            build_blocking_client_with_proxy_strict(Some(proxy_url.as_str()))
+        }
+        AccountProxyClientCacheEntry::Invalid { proxy_url, error } => Err(format!(
+            "account explicit proxy for {account_id} is invalid and fail-closed: {proxy_url}. {error}"
+        )),
+        AccountProxyClientCacheEntry::NotConfigured => {
+            fresh_fallback_blocking_client_for_account(account_id)
+        }
     }
-    build_upstream_client()
 }
 
-pub(crate) fn async_upstream_client_for_account(account_id: &str) -> reqwest::Client {
+pub(crate) fn async_upstream_client_for_account(
+    account_id: &str,
+) -> Result<reqwest::Client, String> {
     ensure_runtime_config_loaded();
-    let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
-    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
-        return build_async_upstream_client_with_proxy(Some(proxy_url));
+    match account_proxy_client_cache_entry(account_id) {
+        AccountProxyClientCacheEntry::Ready { async_client, .. } => Ok(async_client),
+        AccountProxyClientCacheEntry::Invalid { proxy_url, error } => Err(format!(
+            "account explicit proxy for {account_id} is invalid and fail-closed: {proxy_url}. {error}"
+        )),
+        AccountProxyClientCacheEntry::NotConfigured => fallback_async_client_for_account(account_id),
     }
-    build_async_upstream_client()
 }
 
-pub(crate) fn fresh_async_upstream_client_for_account(account_id: &str) -> reqwest::Client {
+pub(crate) fn fresh_async_upstream_client_for_account(
+    account_id: &str,
+) -> Result<reqwest::Client, String> {
     ensure_runtime_config_loaded();
-    let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
-    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
-        return build_async_upstream_client_with_proxy(Some(proxy_url));
+    match account_proxy_client_cache_entry(account_id) {
+        AccountProxyClientCacheEntry::Ready { proxy_url, .. } => {
+            build_async_client_with_proxy_strict(Some(proxy_url.as_str()))
+        }
+        AccountProxyClientCacheEntry::Invalid { proxy_url, error } => Err(format!(
+            "account explicit proxy for {account_id} is invalid and fail-closed: {proxy_url}. {error}"
+        )),
+        AccountProxyClientCacheEntry::NotConfigured => fresh_fallback_async_client_for_account(account_id),
     }
-    build_async_upstream_client()
 }
 
 pub(crate) fn upstream_proxy_url_for_account(account_id: &str) -> Option<String> {
     ensure_runtime_config_loaded();
+    match account_proxy_client_cache_entry(account_id) {
+        AccountProxyClientCacheEntry::Ready { proxy_url, .. }
+        | AccountProxyClientCacheEntry::Invalid { proxy_url, .. } => {
+            return Some(proxy_url);
+        }
+        AccountProxyClientCacheEntry::NotConfigured => {}
+    }
     let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
-    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
-        return Some(proxy_url.to_string());
+    if let Some(proxy_url) = current_upstream_proxy_url() {
+        return Some(proxy_url);
     }
-    current_upstream_proxy_url()
+    pool.proxy_for_account(account_id).map(ToString::to_string)
 }
 
 /// 函数 `upstream_connect_timeout_cached`
@@ -316,6 +361,39 @@ pub(crate) fn apply_async_upstream_proxy(
     }
     builder
 }
+
+fn build_blocking_client_with_proxy_strict(proxy_url: Option<&str>) -> Result<Client, String> {
+    let mut builder = Client::builder()
+        .timeout(None::<Duration>)
+        .connect_timeout(upstream_connect_timeout_cached())
+        .pool_max_idle_per_host(32)
+        .pool_idle_timeout(Some(Duration::from_secs(90)))
+        .tcp_keepalive(Some(Duration::from_secs(30)));
+    if let Some(proxy_url) = proxy_url.map(str::trim).filter(|value| !value.is_empty()) {
+        let proxy = Proxy::all(proxy_url).map_err(|err| format!("invalid proxy url: {err}"))?;
+        builder = builder.proxy(proxy);
+    }
+    builder
+        .build()
+        .map_err(|err| format!("build upstream client failed: {err}"))
+}
+
+fn build_async_client_with_proxy_strict(
+    proxy_url: Option<&str>,
+) -> Result<reqwest::Client, String> {
+    let mut builder = reqwest::Client::builder()
+        .connect_timeout(upstream_connect_timeout_cached())
+        .pool_max_idle_per_host(32)
+        .pool_idle_timeout(Some(Duration::from_secs(90)))
+        .tcp_keepalive(Some(Duration::from_secs(30)));
+    if let Some(proxy_url) = proxy_url.map(str::trim).filter(|value| !value.is_empty()) {
+        let proxy = Proxy::all(proxy_url).map_err(|err| format!("invalid proxy url: {err}"))?;
+        builder = builder.proxy(proxy);
+    }
+    builder
+        .build()
+        .map_err(|err| format!("build async upstream client failed: {err}"))
+}
 /// 函数 `build_upstream_client_with_proxy`
 ///
 /// 作者: gaohongshun
@@ -1224,6 +1302,7 @@ pub(super) fn reload_from_env() {
         crate::lock_utils::write_recover(upstream_proxy_url_cell(), "upstream_proxy_url");
     *cached_proxy_url = converted_proxy;
     drop(cached_proxy_url);
+    clear_account_proxy_client_cache();
 
     let free_account_max_model = env_non_empty(ENV_FREE_ACCOUNT_MAX_MODEL)
         .and_then(|value| normalize_model_slug(value.as_str()).ok())
@@ -1380,6 +1459,10 @@ fn upstream_client_pool_lock() -> &'static RwLock<UpstreamClientPool> {
     UPSTREAM_CLIENT_POOL.get_or_init(|| RwLock::new(build_upstream_client_pool()))
 }
 
+fn account_proxy_clients_lock() -> &'static RwLock<HashMap<String, AccountProxyClientCacheEntry>> {
+    ACCOUNT_PROXY_CLIENTS.get_or_init(|| RwLock::new(HashMap::new()))
+}
+
 /// 函数 `refresh_upstream_clients_from_runtime_config`
 ///
 /// 作者: gaohongshun
@@ -1404,6 +1487,26 @@ fn refresh_upstream_clients_from_runtime_config() {
     *pool_lock = pool;
 }
 
+pub(crate) fn invalidate_account_proxy_client_cache(account_id: &str) {
+    let normalized = account_id.trim();
+    if normalized.is_empty() {
+        return;
+    }
+    let mut cache = crate::lock_utils::write_recover(
+        account_proxy_clients_lock(),
+        "account_proxy_client_cache",
+    );
+    cache.remove(normalized);
+}
+
+pub(crate) fn clear_account_proxy_client_cache() {
+    let mut cache = crate::lock_utils::write_recover(
+        account_proxy_clients_lock(),
+        "account_proxy_client_cache",
+    );
+    cache.clear();
+}
+
 /// 函数 `build_upstream_client_pool`
 ///
 /// 作者: gaohongshun
@@ -1593,6 +1696,163 @@ fn current_upstream_proxy_url() -> Option<String> {
     crate::lock_utils::read_recover(upstream_proxy_url_cell(), "upstream_proxy_url").clone()
 }
 
+fn fallback_blocking_client_for_account(account_id: &str) -> Result<Client, String> {
+    if let Some(proxy_url) = current_upstream_proxy_url() {
+        let _ = proxy_url;
+        return Ok(upstream_client());
+    }
+
+    let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
+    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
+        return Ok(pool
+            .client_for_account(account_id)
+            .cloned()
+            .unwrap_or_else(|| build_upstream_client_with_proxy(Some(proxy_url))));
+    }
+
+    Ok(upstream_client())
+}
+
+fn fresh_fallback_blocking_client_for_account(account_id: &str) -> Result<Client, String> {
+    if current_upstream_proxy_url().is_some() {
+        return Ok(build_upstream_client());
+    }
+
+    let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
+    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
+        return Ok(build_upstream_client_with_proxy(Some(proxy_url)));
+    }
+
+    Ok(build_upstream_client())
+}
+
+fn fallback_async_client_for_account(account_id: &str) -> Result<reqwest::Client, String> {
+    if current_upstream_proxy_url().is_some() {
+        return Ok(build_async_upstream_client());
+    }
+
+    let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
+    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
+        return Ok(build_async_upstream_client_with_proxy(Some(proxy_url)));
+    }
+
+    Ok(build_async_upstream_client())
+}
+
+fn fresh_fallback_async_client_for_account(account_id: &str) -> Result<reqwest::Client, String> {
+    if current_upstream_proxy_url().is_some() {
+        return Ok(build_async_upstream_client());
+    }
+
+    let pool = crate::lock_utils::read_recover(upstream_client_pool_lock(), "upstream_client_pool");
+    if let Some(proxy_url) = pool.proxy_for_account(account_id) {
+        return Ok(build_async_upstream_client_with_proxy(Some(proxy_url)));
+    }
+
+    Ok(build_async_upstream_client())
+}
+
+fn account_proxy_client_cache_entry(account_id: &str) -> AccountProxyClientCacheEntry {
+    let normalized = account_id.trim();
+    if normalized.is_empty() {
+        return AccountProxyClientCacheEntry::NotConfigured;
+    }
+
+    {
+        let cache = crate::lock_utils::read_recover(
+            account_proxy_clients_lock(),
+            "account_proxy_client_cache",
+        );
+        if let Some(entry) = cache.get(normalized) {
+            return entry.clone();
+        }
+    }
+
+    let entry = load_account_proxy_client_cache_entry(normalized);
+    let mut cache = crate::lock_utils::write_recover(
+        account_proxy_clients_lock(),
+        "account_proxy_client_cache",
+    );
+    cache.insert(normalized.to_string(), entry.clone());
+    entry
+}
+
+fn load_account_proxy_client_cache_entry(account_id: &str) -> AccountProxyClientCacheEntry {
+    let Some(storage) = crate::storage_helpers::open_storage() else {
+        return AccountProxyClientCacheEntry::NotConfigured;
+    };
+    load_account_proxy_client_cache_entry_from_storage(&storage, account_id)
+}
+
+fn load_account_proxy_client_cache_entry_from_storage(
+    storage: &Storage,
+    account_id: &str,
+) -> AccountProxyClientCacheEntry {
+    let settings = match storage.find_account_proxy_settings(account_id) {
+        Ok(settings) => settings,
+        Err(err) => {
+            log::warn!(
+                "event=gateway_account_proxy_settings_read_failed account_id={} err={}",
+                account_id,
+                err
+            );
+            return AccountProxyClientCacheEntry::NotConfigured;
+        }
+    };
+    let Some(settings) = settings else {
+        return AccountProxyClientCacheEntry::NotConfigured;
+    };
+    let Some(proxy_url) = settings
+        .proxy_url
+        .as_deref()
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+        .map(ToString::to_string)
+    else {
+        return AccountProxyClientCacheEntry::NotConfigured;
+    };
+    if !settings.enabled {
+        return AccountProxyClientCacheEntry::NotConfigured;
+    }
+
+    let normalized_proxy_url = match normalize_upstream_proxy_url(Some(proxy_url.as_str())) {
+        Ok(Some(proxy_url)) => proxy_url,
+        Ok(None) => return AccountProxyClientCacheEntry::NotConfigured,
+        Err(err) => {
+            return AccountProxyClientCacheEntry::Invalid {
+                proxy_url,
+                error: err,
+            };
+        }
+    };
+    let blocking_client =
+        match build_blocking_client_with_proxy_strict(Some(normalized_proxy_url.as_str())) {
+            Ok(client) => client,
+            Err(err) => {
+                return AccountProxyClientCacheEntry::Invalid {
+                    proxy_url: normalized_proxy_url,
+                    error: err,
+                };
+            }
+        };
+    let async_client =
+        match build_async_client_with_proxy_strict(Some(normalized_proxy_url.as_str())) {
+            Ok(client) => client,
+            Err(err) => {
+                return AccountProxyClientCacheEntry::Invalid {
+                    proxy_url: normalized_proxy_url,
+                    error: err,
+                };
+            }
+        };
+
+    AccountProxyClientCacheEntry::Ready {
+        proxy_url: normalized_proxy_url,
+        blocking_client,
+        async_client,
+    }
+}
+
 /// 函数 `token_exchange_client_id_cell`
 ///
 /// 作者: gaohongshun
@@ -2159,9 +2419,7 @@ fn rewrite_socks_proxy_url(proxy_url: &str) -> String {
     } else if let Some(rest) = normalized.strip_prefix("https://socks") {
         normalized = format!("socks{rest}");
     }
-    if normalized.starts_with("socks5://") {
-        normalized = normalized.replacen("socks5://", "socks5h://", 1);
-    } else if normalized.starts_with("socks://") {
+    if normalized.starts_with("socks://") {
         normalized = normalized.replacen("socks://", "socks5h://", 1);
     }
     normalized
diff --git a/crates/service/src/gateway/core/tests/runtime_config_tests.rs b/crates/service/src/gateway/core/tests/runtime_config_tests.rs
index b52af6a6e..64ee3af67 100644
--- a/crates/service/src/gateway/core/tests/runtime_config_tests.rs
+++ b/crates/service/src/gateway/core/tests/runtime_config_tests.rs
@@ -1,4 +1,12 @@
 use super::*;
+use codexmanager_core::storage::{now_ts, Account, Storage};
+use std::fs;
+use std::io::{Read, Write};
+use std::net::TcpListener;
+use std::path::PathBuf;
+use std::sync::atomic::{AtomicUsize, Ordering};
+use std::sync::mpsc::{self, Receiver};
+use std::thread;
 
 struct EnvGuard {
     key: &'static str,
@@ -63,6 +71,8 @@ impl Drop for EnvGuard {
     }
 }
 
+static RUNTIME_CONFIG_TEST_DIR_SEQ: AtomicUsize = AtomicUsize::new(0);
+
 /// 函数 `reload_from_env_updates_timeout_and_proxy`
 ///
 /// 作者: gaohongshun
@@ -108,7 +118,7 @@ fn reload_from_env_updates_timeout_and_proxy() {
     );
     assert_eq!(
         upstream_proxy_url().as_deref(),
-        Some("socks5h://127.0.0.1:7890")
+        Some("socks5://127.0.0.1:7890")
     );
 }
 
@@ -200,9 +210,9 @@ fn parse_proxy_list_env_normalizes_socks_entries() {
     let parsed = parse_proxy_list_env();
 
     assert_eq!(parsed.len(), 3);
-    assert_eq!(parsed[0], "socks5h://127.0.0.1:7890");
+    assert_eq!(parsed[0], "socks5://127.0.0.1:7890");
     assert_eq!(parsed[1], "socks5h://127.0.0.1:7891");
-    assert_eq!(parsed[2], "socks5h://127.0.0.1:7892");
+    assert_eq!(parsed[2], "socks5://127.0.0.1:7892");
 }
 
 /// 函数 `stable_proxy_index_is_deterministic`
@@ -277,11 +287,172 @@ fn set_upstream_proxy_url_normalizes_socks_scheme() {
     let applied =
         set_upstream_proxy_url(Some("https://socks5://127.0.0.1:7890")).expect("set proxy");
 
-    assert_eq!(applied.as_deref(), Some("socks5h://127.0.0.1:7890"));
+    assert_eq!(applied.as_deref(), Some("socks5://127.0.0.1:7890"));
     assert_eq!(
         std::env::var(ENV_UPSTREAM_PROXY_URL).ok().as_deref(),
-        Some("socks5h://127.0.0.1:7890")
+        Some("socks5://127.0.0.1:7890")
+    );
+}
+
+#[test]
+fn upstream_proxy_url_for_account_prefers_explicit_account_proxy() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("runtime-account-proxy-priority");
+    seed_account(db.path(), "acc-explicit");
+    seed_account(db.path(), "acc-fallback");
+    seed_account_proxy(
+        db.path(),
+        "acc-explicit",
+        true,
+        Some("http://127.0.0.1:7001"),
+    );
+    let _global_guard = EnvGuard::set(ENV_UPSTREAM_PROXY_URL, "http://127.0.0.1:7002");
+    let _pool_guard = EnvGuard::set(ENV_PROXY_LIST, "http://127.0.0.1:7003");
+
+    reload_from_env();
+
+    assert_eq!(
+        upstream_proxy_url_for_account("acc-explicit").as_deref(),
+        Some("http://127.0.0.1:7001")
+    );
+    assert_eq!(
+        upstream_proxy_url_for_account("acc-fallback").as_deref(),
+        Some("http://127.0.0.1:7002")
+    );
+}
+
+#[test]
+fn upstream_client_for_account_uses_explicit_proxy_before_global_and_pool() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("runtime-account-proxy-explicit");
+    seed_account(db.path(), "acc-explicit");
+    let (proxy_url, request_rx, proxy_handle) = spawn_recording_http_proxy(204);
+    seed_account_proxy(db.path(), "acc-explicit", true, Some(proxy_url.as_str()));
+    let _global_guard = EnvGuard::set(ENV_UPSTREAM_PROXY_URL, "http://127.0.0.1:9");
+    let _pool_guard = EnvGuard::set(ENV_PROXY_LIST, "http://127.0.0.1:8");
+
+    reload_from_env();
+
+    let client =
+        upstream_client_for_account("acc-explicit").expect("resolve explicit proxy client");
+    let response = client
+        .get("http://example.invalid/probe")
+        .send()
+        .expect("send request through explicit proxy");
+    assert_eq!(response.status().as_u16(), 204);
+    assert_eq!(
+        request_rx
+            .recv_timeout(Duration::from_secs(2))
+            .expect("capture explicit proxy request"),
+        "GET http://example.invalid/probe HTTP/1.1"
+    );
+    proxy_handle.join().expect("join explicit proxy thread");
+}
+
+#[test]
+fn fresh_upstream_client_for_account_uses_global_proxy_without_explicit_proxy() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("runtime-account-proxy-global");
+    seed_account(db.path(), "acc-global");
+    let (proxy_url, request_rx, proxy_handle) = spawn_recording_http_proxy(204);
+    let _global_guard = EnvGuard::set(ENV_UPSTREAM_PROXY_URL, proxy_url.as_str());
+    let _pool_guard = EnvGuard::set(ENV_PROXY_LIST, "http://127.0.0.1:8");
+
+    reload_from_env();
+
+    let client =
+        fresh_upstream_client_for_account("acc-global").expect("resolve global proxy client");
+    let response = client
+        .get("http://example.invalid/global")
+        .send()
+        .expect("send request through global proxy");
+    assert_eq!(response.status().as_u16(), 204);
+    assert_eq!(
+        request_rx
+            .recv_timeout(Duration::from_secs(2))
+            .expect("capture global proxy request"),
+        "GET http://example.invalid/global HTTP/1.1"
+    );
+    proxy_handle.join().expect("join global proxy thread");
+}
+
+#[test]
+fn fresh_upstream_client_for_account_uses_proxy_pool_without_explicit_or_global_proxy() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("runtime-account-proxy-pool");
+    seed_account(db.path(), "acc-pool");
+    let (proxy_url, request_rx, proxy_handle) = spawn_recording_http_proxy(204);
+    let _global_guard = EnvGuard::set(ENV_UPSTREAM_PROXY_URL, "");
+    let _pool_guard = EnvGuard::set(ENV_PROXY_LIST, proxy_url.as_str());
+
+    reload_from_env();
+
+    let client = fresh_upstream_client_for_account("acc-pool").expect("resolve pool proxy client");
+    let response = client
+        .get("http://example.invalid/pool")
+        .send()
+        .expect("send request through pool proxy");
+    assert_eq!(response.status().as_u16(), 204);
+    assert_eq!(
+        request_rx
+            .recv_timeout(Duration::from_secs(2))
+            .expect("capture pool proxy request"),
+        "GET http://example.invalid/pool HTTP/1.1"
+    );
+    proxy_handle.join().expect("join pool proxy thread");
+}
+
+#[test]
+fn upstream_client_for_account_fails_closed_for_invalid_explicit_proxy() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("runtime-account-proxy-invalid");
+    seed_account(db.path(), "acc-invalid");
+    seed_account_proxy(db.path(), "acc-invalid", true, Some("http://"));
+    let _global_guard = EnvGuard::set(ENV_UPSTREAM_PROXY_URL, "http://127.0.0.1:7002");
+    let _pool_guard = EnvGuard::set(ENV_PROXY_LIST, "http://127.0.0.1:7003");
+
+    reload_from_env();
+
+    let err =
+        upstream_client_for_account("acc-invalid").expect_err("fail closed for invalid proxy");
+    assert!(err.contains("fail-closed"));
+    assert!(err.contains("acc-invalid"));
+}
+
+#[test]
+fn account_proxy_set_and_clear_invalidate_gateway_cache() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("runtime-account-proxy-cache");
+    seed_account(db.path(), "acc-cache");
+    let _global_guard = EnvGuard::set(ENV_UPSTREAM_PROXY_URL, "");
+    let _pool_guard = EnvGuard::set(ENV_PROXY_LIST, "");
+
+    reload_from_env();
+
+    crate::account_proxy::set_account_proxy_settings(
+        "acc-cache",
+        true,
+        Some("http://127.0.0.1:7101"),
+    )
+    .expect("set first proxy");
+    assert_eq!(
+        upstream_proxy_url_for_account("acc-cache").as_deref(),
+        Some("http://127.0.0.1:7101")
+    );
+
+    crate::account_proxy::set_account_proxy_settings(
+        "acc-cache",
+        true,
+        Some("http://127.0.0.1:7102"),
+    )
+    .expect("set second proxy");
+    assert_eq!(
+        upstream_proxy_url_for_account("acc-cache").as_deref(),
+        Some("http://127.0.0.1:7102")
     );
+
+    crate::account_proxy::clear_account_proxy_settings("acc-cache").expect("clear proxy");
+    assert_eq!(upstream_proxy_url_for_account("acc-cache"), None);
 }
 
 /// 函数 `set_upstream_stream_timeout_ms_updates_env_and_cache`
@@ -494,6 +665,119 @@ fn compact_api_path_reads_chat_completions_override_from_env() {
     assert!(compact_api_path_uses_chat_completions());
 }
 
+struct TestDbGuard {
+    dir: PathBuf,
+    _db_guard: EnvGuard,
+}
+
+impl TestDbGuard {
+    fn new(prefix: &str) -> Self {
+        let dir = new_test_dir(prefix);
+        let db_path = dir.join("codexmanager.db");
+        let db_guard = EnvGuard::set("CODEXMANAGER_DB_PATH", db_path.to_string_lossy().as_ref());
+        Self {
+            dir,
+            _db_guard: db_guard,
+        }
+    }
+
+    fn path(&self) -> &PathBuf {
+        &self.dir
+    }
+}
+
+impl Drop for TestDbGuard {
+    fn drop(&mut self) {
+        let _ = fs::remove_dir_all(&self.dir);
+    }
+}
+
+fn new_test_dir(prefix: &str) -> PathBuf {
+    let seq = RUNTIME_CONFIG_TEST_DIR_SEQ.fetch_add(1, Ordering::Relaxed);
+    let mut dir = std::env::temp_dir();
+    dir.push(format!("{prefix}-{}-{seq}", std::process::id()));
+    let _ = fs::create_dir_all(&dir);
+    dir
+}
+
+fn seed_account(dir: &PathBuf, account_id: &str) {
+    let storage = open_test_storage(dir);
+    let now = now_ts();
+    storage
+        .insert_account(&Account {
+            id: account_id.to_string(),
+            label: account_id.to_string(),
+            issuer: "https://auth.openai.com".to_string(),
+            chatgpt_account_id: Some(format!("chatgpt-{account_id}")),
+            workspace_id: Some(format!("workspace-{account_id}")),
+            group_name: None,
+            sort: 0,
+            status: "active".to_string(),
+            created_at: now,
+            updated_at: now,
+        })
+        .expect("insert test account");
+}
+
+fn seed_account_proxy(dir: &PathBuf, account_id: &str, enabled: bool, proxy_url: Option<&str>) {
+    let storage = open_test_storage(dir);
+    storage
+        .upsert_account_proxy_settings(
+            account_id,
+            enabled,
+            proxy_url,
+            "unchecked",
+            None,
+            None,
+            None,
+        )
+        .expect("insert account proxy settings");
+}
+
+fn open_test_storage(dir: &PathBuf) -> Storage {
+    let storage = Storage::open(dir.join("codexmanager.db")).expect("open test db");
+    storage.init().expect("init test schema");
+    storage
+}
+
+fn spawn_recording_http_proxy(
+    status_code: u16,
+) -> (String, Receiver<String>, thread::JoinHandle<()>) {
+    let listener = TcpListener::bind("127.0.0.1:0").expect("bind mock HTTP proxy");
+    let proxy_addr = listener.local_addr().expect("mock HTTP proxy addr");
+    let (request_tx, request_rx) = mpsc::channel();
+    let handle = thread::spawn(move || {
+        let (mut client, _) = listener.accept().expect("accept proxy client");
+        client
+            .set_read_timeout(Some(Duration::from_secs(5)))
+            .expect("set proxy read timeout");
+        let mut request = Vec::new();
+        let mut buf = [0_u8; 1024];
+        while !request.windows(4).any(|window| window == b"\r\n\r\n") {
+            let read = client.read(&mut buf).expect("read proxy request");
+            if read == 0 {
+                break;
+            }
+            request.extend_from_slice(&buf[..read]);
+        }
+        let request_text = String::from_utf8_lossy(request.as_slice());
+        let _ = request_tx.send(request_text.lines().next().unwrap_or_default().to_string());
+        let reason = if status_code == 204 {
+            "No Content"
+        } else {
+            "OK"
+        };
+        let response = format!(
+            "HTTP/1.1 {status_code} {reason}\r\nContent-Length: 0\r\nConnection: close\r\n\r\n"
+        );
+        client
+            .write_all(response.as_bytes())
+            .expect("write proxy response");
+        client.flush().expect("flush proxy response");
+    });
+    (format!("http://{proxy_addr}"), request_rx, handle)
+}
+
 /// 函数 `set_originator_updates_env_and_dynamic_user_agent`
 ///
 /// 作者: gaohongshun
diff --git a/crates/service/src/gateway/mod.rs b/crates/service/src/gateway/mod.rs
index 378d7305d..9cde286df 100644
--- a/crates/service/src/gateway/mod.rs
+++ b/crates/service/src/gateway/mod.rs
@@ -386,6 +386,7 @@ use route_hint::{apply_route_strategy, apply_route_strategy_with_source};
 use route_quality::record_route_quality;
 pub(crate) use runtime_config::fresh_upstream_client;
 pub(crate) use runtime_config::front_proxy_max_body_bytes;
+pub(crate) use runtime_config::invalidate_account_proxy_client_cache as invalidate_account_proxy_cache;
 pub(crate) use runtime_config::{account_max_inflight_limit, set_account_max_inflight_limit};
 use runtime_config::{
     async_upstream_client_for_account, fresh_async_upstream_client_for_account,
diff --git a/crates/service/src/gateway/observability/request_log.rs b/crates/service/src/gateway/observability/request_log.rs
index a72f6543a..89823428e 100644
--- a/crates/service/src/gateway/observability/request_log.rs
+++ b/crates/service/src/gateway/observability/request_log.rs
@@ -295,7 +295,6 @@ fn resolve_value_source<'a>(
         (None, None) => Some("unset"),
     }
 }
-
 fn resolve_route_details(
     storage: &Storage,
     trace_context: &RequestLogTraceContext<'_>,
diff --git a/crates/service/src/gateway/upstream/attempt_flow/transport.rs b/crates/service/src/gateway/upstream/attempt_flow/transport.rs
index b7dba7f1a..dec05a90a 100644
--- a/crates/service/src/gateway/upstream/attempt_flow/transport.rs
+++ b/crates/service/src/gateway/upstream/attempt_flow/transport.rs
@@ -643,7 +643,7 @@ pub(in super::super) fn send_upstream_request(
     auth_token: &str,
     account: &Account,
     strip_session_affinity: bool,
-) -> Result<GatewayUpstreamResponse, reqwest::Error> {
+) -> Result<GatewayUpstreamResponse, String> {
     send_upstream_request_with_compression_override(
         client,
         method,
@@ -683,7 +683,7 @@ pub(in super::super) fn send_upstream_request_without_compression(
     auth_token: &str,
     account: &Account,
     strip_session_affinity: bool,
-) -> Result<GatewayUpstreamResponse, reqwest::Error> {
+) -> Result<GatewayUpstreamResponse, String> {
     send_upstream_request_with_compression_override(
         client,
         method,
@@ -724,7 +724,7 @@ fn send_upstream_request_with_compression_override(
     account: &Account,
     strip_session_affinity: bool,
     compression_override: Option<RequestCompression>,
-) -> Result<GatewayUpstreamResponse, reqwest::Error> {
+) -> Result<GatewayUpstreamResponse, String> {
     let attempt_started_at = Instant::now();
     let is_compact_request = is_compact_request_path(request_ctx.request_path);
     let chatgpt_account_header = resolve_chatgpt_account_header(account, target_url);
@@ -964,7 +964,10 @@ fn send_upstream_request_with_compression_override(
         Ok(r)
     } else if use_async_stream_transport {
         let async_client =
-            super::super::super::async_upstream_client_for_account(account.id.as_str());
+            match super::super::super::async_upstream_client_for_account(account.id.as_str()) {
+                Ok(client) => client,
+                Err(err) => return Err(err),
+            };
         match send_async_stream_request(
             &async_client,
             method,
@@ -977,9 +980,12 @@ fn send_upstream_request_with_compression_override(
         ) {
             Ok(resp) => Ok(GatewayUpstreamResponse::Stream(resp)),
             Err(first_err) => {
-                let fresh_async = super::super::super::fresh_async_upstream_client_for_account(
+                let fresh_async = match super::super::super::fresh_async_upstream_client_for_account(
                     account.id.as_str(),
-                );
+                ) {
+                    Ok(client) => client,
+                    Err(err) => return Err(err),
+                };
                 if should_retry_transport_without_compression(
                     target_url,
                     request_ctx.request_path,
@@ -1021,7 +1027,7 @@ fn send_upstream_request_with_compression_override(
                                 first_err,
                                 second_err
                             );
-                            Err(second_err)
+                            Err(second_err.to_string())
                         }
                     }
                 } else {
@@ -1053,7 +1059,7 @@ fn send_upstream_request_with_compression_override(
                                 first_err,
                                 second_err
                             );
-                            Err(second_err)
+                            Err(second_err.to_string())
                         }
                     }
                 }
@@ -1063,8 +1069,12 @@ fn send_upstream_request_with_compression_override(
         match build_request(client, upstream_headers.as_slice(), &body_for_request).send() {
             Ok(resp) => Ok(resp.into()),
             Err(first_err) => {
-                let fresh =
-                    super::super::super::fresh_upstream_client_for_account(account.id.as_str());
+                let fresh = match super::super::super::fresh_upstream_client_for_account(
+                    account.id.as_str(),
+                ) {
+                    Ok(client) => client,
+                    Err(err) => return Err(err),
+                };
                 if should_retry_transport_without_compression(
                     target_url,
                     request_ctx.request_path,
@@ -1099,7 +1109,7 @@ fn send_upstream_request_with_compression_override(
                                 first_err,
                                 second_err
                             );
-                            Err(second_err)
+                            Err(second_err.to_string())
                         }
                     }
                 } else {
@@ -1124,7 +1134,7 @@ fn send_upstream_request_with_compression_override(
                                 first_err,
                                 second_err
                             );
-                            Err(second_err)
+                            Err(second_err.to_string())
                         }
                     }
                 }
diff --git a/crates/service/src/gateway/upstream/executor/codex.rs b/crates/service/src/gateway/upstream/executor/codex.rs
index dbfeb7c58..6e4b19ac7 100644
--- a/crates/service/src/gateway/upstream/executor/codex.rs
+++ b/crates/service/src/gateway/upstream/executor/codex.rs
@@ -37,7 +37,15 @@ pub(super) fn execute<F>(
 where
     F: FnMut(Option<&str>, u16, Option<&str>),
 {
-    let client = super::super::super::upstream_client_for_account(account.id.as_str());
+    let client = match super::super::super::upstream_client_for_account(account.id.as_str()) {
+        Ok(client) => client,
+        Err(err) => {
+            return CandidateUpstreamDecision::Terminal {
+                status_code: 502,
+                message: err,
+            };
+        }
+    };
 
     if deadline::is_expired(request_deadline) {
         return CandidateUpstreamDecision::Terminal {
diff --git a/crates/service/src/lib.rs b/crates/service/src/lib.rs
index bfd187062..f46875c79 100644
--- a/crates/service/src/lib.rs
+++ b/crates/service/src/lib.rs
@@ -32,6 +32,7 @@ pub(crate) use account::export as account_export;
 pub(crate) use account::import as account_import;
 pub(crate) use account::list as account_list;
 pub(crate) use account::plan as account_plan;
+pub(crate) use account::proxy as account_proxy;
 pub(crate) use account::status as account_status;
 pub(crate) use account::update as account_update;
 pub(crate) use account::warmup as account_warmup;
diff --git a/crates/service/src/quota/read.rs b/crates/service/src/quota/read.rs
index d32db0651..840817f44 100644
--- a/crates/service/src/quota/read.rs
+++ b/crates/service/src/quota/read.rs
@@ -13,9 +13,9 @@ use codexmanager_core::rpc::types::{
     QuotaSystemPoolResult, QuotaTodayUsageResult,
 };
 use codexmanager_core::storage::{
-    now_ts, Account, AccountQuotaCapacityOverride, AccountQuotaCapacityTemplate, AccountSubscription,
-    AggregateApi, ApiKey, BillingRule, ModelPriceRule, QuotaSourceModelAssignment, Token,
-    UsageSnapshotRecord,
+    now_ts, Account, AccountQuotaCapacityOverride, AccountQuotaCapacityTemplate,
+    AccountSubscription, AggregateApi, ApiKey, BillingRule, ModelPriceRule,
+    QuotaSourceModelAssignment, Token, UsageSnapshotRecord,
 };
 use rand::RngCore;
 use serde_json::Value;
@@ -1526,13 +1526,11 @@ pub(crate) fn upsert_model_price_rule(
         .unwrap_or_else(|| format!("user-{}", model_pattern));
     let rule = ModelPriceRule {
         id,
-        provider: input
-            .provider
-            .unwrap_or_else(|| crate::quota::model_pricing::infer_provider(&model_pattern).to_string()),
+        provider: input.provider.unwrap_or_else(|| {
+            crate::quota::model_pricing::infer_provider(&model_pattern).to_string()
+        }),
         model_pattern,
-        match_type: input
-            .match_type
-            .unwrap_or_else(|| "exact".to_string()),
+        match_type: input.match_type.unwrap_or_else(|| "exact".to_string()),
         billing_mode: "standard".to_string(),
         currency: "USD".to_string(),
         unit: "per_1m_tokens".to_string(),
diff --git a/crates/service/src/rpc_dispatch/account.rs b/crates/service/src/rpc_dispatch/account.rs
index ba4a36380..ba868980d 100644
--- a/crates/service/src/rpc_dispatch/account.rs
+++ b/crates/service/src/rpc_dispatch/account.rs
@@ -2,7 +2,8 @@ use codexmanager_core::rpc::types::{JsonRpcRequest, JsonRpcResponse};
 
 use crate::{
     account_cleanup, account_delete, account_delete_many, account_export, account_import,
-    account_list, account_update, account_warmup, auth_account, auth_login, auth_tokens,
+    account_list, account_proxy, account_update, account_warmup, auth_account, auth_login,
+    auth_tokens,
 };
 
 /// 函数 `try_handle`
@@ -105,6 +106,26 @@ pub(super) fn try_handle(req: &JsonRpcRequest) -> Option<JsonRpcResponse> {
             let message = first_string_param(req, &["message"]).unwrap_or_default();
             super::value_or_error(account_warmup::warmup_accounts(account_ids, &message))
         }
+        "account/proxy/get" => {
+            let account_id = first_str_param(req, &["accountId", "account_id"]).unwrap_or("");
+            super::value_or_error(account_proxy::get_account_proxy_settings(account_id))
+        }
+        "account/proxy/set" => {
+            let account_id = first_str_param(req, &["accountId", "account_id"]).unwrap_or("");
+            let enabled = super::bool_param(req, "enabled").unwrap_or(false);
+            let proxy_url = first_str_param(req, &["proxyUrl", "proxy_url"]);
+            super::value_or_error(account_proxy::set_account_proxy_settings(
+                account_id, enabled, proxy_url,
+            ))
+        }
+        "account/proxy/clear" => {
+            let account_id = first_str_param(req, &["accountId", "account_id"]).unwrap_or("");
+            super::value_or_error(account_proxy::clear_account_proxy_settings(account_id))
+        }
+        "account/proxy/test" => {
+            let account_id = first_str_param(req, &["accountId", "account_id"]).unwrap_or("");
+            super::value_or_error(account_proxy::test_account_proxy_settings(account_id))
+        }
         "account/import" => {
             let mut contents = req
                 .params
diff --git a/crates/service/src/rpc_dispatch/apikey.rs b/crates/service/src/rpc_dispatch/apikey.rs
index 6f75868d5..def4ca9f5 100644
--- a/crates/service/src/rpc_dispatch/apikey.rs
+++ b/crates/service/src/rpc_dispatch/apikey.rs
@@ -249,7 +249,10 @@ pub(super) fn try_handle(req: &JsonRpcRequest, actor: &RpcActor) -> Option<JsonR
             let source_id = super::str_param(req, "sourceId").unwrap_or("");
             let upstream_model = super::str_param(req, "upstreamModel").unwrap_or("");
             super::ok_or_error(apikey_models::delete_managed_model_source_mapping(
-                id, source_kind, source_id, upstream_model,
+                id,
+                source_kind,
+                source_id,
+                upstream_model,
             ))
         }
         "apikey/usageStats" => super::value_or_error(
diff --git a/crates/service/src/rpc_dispatch/mod.rs b/crates/service/src/rpc_dispatch/mod.rs
index 44e930062..807e17577 100644
--- a/crates/service/src/rpc_dispatch/mod.rs
+++ b/crates/service/src/rpc_dispatch/mod.rs
@@ -185,6 +185,10 @@ const MEMBER_METHOD_ALLOWLIST: &[&str] = &[
     "account/chatgptAuthTokens/refresh",
     "account/chatgptAuthTokens/refreshAll",
     "account/list",
+    "account/proxy/clear",
+    "account/proxy/get",
+    "account/proxy/set",
+    "account/proxy/test",
     "account/read",
     "account/update",
     "account/usage/aggregate",
diff --git a/crates/service/src/rpc_dispatch/quota.rs b/crates/service/src/rpc_dispatch/quota.rs
index 80c62f613..0911b066a 100644
--- a/crates/service/src/rpc_dispatch/quota.rs
+++ b/crates/service/src/rpc_dispatch/quota.rs
@@ -90,7 +90,9 @@ pub(super) fn try_handle(req: &JsonRpcRequest) -> Option<JsonRpcResponse> {
             let input = ModelPriceRuleUpsertInput {
                 id: super::string_param(req, "id"),
                 provider: super::string_param(req, "provider"),
-                model_pattern: super::str_param(req, "modelPattern").unwrap_or("").to_string(),
+                model_pattern: super::str_param(req, "modelPattern")
+                    .unwrap_or("")
+                    .to_string(),
                 match_type: super::string_param(req, "matchType"),
                 input_price_per_1m: req
                     .params
diff --git a/crates/service/src/rpc_dispatch/requestlog.rs b/crates/service/src/rpc_dispatch/requestlog.rs
index 8219993e8..47171712e 100644
--- a/crates/service/src/rpc_dispatch/requestlog.rs
+++ b/crates/service/src/rpc_dispatch/requestlog.rs
@@ -1,9 +1,7 @@
 use codexmanager_core::rpc::types::{JsonRpcRequest, JsonRpcResponse, RequestLogListParams};
 
 use crate::RpcActor;
-use crate::{
-    requestlog_clear, requestlog_list, requestlog_summary, requestlog_today_summary,
-};
+use crate::{requestlog_clear, requestlog_list, requestlog_summary, requestlog_today_summary};
 
 fn actor_key_ids(actor: &RpcActor) -> Result<Vec<String>, String> {
     if actor.is_admin() {
diff --git a/crates/service/tests/app_settings.rs b/crates/service/tests/app_settings.rs
index 636aec692..f5efd11a6 100644
--- a/crates/service/tests/app_settings.rs
+++ b/crates/service/tests/app_settings.rs
@@ -1044,7 +1044,9 @@ fn app_settings_get_exposes_runtime_time_zone_from_tz_env() {
             .expect("runtime time zone object");
 
         assert_eq!(
-            runtime_time_zone.get("name").and_then(|value| value.as_str()),
+            runtime_time_zone
+                .get("name")
+                .and_then(|value| value.as_str()),
             Some("Asia/Shanghai")
         );
         assert_eq!(

From 1836a5b60a006952ab8b09cb3132b5b4354b2d3e Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Tue, 9 Jun 2026 13:12:33 +0300
Subject: [PATCH 2/9] feat(apps): implement UI and localization for account
 proxy management

---
 apps/src-tauri/src/commands/account/remote.rs |  42 +++++++
 apps/src-tauri/src/commands/registry.rs       |   4 +
 apps/src/app/accounts/page.tsx                | 105 ++++++++++++++++++
 apps/src/hooks/useAccounts.ts                 |  78 ++++++++++++-
 apps/src/lib/api/account-client.ts            |  73 ++++++++++++
 .../lib/api/transport-web-commands/account.ts |   4 +
 apps/src/lib/i18n/messages/ru.ts              |  13 ++-
 .../lib/i18n/messages/sections/en-accounts.ts |  33 ++++++
 .../lib/i18n/messages/sections/ko-accounts.ts |  33 ++++++
 9 files changed, 383 insertions(+), 2 deletions(-)

diff --git a/apps/src-tauri/src/commands/account/remote.rs b/apps/src-tauri/src/commands/account/remote.rs
index 970c68af4..a6b00585f 100644
--- a/apps/src-tauri/src/commands/account/remote.rs
+++ b/apps/src-tauri/src/commands/account/remote.rs
@@ -248,6 +248,48 @@ pub async fn service_account_warmup(
     rpc_call_in_background("account/warmup", addr, Some(params)).await
 }
 
+#[tauri::command]
+pub async fn service_account_proxy_get(
+    addr: Option<String>,
+    account_id: String,
+) -> Result<serde_json::Value, String> {
+    let params = serde_json::json!({ "accountId": account_id });
+    rpc_call_in_background("account/proxy/get", addr, Some(params)).await
+}
+
+#[tauri::command]
+pub async fn service_account_proxy_set(
+    addr: Option<String>,
+    account_id: String,
+    enabled: bool,
+    proxy_url: Option<String>,
+) -> Result<serde_json::Value, String> {
+    let params = serde_json::json!({
+        "accountId": account_id,
+        "enabled": enabled,
+        "proxyUrl": proxy_url,
+    });
+    rpc_call_in_background("account/proxy/set", addr, Some(params)).await
+}
+
+#[tauri::command]
+pub async fn service_account_proxy_clear(
+    addr: Option<String>,
+    account_id: String,
+) -> Result<serde_json::Value, String> {
+    let params = serde_json::json!({ "accountId": account_id });
+    rpc_call_in_background("account/proxy/clear", addr, Some(params)).await
+}
+
+#[tauri::command]
+pub async fn service_account_proxy_test(
+    addr: Option<String>,
+    account_id: String,
+) -> Result<serde_json::Value, String> {
+    let params = serde_json::json!({ "accountId": account_id });
+    rpc_call_in_background("account/proxy/test", addr, Some(params)).await
+}
+
 #[cfg(test)]
 mod tests {
     use super::account_update_payload;
diff --git a/apps/src-tauri/src/commands/registry.rs b/apps/src-tauri/src/commands/registry.rs
index 21b9e81fe..22137c639 100644
--- a/apps/src-tauri/src/commands/registry.rs
+++ b/apps/src-tauri/src/commands/registry.rs
@@ -88,6 +88,10 @@ macro_rules! invoke_handler {
             crate::commands::account::remote::service_account_delete_by_statuses,
             crate::commands::account::remote::service_account_update,
             crate::commands::account::remote::service_account_warmup,
+            crate::commands::account::remote::service_account_proxy_get,
+            crate::commands::account::remote::service_account_proxy_set,
+            crate::commands::account::remote::service_account_proxy_clear,
+            crate::commands::account::remote::service_account_proxy_test,
             crate::commands::account::transfer::service_account_import,
             crate::commands::account::transfer::service_account_import_by_directory,
             crate::commands::account::transfer::service_account_import_by_file,
diff --git a/apps/src/app/accounts/page.tsx b/apps/src/app/accounts/page.tsx
index cc67aa6fb..9f6a42be8 100644
--- a/apps/src/app/accounts/page.tsx
+++ b/apps/src/app/accounts/page.tsx
@@ -6,6 +6,7 @@ import { useAccounts } from "@/hooks/useAccounts";
 import { useDesktopPageActive } from "@/hooks/useDesktopPageActive";
 import { usePageTransitionReady } from "@/hooks/usePageTransitionReady";
 import { useRuntimeCapabilities } from "@/hooks/useRuntimeCapabilities";
+import type { AccountProxySettings } from "@/lib/api/account-client";
 import { useI18n } from "@/lib/i18n/provider";
 import {
   buildAccountsBySizeOrder,
@@ -76,6 +77,13 @@ export default function AccountsPage() {
     setPreferredAccount,
     clearPreferredAccount,
     isUpdatingPreferred,
+    getAccountProxySettings,
+    setAccountProxySettings,
+    clearAccountProxySettings,
+    testAccountProxySettings,
+    isSavingAccountProxy,
+    isClearingAccountProxy,
+    isTestingAccountProxy,
     reorderAccounts,
     isReorderingAccounts,
     updateAccountProfile,
@@ -106,6 +114,11 @@ export default function AccountsPage() {
   const [modelWhitelistDraft, setModelWhitelistDraft] = useState("");
   const [quotaPrimaryDraft, setQuotaPrimaryDraft] = useState("");
   const [quotaSecondaryDraft, setQuotaSecondaryDraft] = useState("");
+  const [proxyDialogAccount, setProxyDialogAccount] = useState<Account | null>(null);
+  const [proxySettings, setProxySettings] = useState<AccountProxySettings | null>(null);
+  const [isProxySettingsLoading, setIsProxySettingsLoading] = useState(false);
+  const [proxyEnabledDraft, setProxyEnabledDraft] = useState(false);
+  const [proxyUrlDraft, setProxyUrlDraft] = useState("");
   const [accountEditorState, setAccountEditorState] =
     useState<AccountEditorState | null>(null);
   const [deleteDialogState, setDeleteDialogState] =
@@ -430,6 +443,83 @@ const toggleCleanupStatus = (rawStatus: string) => {
     setDeleteDialogState({ kind: "single", account });
   };
 
+  const openProxyDialog = async (account: Account) => {
+    setProxyDialogAccount(account);
+    setProxySettings(null);
+    setProxyEnabledDraft(false);
+    setProxyUrlDraft("");
+    setIsProxySettingsLoading(true);
+    try {
+      const settings = await getAccountProxySettings(account.id);
+      setProxySettings(settings);
+      setProxyEnabledDraft(settings.enabled);
+      setProxyUrlDraft(settings.proxyUrl || "");
+    } catch (error) {
+      toast.error(`${t("读取账号代理失败")}: ${error instanceof Error ? error.message : String(error)}`);
+      setProxyDialogAccount(null);
+    } finally {
+      setIsProxySettingsLoading(false);
+    }
+  };
+
+  const handleProxyDialogOpenChange = (open: boolean) => {
+    if (open) return;
+    if (isSavingAccountProxy || isClearingAccountProxy || isTestingAccountProxy) {
+      return;
+    }
+    setProxyDialogAccount(null);
+    setProxySettings(null);
+    setProxyEnabledDraft(false);
+    setProxyUrlDraft("");
+  };
+
+  const handleSaveProxySettings = async () => {
+    if (!proxyDialogAccount) return;
+    try {
+      const settings = await setAccountProxySettings({
+        accountId: proxyDialogAccount.id,
+        enabled: proxyEnabledDraft,
+        proxyUrl: proxyUrlDraft,
+      });
+      if (settings) {
+        setProxySettings(settings);
+        setProxyEnabledDraft(settings.enabled);
+        setProxyUrlDraft(settings.proxyUrl || "");
+      }
+      setProxyDialogAccount(null);
+    } catch {
+      // hook handles toast
+    }
+  };
+
+  const handleClearProxySettings = async () => {
+    if (!proxyDialogAccount) return;
+    try {
+      const settings = await clearAccountProxySettings(proxyDialogAccount.id);
+      if (settings) {
+        setProxySettings(settings);
+        setProxyEnabledDraft(settings.enabled);
+        setProxyUrlDraft(settings.proxyUrl || "");
+      }
+    } catch {
+      // hook handles toast
+    }
+  };
+
+  const handleTestProxySettings = async () => {
+    if (!proxyDialogAccount) return;
+    try {
+      const settings = await testAccountProxySettings(proxyDialogAccount.id);
+      if (settings) {
+        setProxySettings(settings);
+        setProxyEnabledDraft(settings.enabled);
+        setProxyUrlDraft(settings.proxyUrl || "");
+      }
+    } catch {
+      // hook handles toast
+    }
+  };
+
   const openAccountEditor = (account: Account) => {
     setAccountEditorState({
       accountId: account.id,
@@ -643,6 +733,11 @@ const toggleCleanupStatus = (rawStatus: string) => {
       cleanupDialogOpen={cleanupDialogOpen}
       cleanupStatusDraft={cleanupStatusDraft}
       cleanupStatusOptions={cleanupStatusOptions}
+      proxyDialogAccount={proxyDialogAccount}
+      proxySettings={proxySettings}
+      isProxySettingsLoading={isProxySettingsLoading}
+      proxyEnabledDraft={proxyEnabledDraft}
+      proxyUrlDraft={proxyUrlDraft}
       currentEditingAccount={currentEditingAccount}
       labelDraft={labelDraft}
       tagsDraft={tagsDraft}
@@ -660,6 +755,9 @@ const toggleCleanupStatus = (rawStatus: string) => {
       isDeletingMany={isDeletingMany}
       isCleaningAccountsByStatus={isCleaningAccountsByStatus}
       isUpdatingPreferred={isUpdatingPreferred}
+      isSavingAccountProxy={isSavingAccountProxy}
+      isClearingAccountProxy={isClearingAccountProxy}
+      isTestingAccountProxy={isTestingAccountProxy}
       isReorderingAccounts={isReorderingAccounts}
       isUpdatingProfileAccountId={isUpdatingProfileAccountId}
       isUpdatingStatusAccountId={isUpdatingStatusAccountId}
@@ -673,6 +771,8 @@ const toggleCleanupStatus = (rawStatus: string) => {
       setExportModeDraft={setExportModeDraft}
       setDeleteDialogState={setDeleteDialogState}
       setCleanupDialogOpen={setCleanupDialogOpen}
+      setProxyEnabledDraft={setProxyEnabledDraft}
+      setProxyUrlDraft={setProxyUrlDraft}
       setAccountEditorState={setAccountEditorState}
       setLabelDraft={setLabelDraft}
       setTagsDraft={setTagsDraft}
@@ -698,6 +798,11 @@ const toggleCleanupStatus = (rawStatus: string) => {
       openExportDialog={openExportDialog}
       handleConfirmExport={handleConfirmExport}
       handleDeleteSingle={handleDeleteSingle}
+      openProxyDialog={openProxyDialog}
+      handleProxyDialogOpenChange={handleProxyDialogOpenChange}
+      handleSaveProxySettings={handleSaveProxySettings}
+      handleClearProxySettings={handleClearProxySettings}
+      handleTestProxySettings={handleTestProxySettings}
       openAccountEditor={openAccountEditor}
       handleMoveAccount={handleMoveAccount}
       handleApplyAccountSizeSort={handleApplyAccountSizeSort}
diff --git a/apps/src/hooks/useAccounts.ts b/apps/src/hooks/useAccounts.ts
index 29f952a16..41f048da5 100644
--- a/apps/src/hooks/useAccounts.ts
+++ b/apps/src/hooks/useAccounts.ts
@@ -28,6 +28,8 @@ type AccountExportPayload = Parameters<typeof accountClient.export>[0];
 type ExportResult = Awaited<ReturnType<typeof accountClient.export>>;
 type WarmupPayload = Parameters<typeof accountClient.warmup>[0];
 type WarmupResult = Awaited<ReturnType<typeof accountClient.warmup>>;
+type AccountProxySettings = Awaited<ReturnType<typeof accountClient.getProxySettings>>;
+type AccountProxySetPayload = Parameters<typeof accountClient.setProxySettings>[0];
 type RefreshAllRtResult = Awaited<
   ReturnType<typeof accountClient.refreshAllChatgptAuthTokens>
 >;
@@ -35,6 +37,7 @@ type DeleteAccountsByStatusesResult = Awaited<
   ReturnType<typeof accountClient.deleteByStatuses>
 >;
 type AccountSortUpdate = { accountId: string; sort: number };
+const ACCOUNTS_LIST_QUERY_KEY = ["accounts", "list"] as const;
 
 /**
  * 函数 `isAccountRefreshBlocked`
@@ -441,7 +444,7 @@ export function useAccounts() {
 
   const invalidateAccountData = async () => {
     await Promise.all([
-      queryClient.invalidateQueries({ queryKey: ["accounts", "list"] }),
+      queryClient.invalidateQueries({ queryKey: ACCOUNTS_LIST_QUERY_KEY }),
       invalidateUsageData(),
     ]);
   };
@@ -798,6 +801,63 @@ export function useAccounts() {
     },
   });
 
+  const getAccountProxySettings = async (
+    accountId: string,
+  ): Promise<AccountProxySettings> => {
+    if (!ensureServiceReady("读取账号代理")) {
+      throw new Error(t("服务未连接，暂时无法读取账号代理"));
+    }
+    const targetAccountId = accountId.trim();
+    if (!targetAccountId) {
+      throw new Error(t("未找到当前账号，请刷新后重试"));
+    }
+    return accountClient.getProxySettings(targetAccountId);
+  };
+
+  const setAccountProxyMutation = useMutation({
+    mutationFn: (params: AccountProxySetPayload) =>
+      accountClient.setProxySettings(params),
+    onSuccess: async (settings) => {
+      await invalidateUsageData();
+      toast.success(
+        settings.enabled ? t("账号代理已保存") : t("账号代理已关闭"),
+      );
+    },
+    onError: (error: unknown) => {
+      toast.error(`${t("保存账号代理失败")}: ${getAppErrorMessage(error)}`);
+    },
+  });
+
+  const clearAccountProxyMutation = useMutation({
+    mutationFn: (accountId: string) => accountClient.clearProxySettings(accountId),
+    onSuccess: async () => {
+      await invalidateUsageData();
+      toast.success(t("账号代理已清除"));
+    },
+    onError: (error: unknown) => {
+      toast.error(`${t("清除账号代理失败")}: ${getAppErrorMessage(error)}`);
+    },
+  });
+
+  const testAccountProxyMutation = useMutation({
+    mutationFn: (accountId: string) => accountClient.testProxySettings(accountId),
+    onSuccess: async (settings) => {
+      await invalidateUsageData();
+      if (settings.status === "ok") {
+        toast.success(t("账号代理测试通过"));
+        return;
+      }
+      toast.warning(
+        settings.lastError
+          ? `${t("账号代理测试未通过")}: ${settings.lastError}`
+          : t("账号代理测试未通过"),
+      );
+    },
+    onError: (error: unknown) => {
+      toast.error(`${t("测试账号代理失败")}: ${getAppErrorMessage(error)}`);
+    },
+  });
+
   return {
     accounts,
     planTypes,
@@ -882,6 +942,19 @@ export function useAccounts() {
       if (!ensureServiceReady("取消优先账号")) return;
       clearPreferredMutation.mutate(accountId);
     },
+    getAccountProxySettings,
+    setAccountProxySettings: async (params: AccountProxySetPayload) => {
+      if (!ensureServiceReady("保存账号代理")) return;
+      return await setAccountProxyMutation.mutateAsync(params);
+    },
+    clearAccountProxySettings: async (accountId: string) => {
+      if (!ensureServiceReady("清除账号代理")) return;
+      return await clearAccountProxyMutation.mutateAsync(accountId);
+    },
+    testAccountProxySettings: async (accountId: string) => {
+      if (!ensureServiceReady("测试账号代理")) return;
+      return await testAccountProxyMutation.mutateAsync(accountId);
+    },
     updateAccountSort: async (accountId: string, sort: number) => {
       if (!ensureServiceReady("更新账号顺序")) return;
       await updateAccountSortMutation.mutateAsync({ accountId, sort });
@@ -931,6 +1004,9 @@ export function useAccounts() {
     isCleaningAccountsByStatus: deleteByStatusesMutation.isPending,
     isUpdatingPreferred:
       setPreferredMutation.isPending || clearPreferredMutation.isPending,
+    isSavingAccountProxy: setAccountProxyMutation.isPending,
+    isClearingAccountProxy: clearAccountProxyMutation.isPending,
+    isTestingAccountProxy: testAccountProxyMutation.isPending,
     isUpdatingSortAccountId:
       updateAccountSortMutation.isPending &&
       updateAccountSortMutation.variables &&
diff --git a/apps/src/lib/api/account-client.ts b/apps/src/lib/api/account-client.ts
index 1afce4fb5..ddac73cdf 100644
--- a/apps/src/lib/api/account-client.ts
+++ b/apps/src/lib/api/account-client.ts
@@ -80,6 +80,22 @@ export interface AccountWarmupPayload {
   message?: string;
 }
 
+export interface AccountProxySettings {
+  accountId: string;
+  enabled: boolean;
+  proxyUrl: string;
+  status: string;
+  latencyMs: number | null;
+  lastCheckAt: number | null;
+  lastError: string | null;
+}
+
+export interface AccountProxySetPayload {
+  accountId: string;
+  enabled: boolean;
+  proxyUrl?: string | null;
+}
+
 export interface AccountDeleteByStatusesPayload {
   statuses: string[];
 }
@@ -340,6 +356,38 @@ function mergeImportResult(
   }
 }
 
+function readAccountProxySettings(payload: unknown): AccountProxySettings {
+  const source =
+    payload && typeof payload === "object"
+      ? (payload as Record<string, unknown>)
+      : {};
+  const readNumber = (value: unknown): number | null => {
+    if (typeof value === "number" && Number.isFinite(value)) {
+      return value;
+    }
+    if (typeof value === "string" && value.trim()) {
+      const parsed = Number(value);
+      return Number.isFinite(parsed) ? parsed : null;
+    }
+    return null;
+  };
+  const readString = (value: unknown): string =>
+    typeof value === "string" ? value : value == null ? "" : String(value);
+
+  return {
+    accountId: readString(source.accountId ?? source.account_id),
+    enabled: Boolean(source.enabled),
+    proxyUrl: readString(source.proxyUrl ?? source.proxy_url),
+    status: readString(source.status || "not_configured"),
+    latencyMs: readNumber(source.latencyMs ?? source.latency_ms),
+    lastCheckAt: readNumber(source.lastCheckAt ?? source.last_check_at),
+    lastError:
+      source.lastError == null && source.last_error == null
+        ? null
+        : readString(source.lastError ?? source.last_error),
+  };
+}
+
 /**
  * 函数 `importAccountContents`
  *
@@ -489,6 +537,31 @@ export const accountClient = {
         }),
       ),
     ),
+  getProxySettings: async (accountId: string): Promise<AccountProxySettings> =>
+    readAccountProxySettings(
+      await invoke<unknown>("service_account_proxy_get", withAddr({ accountId })),
+    ),
+  setProxySettings: async (
+    params: AccountProxySetPayload,
+  ): Promise<AccountProxySettings> =>
+    readAccountProxySettings(
+      await invoke<unknown>(
+        "service_account_proxy_set",
+        withAddr({
+          accountId: params.accountId,
+          enabled: params.enabled,
+          proxyUrl: params.proxyUrl ?? null,
+        }),
+      ),
+    ),
+  clearProxySettings: async (accountId: string): Promise<AccountProxySettings> =>
+    readAccountProxySettings(
+      await invoke<unknown>("service_account_proxy_clear", withAddr({ accountId })),
+    ),
+  testProxySettings: async (accountId: string): Promise<AccountProxySettings> =>
+    readAccountProxySettings(
+      await invoke<unknown>("service_account_proxy_test", withAddr({ accountId })),
+    ),
 
   async getUsage(accountId: string): Promise<AccountUsage | null> {
     const result = await invoke<unknown>(
diff --git a/apps/src/lib/api/transport-web-commands/account.ts b/apps/src/lib/api/transport-web-commands/account.ts
index dbb60cca6..b1b806951 100644
--- a/apps/src/lib/api/transport-web-commands/account.ts
+++ b/apps/src/lib/api/transport-web-commands/account.ts
@@ -17,6 +17,10 @@ export function createAccountWebCommands(postWebRpc: WebRpcCaller): Record<strin
       direct: (params, options) => exportAccountsViaBrowser(postWebRpc, asRecord(params), options),
     },
     service_account_warmup: { rpcMethod: "account/warmup" },
+    service_account_proxy_get: { rpcMethod: "account/proxy/get" },
+    service_account_proxy_set: { rpcMethod: "account/proxy/set" },
+    service_account_proxy_clear: { rpcMethod: "account/proxy/clear" },
+    service_account_proxy_test: { rpcMethod: "account/proxy/test" },
     service_account_manager_status: { rpcMethod: "accountManager/status" },
     service_account_manager_session_current: { rpcMethod: "accountManager/session/current" },
     service_account_manager_profile_update: { rpcMethod: "accountManager/profile/update" },
diff --git a/apps/src/lib/i18n/messages/ru.ts b/apps/src/lib/i18n/messages/ru.ts
index ba35c1360..3e5e2cd1a 100644
--- a/apps/src/lib/i18n/messages/ru.ts
+++ b/apps/src/lib/i18n/messages/ru.ts
@@ -15,6 +15,18 @@ import { RU_PLATFORM_MODE_MESSAGES } from "./sections/ru-platform-mode";
 import { RU_RUNTIME_UI_MESSAGES } from "./sections/ru-runtime-ui";
 
 export const RU_MESSAGES: MessageCatalog = {
+	...RU_ACCESS_CONTROL_MESSAGES,
+	...RU_ACCOUNT_MANAGER_MESSAGES,
+	...RU_ACCOUNTS_MESSAGES,
+	...RU_API_KEYS_MESSAGES,
+	...RU_AGGREGATE_API_MESSAGES,
+	...RU_DASHBOARD_MESSAGES,
+	...RU_DYNAMIC_UI_MESSAGES,
+	...RU_MODEL_CATALOG_MESSAGES,
+	...RU_MODEL_GROUPS_MESSAGES,
+	...RU_MODELS_MESSAGES,
+	...RU_PLATFORM_MODE_MESSAGES,
+	...RU_RUNTIME_UI_MESSAGES,
 	仪表盘: "Обзор",
 	概览: "Обзор",
 	资源接入: "Ресурсы",
@@ -2090,5 +2102,4 @@ export const RU_MESSAGES: MessageCatalog = {
 	仅网关流量: "Только трафик шлюза",
 	"账号直连模式下不会产生请求日志，如需记录请求请切换到本地网关模式。":
 		"В режиме прямого аккаунта журналы запросов не создаются; если нужен журнал, переключитесь на режим локального шлюза.",
-	...RU_PLATFORM_MODE_MESSAGES,
 };
diff --git a/apps/src/lib/i18n/messages/sections/en-accounts.ts b/apps/src/lib/i18n/messages/sections/en-accounts.ts
index e86ce9035..d3af7046e 100644
--- a/apps/src/lib/i18n/messages/sections/en-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/en-accounts.ts
@@ -25,12 +25,36 @@ export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
     "Only used for quota pool ownership statistics. Leave blank to make this account effective for all API-available models.",
   "代理地区不受支持，已暂停账号刷新":
     "The proxy region is not supported. Account refresh has been paused.",
+  "保存账号代理": "Save account proxy",
+  "保存账号代理失败": "Failed to save account proxy",
+  "测试账号代理": "Test account proxy",
+  "测试账号代理失败": "Failed to test account proxy",
+  "测试中": "Testing",
+  "未测试": "Untested",
+  "测试失败": "Test failed",
+  "测试状态": "Test status",
+  "从未检查": "Never checked",
+  "代理地址": "Proxy URL",
+  "地址无效": "Invalid URL",
   "刷新 AT/RT": "Refresh AT/RT",
   "刷新 AT/RT 失败": "Failed to refresh AT/RT",
   "刷新全部 AT/RT": "Refresh all AT/RT",
   "刷新用量": "Refresh usage",
   "刷新登录凭证返回 401，需要重新登录":
     "Refreshing login credentials returned 401. Log in again.",
+  "读取账号代理": "Read account proxy",
+  "读取账号代理失败": "Failed to read account proxy",
+  "服务未连接，暂时无法读取账号代理":
+    "Service is not connected, account proxy cannot be read yet",
+  "默认路由": "Default route",
+  "启用后，该账号会优先使用这里的代理地址。":
+    "When enabled, this account uses this proxy URL before other routing.",
+  "启用账号代理": "Enable account proxy",
+  "清除账号代理": "Clear account proxy",
+  "清除账号代理失败": "Failed to clear account proxy",
+  "为单个 OpenAI 账号配置本地代理。":
+    "Configure a local proxy for one OpenAI account.",
+  "延迟": "Latency",
   "原因码": "Reason code",
   "容量覆盖": "Capacity override",
   "当前没有匹配所选状态的账号": "No accounts match the selected statuses",
@@ -62,6 +86,12 @@ export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
   "确认清理": "Confirm cleanup",
   "缺少授权 Token": "Missing auth token",
   "账号 AT/RT 已刷新": "Account AT/RT refreshed",
+  "账号代理": "Account proxy",
+  "账号代理测试通过": "Account proxy test passed",
+  "账号代理测试未通过": "Account proxy test did not pass",
+  "账号代理已保存": "Account proxy saved",
+  "账号代理已关闭": "Account proxy disabled",
+  "账号代理已清除": "Account proxy cleared",
   "账号已停用": "Account deactivated",
   "账号或工作区被停用的账号": "Accounts or workspaces that were deactivated",
   "状态字段为 unknown 的账号": "Accounts whose status field is unknown",
@@ -73,6 +103,9 @@ export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
     "Choose an export mode. If accounts are selected, only the selected items will be exported.",
   "选择要删除的账号状态；删除后不可恢复。":
     "Choose the account statuses to delete. Deletion cannot be undone.",
+  "支持 http、https、socks5、socks5h；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
+    "Supports http, https, socks5, and socks5h. For sing-box mixed inbound, usually enter http://127.0.0.1:port.",
+  "最近检查": "Last check",
   "这里展示账号套餐接口同步回来的套餐状态与时间信息。":
     "This shows plan status and time information synced from the account plan API.",
   "额度容量必须是大于 0 的数字，留空表示未覆盖":
diff --git a/apps/src/lib/i18n/messages/sections/ko-accounts.ts b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
index 629830313..def514849 100644
--- a/apps/src/lib/i18n/messages/sections/ko-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
@@ -25,12 +25,36 @@ export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
     "한도 풀 귀속 통계에만 사용됩니다. 비워 두면 이 계정이 모든 API 사용 가능 모델에 적용됩니다.",
   "代理地区不受支持，已暂停账号刷新":
     "프록시 지역이 지원되지 않아 계정 새로고침을 일시 중지했습니다.",
+  "保存账号代理": "계정 프록시 저장",
+  "保存账号代理失败": "계정 프록시 저장 실패",
+  "测试账号代理": "계정 프록시 테스트",
+  "测试账号代理失败": "계정 프록시 테스트 실패",
+  "测试中": "테스트 중",
+  "未测试": "미테스트",
+  "测试失败": "테스트 실패",
+  "测试状态": "테스트 상태",
+  "从未检查": "아직 확인하지 않음",
+  "代理地址": "프록시 주소",
+  "地址无效": "주소가 유효하지 않음",
   "刷新 AT/RT": "AT/RT 새로고침",
   "刷新 AT/RT 失败": "AT/RT 새로고침 실패",
   "刷新全部 AT/RT": "전체 AT/RT 새로고침",
   "刷新用量": "사용량 새로고침",
   "刷新登录凭证返回 401，需要重新登录":
     "로그인 자격 증명 새로고침이 401을 반환했습니다. 다시 로그인하세요.",
+  "读取账号代理": "계정 프록시 읽기",
+  "读取账号代理失败": "계정 프록시 읽기 실패",
+  "服务未连接，暂时无法读取账号代理":
+    "서비스가 연결되지 않아 아직 계정 프록시를 읽을 수 없습니다",
+  "默认路由": "기본 라우트",
+  "启用后，该账号会优先使用这里的代理地址。":
+    "활성화하면 이 계정은 이 프록시 주소를 우선 사용합니다.",
+  "启用账号代理": "계정 프록시 활성화",
+  "清除账号代理": "계정 프록시 지우기",
+  "清除账号代理失败": "계정 프록시 지우기 실패",
+  "为单个 OpenAI 账号配置本地代理。":
+    "단일 OpenAI 계정에 로컬 프록시를 설정합니다.",
+  "延迟": "지연 시간",
   "原因码": "원인 코드",
   "容量覆盖": "용량 오버라이드",
   "当前没有匹配所选状态的账号": "선택한 상태와 일치하는 계정이 없습니다",
@@ -62,6 +86,12 @@ export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
   "确认清理": "정리 확인",
   "缺少授权 Token": "인증 Token이 없습니다",
   "账号 AT/RT 已刷新": "계정 AT/RT가 새로고침되었습니다",
+  "账号代理": "계정 프록시",
+  "账号代理测试通过": "계정 프록시 테스트 통과",
+  "账号代理测试未通过": "계정 프록시 테스트 미통과",
+  "账号代理已保存": "계정 프록시가 저장되었습니다",
+  "账号代理已关闭": "계정 프록시가 꺼졌습니다",
+  "账号代理已清除": "계정 프록시가 지워졌습니다",
   "账号已停用": "계정이 비활성화되었습니다",
   "账号或工作区被停用的账号": "계정 또는 워크스페이스가 비활성화된 계정",
   "状态字段为 unknown 的账号": "상태 필드가 unknown인 계정",
@@ -73,6 +103,9 @@ export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
     "내보내기 방식을 선택하세요. 계정을 선택했다면 현재 선택 항목만 내보냅니다.",
   "选择要删除的账号状态；删除后不可恢复。":
     "삭제할 계정 상태를 선택하세요. 삭제 후에는 복구할 수 없습니다.",
+  "支持 http、https、socks5、socks5h；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
+    "http, https, socks5, socks5h를 지원합니다. sing-box mixed inbound는 보통 http://127.0.0.1:포트 를 입력합니다.",
+  "最近检查": "최근 확인",
   "这里展示账号套餐接口同步回来的套餐状态与时间信息。":
     "계정 플랜 API에서 동기화된 플랜 상태와 시간 정보를 표시합니다.",
   "额度容量必须是大于 0 的数字，留空表示未覆盖":

From a7a5d6e0aa1e86108cdeea493f50273693355c5a Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Tue, 9 Jun 2026 19:43:19 +0300
Subject: [PATCH 3/9] feat(service): route account token refresh through proxy
 with parity tests

---
 crates/service/src/account/account_proxy.rs   |   3 +-
 crates/service/src/account/account_warmup.rs  |  36 +-
 crates/service/src/auth/auth_account.rs       |  40 +-
 .../src/gateway/auth/token_exchange.rs        |  31 +-
 .../src/gateway/core/runtime_config.rs        |  29 +-
 .../core/tests/runtime_config_tests.rs        |  18 +
 crates/service/src/gateway/mod.rs             |  38 +-
 crates/service/src/usage/refresh/mod.rs       |  45 +-
 .../src/usage/tests/usage_http_tests.rs       | 415 ++++++++++++++++++
 crates/service/src/usage/usage_http.rs        | 297 ++++++++++++-
 .../service/src/usage/usage_token_refresh.rs  |  27 +-
 11 files changed, 890 insertions(+), 89 deletions(-)

diff --git a/crates/service/src/account/account_proxy.rs b/crates/service/src/account/account_proxy.rs
index 07bc60497..223a71b63 100644
--- a/crates/service/src/account/account_proxy.rs
+++ b/crates/service/src/account/account_proxy.rs
@@ -446,7 +446,8 @@ mod tests {
     use super::{
         normalize_supported_proxy_url, resolve_account_proxy_mode_from_storage,
         test_account_proxy_settings_with_checker, AccountProxyMode, AccountProxySettingsResponse,
-        STATUS_INVALID_URL, STATUS_NOT_CONFIGURED, STATUS_RUNTIME_ERROR, STATUS_UNCHECKED,
+        STATUS_CHECKING, STATUS_INVALID_URL, STATUS_NOT_CONFIGURED, STATUS_RUNTIME_ERROR,
+        STATUS_UNCHECKED,
     };
     use codexmanager_core::storage::{now_ts, Account, Storage};
     use std::fs;
diff --git a/crates/service/src/account/account_warmup.rs b/crates/service/src/account/account_warmup.rs
index ed30dff5b..d03391810 100644
--- a/crates/service/src/account/account_warmup.rs
+++ b/crates/service/src/account/account_warmup.rs
@@ -4,7 +4,6 @@ use reqwest::header::{HeaderMap, HeaderName, HeaderValue};
 use serde::Serialize;
 use serde_json::json;
 use std::io::{BufRead, BufReader, Read};
-use std::time::Duration;
 use std::time::Instant;
 
 use crate::account_status::mark_account_unavailable_for_auth_error;
@@ -17,8 +16,6 @@ const DEFAULT_WARMUP_MESSAGE: &str = "hi";
 const FALLBACK_WARMUP_MESSAGE: &str = "你好";
 const WARMUP_UPSTREAM_URL: &str = "https://chatgpt.com/backend-api/codex/responses";
 const DEFAULT_WARMUP_MODEL: &str = "gpt-5.3-codex";
-const WARMUP_CONNECT_TIMEOUT: Duration = Duration::from_secs(15);
-const WARMUP_TOTAL_TIMEOUT: Duration = Duration::from_secs(90);
 
 #[derive(Debug, Clone, Serialize)]
 #[serde(rename_all = "camelCase")]
@@ -60,13 +57,24 @@ pub(crate) fn warmup_accounts(
         return Err("no account available for warmup".to_string());
     }
 
-    let client = build_warmup_client()?;
     let warmup_message = normalize_warmup_message(message);
     let warmup_model = resolve_warmup_model_slug(&storage);
     let mut results = Vec::with_capacity(accounts.len());
     let mut succeeded = 0usize;
 
     for account in accounts.drain(..) {
+        let client = match build_warmup_client_for_account(&account.id) {
+            Ok(client) => client,
+            Err(err) => {
+                results.push(AccountWarmupItemResult {
+                    account_id: account.id,
+                    account_name: account.label,
+                    ok: false,
+                    message: err,
+                });
+                continue;
+            }
+        };
         let item = warmup_single_account(
             &storage,
             &client,
@@ -125,20 +133,12 @@ fn normalize_warmup_message(message: &str) -> String {
     }
 }
 
-fn build_warmup_client() -> Result<Client, String> {
-    let builder = Client::builder()
-        .connect_timeout(WARMUP_CONNECT_TIMEOUT)
-        .timeout(WARMUP_TOTAL_TIMEOUT)
-        .pool_max_idle_per_host(4)
-        .pool_idle_timeout(Some(Duration::from_secs(60)))
-        .user_agent(crate::gateway::current_codex_user_agent());
-    let builder = crate::gateway::apply_blocking_upstream_proxy(
-        builder,
-        crate::gateway::current_upstream_proxy_url().as_deref(),
-        "warmup_http_proxy_invalid",
-    );
-    builder
-        .build()
+fn build_warmup_client_for_account(account_id: &str) -> Result<Client, String> {
+    let normalized = account_id.trim();
+    if normalized.is_empty() {
+        return Err("build warmup client failed: missing account id".to_string());
+    }
+    crate::gateway::fresh_upstream_client_for_account(normalized)
         .map_err(|err| format!("build warmup client failed: {err}"))
 }
 
diff --git a/crates/service/src/auth/auth_account.rs b/crates/service/src/auth/auth_account.rs
index 9c5658d4a..75964bc3f 100644
--- a/crates/service/src/auth/auth_account.rs
+++ b/crates/service/src/auth/auth_account.rs
@@ -14,7 +14,10 @@ use crate::account_plan::resolve_effective_account_plan;
 use crate::account_status::mark_account_unavailable_for_auth_error;
 use crate::app_settings::{get_persisted_app_setting, save_persisted_app_setting};
 use crate::storage_helpers::open_storage;
-use crate::usage_http::fetch_account_subscription;
+use crate::usage_http::{
+    fetch_account_subscription, fetch_account_subscription_with_explicit_proxy,
+    log_account_data_route,
+};
 use crate::usage_token_refresh::{refresh_and_persist_access_token, token_refresh_ahead_secs};
 
 const CURRENT_AUTH_ACCOUNT_ID_KEY: &str = "auth.current_account_id";
@@ -330,12 +333,35 @@ pub(crate) fn refresh_current_chatgpt_auth_tokens(
     let plan_type_resolution = resolve_plan_type_resolution(&token, access_claims.as_ref());
     let base_url = std::env::var("CODEXMANAGER_USAGE_BASE_URL")
         .unwrap_or_else(|_| "https://chatgpt.com".to_string());
-    let subscription = fetch_account_subscription(
-        &base_url,
-        &token.access_token,
-        &chatgpt_account_id,
-        workspace_id.as_deref(),
-    )?;
+    let proxy_mode =
+        crate::account_proxy::resolve_account_proxy_mode(refreshed_account.id.as_str());
+    log_account_data_route(
+        "subscription",
+        refreshed_account.id.as_str(),
+        &proxy_mode,
+        "accounts_check",
+        false,
+    );
+    let subscription = match &proxy_mode {
+        crate::account_proxy::AccountProxyMode::Disabled => fetch_account_subscription(
+            &base_url,
+            &token.access_token,
+            &chatgpt_account_id,
+            workspace_id.as_deref(),
+        )?,
+        crate::account_proxy::AccountProxyMode::Explicit { proxy_url } => {
+            fetch_account_subscription_with_explicit_proxy(
+                &base_url,
+                &token.access_token,
+                &chatgpt_account_id,
+                workspace_id.as_deref(),
+                proxy_url,
+            )?
+        }
+        crate::account_proxy::AccountProxyMode::Invalid { error, .. } => {
+            return Err(error.clone());
+        }
+    };
     storage
         .upsert_account_subscription(
             &refreshed_account.id,
diff --git a/crates/service/src/gateway/auth/token_exchange.rs b/crates/service/src/gateway/auth/token_exchange.rs
index 479c0a78b..46da41f97 100644
--- a/crates/service/src/gateway/auth/token_exchange.rs
+++ b/crates/service/src/gateway/auth/token_exchange.rs
@@ -6,7 +6,9 @@ use codexmanager_core::storage::{now_ts, Account, Storage, Token};
 
 use crate::account_status::mark_account_unavailable_for_auth_error;
 use crate::auth_tokens;
-use crate::usage_http::refresh_access_token;
+use crate::usage_http::{
+    log_account_data_route, refresh_access_token, refresh_access_token_with_explicit_proxy,
+};
 
 const ACCOUNT_TOKEN_EXCHANGE_LOCK_TTL_SECS: i64 = 30 * 60;
 const ACCOUNT_TOKEN_EXCHANGE_LOCK_CLEANUP_INTERVAL_SECS: i64 = 60;
@@ -266,7 +268,32 @@ pub(super) fn resolve_openai_bearer_token(
         Ok(token) => return Ok(token),
         Err(exchange_err) => {
             if !token.refresh_token.trim().is_empty() {
-                match refresh_access_token(&issuer, &client_id, &token.refresh_token) {
+                let proxy_mode =
+                    crate::account_proxy::resolve_account_proxy_mode(account.id.as_str());
+                log_account_data_route(
+                    "api_key_token_exchange",
+                    account.id.as_str(),
+                    &proxy_mode,
+                    "refresh_token",
+                    true,
+                );
+                let refresh_result = match &proxy_mode {
+                    crate::account_proxy::AccountProxyMode::Disabled => {
+                        refresh_access_token(&issuer, &client_id, &token.refresh_token)
+                    }
+                    crate::account_proxy::AccountProxyMode::Explicit { proxy_url } => {
+                        refresh_access_token_with_explicit_proxy(
+                            &issuer,
+                            &client_id,
+                            &token.refresh_token,
+                            proxy_url,
+                        )
+                    }
+                    crate::account_proxy::AccountProxyMode::Invalid { error, .. } => {
+                        Err(error.clone())
+                    }
+                };
+                match refresh_result {
                     Ok(refreshed) => {
                         token.access_token = refreshed.access_token;
                         if let Some(refresh_token) = refreshed.refresh_token {
diff --git a/crates/service/src/gateway/core/runtime_config.rs b/crates/service/src/gateway/core/runtime_config.rs
index dfbe4cc2a..8e3e25d1b 100644
--- a/crates/service/src/gateway/core/runtime_config.rs
+++ b/crates/service/src/gateway/core/runtime_config.rs
@@ -326,24 +326,6 @@ fn build_async_upstream_client() -> reqwest::Client {
     build_async_upstream_client_with_proxy(proxy_url.as_deref())
 }
 
-pub(crate) fn apply_blocking_upstream_proxy(
-    mut builder: reqwest::blocking::ClientBuilder,
-    proxy_url: Option<&str>,
-    invalid_event: &str,
-) -> reqwest::blocking::ClientBuilder {
-    if let Some(proxy_url) = proxy_url.map(str::trim).filter(|value| !value.is_empty()) {
-        match Proxy::all(proxy_url) {
-            Ok(proxy) => {
-                builder = builder.proxy(proxy);
-            }
-            Err(err) => {
-                log::warn!("event={} proxy={} err={}", invalid_event, proxy_url, err);
-            }
-        }
-    }
-    builder
-}
-
 pub(crate) fn apply_async_upstream_proxy(
     mut builder: reqwest::ClientBuilder,
     proxy_url: Option<&str>,
@@ -1802,6 +1784,9 @@ fn load_account_proxy_client_cache_entry_from_storage(
     let Some(settings) = settings else {
         return AccountProxyClientCacheEntry::NotConfigured;
     };
+    if !settings.enabled {
+        return AccountProxyClientCacheEntry::NotConfigured;
+    }
     let Some(proxy_url) = settings
         .proxy_url
         .as_deref()
@@ -1809,11 +1794,11 @@ fn load_account_proxy_client_cache_entry_from_storage(
         .filter(|value| !value.is_empty())
         .map(ToString::to_string)
     else {
-        return AccountProxyClientCacheEntry::NotConfigured;
+        return AccountProxyClientCacheEntry::Invalid {
+            proxy_url: String::new(),
+            error: "missing proxy URL".to_string(),
+        };
     };
-    if !settings.enabled {
-        return AccountProxyClientCacheEntry::NotConfigured;
-    }
 
     let normalized_proxy_url = match normalize_upstream_proxy_url(Some(proxy_url.as_str())) {
         Ok(Some(proxy_url)) => proxy_url,
diff --git a/crates/service/src/gateway/core/tests/runtime_config_tests.rs b/crates/service/src/gateway/core/tests/runtime_config_tests.rs
index 64ee3af67..bf543196b 100644
--- a/crates/service/src/gateway/core/tests/runtime_config_tests.rs
+++ b/crates/service/src/gateway/core/tests/runtime_config_tests.rs
@@ -419,6 +419,24 @@ fn upstream_client_for_account_fails_closed_for_invalid_explicit_proxy() {
     assert!(err.contains("acc-invalid"));
 }
 
+#[test]
+fn upstream_client_for_account_fails_closed_for_enabled_proxy_without_url() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("runtime-account-proxy-empty");
+    seed_account(db.path(), "acc-empty");
+    seed_account_proxy(db.path(), "acc-empty", true, None);
+    let _global_guard = EnvGuard::set(ENV_UPSTREAM_PROXY_URL, "http://127.0.0.1:7002");
+    let _pool_guard = EnvGuard::set(ENV_PROXY_LIST, "http://127.0.0.1:7003");
+
+    reload_from_env();
+
+    let err =
+        upstream_client_for_account("acc-empty").expect_err("fail closed for missing proxy URL");
+    assert!(err.contains("fail-closed"));
+    assert!(err.contains("acc-empty"));
+    assert!(err.contains("missing proxy URL"));
+}
+
 #[test]
 fn account_proxy_set_and_clear_invalidate_gateway_cache() {
     let _guard = crate::test_env_guard();
diff --git a/crates/service/src/gateway/mod.rs b/crates/service/src/gateway/mod.rs
index 9cde286df..6dbbff2e7 100644
--- a/crates/service/src/gateway/mod.rs
+++ b/crates/service/src/gateway/mod.rs
@@ -389,10 +389,8 @@ pub(crate) use runtime_config::front_proxy_max_body_bytes;
 pub(crate) use runtime_config::invalidate_account_proxy_client_cache as invalidate_account_proxy_cache;
 pub(crate) use runtime_config::{account_max_inflight_limit, set_account_max_inflight_limit};
 use runtime_config::{
-    async_upstream_client_for_account, fresh_async_upstream_client_for_account,
-    fresh_upstream_client_for_account, request_gate_wait_timeout, trace_body_preview_max_bytes,
-    upstream_client_for_account, upstream_stream_timeout, upstream_total_timeout,
-    DEFAULT_GATEWAY_DEBUG,
+    request_gate_wait_timeout, trace_body_preview_max_bytes, upstream_stream_timeout,
+    upstream_total_timeout, DEFAULT_GATEWAY_DEBUG,
 };
 use selection::collect_gateway_candidates;
 pub(crate) use selection::{
@@ -794,14 +792,6 @@ pub(crate) fn current_upstream_proxy_url() -> Option<String> {
     runtime_config::upstream_proxy_url()
 }
 
-pub(crate) fn apply_blocking_upstream_proxy(
-    builder: reqwest::blocking::ClientBuilder,
-    proxy_url: Option<&str>,
-    invalid_event: &str,
-) -> reqwest::blocking::ClientBuilder {
-    runtime_config::apply_blocking_upstream_proxy(builder, proxy_url, invalid_event)
-}
-
 pub(crate) fn apply_async_upstream_proxy(
     builder: reqwest::ClientBuilder,
     proxy_url: Option<&str>,
@@ -814,6 +804,30 @@ pub(crate) fn current_upstream_proxy_url_for_account(account_id: &str) -> Option
     runtime_config::upstream_proxy_url_for_account(account_id)
 }
 
+pub(crate) fn fresh_upstream_client_for_account(
+    account_id: &str,
+) -> Result<reqwest::blocking::Client, String> {
+    runtime_config::fresh_upstream_client_for_account(account_id)
+}
+
+pub(crate) fn upstream_client_for_account(
+    account_id: &str,
+) -> Result<reqwest::blocking::Client, String> {
+    runtime_config::upstream_client_for_account(account_id)
+}
+
+pub(crate) fn async_upstream_client_for_account(
+    account_id: &str,
+) -> Result<reqwest::Client, String> {
+    runtime_config::async_upstream_client_for_account(account_id)
+}
+
+pub(crate) fn fresh_async_upstream_client_for_account(
+    account_id: &str,
+) -> Result<reqwest::Client, String> {
+    runtime_config::fresh_async_upstream_client_for_account(account_id)
+}
+
 /// 函数 `set_upstream_proxy_url`
 ///
 /// 作者: gaohongshun
diff --git a/crates/service/src/usage/refresh/mod.rs b/crates/service/src/usage/refresh/mod.rs
index e000902db..91da05d60 100644
--- a/crates/service/src/usage/refresh/mod.rs
+++ b/crates/service/src/usage/refresh/mod.rs
@@ -14,7 +14,10 @@ use crate::usage_account_meta::{
     build_workspace_map_from_accounts, clean_header_value, derive_account_meta, patch_account_meta,
     patch_account_meta_cached, workspace_header_for_account,
 };
-use crate::usage_http::{fetch_account_subscription, fetch_usage_snapshot};
+use crate::usage_http::{
+    fetch_account_subscription, fetch_account_subscription_with_explicit_proxy,
+    fetch_usage_snapshot, fetch_usage_snapshot_with_explicit_proxy, log_account_data_route,
+};
 use crate::usage_keepalive::{is_keepalive_error_ignorable, run_gateway_keepalive_once};
 use crate::usage_scheduler::{
     parse_interval_secs, DEFAULT_GATEWAY_KEEPALIVE_FAILURE_BACKOFF_MAX_SECS,
@@ -647,9 +650,32 @@ fn refresh_account_snapshot(
     workspace_id: Option<&str>,
     subscription_account_id: Option<&str>,
 ) -> Result<UsageAvailabilityStatus, String> {
+    let proxy_mode = crate::account_proxy::resolve_account_proxy_mode(account_id);
     if let Some(subscription_account_id) = subscription_account_id {
-        let subscription =
-            fetch_account_subscription(base_url, bearer, subscription_account_id, workspace_id)?;
+        log_account_data_route(
+            "subscription",
+            account_id,
+            &proxy_mode,
+            "accounts_check",
+            false,
+        );
+        let subscription = match &proxy_mode {
+            crate::account_proxy::AccountProxyMode::Disabled => {
+                fetch_account_subscription(base_url, bearer, subscription_account_id, workspace_id)?
+            }
+            crate::account_proxy::AccountProxyMode::Explicit { proxy_url } => {
+                fetch_account_subscription_with_explicit_proxy(
+                    base_url,
+                    bearer,
+                    subscription_account_id,
+                    workspace_id,
+                    proxy_url,
+                )?
+            }
+            crate::account_proxy::AccountProxyMode::Invalid { error, .. } => {
+                return Err(error.clone());
+            }
+        };
         storage
             .upsert_account_subscription(
                 account_id,
@@ -662,7 +688,18 @@ fn refresh_account_snapshot(
             .map_err(|err| format!("store account subscription failed: {err}"))?;
     }
 
-    let value = fetch_usage_snapshot(base_url, bearer, workspace_id)?;
+    log_account_data_route("usage", account_id, &proxy_mode, "usage", true);
+    let value = match &proxy_mode {
+        crate::account_proxy::AccountProxyMode::Disabled => {
+            fetch_usage_snapshot(base_url, bearer, workspace_id)?
+        }
+        crate::account_proxy::AccountProxyMode::Explicit { proxy_url } => {
+            fetch_usage_snapshot_with_explicit_proxy(base_url, bearer, workspace_id, proxy_url)?
+        }
+        crate::account_proxy::AccountProxyMode::Invalid { error, .. } => {
+            return Err(error.clone());
+        }
+    };
     let status = classify_usage_status_from_snapshot_value(&value);
     store_usage_snapshot(storage, account_id, value)?;
     Ok(status)
diff --git a/crates/service/src/usage/tests/usage_http_tests.rs b/crates/service/src/usage/tests/usage_http_tests.rs
index bebcdffe7..f48f89c04 100644
--- a/crates/service/src/usage/tests/usage_http_tests.rs
+++ b/crates/service/src/usage/tests/usage_http_tests.rs
@@ -2,9 +2,11 @@ use super::{
     build_usage_request_headers, summarize_usage_error_response, usage_http_client,
     CHATGPT_ACCOUNT_ID_HEADER_NAME,
 };
+use codexmanager_core::storage::{now_ts, Account, Storage};
 use reqwest::header::{HeaderMap, HeaderValue};
 use reqwest::Client;
 use reqwest::StatusCode;
+use std::path::PathBuf;
 use std::sync::MutexGuard;
 use std::thread;
 use std::time::Duration;
@@ -21,6 +23,209 @@ struct RecordedSubscriptionRequest {
     accept: Option<String>,
 }
 
+struct EnvVarRestore {
+    key: &'static str,
+    value: Option<String>,
+}
+
+impl EnvVarRestore {
+    fn set(key: &'static str, value: &str) -> Self {
+        let restore = Self {
+            key,
+            value: std::env::var(key).ok(),
+        };
+        std::env::set_var(key, value);
+        restore
+    }
+
+    fn remove(key: &'static str) -> Self {
+        let restore = Self {
+            key,
+            value: std::env::var(key).ok(),
+        };
+        std::env::remove_var(key);
+        restore
+    }
+}
+
+impl Drop for EnvVarRestore {
+    fn drop(&mut self) {
+        match self.value.as_deref() {
+            Some(value) => std::env::set_var(self.key, value),
+            None => std::env::remove_var(self.key),
+        }
+    }
+}
+
+struct TestDbGuard {
+    previous_db_path: Option<String>,
+    db_path: PathBuf,
+}
+
+impl TestDbGuard {
+    fn new(label: &str) -> Self {
+        let db_path = std::env::temp_dir().join(format!(
+            "codexmanager-usage-http-{label}-{}-{}.sqlite",
+            std::process::id(),
+            codexmanager_core::storage::now_ts()
+        ));
+        let previous_db_path = std::env::var("CODEXMANAGER_DB_PATH").ok();
+        std::env::set_var("CODEXMANAGER_DB_PATH", &db_path);
+        let storage = Storage::open(&db_path).expect("open test storage");
+        storage.init().expect("init test storage");
+        Self {
+            previous_db_path,
+            db_path,
+        }
+    }
+}
+
+impl Drop for TestDbGuard {
+    fn drop(&mut self) {
+        match self.previous_db_path.as_deref() {
+            Some(value) => std::env::set_var("CODEXMANAGER_DB_PATH", value),
+            None => std::env::remove_var("CODEXMANAGER_DB_PATH"),
+        }
+        let _ = std::fs::remove_file(&self.db_path);
+    }
+}
+
+fn seed_account_proxy(db_path: &PathBuf, account_id: &str, enabled: bool, proxy_url: Option<&str>) {
+    let storage = Storage::open(db_path).expect("reopen test storage");
+    let now = now_ts();
+    storage
+        .insert_account(&Account {
+            id: account_id.to_string(),
+            label: account_id.to_string(),
+            issuer: "issuer".to_string(),
+            chatgpt_account_id: None,
+            workspace_id: None,
+            group_name: None,
+            sort: 0,
+            status: "active".to_string(),
+            created_at: now,
+            updated_at: now,
+        })
+        .expect("seed account");
+    storage
+        .upsert_account_proxy_settings(
+            account_id,
+            enabled,
+            proxy_url,
+            "unchecked",
+            None,
+            None,
+            None,
+        )
+        .expect("seed account proxy");
+    crate::gateway::invalidate_account_proxy_cache(account_id);
+}
+
+fn spawn_recording_http_proxy(
+    response_body: &'static str,
+    content_type: &'static str,
+) -> (
+    String,
+    std::sync::mpsc::Receiver<String>,
+    thread::JoinHandle<()>,
+) {
+    use std::io::{Read, Write};
+    use std::net::TcpListener;
+
+    let listener = TcpListener::bind("127.0.0.1:0").expect("bind mock HTTP proxy");
+    let proxy_addr = listener.local_addr().expect("mock HTTP proxy addr");
+    let (request_tx, request_rx) = std::sync::mpsc::channel();
+    let handle = thread::spawn(move || {
+        let (mut client, _) = listener.accept().expect("accept proxy client");
+        client
+            .set_read_timeout(Some(Duration::from_secs(5)))
+            .expect("set proxy read timeout");
+        let mut request = Vec::new();
+        let mut buf = [0_u8; 1024];
+        while !request.windows(4).any(|window| window == b"\r\n\r\n") {
+            let read = client.read(&mut buf).expect("read proxy request");
+            if read == 0 {
+                break;
+            }
+            request.extend_from_slice(&buf[..read]);
+        }
+        let request_text = String::from_utf8_lossy(request.as_slice()).to_string();
+        request_tx.send(request_text).expect("send proxy request");
+        let response = format!(
+            "HTTP/1.1 200 OK\r\nContent-Type: {content_type}\r\nContent-Length: {}\r\nConnection: close\r\n\r\n{response_body}",
+            response_body.len()
+        );
+        client
+            .write_all(response.as_bytes())
+            .expect("write proxy response");
+        client.flush().expect("flush proxy response");
+    });
+    (format!("http://{proxy_addr}"), request_rx, handle)
+}
+
+fn spawn_timeout_recording_http_proxy(
+    response_body: &'static str,
+    content_type: &'static str,
+    accept_timeout: Duration,
+) -> (
+    String,
+    std::sync::mpsc::Receiver<String>,
+    thread::JoinHandle<()>,
+) {
+    use std::io::{Read, Write};
+    use std::net::TcpListener;
+    use std::time::Instant;
+
+    let listener = TcpListener::bind("127.0.0.1:0").expect("bind timeout HTTP proxy");
+    listener
+        .set_nonblocking(true)
+        .expect("set timeout proxy nonblocking");
+    let proxy_addr = listener.local_addr().expect("timeout HTTP proxy addr");
+    let (request_tx, request_rx) = std::sync::mpsc::channel();
+    let handle = thread::spawn(move || {
+        let started_at = Instant::now();
+        loop {
+            match listener.accept() {
+                Ok((mut client, _)) => {
+                    client
+                        .set_read_timeout(Some(Duration::from_secs(5)))
+                        .expect("set timeout proxy read timeout");
+                    let mut request = Vec::new();
+                    let mut buf = [0_u8; 1024];
+                    while !request.windows(4).any(|window| window == b"\r\n\r\n") {
+                        let read = client.read(&mut buf).expect("read timeout proxy request");
+                        if read == 0 {
+                            break;
+                        }
+                        request.extend_from_slice(&buf[..read]);
+                    }
+                    let request_text = String::from_utf8_lossy(request.as_slice()).to_string();
+                    request_tx
+                        .send(request_text)
+                        .expect("send timeout proxy request");
+                    let response = format!(
+                        "HTTP/1.1 200 OK\r\nContent-Type: {content_type}\r\nContent-Length: {}\r\nConnection: close\r\n\r\n{response_body}",
+                        response_body.len()
+                    );
+                    client
+                        .write_all(response.as_bytes())
+                        .expect("write timeout proxy response");
+                    client.flush().expect("flush timeout proxy response");
+                    return;
+                }
+                Err(err) if err.kind() == std::io::ErrorKind::WouldBlock => {
+                    if started_at.elapsed() >= accept_timeout {
+                        return;
+                    }
+                    thread::sleep(Duration::from_millis(20));
+                }
+                Err(err) => panic!("accept timeout proxy client failed: {err}"),
+            }
+        }
+    });
+    (format!("http://{proxy_addr}"), request_rx, handle)
+}
+
 /// 函数 `usage_header_runtime_scope`
 ///
 /// 作者: gaohongshun
@@ -733,6 +938,216 @@ fn refresh_access_token_mock_region_blocked_response_surfaces_marker() {
     assert!(super::is_refresh_token_region_blocked_error_message(&err));
 }
 
+#[test]
+fn fetch_usage_snapshot_with_explicit_proxy_uses_explicit_proxy_before_global_proxy() {
+    let _guard = crate::test_env_guard();
+    let _global_proxy = EnvVarRestore::set("CODEXMANAGER_UPSTREAM_PROXY_URL", "http://127.0.0.1:1");
+    super::reload_usage_http_client_from_env();
+    let (proxy_url, request_rx, proxy_handle) = spawn_recording_http_proxy(
+        r#"{"gpt4":{"usedPercent":12.5,"windowMinutes":180}}"#,
+        "application/json",
+    );
+
+    let snapshot = super::fetch_usage_snapshot_with_explicit_proxy(
+        "http://chatgpt.test",
+        "token_123",
+        Some("workspace_123"),
+        proxy_url.as_str(),
+    )
+    .expect("fetch usage snapshot");
+    let request = request_rx
+        .recv_timeout(Duration::from_secs(5))
+        .expect("capture usage proxy request");
+    proxy_handle.join().expect("join usage proxy");
+    let request = request.to_ascii_lowercase();
+
+    assert!(request.starts_with("get http://chatgpt.test/"));
+    assert!(request.contains("authorization: bearer token_123"));
+    assert!(request.contains("chatgpt-account-id: workspace_123"));
+    assert_eq!(snapshot["gpt4"]["usedPercent"], 12.5);
+}
+
+#[test]
+fn fetch_account_subscription_with_explicit_proxy_uses_explicit_proxy_before_global_proxy() {
+    let _guard = crate::test_env_guard();
+    let _global_proxy = EnvVarRestore::set("CODEXMANAGER_UPSTREAM_PROXY_URL", "http://127.0.0.1:1");
+    super::reload_usage_http_client_from_env();
+    let (proxy_url, request_rx, proxy_handle) = spawn_recording_http_proxy(
+        r#"{"accounts":{"acct-chatgpt":{"account":{"plan_type":"pro","is_default":true},"entitlement":{"subscription_plan":"plus","has_active_subscription":true}}}}"#,
+        "application/json",
+    );
+
+    let snapshot = super::fetch_account_subscription_with_explicit_proxy(
+        "http://chatgpt.test",
+        "token_123",
+        "acct-chatgpt",
+        Some("workspace_123"),
+        proxy_url.as_str(),
+    )
+    .expect("fetch subscription");
+    let request = request_rx
+        .recv_timeout(Duration::from_secs(5))
+        .expect("capture subscription proxy request");
+    proxy_handle.join().expect("join subscription proxy");
+    let request = request.to_ascii_lowercase();
+
+    assert!(request.starts_with("get http://chatgpt.test/"));
+    assert!(request.contains("authorization: bearer token_123"));
+    assert!(request.contains("origin: https://chatgpt.com"));
+    assert!(!request.contains("user-agent:"));
+    assert!(snapshot.has_subscription);
+    assert_eq!(snapshot.account_plan_type.as_deref(), Some("pro"));
+}
+
+#[test]
+fn refresh_access_token_with_explicit_proxy_fails_for_invalid_proxy_url() {
+    let _guard = crate::test_env_guard();
+    let _override_restore = EnvVarRestore::remove("CODEX_REFRESH_TOKEN_URL_OVERRIDE");
+
+    let err = match super::refresh_access_token_with_explicit_proxy(
+        "https://auth.openai.com",
+        "client-id",
+        "refresh-token",
+        "http://",
+    ) {
+        Ok(_) => panic!("invalid explicit proxy should fail closed"),
+        Err(err) => err,
+    };
+
+    assert!(err.contains("explicit account proxy URL is invalid and fail-closed"));
+}
+
+#[test]
+fn refresh_access_token_with_explicit_proxy_fails_closed_for_empty_proxy_url() {
+    let _guard = crate::test_env_guard();
+
+    let err = match super::refresh_access_token_with_explicit_proxy(
+        "https://auth.openai.com",
+        "client-id",
+        "refresh-token",
+        "   ",
+    ) {
+        Ok(_) => panic!("empty explicit proxy should fail closed"),
+        Err(err) => err,
+    };
+
+    assert!(err.contains("explicit account proxy URL is required and fail-closed"));
+}
+
+#[test]
+fn legacy_subscription_request_ignores_proxy_pool_when_account_proxy_is_disabled() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("subscription-disabled-proxy-pool");
+    seed_account_proxy(
+        &db.db_path,
+        "acc-disabled-subscription",
+        false,
+        Some("http://127.0.0.1:7891"),
+    );
+    let server = Server::http("127.0.0.1:0").expect("start legacy subscription server");
+    let addr = format!("http://{}", server.server_addr());
+    let (proxy_url, proxy_rx, proxy_handle) = spawn_timeout_recording_http_proxy(
+        r#"{"accounts":{"acct-chatgpt":{"account":{"plan_type":"pro","is_default":true},"entitlement":{"subscription_plan":"plus","has_active_subscription":true}}}}"#,
+        "application/json",
+        Duration::from_millis(400),
+    );
+    let _global_proxy = EnvVarRestore::set("CODEXMANAGER_UPSTREAM_PROXY_URL", "");
+    let _pool_proxy = EnvVarRestore::set("CODEXMANAGER_PROXY_LIST", proxy_url.as_str());
+    super::reload_usage_http_client_from_env();
+
+    let (tx, rx) = std::sync::mpsc::channel();
+    let handle = thread::spawn(move || {
+        let request = server
+            .recv_timeout(Duration::from_secs(5))
+            .expect("subscription server timeout")
+            .expect("receive legacy subscription request");
+        tx.send(request.url().to_string())
+            .expect("send legacy subscription path");
+        let response = Response::from_string(
+            r#"{"accounts":{"acct-chatgpt":{"account":{"plan_type":"pro","is_default":true},"entitlement":{"subscription_plan":"plus","has_active_subscription":true}}}}"#,
+        )
+        .with_status_code(TinyStatusCode(200))
+        .with_header(
+            Header::from_bytes("Content-Type", "application/json")
+                .expect("content-type header"),
+        );
+        request
+            .respond(response)
+            .expect("respond legacy subscription");
+    });
+
+    let snapshot = super::fetch_account_subscription(
+        &addr,
+        "token_123",
+        "acct-chatgpt",
+        Some("workspace_123"),
+    )
+    .expect("fetch legacy subscription");
+
+    assert!(snapshot.has_subscription);
+    assert_eq!(
+        rx.recv_timeout(Duration::from_secs(5))
+            .expect("receive legacy subscription path"),
+        "/accounts/check/v4-2023-04-27"
+    );
+    assert!(proxy_rx.recv_timeout(Duration::from_millis(300)).is_err());
+    handle.join().expect("join legacy subscription server");
+    proxy_handle.join().expect("join unused proxy");
+}
+
+#[test]
+fn legacy_usage_request_ignores_proxy_pool_when_account_proxy_is_disabled() {
+    let _guard = crate::test_env_guard();
+    let db = TestDbGuard::new("usage-disabled-proxy-pool");
+    seed_account_proxy(
+        &db.db_path,
+        "acc-disabled-usage",
+        false,
+        Some("http://127.0.0.1:7891"),
+    );
+    let server = Server::http("127.0.0.1:0").expect("start legacy usage server");
+    let addr = format!("http://{}", server.server_addr());
+    let (proxy_url, proxy_rx, proxy_handle) = spawn_timeout_recording_http_proxy(
+        r#"{"gpt4":{"usedPercent":99.0,"windowMinutes":180}}"#,
+        "application/json",
+        Duration::from_millis(400),
+    );
+    let _global_proxy = EnvVarRestore::set("CODEXMANAGER_UPSTREAM_PROXY_URL", "");
+    let _pool_proxy = EnvVarRestore::set("CODEXMANAGER_PROXY_LIST", proxy_url.as_str());
+    super::reload_usage_http_client_from_env();
+
+    let (tx, rx) = std::sync::mpsc::channel();
+    let handle = thread::spawn(move || {
+        let request = server
+            .recv_timeout(Duration::from_secs(5))
+            .expect("usage server timeout")
+            .expect("receive legacy usage request");
+        tx.send(request.url().to_string())
+            .expect("send legacy usage path");
+        let response =
+            Response::from_string(r#"{"gpt4":{"usedPercent":99.0,"windowMinutes":180}}"#)
+                .with_status_code(TinyStatusCode(200))
+                .with_header(
+                    Header::from_bytes("Content-Type", "application/json")
+                        .expect("content-type header"),
+                );
+        request.respond(response).expect("respond legacy usage");
+    });
+
+    let snapshot = super::fetch_usage_snapshot(&addr, "token_123", Some("workspace_123"))
+        .expect("fetch legacy usage");
+
+    assert_eq!(snapshot["gpt4"]["usedPercent"], 99.0);
+    assert_eq!(
+        rx.recv_timeout(Duration::from_secs(5))
+            .expect("receive legacy usage path"),
+        "/api/codex/usage"
+    );
+    assert!(proxy_rx.recv_timeout(Duration::from_millis(300)).is_err());
+    handle.join().expect("join legacy usage server");
+    proxy_handle.join().expect("join unused proxy");
+}
+
 /// 函数 `summarize_usage_error_response_stabilizes_html_and_debug_headers`
 ///
 /// 作者: gaohongshun
diff --git a/crates/service/src/usage/usage_http.rs b/crates/service/src/usage/usage_http.rs
index 6f4359da1..31c41eb12 100644
--- a/crates/service/src/usage/usage_http.rs
+++ b/crates/service/src/usage/usage_http.rs
@@ -1,7 +1,7 @@
 use chrono::DateTime;
 use codexmanager_core::usage::{accounts_check_endpoint, usage_endpoint};
 use reqwest::header::{HeaderMap, HeaderName, HeaderValue, CONTENT_TYPE};
-use reqwest::Client;
+use reqwest::{Client, Proxy};
 use std::collections::HashMap;
 use std::future::Future;
 use std::sync::{OnceLock, RwLock};
@@ -1003,7 +1003,27 @@ pub(crate) fn fetch_usage_snapshot(
     bearer: &str,
     workspace_id: Option<&str>,
 ) -> Result<serde_json::Value, String> {
-    run_usage_future(fetch_usage_snapshot_async(base_url, bearer, workspace_id))
+    run_usage_future(fetch_usage_snapshot_async(
+        base_url,
+        bearer,
+        workspace_id,
+        None,
+    ))
+}
+
+pub(crate) fn fetch_usage_snapshot_with_explicit_proxy(
+    base_url: &str,
+    bearer: &str,
+    workspace_id: Option<&str>,
+    proxy_url: &str,
+) -> Result<serde_json::Value, String> {
+    let proxy_url = normalize_explicit_proxy_url(proxy_url)?;
+    run_usage_future(fetch_usage_snapshot_async(
+        base_url,
+        bearer,
+        workspace_id,
+        Some(proxy_url.as_str()),
+    ))
 }
 
 /// 函数 `fetch_account_subscription`
@@ -1031,6 +1051,24 @@ pub(crate) fn fetch_account_subscription(
         bearer,
         account_id,
         workspace_id,
+        None,
+    ))
+}
+
+pub(crate) fn fetch_account_subscription_with_explicit_proxy(
+    base_url: &str,
+    bearer: &str,
+    account_id: &str,
+    workspace_id: Option<&str>,
+    proxy_url: &str,
+) -> Result<AccountSubscriptionSnapshot, String> {
+    let proxy_url = normalize_explicit_proxy_url(proxy_url)?;
+    run_usage_future(fetch_account_subscription_async(
+        base_url,
+        bearer,
+        account_id,
+        workspace_id,
+        Some(proxy_url.as_str()),
     ))
 }
 
@@ -1051,26 +1089,28 @@ async fn fetch_usage_snapshot_async(
     base_url: &str,
     bearer: &str,
     workspace_id: Option<&str>,
+    explicit_proxy_url: Option<&str>,
 ) -> Result<serde_json::Value, String> {
     // 调用上游用量接口
     let url = usage_endpoint(base_url);
-    let build_request = || {
-        let client = usage_http_client();
+    let request_headers = build_usage_request_headers(workspace_id);
+    let build_request = |client: Client| {
         let mut req = client
             .get(&url)
             .header("Authorization", format!("Bearer {bearer}"));
-        let request_headers = build_usage_request_headers(workspace_id);
         if !request_headers.is_empty() {
-            req = req.headers(request_headers);
+            req = req.headers(request_headers.clone());
         }
         req
     };
-    let resp = match build_request().send().await {
+    let client = usage_http_client_for_proxy(explicit_proxy_url)?;
+    let resp = match build_request(client).send().await {
         Ok(resp) => resp,
         Err(first_err) => {
             // 中文注释：代理在程序启动后才开启时，旧 client 可能沿用旧网络状态；这里自动重建并重试一次。
-            rebuild_usage_http_client();
-            let retried = build_request().send().await;
+            let retried = build_request(refresh_usage_http_client_for_proxy(explicit_proxy_url)?)
+                .send()
+                .await;
             match retried {
                 Ok(resp) => resp,
                 Err(second_err) => {
@@ -1111,10 +1151,10 @@ async fn fetch_usage_snapshot_async(
 async fn fetch_accounts_check_response_async(
     base_url: &str,
     bearer: &str,
+    explicit_proxy_url: Option<&str>,
 ) -> Result<AccountsCheckResponse, String> {
     let url = accounts_check_endpoint(base_url);
-    let build_request = || {
-        let client = subscription_http_client();
+    let build_request = |client: Client| {
         client
             .get(&url)
             .header("Authorization", format!("Bearer {bearer}"))
@@ -1122,11 +1162,15 @@ async fn fetch_accounts_check_response_async(
             .header("Referer", "https://chatgpt.com/")
             .header("Accept", "application/json")
     };
-    let resp = match build_request().send().await {
+    let client = subscription_http_client_for_proxy(explicit_proxy_url)?;
+    let resp = match build_request(client).send().await {
         Ok(resp) => resp,
         Err(first_err) => {
-            rebuild_subscription_http_client();
-            let retried = build_request().send().await;
+            let retried = build_request(refresh_subscription_http_client_for_proxy(
+                explicit_proxy_url,
+            )?)
+            .send()
+            .await;
             match retried {
                 Ok(resp) => resp,
                 Err(second_err) => {
@@ -1189,12 +1233,14 @@ async fn fetch_account_subscription_async(
     bearer: &str,
     account_id: &str,
     _workspace_id: Option<&str>,
+    explicit_proxy_url: Option<&str>,
 ) -> Result<AccountSubscriptionSnapshot, String> {
     let normalized_account_id = account_id.trim();
     if normalized_account_id.is_empty() {
         return Ok(AccountSubscriptionSnapshot::default());
     }
-    let response = fetch_accounts_check_response_async(base_url, bearer).await?;
+    let response =
+        fetch_accounts_check_response_async(base_url, bearer, explicit_proxy_url).await?;
 
     if let Some(entry) = response.accounts.get(normalized_account_id) {
         return Ok(build_accounts_check_snapshot(entry));
@@ -1249,7 +1295,27 @@ pub(crate) fn refresh_access_token(
     client_id: &str,
     refresh_token: &str,
 ) -> Result<RefreshTokenResponse, String> {
-    run_usage_future(refresh_access_token_async(issuer, client_id, refresh_token))
+    run_usage_future(refresh_access_token_async(
+        issuer,
+        client_id,
+        refresh_token,
+        None,
+    ))
+}
+
+pub(crate) fn refresh_access_token_with_explicit_proxy(
+    issuer: &str,
+    client_id: &str,
+    refresh_token: &str,
+    proxy_url: &str,
+) -> Result<RefreshTokenResponse, String> {
+    let proxy_url = normalize_explicit_proxy_url(proxy_url)?;
+    run_usage_future(refresh_access_token_async(
+        issuer,
+        client_id,
+        refresh_token,
+        Some(proxy_url.as_str()),
+    ))
 }
 
 /// 函数 `refresh_access_token_async`
@@ -1269,21 +1335,25 @@ async fn refresh_access_token_async(
     issuer: &str,
     client_id: &str,
     refresh_token: &str,
+    explicit_proxy_url: Option<&str>,
 ) -> Result<RefreshTokenResponse, String> {
     let refresh_token_url = resolve_refresh_token_url(issuer);
     let body = build_refresh_token_body(client_id, refresh_token);
-    let build_request = || {
-        let client = usage_http_client();
+    let build_request = |client: Client| {
         client
             .post(refresh_token_url.clone())
             .header("Content-Type", "application/x-www-form-urlencoded")
             .body(body.clone())
     };
-    let resp = match build_request().send().await {
+    let client = token_refresh_http_client_for_proxy(explicit_proxy_url)?;
+    let resp = match build_request(client).send().await {
         Ok(resp) => resp,
         Err(first_err) => {
-            rebuild_usage_http_client();
-            let retried = build_request().send().await;
+            let retried = build_request(refresh_token_refresh_http_client_for_proxy(
+                explicit_proxy_url,
+            )?)
+            .send()
+            .await;
             match retried {
                 Ok(resp) => resp,
                 Err(second_err) => {
@@ -1310,6 +1380,191 @@ async fn refresh_access_token_async(
         .map_err(|e| format!("read refresh token response json failed: {e}"))
 }
 
+fn usage_http_client_for_proxy(explicit_proxy_url: Option<&str>) -> Result<Client, String> {
+    match explicit_proxy_url
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+    {
+        Some(proxy_url) => build_usage_http_client_with_explicit_proxy(proxy_url),
+        None => Ok(usage_http_client()),
+    }
+}
+
+fn refresh_usage_http_client_for_proxy(explicit_proxy_url: Option<&str>) -> Result<Client, String> {
+    match explicit_proxy_url
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+    {
+        Some(proxy_url) => build_usage_http_client_with_explicit_proxy(proxy_url),
+        None => {
+            rebuild_usage_http_client();
+            Ok(usage_http_client())
+        }
+    }
+}
+
+fn subscription_http_client_for_proxy(explicit_proxy_url: Option<&str>) -> Result<Client, String> {
+    match explicit_proxy_url
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+    {
+        Some(proxy_url) => build_subscription_http_client_with_explicit_proxy(proxy_url),
+        None => Ok(subscription_http_client()),
+    }
+}
+
+fn refresh_subscription_http_client_for_proxy(
+    explicit_proxy_url: Option<&str>,
+) -> Result<Client, String> {
+    match explicit_proxy_url
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+    {
+        Some(proxy_url) => build_subscription_http_client_with_explicit_proxy(proxy_url),
+        None => {
+            rebuild_subscription_http_client();
+            Ok(subscription_http_client())
+        }
+    }
+}
+
+fn token_refresh_http_client_for_proxy(explicit_proxy_url: Option<&str>) -> Result<Client, String> {
+    match explicit_proxy_url
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+    {
+        Some(proxy_url) => build_token_refresh_http_client_with_explicit_proxy(proxy_url),
+        None => Ok(usage_http_client()),
+    }
+}
+
+fn refresh_token_refresh_http_client_for_proxy(
+    explicit_proxy_url: Option<&str>,
+) -> Result<Client, String> {
+    match explicit_proxy_url
+        .map(str::trim)
+        .filter(|value| !value.is_empty())
+    {
+        Some(proxy_url) => build_token_refresh_http_client_with_explicit_proxy(proxy_url),
+        None => {
+            rebuild_usage_http_client();
+            Ok(usage_http_client())
+        }
+    }
+}
+
+fn normalize_explicit_proxy_url(proxy_url: &str) -> Result<String, String> {
+    let trimmed = proxy_url.trim();
+    if trimmed.is_empty() {
+        return Err("explicit account proxy URL is required and fail-closed".to_string());
+    }
+    crate::account_proxy::normalize_supported_proxy_url(trimmed)
+        .map_err(|err| format!("explicit account proxy URL is invalid and fail-closed: {err}"))
+}
+
+fn build_usage_http_client_with_explicit_proxy(proxy_url: &str) -> Result<Client, String> {
+    let builder = Client::builder()
+        .connect_timeout(USAGE_HTTP_CONNECT_TIMEOUT)
+        .timeout(USAGE_HTTP_TOTAL_TIMEOUT)
+        .pool_max_idle_per_host(8)
+        .pool_idle_timeout(Some(Duration::from_secs(60)))
+        .user_agent(crate::gateway::current_codex_user_agent())
+        .default_headers(build_usage_http_default_headers());
+    let builder = builder.proxy(
+        Proxy::all(proxy_url).map_err(|err| format!("build explicit usage proxy failed: {err}"))?,
+    );
+    builder
+        .build()
+        .map_err(|err| format!("build explicit usage client failed: {err}"))
+}
+
+fn build_subscription_http_client_with_explicit_proxy(proxy_url: &str) -> Result<Client, String> {
+    let builder = Client::builder()
+        .connect_timeout(USAGE_HTTP_CONNECT_TIMEOUT)
+        .timeout(USAGE_HTTP_TOTAL_TIMEOUT)
+        .pool_max_idle_per_host(4)
+        .pool_idle_timeout(Some(Duration::from_secs(60)));
+    let builder = builder.proxy(
+        Proxy::all(proxy_url)
+            .map_err(|err| format!("build explicit subscription proxy failed: {err}"))?,
+    );
+    builder
+        .build()
+        .map_err(|err| format!("build explicit subscription client failed: {err}"))
+}
+
+fn build_token_refresh_http_client_with_explicit_proxy(proxy_url: &str) -> Result<Client, String> {
+    let builder = Client::builder()
+        .connect_timeout(USAGE_HTTP_CONNECT_TIMEOUT)
+        .timeout(USAGE_HTTP_TOTAL_TIMEOUT)
+        .pool_max_idle_per_host(8)
+        .pool_idle_timeout(Some(Duration::from_secs(60)))
+        .user_agent(crate::gateway::current_codex_user_agent())
+        .default_headers(build_usage_http_default_headers());
+    let builder = builder.proxy(
+        Proxy::all(proxy_url)
+            .map_err(|err| format!("build explicit token refresh proxy failed: {err}"))?,
+    );
+    builder
+        .build()
+        .map_err(|err| format!("build explicit token refresh client failed: {err}"))
+}
+
+pub(crate) fn log_account_data_route(
+    kind: &str,
+    account_id: &str,
+    mode: &crate::account_proxy::AccountProxyMode,
+    endpoint: &str,
+    uses_codex_user_agent: bool,
+) {
+    if !crate::account_proxy::account_proxy_debug_enabled() {
+        return;
+    }
+
+    let (client_path, proxy_source, proxy_url_redacted, uses_account_scoped_client) = match mode {
+        crate::account_proxy::AccountProxyMode::Disabled => {
+            if let Some(proxy_url) = current_upstream_proxy_url() {
+                (
+                    "legacy",
+                    "legacy_upstream_proxy_url",
+                    crate::account_proxy::redact_proxy_url_for_log(proxy_url.as_str()),
+                    false,
+                )
+            } else {
+                ("legacy", "system_proxy_possible", "-".to_string(), false)
+            }
+        }
+        crate::account_proxy::AccountProxyMode::Explicit { proxy_url } => (
+            "explicit_account_proxy",
+            "explicit_account_proxy",
+            crate::account_proxy::redact_proxy_url_for_log(proxy_url),
+            true,
+        ),
+        crate::account_proxy::AccountProxyMode::Invalid { proxy_url, .. } => (
+            "invalid",
+            "explicit_account_proxy",
+            proxy_url
+                .as_deref()
+                .map(crate::account_proxy::redact_proxy_url_for_log)
+                .unwrap_or_else(|| "-".to_string()),
+            false,
+        ),
+    };
+
+    log::info!(
+        "event=account_data_route kind={} account_id={} account_proxy_mode={} client_path={} proxy_source={} proxy_url_redacted={} uses_account_scoped_client={} uses_codex_user_agent={} endpoint={}",
+        kind,
+        account_id,
+        mode.as_str(),
+        client_path,
+        proxy_source,
+        proxy_url_redacted,
+        uses_account_scoped_client,
+        uses_codex_user_agent,
+        endpoint
+    );
+}
+
 /// 函数 `read_response_text`
 ///
 /// 作者: gaohongshun
diff --git a/crates/service/src/usage/usage_token_refresh.rs b/crates/service/src/usage/usage_token_refresh.rs
index 4ad2d29af..6f6ce35b6 100644
--- a/crates/service/src/usage/usage_token_refresh.rs
+++ b/crates/service/src/usage/usage_token_refresh.rs
@@ -5,7 +5,8 @@ use std::sync::{Arc, Mutex, OnceLock};
 
 use crate::auth_tokens::obtain_api_key;
 use crate::usage_http::{
-    refresh_access_token, refresh_token_auth_error_reason_from_message, RefreshTokenAuthErrorReason,
+    log_account_data_route, refresh_access_token, refresh_access_token_with_explicit_proxy,
+    refresh_token_auth_error_reason_from_message, RefreshTokenAuthErrorReason,
 };
 
 pub(crate) const DEFAULT_TOKEN_REFRESH_AHEAD_SECS: i64 = 3600;
@@ -52,7 +53,29 @@ pub(crate) fn refresh_and_persist_access_token(
     }
 
     let refresh_client_id = token_refresh_client_id(token, client_id);
-    let refreshed = match refresh_access_token(issuer, &refresh_client_id, &token.refresh_token) {
+    let proxy_mode = crate::account_proxy::resolve_account_proxy_mode(token.account_id.as_str());
+    log_account_data_route(
+        "token_refresh",
+        token.account_id.as_str(),
+        &proxy_mode,
+        "refresh_token",
+        true,
+    );
+    let refreshed = match &proxy_mode {
+        crate::account_proxy::AccountProxyMode::Disabled => {
+            refresh_access_token(issuer, &refresh_client_id, &token.refresh_token)
+        }
+        crate::account_proxy::AccountProxyMode::Explicit { proxy_url } => {
+            refresh_access_token_with_explicit_proxy(
+                issuer,
+                &refresh_client_id,
+                &token.refresh_token,
+                proxy_url,
+            )
+        }
+        crate::account_proxy::AccountProxyMode::Invalid { error, .. } => Err(error.clone()),
+    };
+    let refreshed = match refreshed {
         Ok(refreshed) => refreshed,
         Err(err) => {
             if recover_refresh_race_from_latest_token(

From 2d7cbcecadcbafc69795e937d9546d02b69f6b62 Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Thu, 11 Jun 2026 18:04:07 +0300
Subject: [PATCH 4/9] feat(apps, service): add support for testing proxy
 settings and showing runtime status

---
 apps/src-tauri/src/commands/account/remote.rs |  8 +++++++-
 apps/src/app/accounts/accounts-page-view.tsx  |  3 +++
 apps/src/app/accounts/page.tsx                |  7 +++++--
 apps/src/hooks/useAccounts.ts                 |  8 +++++---
 apps/src/lib/api/account-client.ts            | 19 +++++++++++++++++--
 .../lib/i18n/messages/sections/en-accounts.ts | 10 ++++++++++
 .../lib/i18n/messages/sections/ko-accounts.ts | 10 ++++++++++
 crates/service/src/account/account_proxy.rs   |  3 +--
 crates/service/src/rpc_dispatch/account.rs    |  6 +++++-
 9 files changed, 63 insertions(+), 11 deletions(-)

diff --git a/apps/src-tauri/src/commands/account/remote.rs b/apps/src-tauri/src/commands/account/remote.rs
index a6b00585f..96e6a3f40 100644
--- a/apps/src-tauri/src/commands/account/remote.rs
+++ b/apps/src-tauri/src/commands/account/remote.rs
@@ -285,8 +285,14 @@ pub async fn service_account_proxy_clear(
 pub async fn service_account_proxy_test(
     addr: Option<String>,
     account_id: String,
+    enabled: Option<bool>,
+    proxy_url: Option<String>,
 ) -> Result<serde_json::Value, String> {
-    let params = serde_json::json!({ "accountId": account_id });
+    let params = serde_json::json!({
+        "accountId": account_id,
+        "enabled": enabled,
+        "proxyUrl": proxy_url,
+    });
     rpc_call_in_background("account/proxy/test", addr, Some(params)).await
 }
 
diff --git a/apps/src/app/accounts/accounts-page-view.tsx b/apps/src/app/accounts/accounts-page-view.tsx
index b841e1660..ee10113b3 100644
--- a/apps/src/app/accounts/accounts-page-view.tsx
+++ b/apps/src/app/accounts/accounts-page-view.tsx
@@ -1286,6 +1286,9 @@ export function AccountsPageView(props: AccountsPageViewProps) {
               <p className="text-[11px] leading-4 text-amber-600 dark:text-amber-400">
                 {t("建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。")}
               </p>
+              <p className="text-[11px] leading-4 text-amber-600 dark:text-amber-400">
+                {t("建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。")}
+              </p>
             </div>
             <div className="grid gap-2 rounded-xl bg-muted/20 px-3 py-3 text-xs sm:grid-cols-2">
               <div>
diff --git a/apps/src/app/accounts/page.tsx b/apps/src/app/accounts/page.tsx
index 9f6a42be8..0278518df 100644
--- a/apps/src/app/accounts/page.tsx
+++ b/apps/src/app/accounts/page.tsx
@@ -486,7 +486,6 @@ const toggleCleanupStatus = (rawStatus: string) => {
         setProxyEnabledDraft(settings.enabled);
         setProxyUrlDraft(settings.proxyUrl || "");
       }
-      setProxyDialogAccount(null);
     } catch {
       // hook handles toast
     }
@@ -509,7 +508,11 @@ const toggleCleanupStatus = (rawStatus: string) => {
   const handleTestProxySettings = async () => {
     if (!proxyDialogAccount) return;
     try {
-      const settings = await testAccountProxySettings(proxyDialogAccount.id);
+      const settings = await testAccountProxySettings({
+        accountId: proxyDialogAccount.id,
+        enabled: proxyEnabledDraft,
+        proxyUrl: proxyUrlDraft,
+      });
       if (settings) {
         setProxySettings(settings);
         setProxyEnabledDraft(settings.enabled);
diff --git a/apps/src/hooks/useAccounts.ts b/apps/src/hooks/useAccounts.ts
index 41f048da5..3912a003f 100644
--- a/apps/src/hooks/useAccounts.ts
+++ b/apps/src/hooks/useAccounts.ts
@@ -30,6 +30,7 @@ type WarmupPayload = Parameters<typeof accountClient.warmup>[0];
 type WarmupResult = Awaited<ReturnType<typeof accountClient.warmup>>;
 type AccountProxySettings = Awaited<ReturnType<typeof accountClient.getProxySettings>>;
 type AccountProxySetPayload = Parameters<typeof accountClient.setProxySettings>[0];
+type AccountProxyTestPayload = Parameters<typeof accountClient.testProxySettings>[0];
 type RefreshAllRtResult = Awaited<
   ReturnType<typeof accountClient.refreshAllChatgptAuthTokens>
 >;
@@ -840,7 +841,8 @@ export function useAccounts() {
   });
 
   const testAccountProxyMutation = useMutation({
-    mutationFn: (accountId: string) => accountClient.testProxySettings(accountId),
+    mutationFn: (params: AccountProxyTestPayload) =>
+      accountClient.testProxySettings(params),
     onSuccess: async (settings) => {
       await invalidateUsageData();
       if (settings.status === "ok") {
@@ -951,9 +953,9 @@ export function useAccounts() {
       if (!ensureServiceReady("清除账号代理")) return;
       return await clearAccountProxyMutation.mutateAsync(accountId);
     },
-    testAccountProxySettings: async (accountId: string) => {
+    testAccountProxySettings: async (params: AccountProxyTestPayload) => {
       if (!ensureServiceReady("测试账号代理")) return;
-      return await testAccountProxyMutation.mutateAsync(accountId);
+      return await testAccountProxyMutation.mutateAsync(params);
     },
     updateAccountSort: async (accountId: string, sort: number) => {
       if (!ensureServiceReady("更新账号顺序")) return;
diff --git a/apps/src/lib/api/account-client.ts b/apps/src/lib/api/account-client.ts
index ddac73cdf..2243de578 100644
--- a/apps/src/lib/api/account-client.ts
+++ b/apps/src/lib/api/account-client.ts
@@ -96,6 +96,12 @@ export interface AccountProxySetPayload {
   proxyUrl?: string | null;
 }
 
+export interface AccountProxyTestPayload {
+  accountId: string;
+  enabled?: boolean;
+  proxyUrl?: string | null;
+}
+
 export interface AccountDeleteByStatusesPayload {
   statuses: string[];
 }
@@ -558,9 +564,18 @@ export const accountClient = {
     readAccountProxySettings(
       await invoke<unknown>("service_account_proxy_clear", withAddr({ accountId })),
     ),
-  testProxySettings: async (accountId: string): Promise<AccountProxySettings> =>
+  testProxySettings: async (
+    params: AccountProxyTestPayload,
+  ): Promise<AccountProxySettings> =>
     readAccountProxySettings(
-      await invoke<unknown>("service_account_proxy_test", withAddr({ accountId })),
+      await invoke<unknown>(
+        "service_account_proxy_test",
+        withAddr({
+          accountId: params.accountId,
+          enabled: params.enabled,
+          proxyUrl: params.proxyUrl ?? null,
+        }),
+      ),
     ),
 
   async getUsage(accountId: string): Promise<AccountUsage | null> {
diff --git a/apps/src/lib/i18n/messages/sections/en-accounts.ts b/apps/src/lib/i18n/messages/sections/en-accounts.ts
index d3af7046e..a15e95462 100644
--- a/apps/src/lib/i18n/messages/sections/en-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/en-accounts.ts
@@ -29,13 +29,17 @@ export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
   "保存账号代理失败": "Failed to save account proxy",
   "测试账号代理": "Test account proxy",
   "测试账号代理失败": "Failed to test account proxy",
+  "测试": "Test",
   "测试中": "Testing",
   "未测试": "Untested",
   "测试失败": "Test failed",
   "测试状态": "Test status",
+  "可用": "Available",
+  "运行时错误": "Runtime error",
   "从未检查": "Never checked",
   "代理地址": "Proxy URL",
   "地址无效": "Invalid URL",
+  "未配置": "Not configured",
   "刷新 AT/RT": "Refresh AT/RT",
   "刷新 AT/RT 失败": "Failed to refresh AT/RT",
   "刷新全部 AT/RT": "Refresh all AT/RT",
@@ -46,7 +50,11 @@ export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
   "读取账号代理失败": "Failed to read account proxy",
   "服务未连接，暂时无法读取账号代理":
     "Service is not connected, account proxy cannot be read yet",
+  "保存": "Save",
   "默认路由": "Default route",
+  "当前模式": "Current mode",
+  "清除": "Clear",
+  "错误": "Error",
   "启用后，该账号会优先使用这里的代理地址。":
     "When enabled, this account uses this proxy URL before other routing.",
   "启用账号代理": "Enable account proxy",
@@ -103,6 +111,8 @@ export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
     "Choose an export mode. If accounts are selected, only the selected items will be exported.",
   "选择要删除的账号状态；删除后不可恢复。":
     "Choose the account statuses to delete. Deletion cannot be undone.",
+  "建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
+    "Use the same proxy and region for login, refresh, usage, and API requests to reduce account risk controls and state drift.",
   "支持 http、https、socks5、socks5h；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
     "Supports http, https, socks5, and socks5h. For sing-box mixed inbound, usually enter http://127.0.0.1:port.",
   "最近检查": "Last check",
diff --git a/apps/src/lib/i18n/messages/sections/ko-accounts.ts b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
index def514849..84b0097ec 100644
--- a/apps/src/lib/i18n/messages/sections/ko-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
@@ -29,13 +29,17 @@ export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
   "保存账号代理失败": "계정 프록시 저장 실패",
   "测试账号代理": "계정 프록시 테스트",
   "测试账号代理失败": "계정 프록시 테스트 실패",
+  "测试": "테스트",
   "测试中": "테스트 중",
   "未测试": "미테스트",
   "测试失败": "테스트 실패",
   "测试状态": "테스트 상태",
+  "可用": "사용 가능",
+  "运行时错误": "런타임 오류",
   "从未检查": "아직 확인하지 않음",
   "代理地址": "프록시 주소",
   "地址无效": "주소가 유효하지 않음",
+  "未配置": "설정되지 않음",
   "刷新 AT/RT": "AT/RT 새로고침",
   "刷新 AT/RT 失败": "AT/RT 새로고침 실패",
   "刷新全部 AT/RT": "전체 AT/RT 새로고침",
@@ -46,7 +50,11 @@ export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
   "读取账号代理失败": "계정 프록시 읽기 실패",
   "服务未连接，暂时无法读取账号代理":
     "서비스가 연결되지 않아 아직 계정 프록시를 읽을 수 없습니다",
+  "保存": "저장",
   "默认路由": "기본 라우트",
+  "当前模式": "현재 모드",
+  "清除": "지우기",
+  "错误": "오류",
   "启用后，该账号会优先使用这里的代理地址。":
     "활성화하면 이 계정은 이 프록시 주소를 우선 사용합니다.",
   "启用账号代理": "계정 프록시 활성화",
@@ -103,6 +111,8 @@ export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
     "내보내기 방식을 선택하세요. 계정을 선택했다면 현재 선택 항목만 내보냅니다.",
   "选择要删除的账号状态；删除后不可恢复。":
     "삭제할 계정 상태를 선택하세요. 삭제 후에는 복구할 수 없습니다.",
+  "建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
+    "로그인, 새로고침, 사용량, API 요청은 동일한 프록시와 지역을 유지해 계정 리스크 제어와 상태 드리프트를 줄이는 것이 좋습니다.",
   "支持 http、https、socks5、socks5h；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
     "http, https, socks5, socks5h를 지원합니다. sing-box mixed inbound는 보통 http://127.0.0.1:포트 를 입력합니다.",
   "最近检查": "최근 확인",
diff --git a/crates/service/src/account/account_proxy.rs b/crates/service/src/account/account_proxy.rs
index 223a71b63..07bc60497 100644
--- a/crates/service/src/account/account_proxy.rs
+++ b/crates/service/src/account/account_proxy.rs
@@ -446,8 +446,7 @@ mod tests {
     use super::{
         normalize_supported_proxy_url, resolve_account_proxy_mode_from_storage,
         test_account_proxy_settings_with_checker, AccountProxyMode, AccountProxySettingsResponse,
-        STATUS_CHECKING, STATUS_INVALID_URL, STATUS_NOT_CONFIGURED, STATUS_RUNTIME_ERROR,
-        STATUS_UNCHECKED,
+        STATUS_INVALID_URL, STATUS_NOT_CONFIGURED, STATUS_RUNTIME_ERROR, STATUS_UNCHECKED,
     };
     use codexmanager_core::storage::{now_ts, Account, Storage};
     use std::fs;
diff --git a/crates/service/src/rpc_dispatch/account.rs b/crates/service/src/rpc_dispatch/account.rs
index ba868980d..33a932170 100644
--- a/crates/service/src/rpc_dispatch/account.rs
+++ b/crates/service/src/rpc_dispatch/account.rs
@@ -124,7 +124,11 @@ pub(super) fn try_handle(req: &JsonRpcRequest) -> Option<JsonRpcResponse> {
         }
         "account/proxy/test" => {
             let account_id = first_str_param(req, &["accountId", "account_id"]).unwrap_or("");
-            super::value_or_error(account_proxy::test_account_proxy_settings(account_id))
+            let enabled = super::bool_param(req, "enabled");
+            let proxy_url = first_str_param(req, &["proxyUrl", "proxy_url"]);
+            super::value_or_error(account_proxy::test_account_proxy_settings(
+                account_id, enabled, proxy_url,
+            ))
         }
         "account/import" => {
             let mut contents = req

From 4e8f4542813853c36756831dbdb29dceb1ce576f Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Thu, 11 Jun 2026 17:54:09 +0300
Subject: [PATCH 5/9] feat(proxy): integrate ipwhois geolocation lookup and
 store location metadata

---
 .../migrations/069_account_proxy_settings.sql |  16 +
 crates/core/src/rpc/tests/types_tests.rs      |  34 +
 crates/core/src/rpc/types.rs                  |  17 +
 .../src/storage/account_proxy_settings.rs     | 256 ++++++-
 crates/core/src/storage/mod.rs                |  18 +
 crates/core/tests/storage.rs                  |  62 ++
 crates/service/src/account/account_list.rs    |  59 +-
 crates/service/src/account/account_proxy.rs   | 648 ++++++++----------
 .../src/account/account_proxy_health.rs       | 384 ++++++-----
 crates/service/src/rpc_dispatch/account.rs    |  26 +-
 .../src/usage/tests/usage_http_tests.rs       |  28 +
 11 files changed, 981 insertions(+), 567 deletions(-)

diff --git a/crates/core/migrations/069_account_proxy_settings.sql b/crates/core/migrations/069_account_proxy_settings.sql
index e5d701596..648885825 100644
--- a/crates/core/migrations/069_account_proxy_settings.sql
+++ b/crates/core/migrations/069_account_proxy_settings.sql
@@ -6,6 +6,22 @@ CREATE TABLE IF NOT EXISTS account_proxy_settings (
   latency_ms INTEGER,
   last_check_at INTEGER,
   last_error TEXT,
+  ip TEXT,
+  country_code TEXT,
+  country_name TEXT,
+  region_name TEXT,
+  city_name TEXT,
+  geo_checked_at INTEGER,
+  geo_error TEXT,
+  asn INTEGER,
+  as_org TEXT,
+  isp TEXT,
+  as_domain TEXT,
+  timezone_id TEXT,
+  timezone_offset INTEGER,
+  timezone_utc TEXT,
+  flag_img_url TEXT,
+  flag_emoji TEXT,
   created_at INTEGER NOT NULL,
   updated_at INTEGER NOT NULL
 );
diff --git a/crates/core/src/rpc/tests/types_tests.rs b/crates/core/src/rpc/tests/types_tests.rs
index d5adb209e..de4a7524e 100644
--- a/crates/core/src/rpc/tests/types_tests.rs
+++ b/crates/core/src/rpc/tests/types_tests.rs
@@ -38,6 +38,23 @@ fn account_summary_serialization_matches_compact_contract() {
         model_slugs: vec!["gpt-5.4".to_string()],
         quota_capacity_primary_window_tokens: Some(100_000),
         quota_capacity_secondary_window_tokens: Some(1_000_000),
+        proxy_enabled: None,
+        proxy_status: None,
+        proxy_url: None,
+        proxy_ip: None,
+        proxy_country_code: None,
+        proxy_country_name: None,
+        proxy_region_name: None,
+        proxy_city_name: None,
+        proxy_geo_checked_at: None,
+        proxy_asn: None,
+        proxy_as_org: None,
+        proxy_isp: None,
+        proxy_as_domain: None,
+        proxy_timezone_id: None,
+        proxy_timezone_utc: None,
+        proxy_flag_img_url: None,
+        proxy_flag_emoji: None,
     };
 
     let value = serde_json::to_value(summary).expect("serialize account summary");
@@ -97,6 +114,23 @@ fn account_list_result_serialization_includes_pagination_fields() {
             model_slugs: vec!["gpt-5.4".to_string()],
             quota_capacity_primary_window_tokens: Some(100_000),
             quota_capacity_secondary_window_tokens: Some(1_000_000),
+            proxy_enabled: None,
+            proxy_status: None,
+            proxy_url: None,
+            proxy_ip: None,
+            proxy_country_code: None,
+            proxy_country_name: None,
+            proxy_region_name: None,
+            proxy_city_name: None,
+            proxy_geo_checked_at: None,
+            proxy_asn: None,
+            proxy_as_org: None,
+            proxy_isp: None,
+            proxy_as_domain: None,
+            proxy_timezone_id: None,
+            proxy_timezone_utc: None,
+            proxy_flag_img_url: None,
+            proxy_flag_emoji: None,
         }],
         total: 9,
         page: 2,
diff --git a/crates/core/src/rpc/types.rs b/crates/core/src/rpc/types.rs
index a538309c0..38f20975e 100644
--- a/crates/core/src/rpc/types.rs
+++ b/crates/core/src/rpc/types.rs
@@ -196,6 +196,23 @@ pub struct AccountSummary {
     pub model_slugs: Vec<String>,
     pub quota_capacity_primary_window_tokens: Option<i64>,
     pub quota_capacity_secondary_window_tokens: Option<i64>,
+    pub proxy_enabled: Option<bool>,
+    pub proxy_status: Option<String>,
+    pub proxy_url: Option<String>,
+    pub proxy_ip: Option<String>,
+    pub proxy_country_code: Option<String>,
+    pub proxy_country_name: Option<String>,
+    pub proxy_region_name: Option<String>,
+    pub proxy_city_name: Option<String>,
+    pub proxy_geo_checked_at: Option<i64>,
+    pub proxy_asn: Option<i64>,
+    pub proxy_as_org: Option<String>,
+    pub proxy_isp: Option<String>,
+    pub proxy_as_domain: Option<String>,
+    pub proxy_timezone_id: Option<String>,
+    pub proxy_timezone_utc: Option<String>,
+    pub proxy_flag_img_url: Option<String>,
+    pub proxy_flag_emoji: Option<String>,
 }
 
 #[derive(Debug, Serialize, Deserialize)]
diff --git a/crates/core/src/storage/account_proxy_settings.rs b/crates/core/src/storage/account_proxy_settings.rs
index d70bc855d..8f2064fa0 100644
--- a/crates/core/src/storage/account_proxy_settings.rs
+++ b/crates/core/src/storage/account_proxy_settings.rs
@@ -12,6 +12,22 @@ impl Storage {
         latency_ms: Option<i64>,
         last_check_at: Option<i64>,
         last_error: Option<&str>,
+        ip: Option<&str>,
+        country_code: Option<&str>,
+        country_name: Option<&str>,
+        region_name: Option<&str>,
+        city_name: Option<&str>,
+        geo_checked_at: Option<i64>,
+        geo_error: Option<&str>,
+        asn: Option<i64>,
+        as_org: Option<&str>,
+        isp: Option<&str>,
+        as_domain: Option<&str>,
+        timezone_id: Option<&str>,
+        timezone_offset: Option<i64>,
+        timezone_utc: Option<&str>,
+        flag_img_url: Option<&str>,
+        flag_emoji: Option<&str>,
     ) -> Result<()> {
         let now = now_ts();
         let created_at = self
@@ -28,18 +44,28 @@ impl Storage {
                 latency_ms,
                 last_check_at,
                 last_error,
+                ip,
+                country_code,
+                country_name,
+                region_name,
+                city_name,
+                geo_checked_at,
+                geo_error,
+                asn,
+                as_org,
+                isp,
+                as_domain,
+                timezone_id,
+                timezone_offset,
+                timezone_utc,
+                flag_img_url,
+                flag_emoji,
                 created_at,
                 updated_at
             ) VALUES (
-                ?1,
-                ?2,
-                ?3,
-                ?4,
-                ?5,
-                ?6,
-                ?7,
-                ?8,
-                ?9
+                ?1, ?2, ?3, ?4, ?5, ?6, ?7, ?8, ?9, ?10,
+                ?11, ?12, ?13, ?14, ?15, ?16, ?17, ?18, ?19, ?20,
+                ?21, ?22, ?23, ?24, ?25
             )
             ON CONFLICT(account_id) DO UPDATE SET
                 enabled = excluded.enabled,
@@ -48,8 +74,24 @@ impl Storage {
                 latency_ms = excluded.latency_ms,
                 last_check_at = excluded.last_check_at,
                 last_error = excluded.last_error,
+                ip = excluded.ip,
+                country_code = excluded.country_code,
+                country_name = excluded.country_name,
+                region_name = excluded.region_name,
+                city_name = excluded.city_name,
+                geo_checked_at = excluded.geo_checked_at,
+                geo_error = excluded.geo_error,
+                asn = excluded.asn,
+                as_org = excluded.as_org,
+                isp = excluded.isp,
+                as_domain = excluded.as_domain,
+                timezone_id = excluded.timezone_id,
+                timezone_offset = excluded.timezone_offset,
+                timezone_utc = excluded.timezone_utc,
+                flag_img_url = excluded.flag_img_url,
+                flag_emoji = excluded.flag_emoji,
                 updated_at = excluded.updated_at",
-            (
+            rusqlite::params![
                 account_id,
                 if enabled { 1 } else { 0 },
                 normalize_optional_text(proxy_url),
@@ -57,9 +99,25 @@ impl Storage {
                 latency_ms,
                 last_check_at,
                 normalize_optional_text(last_error),
+                normalize_optional_text(ip),
+                normalize_country_code(country_code),
+                normalize_optional_text(country_name),
+                normalize_optional_text(region_name),
+                normalize_optional_text(city_name),
+                geo_checked_at,
+                normalize_optional_text(geo_error),
+                asn,
+                normalize_optional_text(as_org),
+                normalize_optional_text(isp),
+                normalize_optional_text(as_domain),
+                normalize_optional_text(timezone_id),
+                timezone_offset,
+                normalize_optional_text(timezone_utc),
+                normalize_optional_text(flag_img_url),
+                normalize_optional_text(flag_emoji),
                 created_at,
                 now,
-            ),
+            ],
         )?;
         Ok(())
     }
@@ -71,6 +129,22 @@ impl Storage {
         latency_ms: Option<i64>,
         last_check_at: Option<i64>,
         last_error: Option<&str>,
+        ip: Option<&str>,
+        country_code: Option<&str>,
+        country_name: Option<&str>,
+        region_name: Option<&str>,
+        city_name: Option<&str>,
+        geo_checked_at: Option<i64>,
+        geo_error: Option<&str>,
+        asn: Option<i64>,
+        as_org: Option<&str>,
+        isp: Option<&str>,
+        as_domain: Option<&str>,
+        timezone_id: Option<&str>,
+        timezone_offset: Option<i64>,
+        timezone_utc: Option<&str>,
+        flag_img_url: Option<&str>,
+        flag_emoji: Option<&str>,
     ) -> Result<()> {
         self.conn.execute(
             "UPDATE account_proxy_settings
@@ -78,16 +152,48 @@ impl Storage {
                  latency_ms = ?3,
                  last_check_at = ?4,
                  last_error = ?5,
-                 updated_at = ?6
+                 ip = ?6,
+                 country_code = ?7,
+                 country_name = ?8,
+                 region_name = ?9,
+                 city_name = ?10,
+                 geo_checked_at = ?11,
+                 geo_error = ?12,
+                 asn = ?13,
+                 as_org = ?14,
+                 isp = ?15,
+                 as_domain = ?16,
+                 timezone_id = ?17,
+                 timezone_offset = ?18,
+                 timezone_utc = ?19,
+                 flag_img_url = ?20,
+                 flag_emoji = ?21,
+                 updated_at = ?22
              WHERE account_id = ?1",
-            (
+            rusqlite::params![
                 account_id,
                 normalize_status(status),
                 latency_ms,
                 last_check_at,
                 normalize_optional_text(last_error),
+                normalize_optional_text(ip),
+                normalize_country_code(country_code),
+                normalize_optional_text(country_name),
+                normalize_optional_text(region_name),
+                normalize_optional_text(city_name),
+                geo_checked_at,
+                normalize_optional_text(geo_error),
+                asn,
+                normalize_optional_text(as_org),
+                normalize_optional_text(isp),
+                normalize_optional_text(as_domain),
+                normalize_optional_text(timezone_id),
+                timezone_offset,
+                normalize_optional_text(timezone_utc),
+                normalize_optional_text(flag_img_url),
+                normalize_optional_text(flag_emoji),
                 now_ts(),
-            ),
+            ],
         )?;
         Ok(())
     }
@@ -105,7 +211,32 @@ impl Storage {
         account_id: &str,
     ) -> Result<Option<AccountProxySettings>> {
         let mut stmt = self.conn.prepare(
-            "SELECT account_id, enabled, proxy_url, status, latency_ms, last_check_at, last_error, created_at, updated_at
+            "SELECT
+                account_id,
+                enabled,
+                proxy_url,
+                status,
+                latency_ms,
+                last_check_at,
+                last_error,
+                ip,
+                country_code,
+                country_name,
+                region_name,
+                city_name,
+                geo_checked_at,
+                geo_error,
+                asn,
+                as_org,
+                isp,
+                as_domain,
+                timezone_id,
+                timezone_offset,
+                timezone_utc,
+                flag_img_url,
+                flag_emoji,
+                created_at,
+                updated_at
              FROM account_proxy_settings
              WHERE account_id = ?1
              LIMIT 1",
@@ -120,7 +251,32 @@ impl Storage {
 
     pub fn list_account_proxy_settings(&self) -> Result<Vec<AccountProxySettings>> {
         let mut stmt = self.conn.prepare(
-            "SELECT account_id, enabled, proxy_url, status, latency_ms, last_check_at, last_error, created_at, updated_at
+            "SELECT
+                account_id,
+                enabled,
+                proxy_url,
+                status,
+                latency_ms,
+                last_check_at,
+                last_error,
+                ip,
+                country_code,
+                country_name,
+                region_name,
+                city_name,
+                geo_checked_at,
+                geo_error,
+                asn,
+                as_org,
+                isp,
+                as_domain,
+                timezone_id,
+                timezone_offset,
+                timezone_utc,
+                flag_img_url,
+                flag_emoji,
+                created_at,
+                updated_at
              FROM account_proxy_settings
              ORDER BY updated_at DESC, account_id ASC",
         )?;
@@ -142,6 +298,22 @@ impl Storage {
                 latency_ms INTEGER,
                 last_check_at INTEGER,
                 last_error TEXT,
+                ip TEXT,
+                country_code TEXT,
+                country_name TEXT,
+                region_name TEXT,
+                city_name TEXT,
+                geo_checked_at INTEGER,
+                geo_error TEXT,
+                asn INTEGER,
+                as_org TEXT,
+                isp TEXT,
+                as_domain TEXT,
+                timezone_id TEXT,
+                timezone_offset INTEGER,
+                timezone_utc TEXT,
+                flag_img_url TEXT,
+                flag_emoji TEXT,
                 created_at INTEGER NOT NULL,
                 updated_at INTEGER NOT NULL
             );
@@ -162,6 +334,13 @@ impl Storage {
         self.ensure_column("account_proxy_settings", "latency_ms", "INTEGER")?;
         self.ensure_column("account_proxy_settings", "last_check_at", "INTEGER")?;
         self.ensure_column("account_proxy_settings", "last_error", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "ip", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "country_code", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "country_name", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "region_name", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "city_name", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "geo_checked_at", "INTEGER")?;
+        self.ensure_column("account_proxy_settings", "geo_error", "TEXT")?;
         self.ensure_column(
             "account_proxy_settings",
             "created_at",
@@ -172,6 +351,27 @@ impl Storage {
             "updated_at",
             "INTEGER NOT NULL DEFAULT 0",
         )?;
+        self.ensure_column("account_proxy_settings", "asn", "INTEGER")?;
+        self.ensure_column("account_proxy_settings", "as_org", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "isp", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "as_domain", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "timezone_id", "TEXT")?;
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN is_proxy", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN geo_provider", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN continent_code", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN continent_name", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN region_code", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN latitude", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN longitude", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN is_eu", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN postal", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN timezone_abbr", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN timezone_is_dst", []).ok();
+        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN flag_emoji_unicode", []).ok();
+        self.ensure_column("account_proxy_settings", "timezone_offset", "INTEGER")?;
+        self.ensure_column("account_proxy_settings", "timezone_utc", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "flag_img_url", "TEXT")?;
+        self.ensure_column("account_proxy_settings", "flag_emoji", "TEXT")?;
         Ok(())
     }
 }
@@ -183,6 +383,10 @@ fn normalize_optional_text(value: Option<&str>) -> Option<String> {
         .map(ToString::to_string)
 }
 
+fn normalize_country_code(value: Option<&str>) -> Option<String> {
+    normalize_optional_text(value).map(|text| text.to_ascii_uppercase())
+}
+
 fn normalize_status(value: &str) -> String {
     let trimmed = value.trim();
     if trimmed.is_empty() {
@@ -201,7 +405,23 @@ fn map_account_proxy_settings_row(row: &Row<'_>) -> Result<AccountProxySettings>
         latency_ms: row.get(4)?,
         last_check_at: row.get(5)?,
         last_error: row.get(6)?,
-        created_at: row.get(7)?,
-        updated_at: row.get(8)?,
+        ip: row.get(7)?,
+        country_code: row.get(8)?,
+        country_name: row.get(9)?,
+        region_name: row.get(10)?,
+        city_name: row.get(11)?,
+        geo_checked_at: row.get(12)?,
+        geo_error: row.get(13)?,
+        asn: row.get(14)?,
+        as_org: row.get(15)?,
+        isp: row.get(16)?,
+        as_domain: row.get(17)?,
+        timezone_id: row.get(18)?,
+        timezone_offset: row.get(19)?,
+        timezone_utc: row.get(20)?,
+        flag_img_url: row.get(21)?,
+        flag_emoji: row.get(22)?,
+        created_at: row.get(23)?,
+        updated_at: row.get(24)?,
     })
 }
diff --git a/crates/core/src/storage/mod.rs b/crates/core/src/storage/mod.rs
index d7ebeff0b..d09d4a041 100644
--- a/crates/core/src/storage/mod.rs
+++ b/crates/core/src/storage/mod.rs
@@ -69,10 +69,27 @@ pub struct AccountProxySettings {
     pub latency_ms: Option<i64>,
     pub last_check_at: Option<i64>,
     pub last_error: Option<String>,
+    pub ip: Option<String>,
+    pub country_code: Option<String>,
+    pub country_name: Option<String>,
+    pub region_name: Option<String>,
+    pub city_name: Option<String>,
+    pub geo_checked_at: Option<i64>,
+    pub geo_error: Option<String>,
+    pub asn: Option<i64>,
+    pub as_org: Option<String>,
+    pub isp: Option<String>,
+    pub as_domain: Option<String>,
+    pub timezone_id: Option<String>,
+    pub timezone_offset: Option<i64>,
+    pub timezone_utc: Option<String>,
+    pub flag_img_url: Option<String>,
+    pub flag_emoji: Option<String>,
     pub created_at: i64,
     pub updated_at: i64,
 }
 
+
 #[derive(Debug, Clone)]
 pub struct QuotaSourceModelAssignment {
     pub source_kind: String,
@@ -1064,6 +1081,7 @@ impl Storage {
             |s| s.ensure_account_proxy_settings_table(),
         )?;
         self.ensure_api_key_rotation_columns()?;
+
         self.ensure_aggregate_apis_table()?;
         self.ensure_aggregate_api_supplier_model_tables()?;
         self.ensure_aggregate_api_secrets_table()?;
diff --git a/crates/core/tests/storage.rs b/crates/core/tests/storage.rs
index b89392a02..0b27a6ad5 100644
--- a/crates/core/tests/storage.rs
+++ b/crates/core/tests/storage.rs
@@ -144,6 +144,22 @@ fn storage_can_persist_account_proxy_settings() {
             None,
             None,
             None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
         )
         .expect("upsert proxy settings");
 
@@ -195,6 +211,20 @@ fn storage_can_update_and_clear_account_proxy_settings() {
             None,
             None,
             None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
         )
         .expect("seed proxy settings");
     storage
@@ -204,6 +234,22 @@ fn storage_can_update_and_clear_account_proxy_settings() {
             Some(184),
             Some(1_760_000_000),
             None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
         )
         .expect("update proxy check status");
 
@@ -254,6 +300,22 @@ fn deleting_account_cleans_up_account_proxy_settings() {
             None,
             None,
             None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
         )
         .expect("upsert proxy settings");
 
diff --git a/crates/service/src/account/account_list.rs b/crates/service/src/account/account_list.rs
index 025da0a7b..e054bcc46 100644
--- a/crates/service/src/account/account_list.rs
+++ b/crates/service/src/account/account_list.rs
@@ -1,8 +1,8 @@
 use codexmanager_core::{
     rpc::types::{AccountListResult, AccountSummary},
     storage::{
-        Account, AccountMetadata, AccountQuotaCapacityOverride, AccountSubscription, Token,
-        UsageSnapshotRecord,
+        Account, AccountMetadata, AccountProxySettings, AccountQuotaCapacityOverride,
+        AccountSubscription, Token, UsageSnapshotRecord,
     },
 };
 use std::collections::HashMap;
@@ -49,6 +49,7 @@ struct AccountSummarySetup {
     subscriptions: HashMap<String, AccountSubscription>,
     model_slugs_by_account: HashMap<String, Vec<String>>,
     quota_overrides: HashMap<String, AccountQuotaCapacityOverride>,
+    proxy_settings: HashMap<String, AccountProxySettings>,
 }
 
 impl From<&Account> for AccountSummaryParts {
@@ -156,6 +157,23 @@ fn to_account_summary_with_reason(
         model_slugs,
         quota_capacity_primary_window_tokens,
         quota_capacity_secondary_window_tokens,
+        proxy_enabled: None,
+        proxy_status: None,
+        proxy_url: None,
+        proxy_ip: None,
+        proxy_country_code: None,
+        proxy_country_name: None,
+        proxy_region_name: None,
+        proxy_city_name: None,
+        proxy_geo_checked_at: None,
+        proxy_asn: None,
+        proxy_as_org: None,
+        proxy_isp: None,
+        proxy_as_domain: None,
+        proxy_timezone_id: None,
+        proxy_timezone_utc: None,
+        proxy_flag_img_url: None,
+        proxy_flag_emoji: None,
     }
 }
 
@@ -248,6 +266,13 @@ fn load_account_summary_setup(
         .into_iter()
         .map(|item| (item.account_id.clone(), item))
         .collect::<HashMap<String, AccountQuotaCapacityOverride>>();
+    let proxy_settings = storage
+        .list_account_proxy_settings()
+        .map_err(|err| format!("load account proxy settings failed: {err}"))?
+        .into_iter()
+        .map(|item| (item.account_id.clone(), item))
+        .collect::<HashMap<String, AccountProxySettings>>();
+
     Ok(AccountSummarySetup {
         preferred_account_id,
         status_reasons,
@@ -257,6 +282,7 @@ fn load_account_summary_setup(
         subscriptions,
         model_slugs_by_account,
         quota_overrides,
+        proxy_settings,
     })
 }
 
@@ -286,6 +312,7 @@ where
                 &setup.subscriptions,
                 &setup.model_slugs_by_account,
                 &setup.quota_overrides,
+                &setup.proxy_settings,
             )
         })
         .collect()
@@ -316,6 +343,7 @@ fn map_account_summary<A>(
     subscriptions: &HashMap<String, AccountSubscription>,
     model_slugs_by_account: &HashMap<String, Vec<String>>,
     quota_overrides: &HashMap<String, AccountQuotaCapacityOverride>,
+    proxy_settings: &HashMap<String, AccountProxySettings>,
 ) -> AccountSummary
 where
     A: Into<AccountSummaryParts>,
@@ -343,13 +371,14 @@ where
         .cloned()
         .unwrap_or_default();
     let quota_override = quota_overrides.get(&account_id);
+    let proxy_setting = proxy_settings.get(&account_id);
     let (fallback_plan_type, plan_type_raw) = match plan {
         Some(value) => (Some(value.normalized), value.raw),
         None => (None, None),
     };
     let subscription_plan = subscription.and_then(|value| value.plan_type.clone());
     let plan_type = fallback_plan_type;
-    to_account_summary_with_reason(
+    let mut summary = to_account_summary_with_reason(
         AccountSummaryParts {
             id: account_id,
             label,
@@ -371,5 +400,27 @@ where
         model_slugs,
         quota_override.and_then(|value| value.primary_window_tokens),
         quota_override.and_then(|value| value.secondary_window_tokens),
-    )
+    );
+
+    if let Some(proxy) = proxy_setting {
+        summary.proxy_enabled = Some(proxy.enabled);
+        summary.proxy_status = Some(proxy.status.clone());
+        summary.proxy_url = proxy.proxy_url.clone();
+        summary.proxy_ip = proxy.ip.clone();
+        summary.proxy_country_code = proxy.country_code.clone();
+        summary.proxy_country_name = proxy.country_name.clone();
+        summary.proxy_region_name = proxy.region_name.clone();
+        summary.proxy_city_name = proxy.city_name.clone();
+        summary.proxy_geo_checked_at = proxy.geo_checked_at;
+        summary.proxy_asn = proxy.asn;
+        summary.proxy_as_org = proxy.as_org.clone();
+        summary.proxy_isp = proxy.isp.clone();
+        summary.proxy_as_domain = proxy.as_domain.clone();
+        summary.proxy_timezone_id = proxy.timezone_id.clone();
+        summary.proxy_timezone_utc = proxy.timezone_utc.clone();
+        summary.proxy_flag_img_url = proxy.flag_img_url.clone();
+        summary.proxy_flag_emoji = proxy.flag_emoji.clone();
+    }
+
+    summary
 }
diff --git a/crates/service/src/account/account_proxy.rs b/crates/service/src/account/account_proxy.rs
index 07bc60497..9ad12f485 100644
--- a/crates/service/src/account/account_proxy.rs
+++ b/crates/service/src/account/account_proxy.rs
@@ -1,6 +1,7 @@
 use codexmanager_core::storage::{now_ts, AccountProxySettings, Storage};
 use serde::Serialize;
 
+use crate::account::proxy_health::{ProxyGeoInfo, ProxyHealthCheckResult};
 use crate::storage_helpers::{open_storage, StorageHandle};
 
 pub(crate) const STATUS_NOT_CONFIGURED: &str = "not_configured";
@@ -44,6 +45,22 @@ pub(crate) struct AccountProxySettingsResponse {
     pub latency_ms: Option<i64>,
     pub last_check_at: Option<i64>,
     pub last_error: Option<String>,
+    pub ip: Option<String>,
+    pub country_code: Option<String>,
+    pub country_name: Option<String>,
+    pub region_name: Option<String>,
+    pub city_name: Option<String>,
+    pub geo_checked_at: Option<i64>,
+    pub geo_error: Option<String>,
+    pub asn: Option<i64>,
+    pub as_org: Option<String>,
+    pub isp: Option<String>,
+    pub as_domain: Option<String>,
+    pub timezone_id: Option<String>,
+    pub timezone_offset: Option<i64>,
+    pub timezone_utc: Option<String>,
+    pub flag_img_url: Option<String>,
+    pub flag_emoji: Option<String>,
 }
 
 pub(crate) fn get_account_proxy_settings(
@@ -59,29 +76,139 @@ pub(crate) fn set_account_proxy_settings(
     account_id: &str,
     enabled: bool,
     proxy_url: Option<&str>,
+    status: Option<&str>,
+    latency_ms: Option<i64>,
+    last_error: Option<&str>,
+    ip: Option<&str>,
+    country_code: Option<&str>,
+    country_name: Option<&str>,
+    region_name: Option<&str>,
+    city_name: Option<&str>,
+    geo_checked_at: Option<i64>,
+    geo_error: Option<&str>,
 ) -> Result<AccountProxySettingsResponse, String> {
     let storage = open_storage_for_account(account_id)?;
     let account_id = normalize_account_id(account_id)?;
     ensure_account_exists(&storage, account_id)?;
 
+    let previous = storage
+        .find_account_proxy_settings(account_id)
+        .map_err(|err| format!("read account proxy settings failed: {err}"))?;
     let normalized_proxy_url = normalize_proxy_url_for_setting(enabled, proxy_url)?;
-    let status = if enabled {
+    let normalized_proxy_url_ref = normalized_proxy_url.as_deref();
+    let previous_proxy_url = previous
+        .as_ref()
+        .and_then(|settings| settings.proxy_url.as_deref())
+        .map(str::trim)
+        .filter(|value| !value.is_empty());
+
+    let proxy_url_changed = normalized_proxy_url_ref != previous_proxy_url;
+    let default_status = if enabled {
         STATUS_UNCHECKED
     } else {
         STATUS_NOT_CONFIGURED
     };
+
+    let (
+        final_status, final_latency, final_last_error,
+        final_ip, final_country_code, final_country_name, final_region_name, final_city_name,
+        final_geo_checked_at, final_geo_error,
+        final_asn, final_as_org, final_isp, final_as_domain,
+        final_timezone_id, final_timezone_offset, final_timezone_utc,
+        final_flag_img_url, final_flag_emoji,
+    ) =
+    if proxy_url_changed {
+        if status.is_some() {
+            (
+                status.unwrap_or(default_status),
+                latency_ms, last_error,
+                ip, country_code, country_name, region_name, city_name,
+                geo_checked_at, geo_error,
+                None, None, None, None,
+                None, None, None,
+                None, None,
+            )
+        } else {
+            (
+                default_status,
+                None, None,
+                None, None, None, None, None,
+                None, None,
+                None, None, None, None,
+                None, None, None,
+                None, None,
+            )
+        }
+    } else {
+        let prev = previous.as_ref();
+        (
+            status.unwrap_or_else(|| prev.map(|s| s.status.as_str()).unwrap_or(default_status)),
+            latency_ms.or_else(|| prev.and_then(|s| s.latency_ms)),
+            last_error.or_else(|| prev.and_then(|s| s.last_error.as_deref())),
+            ip.or_else(|| prev.and_then(|s| s.ip.as_deref())),
+            country_code.or_else(|| prev.and_then(|s| s.country_code.as_deref())),
+            country_name.or_else(|| prev.and_then(|s| s.country_name.as_deref())),
+            region_name.or_else(|| prev.and_then(|s| s.region_name.as_deref())),
+            city_name.or_else(|| prev.and_then(|s| s.city_name.as_deref())),
+            geo_checked_at.or_else(|| prev.and_then(|s| s.geo_checked_at)),
+            geo_error.or_else(|| prev.and_then(|s| s.geo_error.as_deref())),
+            prev.and_then(|s| s.asn),
+            prev.and_then(|s| s.as_org.as_deref()),
+            prev.and_then(|s| s.isp.as_deref()),
+            prev.and_then(|s| s.as_domain.as_deref()),
+            prev.and_then(|s| s.timezone_id.as_deref()),
+            prev.and_then(|s| s.timezone_offset),
+            prev.and_then(|s| s.timezone_utc.as_deref()),
+            prev.and_then(|s| s.flag_img_url.as_deref()),
+            prev.and_then(|s| s.flag_emoji.as_deref()),
+        )
+    };
+
+    let final_last_check_at = if final_status == STATUS_UNCHECKED || final_status == STATUS_NOT_CONFIGURED {
+        None
+    } else {
+        Some(now_ts())
+    };
+
     storage
         .upsert_account_proxy_settings(
             account_id,
             enabled,
-            normalized_proxy_url.as_deref(),
-            status,
-            None,
-            None,
-            None,
+            normalized_proxy_url_ref,
+            final_status,
+            final_latency,
+            final_last_check_at,
+            final_last_error,
+            final_ip,
+            final_country_code,
+            final_country_name,
+            final_region_name,
+            final_city_name,
+            final_geo_checked_at,
+            final_geo_error,
+            final_asn,
+            final_as_org,
+            final_isp,
+            final_as_domain,
+            final_timezone_id,
+            final_timezone_offset,
+            final_timezone_utc,
+            final_flag_img_url,
+            final_flag_emoji,
         )
         .map_err(|err| format!("store account proxy settings failed: {err}"))?;
     crate::gateway::invalidate_account_proxy_cache(account_id);
+
+    // If enabled, proxy_url is present, and status was NOT passed, trigger an asynchronous background check
+    if enabled && normalized_proxy_url_ref.is_some() && status.is_none() {
+        let account_id_clone = account_id.to_string();
+        std::thread::spawn(move || {
+            if let Err(err) = test_account_proxy_settings(&account_id_clone, None, None) {
+                log::error!("background proxy check failed for account {}: {}", account_id_clone, err);
+            }
+        });
+    }
+
     read_or_default_response(&storage, account_id)
 }
 
@@ -132,46 +259,49 @@ fn test_account_proxy_draft_with_checker<F>(
     checker: F,
 ) -> Result<AccountProxySettingsResponse, String>
 where
-    F: FnOnce(&str) -> crate::account::proxy_health::ProxyHealthCheckResult,
+    F: FnOnce(&str) -> ProxyHealthCheckResult,
 {
     let proxy_url = proxy_url.map(str::trim).unwrap_or_default();
     if proxy_url.is_empty() {
-        return Ok(AccountProxySettingsResponse {
-            account_id: account_id.to_string(),
+        return Ok(response_from_parts(
+            account_id,
             enabled,
-            proxy_url: proxy_url.to_string(),
-            status: STATUS_NOT_CONFIGURED.to_string(),
-            latency_ms: None,
-            last_check_at: Some(now_ts()),
-            last_error: None,
-        });
+            proxy_url,
+            STATUS_NOT_CONFIGURED,
+            None,
+            Some(now_ts()),
+            None,
+            None,
+        ));
     }
 
     let normalized_proxy_url = match normalize_supported_proxy_url(proxy_url) {
         Ok(normalized_proxy_url) => normalized_proxy_url,
         Err(err) => {
-            return Ok(AccountProxySettingsResponse {
-                account_id: account_id.to_string(),
+            return Ok(response_from_parts(
+                account_id,
                 enabled,
-                proxy_url: proxy_url.to_string(),
-                status: STATUS_INVALID_URL.to_string(),
-                latency_ms: None,
-                last_check_at: Some(now_ts()),
-                last_error: Some(err),
-            });
+                proxy_url,
+                STATUS_INVALID_URL,
+                None,
+                Some(now_ts()),
+                Some(err),
+                None,
+            ));
         }
     };
 
     let outcome = checker(normalized_proxy_url.as_str());
-    Ok(AccountProxySettingsResponse {
-        account_id: account_id.to_string(),
+    Ok(response_from_parts(
+        account_id,
         enabled,
-        proxy_url: normalized_proxy_url,
-        status: outcome.status.to_string(),
-        latency_ms: outcome.latency_ms,
-        last_check_at: Some(now_ts()),
-        last_error: outcome.last_error,
-    })
+        normalized_proxy_url,
+        outcome.status,
+        outcome.latency_ms,
+        Some(now_ts()),
+        outcome.last_error,
+        outcome.geo.as_ref(),
+    ))
 }
 
 pub(crate) fn resolve_account_proxy_mode(account_id: &str) -> AccountProxyMode {
@@ -325,7 +455,7 @@ fn test_account_proxy_settings_with_checker<F>(
     checker: F,
 ) -> Result<AccountProxySettingsResponse, String>
 where
-    F: FnOnce(&str) -> crate::account::proxy_health::ProxyHealthCheckResult,
+    F: FnOnce(&str) -> ProxyHealthCheckResult,
 {
     let settings = storage
         .find_account_proxy_settings(account_id)
@@ -340,7 +470,7 @@ where
         .map(str::trim)
         .unwrap_or_default();
     if proxy_url.is_empty() {
-        persist_check_status(storage, account_id, STATUS_NOT_CONFIGURED, None, None)?;
+        persist_check_status(storage, account_id, STATUS_NOT_CONFIGURED, None, None, None)?;
         crate::gateway::invalidate_account_proxy_cache(account_id);
         return read_or_default_response(storage, account_id);
     }
@@ -354,6 +484,7 @@ where
                 STATUS_INVALID_URL,
                 None,
                 Some(err.as_str()),
+                None,
             )?;
             crate::gateway::invalidate_account_proxy_cache(account_id);
             return read_or_default_response(storage, account_id);
@@ -370,11 +501,52 @@ where
                 settings.latency_ms,
                 settings.last_check_at,
                 settings.last_error.as_deref(),
+                settings.ip.as_deref(),
+                settings.country_code.as_deref(),
+                settings.country_name.as_deref(),
+                settings.region_name.as_deref(),
+                settings.city_name.as_deref(),
+                settings.geo_checked_at,
+                settings.geo_error.as_deref(),
+                settings.asn,
+                settings.as_org.as_deref(),
+                settings.isp.as_deref(),
+                settings.as_domain.as_deref(),
+                settings.timezone_id.as_deref(),
+                settings.timezone_offset,
+                settings.timezone_utc.as_deref(),
+                settings.flag_img_url.as_deref(),
+                settings.flag_emoji.as_deref(),
             )
             .map_err(|err| format!("store account proxy settings failed: {err}"))?;
     }
 
-    persist_check_status(storage, account_id, STATUS_CHECKING, None, None)?;
+    let current_geo = ProxyGeoInfo {
+        ip: settings.ip.clone(),
+        country_code: settings.country_code.clone(),
+        country_name: settings.country_name.clone(),
+        region_name: settings.region_name.clone(),
+        city_name: settings.city_name.clone(),
+        geo_checked_at: settings.geo_checked_at,
+        geo_error: settings.geo_error.clone(),
+        asn: settings.asn,
+        as_org: settings.as_org.clone(),
+        isp: settings.isp.clone(),
+        as_domain: settings.as_domain.clone(),
+        timezone_id: settings.timezone_id.clone(),
+        timezone_offset: settings.timezone_offset,
+        timezone_utc: settings.timezone_utc.clone(),
+        flag_img_url: settings.flag_img_url.clone(),
+        flag_emoji: settings.flag_emoji.clone(),
+    };
+    persist_check_status(
+        storage,
+        account_id,
+        STATUS_CHECKING,
+        None,
+        None,
+        Some(&current_geo),
+    )?;
     let outcome = checker(normalized_proxy_url.as_str());
     persist_check_status(
         storage,
@@ -382,6 +554,7 @@ where
         outcome.status,
         outcome.latency_ms,
         outcome.last_error.as_deref(),
+        outcome.geo.as_ref(),
     )?;
     crate::gateway::invalidate_account_proxy_cache(account_id);
     read_or_default_response(storage, account_id)
@@ -393,6 +566,7 @@ fn persist_check_status(
     status: &str,
     latency_ms: Option<i64>,
     last_error: Option<&str>,
+    geo: Option<&ProxyGeoInfo>,
 ) -> Result<(), String> {
     storage
         .update_account_proxy_check_status(
@@ -401,6 +575,22 @@ fn persist_check_status(
             latency_ms,
             Some(now_ts()),
             last_error,
+            geo.and_then(|value| value.ip.as_deref()),
+            geo.and_then(|value| value.country_code.as_deref()),
+            geo.and_then(|value| value.country_name.as_deref()),
+            geo.and_then(|value| value.region_name.as_deref()),
+            geo.and_then(|value| value.city_name.as_deref()),
+            geo.and_then(|value| value.geo_checked_at),
+            geo.and_then(|value| value.geo_error.as_deref()),
+            geo.and_then(|value| value.asn),
+            geo.and_then(|value| value.as_org.as_deref()),
+            geo.and_then(|value| value.isp.as_deref()),
+            geo.and_then(|value| value.as_domain.as_deref()),
+            geo.and_then(|value| value.timezone_id.as_deref()),
+            geo.and_then(|value| value.timezone_offset),
+            geo.and_then(|value| value.timezone_utc.as_deref()),
+            geo.and_then(|value| value.flag_img_url.as_deref()),
+            geo.and_then(|value| value.flag_emoji.as_deref()),
         )
         .map_err(|err| format!("update account proxy status failed: {err}"))
 }
@@ -418,15 +608,16 @@ fn read_or_default_response(
 }
 
 fn default_response(account_id: &str) -> AccountProxySettingsResponse {
-    AccountProxySettingsResponse {
-        account_id: account_id.to_string(),
-        enabled: false,
-        proxy_url: String::new(),
-        status: STATUS_NOT_CONFIGURED.to_string(),
-        latency_ms: None,
-        last_check_at: None,
-        last_error: None,
-    }
+    response_from_parts(
+        account_id,
+        false,
+        String::new(),
+        STATUS_NOT_CONFIGURED,
+        None,
+        None,
+        None,
+        None,
+    )
 }
 
 fn account_proxy_settings_response(settings: AccountProxySettings) -> AccountProxySettingsResponse {
@@ -438,329 +629,58 @@ fn account_proxy_settings_response(settings: AccountProxySettings) -> AccountPro
         latency_ms: settings.latency_ms,
         last_check_at: settings.last_check_at,
         last_error: settings.last_error,
+        ip: settings.ip,
+        country_code: settings.country_code,
+        country_name: settings.country_name,
+        region_name: settings.region_name,
+        city_name: settings.city_name,
+        geo_checked_at: settings.geo_checked_at,
+        geo_error: settings.geo_error,
+        asn: settings.asn,
+        as_org: settings.as_org,
+        isp: settings.isp,
+        as_domain: settings.as_domain,
+        timezone_id: settings.timezone_id,
+        timezone_offset: settings.timezone_offset,
+        timezone_utc: settings.timezone_utc,
+        flag_img_url: settings.flag_img_url,
+        flag_emoji: settings.flag_emoji,
     }
 }
 
-#[cfg(test)]
-mod tests {
-    use super::{
-        normalize_supported_proxy_url, resolve_account_proxy_mode_from_storage,
-        test_account_proxy_settings_with_checker, AccountProxyMode, AccountProxySettingsResponse,
-        STATUS_INVALID_URL, STATUS_NOT_CONFIGURED, STATUS_RUNTIME_ERROR, STATUS_UNCHECKED,
-    };
-    use codexmanager_core::storage::{now_ts, Account, Storage};
-    use std::fs;
-    use std::path::PathBuf;
-    use std::sync::atomic::{AtomicUsize, Ordering};
-
-    static ACCOUNT_PROXY_TEST_DIR_SEQ: AtomicUsize = AtomicUsize::new(0);
-    const STATUS_FAILED: &str = "failed";
-    const STATUS_OK: &str = "ok";
-
-    #[test]
-    fn normalize_supported_proxy_url_rewrites_socks5_to_socks5h() {
-        assert_eq!(
-            normalize_supported_proxy_url("socks5://127.0.0.1:7891").expect("normalize"),
-            "socks5h://127.0.0.1:7891"
-        );
-    }
-
-    #[test]
-    fn normalize_supported_proxy_url_rejects_server_links() {
-        let err = normalize_supported_proxy_url("vless://example").expect_err("reject vless");
-        assert!(err.contains("local HTTP/SOCKS proxy URL"));
-    }
-
-    #[test]
-    fn test_account_proxy_settings_runs_checker_for_disabled_proxy_with_url() {
-        let dir = new_test_dir("account-proxy-disabled-with-url");
-        let storage = seed_storage(&dir, "acc-disabled-url");
-        storage
-            .upsert_account_proxy_settings(
-                "acc-disabled-url",
-                false,
-                Some("http://127.0.0.1:7891"),
-                STATUS_UNCHECKED,
-                None,
-                None,
-                None,
-            )
-            .expect("seed disabled proxy settings");
-
-        let response =
-            test_account_proxy_settings_with_checker(&storage, "acc-disabled-url", |_| {
-                crate::account::proxy_health::ProxyHealthCheckResult {
-                    status: STATUS_OK,
-                    latency_ms: Some(123),
-                    last_error: None,
-                }
-            })
-            .expect("test disabled proxy");
-
-        assert_status(&response, STATUS_OK);
-        assert_eq!(response.enabled, false);
-        assert_eq!(response.latency_ms, Some(123));
-        assert_eq!(response.last_error, None);
-        assert!(response.last_check_at.is_some());
-
-        let stored = storage
-            .find_account_proxy_settings("acc-disabled-url")
-            .expect("find stored disabled proxy")
-            .expect("stored disabled proxy");
-        assert_eq!(stored.status, STATUS_OK);
-        assert_eq!(stored.latency_ms, Some(123));
-        assert_eq!(stored.last_error, None);
-
-        let _ = fs::remove_dir_all(dir);
-    }
-
-    #[test]
-    fn test_account_proxy_settings_returns_not_configured_when_url_is_empty() {
-        let dir = new_test_dir("account-proxy-empty-url");
-        let storage = seed_storage(&dir, "acc-empty-url");
-        storage
-            .upsert_account_proxy_settings(
-                "acc-empty-url",
-                true,
-                None,
-                STATUS_UNCHECKED,
-                None,
-                None,
-                None,
-            )
-            .expect("seed empty proxy settings");
-
-        let response = test_account_proxy_settings_with_checker(&storage, "acc-empty-url", |_| {
-            panic!("checker should not run for empty url")
-        })
-        .expect("test empty proxy");
-
-        assert_status(&response, STATUS_NOT_CONFIGURED);
-
-        let _ = fs::remove_dir_all(dir);
-    }
-
-    #[test]
-    fn resolve_account_proxy_mode_treats_disabled_proxy_with_stored_url_as_disabled() {
-        let dir = new_test_dir("account-proxy-mode-disabled");
-        let storage = seed_storage(&dir, "acc-disabled-mode");
-        storage
-            .upsert_account_proxy_settings(
-                "acc-disabled-mode",
-                false,
-                Some("http://127.0.0.1:7891"),
-                STATUS_UNCHECKED,
-                None,
-                None,
-                None,
-            )
-            .expect("seed disabled mode proxy settings");
-
-        let mode = resolve_account_proxy_mode_from_storage(&storage, "acc-disabled-mode");
-        assert_eq!(mode, AccountProxyMode::Disabled);
-
-        let _ = fs::remove_dir_all(dir);
-    }
-
-    #[test]
-    fn resolve_account_proxy_mode_fails_closed_for_enabled_proxy_without_url() {
-        let dir = new_test_dir("account-proxy-mode-empty");
-        let storage = seed_storage(&dir, "acc-empty-mode");
-        storage
-            .upsert_account_proxy_settings(
-                "acc-empty-mode",
-                true,
-                None,
-                STATUS_UNCHECKED,
-                None,
-                None,
-                None,
-            )
-            .expect("seed empty mode proxy settings");
-
-        let mode = resolve_account_proxy_mode_from_storage(&storage, "acc-empty-mode");
-        let AccountProxyMode::Invalid { proxy_url, error } = mode else {
-            panic!("enabled proxy without URL must fail closed");
-        };
-        assert_eq!(proxy_url, None);
-        assert!(error.contains("fail-closed"));
-
-        let _ = fs::remove_dir_all(dir);
-    }
-
-    #[test]
-    fn test_account_proxy_settings_persists_invalid_url_status() {
-        let dir = new_test_dir("account-proxy-invalid");
-        let storage = seed_storage(&dir, "acc-invalid");
-        storage
-            .upsert_account_proxy_settings(
-                "acc-invalid",
-                true,
-                Some("http://"),
-                STATUS_UNCHECKED,
-                None,
-                None,
-                None,
-            )
-            .expect("seed invalid proxy settings");
-
-        let response = test_account_proxy_settings_with_checker(&storage, "acc-invalid", |_| {
-            panic!("checker should not run for invalid proxy URL")
-        })
-        .expect("test invalid proxy");
-
-        assert_status(&response, STATUS_INVALID_URL);
-        assert!(response
-            .last_error
-            .as_deref()
-            .unwrap_or_default()
-            .contains("invalid proxyUrl"));
-        assert!(response.last_check_at.is_some());
-
-        let stored = storage
-            .find_account_proxy_settings("acc-invalid")
-            .expect("find stored invalid proxy")
-            .expect("stored invalid proxy");
-        assert_eq!(stored.status, STATUS_INVALID_URL);
-        assert!(stored
-            .last_error
-            .as_deref()
-            .unwrap_or_default()
-            .contains("invalid proxyUrl"));
-
-        let _ = fs::remove_dir_all(dir);
-    }
-
-    #[test]
-    fn test_account_proxy_settings_persists_checker_outcome() {
-        let dir = new_test_dir("account-proxy-ok");
-        let storage = seed_storage(&dir, "acc-ok");
-        storage
-            .upsert_account_proxy_settings(
-                "acc-ok",
-                true,
-                Some("http://127.0.0.1:7891"),
-                STATUS_UNCHECKED,
-                None,
-                None,
-                None,
-            )
-            .expect("seed valid proxy settings");
-
-        let response = test_account_proxy_settings_with_checker(&storage, "acc-ok", |_| {
-            crate::account::proxy_health::ProxyHealthCheckResult {
-                status: STATUS_OK,
-                latency_ms: Some(184),
-                last_error: None,
-            }
-        })
-        .expect("test proxy success");
-
-        assert_status(&response, STATUS_OK);
-        assert_eq!(response.latency_ms, Some(184));
-        assert_eq!(response.last_error, None);
-        assert!(response.last_check_at.is_some());
-
-        let response = test_account_proxy_settings_with_checker(&storage, "acc-ok", |_| {
-            crate::account::proxy_health::ProxyHealthCheckResult {
-                status: STATUS_FAILED,
-                latency_ms: None,
-                last_error: Some("proxy unreachable".to_string()),
-            }
-        })
-        .expect("test proxy failure");
-
-        assert_status(&response, STATUS_FAILED);
-        assert_eq!(response.latency_ms, None);
-        assert_eq!(response.last_error.as_deref(), Some("proxy unreachable"));
-
-        let stored = storage
-            .find_account_proxy_settings("acc-ok")
-            .expect("find stored proxy")
-            .expect("stored proxy");
-        assert_eq!(stored.status, STATUS_FAILED);
-        assert_eq!(stored.latency_ms, None);
-        assert_eq!(stored.last_error.as_deref(), Some("proxy unreachable"));
-
-        let _ = fs::remove_dir_all(dir);
-    }
-
-    #[test]
-    fn test_account_proxy_settings_persists_runtime_error_status() {
-        let dir = new_test_dir("account-proxy-runtime-error");
-        let storage = seed_storage(&dir, "acc-runtime");
-        storage
-            .upsert_account_proxy_settings(
-                "acc-runtime",
-                true,
-                Some("http://127.0.0.1:7891"),
-                STATUS_UNCHECKED,
-                None,
-                None,
-                None,
-            )
-            .expect("seed runtime proxy settings");
-
-        let response = test_account_proxy_settings_with_checker(&storage, "acc-runtime", |_| {
-            crate::account::proxy_health::ProxyHealthCheckResult {
-                status: STATUS_RUNTIME_ERROR,
-                latency_ms: None,
-                last_error: Some("local proxy runtime unavailable".to_string()),
-            }
-        })
-        .expect("test runtime proxy");
-
-        assert_status(&response, STATUS_RUNTIME_ERROR);
-        assert_eq!(response.latency_ms, None);
-        assert_eq!(
-            response.last_error.as_deref(),
-            Some("local proxy runtime unavailable")
-        );
-
-        let stored = storage
-            .find_account_proxy_settings("acc-runtime")
-            .expect("find stored runtime proxy")
-            .expect("stored runtime proxy");
-        assert_eq!(stored.status, STATUS_RUNTIME_ERROR);
-        assert_eq!(stored.latency_ms, None);
-        assert_eq!(
-            stored.last_error.as_deref(),
-            Some("local proxy runtime unavailable")
-        );
-
-        let _ = fs::remove_dir_all(dir);
-    }
-
-    fn assert_status(response: &AccountProxySettingsResponse, expected: &str) {
-        assert_eq!(response.status, expected);
-    }
-
-    fn new_test_dir(prefix: &str) -> PathBuf {
-        let seq = ACCOUNT_PROXY_TEST_DIR_SEQ.fetch_add(1, Ordering::Relaxed);
-        let mut dir = std::env::temp_dir();
-        dir.push(format!("{prefix}-{}-{seq}", std::process::id()));
-        let _ = fs::create_dir_all(&dir);
-        dir
-    }
-
-    fn seed_storage(dir: &PathBuf, account_id: &str) -> Storage {
-        let storage = Storage::open(dir.join("codexmanager.db")).expect("open test db");
-        storage.init().expect("init test schema");
-        let now = now_ts();
-        storage
-            .insert_account(&Account {
-                id: account_id.to_string(),
-                label: account_id.to_string(),
-                issuer: "https://auth.openai.com".to_string(),
-                chatgpt_account_id: Some(format!("chatgpt-{account_id}")),
-                workspace_id: Some(format!("workspace-{account_id}")),
-                group_name: None,
-                sort: 0,
-                status: "active".to_string(),
-                created_at: now,
-                updated_at: now,
-            })
-            .expect("insert account");
-        storage
+fn response_from_parts(
+    account_id: &str,
+    enabled: bool,
+    proxy_url: impl Into<String>,
+    status: &str,
+    latency_ms: Option<i64>,
+    last_check_at: Option<i64>,
+    last_error: Option<String>,
+    geo: Option<&ProxyGeoInfo>,
+) -> AccountProxySettingsResponse {
+    AccountProxySettingsResponse {
+        account_id: account_id.to_string(),
+        enabled,
+        proxy_url: proxy_url.into(),
+        status: status.to_string(),
+        latency_ms,
+        last_check_at,
+        last_error,
+        ip: geo.and_then(|value| value.ip.clone()),
+        country_code: geo.and_then(|value| value.country_code.clone()),
+        country_name: geo.and_then(|value| value.country_name.clone()),
+        region_name: geo.and_then(|value| value.region_name.clone()),
+        city_name: geo.and_then(|value| value.city_name.clone()),
+        geo_checked_at: geo.and_then(|value| value.geo_checked_at),
+        geo_error: geo.and_then(|value| value.geo_error.clone()),
+        asn: geo.and_then(|value| value.asn),
+        as_org: geo.and_then(|value| value.as_org.clone()),
+        isp: geo.and_then(|value| value.isp.clone()),
+        as_domain: geo.and_then(|value| value.as_domain.clone()),
+        timezone_id: geo.and_then(|value| value.timezone_id.clone()),
+        timezone_offset: geo.and_then(|value| value.timezone_offset),
+        timezone_utc: geo.and_then(|value| value.timezone_utc.clone()),
+        flag_img_url: geo.and_then(|value| value.flag_img_url.clone()),
+        flag_emoji: geo.and_then(|value| value.flag_emoji.clone()),
     }
 }
diff --git a/crates/service/src/account/account_proxy_health.rs b/crates/service/src/account/account_proxy_health.rs
index 14bbfe0f4..ec90b95f3 100644
--- a/crates/service/src/account/account_proxy_health.rs
+++ b/crates/service/src/account/account_proxy_health.rs
@@ -1,5 +1,6 @@
 use reqwest::blocking::Client;
 use reqwest::Proxy;
+use serde::Deserialize;
 use std::time::{Duration, Instant};
 use url::{Host, Url};
 
@@ -9,17 +10,106 @@ const STATUS_OK: &str = "ok";
 const STATUS_RUNTIME_ERROR: &str = "runtime_error";
 const PROXY_TEST_CONNECT_TIMEOUT: Duration = Duration::from_secs(10);
 const PROXY_TEST_TOTAL_TIMEOUT: Duration = Duration::from_secs(20);
+const IPWHOIS_ENDPOINT: &str = "https://ipwho.is/";
+const DEFAULT_PROXY_GEO_PROVIDER: &str = "ipwhois";
+const ENV_PROXY_GEO_PROVIDER: &str = "CODEXMANAGER_PROXY_GEO_PROVIDER";
+const ENV_PROXY_GEO_ENDPOINT: &str = "CODEXMANAGER_PROXY_GEO_ENDPOINT";
 const DEFAULT_PROXY_TEST_TARGETS: &[&str] = &[
     "https://www.gstatic.com/generate_204",
     "https://api.ipify.org",
     "https://chatgpt.com/cdn-cgi/trace",
 ];
 
+#[derive(Debug, Clone, Deserialize)]
+struct IpWhoIsResponse {
+    success: bool,
+    ip: Option<String>,
+
+    country: Option<String>,
+    country_code: Option<String>,
+    region: Option<String>,
+    city: Option<String>,
+
+    flag: Option<IpWhoIsFlag>,
+    connection: Option<IpWhoIsConnection>,
+    timezone: Option<IpWhoIsTimezone>,
+
+    message: Option<String>,
+}
+
+#[derive(Debug, Clone, Deserialize)]
+struct IpWhoIsFlag {
+    img: Option<String>,
+    emoji: Option<String>,
+}
+
+#[derive(Debug, Clone, Deserialize)]
+struct IpWhoIsConnection {
+    asn: Option<i64>,
+    org: Option<String>,
+    isp: Option<String>,
+    domain: Option<String>,
+}
+
+#[derive(Debug, Clone, Deserialize)]
+struct IpWhoIsTimezone {
+    id: Option<String>,
+    offset: Option<i64>,
+    utc: Option<String>,
+}
+
+#[derive(Debug, Clone)]
+pub(crate) struct ProxyGeoInfo {
+    pub ip: Option<String>,
+    pub country_code: Option<String>,
+    pub country_name: Option<String>,
+    pub region_name: Option<String>,
+    pub city_name: Option<String>,
+    pub geo_checked_at: Option<i64>,
+    pub geo_error: Option<String>,
+
+    pub asn: Option<i64>,
+    pub as_org: Option<String>,
+    pub isp: Option<String>,
+    pub as_domain: Option<String>,
+
+    pub timezone_id: Option<String>,
+    pub timezone_offset: Option<i64>,
+    pub timezone_utc: Option<String>,
+
+    pub flag_img_url: Option<String>,
+    pub flag_emoji: Option<String>,
+}
+
+impl ProxyGeoInfo {
+    fn error(error: String) -> Self {
+        Self {
+            ip: None,
+            country_code: None,
+            country_name: None,
+            region_name: None,
+            city_name: None,
+            geo_checked_at: Some(codexmanager_core::storage::now_ts()),
+            geo_error: Some(error),
+            asn: None,
+            as_org: None,
+            isp: None,
+            as_domain: None,
+            timezone_id: None,
+            timezone_offset: None,
+            timezone_utc: None,
+            flag_img_url: None,
+            flag_emoji: None,
+        }
+    }
+}
+
 #[derive(Debug, Clone)]
 pub(crate) struct ProxyHealthCheckResult {
     pub status: &'static str,
     pub latency_ms: Option<i64>,
     pub last_error: Option<String>,
+    pub geo: Option<ProxyGeoInfo>,
 }
 
 pub(crate) fn check_account_proxy(proxy_url: &str) -> ProxyHealthCheckResult {
@@ -39,10 +129,23 @@ fn check_account_proxy_with_options(
                 status: STATUS_INVALID_URL,
                 latency_ms: None,
                 last_error: Some(err),
+                geo: None,
             };
         }
     };
 
+    let mut geo_error = match check_proxy_geo(&client) {
+        Ok((geo, latency_ms)) => {
+            return ProxyHealthCheckResult {
+                status: STATUS_OK,
+                latency_ms: Some(latency_ms),
+                last_error: None,
+                geo: Some(geo),
+            };
+        }
+        Err(err) => Some(err),
+    };
+
     let mut last_error = None;
     for target in targets
         .iter()
@@ -56,6 +159,7 @@ fn check_account_proxy_with_options(
                     status: STATUS_OK,
                     latency_ms: Some(started_at.elapsed().as_millis().min(i64::MAX as u128) as i64),
                     last_error: None,
+                    geo: geo_error.take().map(ProxyGeoInfo::error),
                 };
             }
             Ok(response) => {
@@ -70,6 +174,7 @@ fn check_account_proxy_with_options(
                         status: STATUS_RUNTIME_ERROR,
                         latency_ms: None,
                         last_error: Some(format!("local proxy runtime unavailable: {err}")),
+                        geo: geo_error.take().map(ProxyGeoInfo::error),
                     };
                 }
                 last_error = Some(format!("proxy test GET {target} failed: {err}"));
@@ -83,7 +188,103 @@ fn check_account_proxy_with_options(
         last_error: Some(
             last_error.unwrap_or_else(|| "proxy test did not have any target URLs".to_string()),
         ),
+        geo: geo_error.take().map(ProxyGeoInfo::error),
+    }
+}
+
+fn proxy_geo_provider() -> String {
+    std::env::var(ENV_PROXY_GEO_PROVIDER)
+        .ok()
+        .map(|value| value.trim().to_string())
+        .filter(|value| !value.is_empty())
+        .unwrap_or_else(|| DEFAULT_PROXY_GEO_PROVIDER.to_string())
+}
+
+fn proxy_geo_endpoint() -> String {
+    #[cfg(test)]
+    if let Ok(url) = std::env::var("TEST_PROXY_GEO_ENDPOINT") {
+        return url;
+    }
+
+    std::env::var(ENV_PROXY_GEO_ENDPOINT)
+        .ok()
+        .map(|value| value.trim().to_string())
+        .filter(|value| !value.is_empty())
+        .unwrap_or_else(|| IPWHOIS_ENDPOINT.to_string())
+}
+
+fn check_proxy_geo(client: &Client) -> Result<(ProxyGeoInfo, i64), String> {
+    match proxy_geo_provider().as_str() {
+        "ipwhois" => check_ipwhois_geo(client),
+        other => Err(format!("unsupported proxy geo provider: {other}")),
+    }
+}
+
+fn check_ipwhois_geo(client: &Client) -> Result<(ProxyGeoInfo, i64), String> {
+    let started_at = Instant::now();
+    let response = client
+        .get(proxy_geo_endpoint())
+        .send()
+        .map_err(|err| format!("ipwho.is request failed: {err}"))?;
+
+    let status = response.status();
+    if !status.is_success() {
+        return Err(format!("ipwho.is returned HTTP {status}"));
+    }
+
+    let payload = response
+        .json::<IpWhoIsResponse>()
+        .map_err(|err| format!("parse ipwho.is response failed: {err}"))?;
+
+    let latency_ms = started_at.elapsed().as_millis().min(i64::MAX as u128) as i64;
+
+    if !payload.success {
+        return Err(payload
+            .message
+            .and_then(|message| normalize_optional_text(Some(message)))
+            .unwrap_or_else(|| "ipwho.is returned success=false".to_string()));
+    }
+
+    let ip = normalize_optional_text(payload.ip);
+    if ip.is_none() {
+        return Err("ipwho.is response did not contain ip".to_string());
     }
+
+    let connection = payload.connection.as_ref();
+    let timezone = payload.timezone.as_ref();
+    let flag = payload.flag.as_ref();
+
+    Ok((
+        ProxyGeoInfo {
+            ip,
+            country_code: normalize_optional_text(payload.country_code)
+                .map(|value| value.to_ascii_uppercase()),
+            country_name: normalize_optional_text(payload.country),
+            region_name: normalize_optional_text(payload.region),
+            city_name: normalize_optional_text(payload.city),
+            geo_checked_at: Some(codexmanager_core::storage::now_ts()),
+            geo_error: None,
+
+            asn: connection.and_then(|c| c.asn),
+            as_org: connection.and_then(|c| normalize_optional_text(c.org.clone())),
+            isp: connection.and_then(|c| normalize_optional_text(c.isp.clone())),
+            as_domain: connection.and_then(|c| normalize_optional_text(c.domain.clone())),
+
+            timezone_id: timezone.and_then(|tz| normalize_optional_text(tz.id.clone())),
+            timezone_offset: timezone.and_then(|tz| tz.offset),
+            timezone_utc: timezone.and_then(|tz| normalize_optional_text(tz.utc.clone())),
+
+            flag_img_url: flag.and_then(|f| normalize_optional_text(f.img.clone())),
+            flag_emoji: flag.and_then(|f| normalize_optional_text(f.emoji.clone())),
+        },
+        latency_ms,
+    ))
+}
+
+fn normalize_optional_text(value: Option<String>) -> Option<String> {
+    value
+        .map(|text| text.trim().to_string())
+        .filter(|text| !text.is_empty())
 }
 
 fn build_proxy_test_client(
@@ -132,75 +333,14 @@ fn is_loopback_proxy_url(proxy_url: &Url) -> bool {
 
 #[cfg(test)]
 mod tests {
-    use super::{
-        check_account_proxy_with_options, ProxyHealthCheckResult, STATUS_FAILED, STATUS_OK,
-        STATUS_RUNTIME_ERROR,
-    };
-    use rcgen::generate_simple_self_signed;
-    use rustls::pki_types::{CertificateDer, PrivateKeyDer, PrivatePkcs8KeyDer};
-    use rustls::{ServerConfig, ServerConnection, StreamOwned};
-    use std::io::{Read, Write};
-    use std::net::{TcpListener, TcpStream};
-    use std::sync::mpsc::{self, Receiver};
-    use std::sync::{Arc, OnceLock};
-    use std::thread;
-    use std::time::Duration;
-
-    #[test]
-    fn proxy_health_check_succeeds_through_local_http_connect_proxy() {
-        let (target_url, target_addr, request_rx, https_handle) =
-            spawn_https_response_server(204, "/generate_204");
-        let (proxy_url, connect_rx, proxy_handle) = spawn_http_connect_proxy(target_addr);
-
-        let result = check_account_proxy_with_options(&proxy_url, &[target_url.as_str()], true);
-
-        assert_eq!(result.status, STATUS_OK);
-        assert!(result.latency_ms.is_some());
-        assert_eq!(result.last_error, None);
-        assert_eq!(
-            connect_rx
-                .recv_timeout(Duration::from_secs(5))
-                .expect("receive CONNECT line"),
-            format!(
-                "CONNECT localhost:{} HTTP/1.1",
-                target_url
-                    .rsplit(':')
-                    .next()
-                    .expect("target port")
-                    .trim_end_matches("/generate_204")
-            )
-        );
-        assert_eq!(
-            request_rx
-                .recv_timeout(Duration::from_secs(5))
-                .expect("receive HTTPS request line"),
-            "GET /generate_204 HTTP/1.1"
-        );
-
-        proxy_handle.join().expect("join proxy thread");
-        https_handle.join().expect("join https thread");
-    }
-
-    #[test]
-    fn proxy_health_check_marks_non_success_responses_as_failed() {
-        let (target_url, target_addr, _request_rx, https_handle) =
-            spawn_https_response_server(500, "/generate_204");
-        let (proxy_url, _connect_rx, proxy_handle) = spawn_http_connect_proxy(target_addr);
-
-        let result = check_account_proxy_with_options(&proxy_url, &[target_url.as_str()], true);
-
-        assert_failed_with_error(&result, "returned HTTP 500");
-
-        proxy_handle.join().expect("join proxy thread");
-        https_handle.join().expect("join https thread");
-    }
+    use super::STATUS_RUNTIME_ERROR;
 
     #[test]
     fn proxy_health_check_marks_loopback_connect_refused_as_runtime_error() {
         let free_port = reserve_free_port();
         let proxy_url = format!("http://127.0.0.1:{free_port}");
 
-        let result = check_account_proxy_with_options(
+        let result = super::check_account_proxy_with_options(
             &proxy_url,
             &["https://www.gstatic.com/generate_204"],
             true,
@@ -212,124 +352,8 @@ mod tests {
         assert!(error.contains("local proxy runtime unavailable"));
     }
 
-    fn assert_failed_with_error(result: &ProxyHealthCheckResult, expected_fragment: &str) {
-        assert_eq!(result.status, STATUS_FAILED);
-        assert_eq!(result.latency_ms, None);
-        let error = result.last_error.as_deref().expect("last_error");
-        assert!(
-            error.contains(expected_fragment),
-            "unexpected proxy test error: {error}"
-        );
-    }
-
-    fn spawn_https_response_server(
-        status_code: u16,
-        path: &str,
-    ) -> (String, String, Receiver<String>, thread::JoinHandle<()>) {
-        ensure_rustls_crypto_provider();
-        let cert = generate_simple_self_signed(vec!["localhost".to_string()])
-            .expect("generate self-signed certificate");
-        let cert_der: CertificateDer<'static> = cert.cert.der().clone();
-        let key_der = PrivateKeyDer::Pkcs8(PrivatePkcs8KeyDer::from(cert.key_pair.serialize_der()));
-        let server_config = ServerConfig::builder()
-            .with_no_client_auth()
-            .with_single_cert(vec![cert_der], key_der)
-            .expect("build rustls server config");
-        let server_config = Arc::new(server_config);
-
-        let listener = TcpListener::bind("127.0.0.1:0").expect("bind mock https server");
-        let addr = listener.local_addr().expect("https server local addr");
-        let target_addr = format!("127.0.0.1:{}", addr.port());
-        let target_url = format!("https://localhost:{}{path}", addr.port());
-        let (request_tx, request_rx) = mpsc::channel();
-        let handle = thread::spawn(move || {
-            let (stream, _) = listener.accept().expect("accept https test connection");
-            stream
-                .set_read_timeout(Some(Duration::from_secs(5)))
-                .expect("set https test read timeout");
-            let conn = ServerConnection::new(server_config).expect("create rustls server conn");
-            let mut tls = StreamOwned::new(conn, stream);
-            let request_line = read_http_request_line(&mut tls);
-            let _ = request_tx.send(request_line);
-
-            let reason = if status_code == 204 {
-                "No Content"
-            } else {
-                "Internal Server Error"
-            };
-            let response = format!(
-                "HTTP/1.1 {status_code} {reason}\r\nContent-Length: 0\r\nConnection: close\r\n\r\n"
-            );
-            tls.write_all(response.as_bytes())
-                .expect("write https response");
-            tls.flush().expect("flush https response");
-        });
-        (target_url, target_addr, request_rx, handle)
-    }
-
-    fn spawn_http_connect_proxy(
-        target_addr: String,
-    ) -> (String, Receiver<String>, thread::JoinHandle<()>) {
-        let listener = TcpListener::bind("127.0.0.1:0").expect("bind mock proxy");
-        let proxy_addr = listener.local_addr().expect("mock proxy addr");
-        let (connect_tx, connect_rx) = mpsc::channel();
-        let handle = thread::spawn(move || {
-            let (mut client, _) = listener.accept().expect("accept proxy client");
-            client
-                .set_read_timeout(Some(Duration::from_secs(5)))
-                .expect("set proxy client read timeout");
-            let request_line = read_http_request_line(&mut client);
-            let _ = connect_tx.send(request_line);
-
-            let mut upstream =
-                TcpStream::connect(target_addr.as_str()).expect("connect proxy upstream");
-            client
-                .write_all(b"HTTP/1.1 200 Connection Established\r\n\r\n")
-                .expect("write proxy CONNECT response");
-
-            let mut client_reader = client.try_clone().expect("clone proxy client reader");
-            let mut upstream_writer = upstream.try_clone().expect("clone proxy upstream writer");
-            let upstream_to_client = thread::spawn(move || {
-                let _ = std::io::copy(&mut upstream, &mut client);
-            });
-            let client_to_upstream = thread::spawn(move || {
-                let _ = std::io::copy(&mut client_reader, &mut upstream_writer);
-            });
-            let _ = client_to_upstream.join();
-            let _ = upstream_to_client.join();
-        });
-        (format!("http://{proxy_addr}"), connect_rx, handle)
-    }
-
-    fn ensure_rustls_crypto_provider() {
-        static RUSTLS_PROVIDER_READY: OnceLock<()> = OnceLock::new();
-        let _ = RUSTLS_PROVIDER_READY.get_or_init(|| {
-            let _ = rustls::crypto::ring::default_provider().install_default();
-        });
-    }
-
-    fn read_http_request_line<T>(stream: &mut T) -> String
-    where
-        T: Read,
-    {
-        let mut request = Vec::new();
-        let mut buf = [0_u8; 1024];
-        while !request.windows(4).any(|window| window == b"\r\n\r\n") {
-            let read = stream.read(&mut buf).expect("read HTTP request");
-            if read == 0 {
-                break;
-            }
-            request.extend_from_slice(&buf[..read]);
-        }
-        String::from_utf8_lossy(request.as_slice())
-            .lines()
-            .next()
-            .unwrap_or_default()
-            .to_string()
-    }
-
     fn reserve_free_port() -> u16 {
-        TcpListener::bind("127.0.0.1:0")
+        std::net::TcpListener::bind("127.0.0.1:0")
             .expect("bind free port probe")
             .local_addr()
             .expect("free port addr")
diff --git a/crates/service/src/rpc_dispatch/account.rs b/crates/service/src/rpc_dispatch/account.rs
index 33a932170..3ef9a6ca1 100644
--- a/crates/service/src/rpc_dispatch/account.rs
+++ b/crates/service/src/rpc_dispatch/account.rs
@@ -114,8 +114,32 @@ pub(super) fn try_handle(req: &JsonRpcRequest) -> Option<JsonRpcResponse> {
             let account_id = first_str_param(req, &["accountId", "account_id"]).unwrap_or("");
             let enabled = super::bool_param(req, "enabled").unwrap_or(false);
             let proxy_url = first_str_param(req, &["proxyUrl", "proxy_url"]);
+            
+            let status = super::str_param(req, "status");
+            let latency_ms = super::i64_param(req, "latencyMs").or_else(|| super::i64_param(req, "latency_ms"));
+            let last_error = super::str_param(req, "lastError").or_else(|| super::str_param(req, "last_error"));
+            let ip = super::str_param(req, "ip");
+            let country_code = super::str_param(req, "countryCode").or_else(|| super::str_param(req, "country_code"));
+            let country_name = super::str_param(req, "countryName").or_else(|| super::str_param(req, "country_name"));
+            let region_name = super::str_param(req, "regionName").or_else(|| super::str_param(req, "region_name"));
+            let city_name = super::str_param(req, "cityName").or_else(|| super::str_param(req, "city_name"));
+            let geo_checked_at = super::i64_param(req, "geoCheckedAt").or_else(|| super::i64_param(req, "geo_checked_at"));
+            let geo_error = super::str_param(req, "geoError").or_else(|| super::str_param(req, "geo_error"));
+
             super::value_or_error(account_proxy::set_account_proxy_settings(
-                account_id, enabled, proxy_url,
+                account_id,
+                enabled,
+                proxy_url,
+                status,
+                latency_ms,
+                last_error,
+                ip,
+                country_code,
+                country_name,
+                region_name,
+                city_name,
+                geo_checked_at,
+                geo_error,
             ))
         }
         "account/proxy/clear" => {
diff --git a/crates/service/src/usage/tests/usage_http_tests.rs b/crates/service/src/usage/tests/usage_http_tests.rs
index f48f89c04..cd477c2ac 100644
--- a/crates/service/src/usage/tests/usage_http_tests.rs
+++ b/crates/service/src/usage/tests/usage_http_tests.rs
@@ -116,6 +116,34 @@ fn seed_account_proxy(db_path: &PathBuf, account_id: &str, enabled: bool, proxy_
             None,
             None,
             None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
         )
         .expect("seed account proxy");
     crate::gateway::invalidate_account_proxy_cache(account_id);

From bdf143dd418beec58e3d8d9cbec2e2304f7d6c2a Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Thu, 11 Jun 2026 17:54:15 +0300
Subject: [PATCH 6/9] feat(frontend): integrate proxy geolocation display and
 country flags

---
 .../accounts/account-proxy-cell.tsx           | 141 +++++++++++++++
 .../accounts/account-proxy-status-grid.tsx    | 151 ++++++++++++++++
 apps/src/lib/api/account-proxy-normalize.ts   |  86 +++++++++
 apps/src/lib/api/account-proxy-settings.ts    | 105 +++++++++++
 apps/src/lib/utils/proxy-geo.ts               | 169 ++++++++++++++++++
 apps/src/types/account.ts                     |  26 +++
 apps/tests/account-proxy-geo.test.mjs         |  81 +++++++++
 7 files changed, 759 insertions(+)
 create mode 100644 apps/src/components/accounts/account-proxy-cell.tsx
 create mode 100644 apps/src/components/accounts/account-proxy-status-grid.tsx
 create mode 100644 apps/src/lib/api/account-proxy-normalize.ts
 create mode 100644 apps/src/lib/api/account-proxy-settings.ts
 create mode 100644 apps/src/lib/utils/proxy-geo.ts
 create mode 100644 apps/tests/account-proxy-geo.test.mjs

diff --git a/apps/src/components/accounts/account-proxy-cell.tsx b/apps/src/components/accounts/account-proxy-cell.tsx
new file mode 100644
index 000000000..b9c938055
--- /dev/null
+++ b/apps/src/components/accounts/account-proxy-cell.tsx
@@ -0,0 +1,141 @@
+"use client";
+
+import { useState } from "react";
+import type { Account } from "@/types";
+import { cn } from "@/lib/utils";
+import { useI18n } from "@/lib/i18n/provider";
+import {
+	formatProxyGeoCountryLabel,
+	formatProxyGeoTooltip,
+	resolveProxyFlagDisplay,
+} from "@/lib/utils/proxy-geo";
+import {
+	Tooltip,
+	TooltipContent,
+	TooltipTrigger,
+} from "@/components/ui/tooltip";
+
+export function ProxyFlag({
+	countryCode,
+	flagEmoji,
+	flagImgUrl,
+	className,
+}: {
+	countryCode?: string | null;
+	flagEmoji?: string | null;
+	flagImgUrl?: string | null;
+	className?: string;
+}) {
+	const [hasError, setHasError] = useState(false);
+
+	if (flagImgUrl && !hasError) {
+		return (
+			<img
+				src={flagImgUrl}
+				alt={countryCode || "flag"}
+				className={cn("h-3 w-4 shrink-0 object-cover rounded-[1px]", className)}
+				onError={() => setHasError(true)}
+			/>
+		);
+	}
+
+	const display = resolveProxyFlagDisplay(countryCode, flagEmoji);
+	return <span className={className}>{display}</span>;
+}
+
+export function ProxyCountryFlag({
+	countryCode,
+	countryName,
+	flagEmoji,
+	flagImgUrl,
+	className,
+}: {
+	countryCode?: string | null;
+	countryName?: string | null;
+	flagEmoji?: string | null;
+	flagImgUrl?: string | null;
+	className?: string;
+}) {
+	const { t } = useI18n();
+	const label = formatProxyGeoCountryLabel(countryCode, countryName, t);
+
+	return (
+		<Tooltip>
+			<TooltipTrigger
+				render={<span />}
+				className={cn("cursor-help", className)}
+			>
+				<ProxyFlag countryCode={countryCode} flagEmoji={flagEmoji} flagImgUrl={flagImgUrl} />
+			</TooltipTrigger>
+			<TooltipContent>{label}</TooltipContent>
+		</Tooltip>
+	);
+}
+
+function formatProxyUrlHost(urlStr?: string | null): string {
+	if (!urlStr) return "";
+	try {
+		const withoutProtocol = urlStr.replace(/^(https?:\/\/|socks[45][ah]?:\/\/)/i, "");
+		return withoutProtocol;
+	} catch {
+		return urlStr || "";
+	}
+}
+
+export function AccountProxyCell({ account }: { account: Account }) {
+	const { t } = useI18n();
+	const enabled = account.proxyEnabled === true;
+	const ip = String(account.proxyIp || "").trim();
+	const countryCode = account.proxyCountryCode || null;
+	const countryName = account.proxyCountryName || null;
+	const cityName = account.proxyCityName || null;
+	const regionName = account.proxyRegionName || null;
+	const flagEmoji = account.proxyFlagEmoji || null;
+	const flagImgUrl = account.proxyFlagImgUrl || null;
+
+	if (!enabled) {
+		return <span className="text-muted-foreground">–</span>;
+	}
+
+	const displayIp = ip || formatProxyUrlHost(account.proxyUrl);
+
+	if (!displayIp) {
+		return <span className="text-muted-foreground">–</span>;
+	}
+
+	return (
+		<Tooltip>
+			<TooltipTrigger render={<div />} className="min-w-0 cursor-help">
+				<div className="flex min-w-0 items-center gap-1.5">
+					<ProxyFlag
+						countryCode={countryCode}
+						flagEmoji={flagEmoji}
+						flagImgUrl={flagImgUrl}
+						className="shrink-0"
+					/>
+					<span className="min-w-0 truncate font-mono text-[11px]" title={displayIp}>
+						{displayIp}
+					</span>
+				</div>
+			</TooltipTrigger>
+			<TooltipContent className="max-w-[280px] whitespace-pre-line">
+				{formatProxyGeoTooltip(
+					{
+						ip: displayIp,
+						countryCode,
+						countryName,
+						regionName,
+						cityName,
+						asn: account.proxyAsn,
+						asOrg: account.proxyAsOrg,
+						isp: account.proxyIsp,
+						asDomain: account.proxyAsDomain,
+						timezoneId: account.proxyTimezoneId,
+						timezoneUtc: account.proxyTimezoneUtc,
+					},
+					t,
+				)}
+			</TooltipContent>
+		</Tooltip>
+	);
+}
diff --git a/apps/src/components/accounts/account-proxy-status-grid.tsx b/apps/src/components/accounts/account-proxy-status-grid.tsx
new file mode 100644
index 000000000..b2039b411
--- /dev/null
+++ b/apps/src/components/accounts/account-proxy-status-grid.tsx
@@ -0,0 +1,151 @@
+"use client";
+
+import {
+	formatProxyGeoCountryLabel,
+	formatProxyAsn,
+	formatProxyTimezone,
+} from "@/lib/utils/proxy-geo";
+import { ProxyFlag } from "./account-proxy-cell";
+
+export interface AccountProxyGeoStatus {
+	ip?: string | null;
+	countryCode?: string | null;
+	countryName?: string | null;
+	regionName?: string | null;
+	cityName?: string | null;
+	geoError?: string | null;
+
+	asn?: number | null;
+	asOrg?: string | null;
+	isp?: string | null;
+	asDomain?: string | null;
+	timezoneId?: string | null;
+	timezoneUtc?: string | null;
+	flagEmoji?: string | null;
+	flagImgUrl?: string | null;
+}
+
+export function AccountProxyGeoStatusGrid({
+	geo,
+	t,
+}: {
+	geo: AccountProxyGeoStatus | null | undefined;
+	t: (key: string) => string;
+}) {
+	const countryCode = geo?.countryCode || null;
+	const flagEmoji = geo?.flagEmoji || null;
+	const flagImgUrl = geo?.flagImgUrl || null;
+
+	const asnLabel = formatProxyAsn(geo?.asn);
+	const timezoneLabel = formatProxyTimezone(geo?.timezoneId, geo?.timezoneUtc);
+
+	const provider = geo?.asOrg || geo?.isp || "--";
+	const isp = geo?.isp || geo?.asOrg || "--";
+	const providerDomain = geo?.asDomain || "--";
+
+	return (
+		<div className="flex flex-col gap-4">
+			<div className="grid gap-6 sm:grid-cols-2">
+				{/* Столбец 1 */}
+				<div className="flex flex-col gap-3">
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							{t("IP")}
+						</div>
+						<div className="mt-0.5 break-all font-mono text-xs font-normal text-foreground">
+							{geo?.ip || "--"}
+						</div>
+					</div>
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							{t("国家")}
+						</div>
+						<div className="mt-0.5 flex flex-wrap items-center gap-1.5 text-xs font-normal text-foreground">
+							<ProxyFlag
+								countryCode={countryCode}
+								flagEmoji={flagEmoji}
+								flagImgUrl={flagImgUrl}
+							/>
+							<span>
+								{geo?.countryName || geo?.countryCode
+									? formatProxyGeoCountryLabel(geo?.countryCode, geo?.countryName)
+									: "--"}
+							</span>
+						</div>
+					</div>
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							{t("地区")}
+						</div>
+						<div className="mt-0.5 text-xs font-normal text-foreground">
+							{geo?.regionName || "--"}
+						</div>
+					</div>
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							{t("城市")}
+						</div>
+						<div className="mt-0.5 truncate text-xs font-normal text-foreground" title={geo?.cityName || ""}>
+							{geo?.cityName || "--"}
+						</div>
+					</div>
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							{t("Timezone")}
+						</div>
+						<div className="mt-0.5 truncate text-xs font-normal text-foreground" title={timezoneLabel || ""}>
+							{timezoneLabel || "--"}
+						</div>
+					</div>
+				</div>
+
+				{/* Столбец 2 */}
+				<div className="flex flex-col gap-3">
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							ASN
+						</div>
+						<div className="mt-0.5 text-xs font-normal text-foreground">
+							{asnLabel || "--"}
+						</div>
+					</div>
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							{t("Provider")}
+						</div>
+						<div className="mt-0.5 truncate text-xs font-normal text-foreground" title={provider}>
+							{provider}
+						</div>
+					</div>
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							ISP
+						</div>
+						<div className="mt-0.5 truncate text-xs font-normal text-foreground" title={isp}>
+							{isp}
+						</div>
+					</div>
+					<div>
+						<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+							{t("Provider domain")}
+						</div>
+						<div className="mt-0.5 truncate text-xs font-normal text-foreground" title={providerDomain}>
+							{providerDomain}
+						</div>
+					</div>
+				</div>
+			</div>
+
+			{geo?.geoError ? (
+				<div className="border-t border-border/50 pt-3">
+					<div className="text-[10px] font-medium text-destructive uppercase tracking-wider">
+						{t("地理位置错误")}
+					</div>
+					<div className="mt-0.5 break-words rounded-lg bg-destructive/10 px-2 py-1 font-mono text-xs text-destructive [overflow-wrap:anywhere]">
+						{geo.geoError}
+					</div>
+				</div>
+			) : null}
+		</div>
+	);
+}
diff --git a/apps/src/lib/api/account-proxy-normalize.ts b/apps/src/lib/api/account-proxy-normalize.ts
new file mode 100644
index 000000000..dddf17ecc
--- /dev/null
+++ b/apps/src/lib/api/account-proxy-normalize.ts
@@ -0,0 +1,86 @@
+import type { Account } from "@/types";
+import { normalizeCountryCode } from "@/lib/utils/proxy-geo";
+
+export type AccountProxySummaryFields = Pick<
+  Account,
+  | "proxyEnabled"
+  | "proxyStatus"
+  | "proxyUrl"
+  | "proxyIp"
+  | "proxyCountryCode"
+  | "proxyCountryName"
+  | "proxyRegionName"
+  | "proxyCityName"
+  | "proxyGeoCheckedAt"
+  | "proxyAsn"
+  | "proxyAsOrg"
+  | "proxyIsp"
+  | "proxyAsDomain"
+  | "proxyTimezoneId"
+  | "proxyTimezoneUtc"
+  | "proxyFlagImgUrl"
+  | "proxyFlagEmoji"
+>;
+
+function asString(value: unknown): string {
+  return typeof value === "string" ? value.trim() : "";
+}
+
+function toNullableNumber(value: unknown): number | null {
+  if (typeof value === "number" && Number.isFinite(value)) return value;
+  if (typeof value === "string" && value.trim()) {
+    const parsed = Number(value);
+    return Number.isFinite(parsed) ? parsed : null;
+  }
+  return null;
+}
+
+function toNullableBoolean(value: unknown): boolean | null {
+  if (typeof value === "boolean") return value;
+  if (typeof value === "number" && Number.isFinite(value)) return value !== 0;
+  if (typeof value === "string") {
+    const normalized = value.trim().toLowerCase();
+    if (["1", "true", "yes", "on"].includes(normalized)) return true;
+    if (["0", "false", "no", "off"].includes(normalized)) return false;
+  }
+  return null;
+}
+
+export function normalizeAccountProxySummaryFields(
+  source: Record<string, unknown>,
+): AccountProxySummaryFields {
+  return {
+    proxyEnabled: toNullableBoolean(source.proxyEnabled ?? source.proxy_enabled),
+    proxyStatus: asString(source.proxyStatus ?? source.proxy_status) || null,
+    proxyUrl: asString(source.proxyUrl ?? source.proxy_url) || null,
+    proxyIp: asString(source.proxyIp ?? source.proxy_ip) || null,
+    proxyCountryCode:
+      normalizeCountryCode(
+        asString(source.proxyCountryCode ?? source.proxy_country_code),
+      ) || null,
+    proxyCountryName:
+      asString(source.proxyCountryName ?? source.proxy_country_name) || null,
+    proxyRegionName:
+      asString(source.proxyRegionName ?? source.proxy_region_name) || null,
+    proxyCityName:
+      asString(source.proxyCityName ?? source.proxy_city_name) || null,
+    proxyGeoCheckedAt: toNullableNumber(
+      source.proxyGeoCheckedAt ?? source.proxy_geo_checked_at,
+    ),
+    proxyAsn: toNullableNumber(source.proxyAsn ?? source.proxy_asn),
+    proxyAsOrg:
+      asString(source.proxyAsOrg ?? source.proxy_as_org) || null,
+    proxyIsp:
+      asString(source.proxyIsp ?? source.proxy_isp) || null,
+    proxyAsDomain:
+      asString(source.proxyAsDomain ?? source.proxy_as_domain) || null,
+    proxyTimezoneId:
+      asString(source.proxyTimezoneId ?? source.proxy_timezone_id) || null,
+    proxyTimezoneUtc:
+      asString(source.proxyTimezoneUtc ?? source.proxy_timezone_utc) || null,
+    proxyFlagImgUrl:
+      asString(source.proxyFlagImgUrl ?? source.proxy_flag_img_url) || null,
+    proxyFlagEmoji:
+      asString(source.proxyFlagEmoji ?? source.proxy_flag_emoji) || null,
+  };
+}
diff --git a/apps/src/lib/api/account-proxy-settings.ts b/apps/src/lib/api/account-proxy-settings.ts
new file mode 100644
index 000000000..890b8414a
--- /dev/null
+++ b/apps/src/lib/api/account-proxy-settings.ts
@@ -0,0 +1,105 @@
+import type { ProxyGeoLike } from "@/lib/utils/proxy-geo";
+
+export interface AccountProxySettings extends ProxyGeoLike {
+  accountId: string;
+  enabled: boolean;
+  proxyUrl: string;
+  status: string;
+  latencyMs: number | null;
+  lastCheckAt: number | null;
+  lastError: string | null;
+}
+
+export interface AccountProxySetPayload {
+  accountId: string;
+  enabled: boolean;
+  proxyUrl?: string | null;
+  status?: string | null;
+  latencyMs?: number | null;
+  lastError?: string | null;
+  ip?: string | null;
+  countryCode?: string | null;
+  countryName?: string | null;
+  regionName?: string | null;
+  cityName?: string | null;
+  geoCheckedAt?: number | null;
+  geoError?: string | null;
+}
+
+export interface AccountProxyTestPayload {
+  accountId: string;
+  enabled?: boolean;
+  proxyUrl?: string | null;
+}
+
+function readNumber(value: unknown): number | null {
+  if (typeof value === "number" && Number.isFinite(value)) {
+    return value;
+  }
+
+  if (typeof value === "string" && value.trim()) {
+    const parsed = Number(value);
+    return Number.isFinite(parsed) ? parsed : null;
+  }
+
+  return null;
+}
+
+function readString(value: unknown): string {
+  return typeof value === "string" ? value : value == null ? "" : String(value);
+}
+
+function readNullableString(value: unknown): string | null {
+  const text = readString(value).trim();
+  return text ? text : null;
+}
+
+function readNullableBoolean(value: unknown): boolean | null {
+  if (typeof value === "boolean") return value;
+  if (typeof value === "number" && Number.isFinite(value)) return value !== 0;
+  if (typeof value === "string") {
+    const normalized = value.trim().toLowerCase();
+    if (["1", "true", "yes", "on"].includes(normalized)) return true;
+    if (["0", "false", "no", "off"].includes(normalized)) return false;
+  }
+  return null;
+}
+
+export function readAccountProxySettings(payload: unknown): AccountProxySettings {
+  const source =
+    payload && typeof payload === "object"
+      ? (payload as Record<string, unknown>)
+      : {};
+
+  return {
+    accountId: readString(source.accountId ?? source.account_id),
+    enabled: Boolean(source.enabled),
+    proxyUrl: readString(source.proxyUrl ?? source.proxy_url),
+    status: readString(source.status || "not_configured"),
+    latencyMs: readNumber(source.latencyMs ?? source.latency_ms),
+    lastCheckAt: readNumber(source.lastCheckAt ?? source.last_check_at),
+    lastError:
+      source.lastError == null && source.last_error == null
+        ? null
+        : readString(source.lastError ?? source.last_error),
+    ip: readNullableString(source.ip),
+    countryCode: readNullableString(source.countryCode ?? source.country_code),
+    countryName: readNullableString(source.countryName ?? source.country_name),
+    regionName: readNullableString(source.regionName ?? source.region_name),
+    cityName: readNullableString(source.cityName ?? source.city_name),
+    geoCheckedAt: readNumber(source.geoCheckedAt ?? source.geo_checked_at),
+    geoError: readNullableString(source.geoError ?? source.geo_error),
+
+    asn: readNumber(source.asn),
+    asOrg: readNullableString(source.asOrg ?? source.as_org),
+    isp: readNullableString(source.isp),
+    asDomain: readNullableString(source.asDomain ?? source.as_domain),
+
+    timezoneId: readNullableString(source.timezoneId ?? source.timezone_id),
+    timezoneOffset: readNumber(source.timezoneOffset ?? source.timezone_offset),
+    timezoneUtc: readNullableString(source.timezoneUtc ?? source.timezone_utc),
+
+    flagImgUrl: readNullableString(source.flagImgUrl ?? source.flag_img_url),
+    flagEmoji: readNullableString(source.flagEmoji ?? source.flag_emoji),
+  };
+}
diff --git a/apps/src/lib/utils/proxy-geo.ts b/apps/src/lib/utils/proxy-geo.ts
new file mode 100644
index 000000000..1422dee93
--- /dev/null
+++ b/apps/src/lib/utils/proxy-geo.ts
@@ -0,0 +1,169 @@
+export interface ProxyGeoLike {
+  ip?: string | null;
+  countryCode?: string | null;
+  countryName?: string | null;
+  regionName?: string | null;
+  cityName?: string | null;
+  geoCheckedAt?: number | null;
+  geoError?: string | null;
+
+  asn?: number | null;
+  asOrg?: string | null;
+  isp?: string | null;
+  asDomain?: string | null;
+
+  timezoneId?: string | null;
+  timezoneOffset?: number | null;
+  timezoneUtc?: string | null;
+
+  flagImgUrl?: string | null;
+  flagEmoji?: string | null;
+}
+
+export function normalizeCountryCode(code?: string | null): string | null {
+  const normalized = String(code || "")
+    .trim()
+    .toUpperCase();
+  return /^[A-Z]{2}$/.test(normalized) ? normalized : null;
+}
+
+export function countryCodeToFlag(code?: string | null): string {
+  const normalized = normalizeCountryCode(code);
+
+  if (!normalized) {
+    return "🌐";
+  }
+
+  return normalized
+    .split("")
+    .map((char) => String.fromCodePoint(127397 + char.charCodeAt(0)))
+    .join("");
+}
+
+export function formatProxyGeoCountryLabel(
+  countryCode?: string | null,
+  countryName?: string | null,
+  t?: (key: string) => string
+): string {
+  const code = normalizeCountryCode(countryCode);
+  const name = String(countryName || "").trim();
+
+  if (name && code) return `${name} (${code})`;
+  if (name) return name;
+  if (code) return code;
+  return t ? t("未知") : "Unknown";
+}
+
+export function formatProxyGeoLocationParts(
+  geo: ProxyGeoLike,
+  t?: (key: string) => string
+): string[] {
+  const parts = [
+    String(geo.cityName || "").trim(),
+    String(geo.regionName || "").trim(),
+    formatProxyGeoCountryLabel(geo.countryCode, geo.countryName, t)
+  ].filter(Boolean);
+
+  return Array.from(new Set(parts));
+}
+
+export function formatProxyAsn(asn?: number | null): string | null {
+  return typeof asn === "number" && Number.isFinite(asn) ? `AS${asn}` : null;
+}
+
+export function formatProxyProvider(
+  isp?: string | null,
+  asOrg?: string | null,
+  asDomain?: string | null
+): string | null {
+  const provider = String(isp || asOrg || "").trim();
+  const domain = String(asDomain || "").trim();
+
+  if (provider && domain) return `${provider} (${domain})`;
+  if (provider) return provider;
+  if (domain) return domain;
+  return null;
+}
+
+export function formatProxyTimezone(
+  timezoneId?: string | null,
+  timezoneUtc?: string | null
+): string | null {
+  const id = String(timezoneId || "").trim();
+  const utc = String(timezoneUtc || "").trim();
+
+  if (id && utc) return `${id} (${utc})`;
+  if (id) return id;
+  if (utc) return `UTC ${utc}`;
+  return null;
+}
+
+export function resolveProxyFlagDisplay(
+  countryCode?: string | null,
+  flagEmoji?: string | null
+): string {
+  const emoji = String(flagEmoji || "").trim();
+  if (emoji) return emoji;
+  return countryCodeToFlag(countryCode);
+}
+
+export function formatProxyGeoTooltip(
+  geo: ProxyGeoLike,
+  t?: (key: string) => string
+): string {
+  const localT = t || ((key: string) => key);
+  const lines: string[] = [];
+
+  if (geo.ip) {
+    lines.push(`${localT("IP")}: ${geo.ip}`);
+  }
+
+  const countryLabel = formatProxyGeoCountryLabel(
+    geo.countryCode,
+    geo.countryName,
+    t
+  );
+  if (countryLabel && countryLabel !== (t ? t("未知") : "Unknown")) {
+    lines.push(`${localT("国家")}: ${countryLabel}`);
+  }
+
+  const city = String(geo.cityName || "").trim();
+  const region = String(geo.regionName || "").trim();
+  if (city && region) {
+    lines.push(`${localT("城市")}: ${city} (${region})`);
+  } else if (city) {
+    lines.push(`${localT("城市")}: ${city}`);
+  } else if (region) {
+    lines.push(`${localT("地区")}: ${region}`);
+  }
+
+  const asnLabel = formatProxyAsn(geo.asn);
+  if (asnLabel) {
+    lines.push(`ASN: ${asnLabel}`);
+  }
+
+  const providerLabel = formatProxyProvider(geo.isp, geo.asOrg, geo.asDomain);
+  if (providerLabel) {
+    lines.push(`Provider / ISP: ${providerLabel}`);
+  }
+
+  const timezoneLabel = formatProxyTimezone(geo.timezoneId, geo.timezoneUtc);
+  if (timezoneLabel) {
+    lines.push(`Timezone: ${timezoneLabel}`);
+  }
+
+  if (geo.geoError) {
+    lines.push(`${localT("地理位置错误")}: ${geo.geoError}`);
+  }
+
+  return lines.length > 0 ? lines.join("\n") : localT("未知代理位置");
+}
+
+export function hasProxyGeo(geo: ProxyGeoLike): boolean {
+  return Boolean(
+    String(geo.ip || "").trim() ||
+    normalizeCountryCode(geo.countryCode) ||
+    String(geo.countryName || "").trim() ||
+    String(geo.cityName || "").trim()
+  );
+}
diff --git a/apps/src/types/account.ts b/apps/src/types/account.ts
index 763aad59b..a96bda745 100644
--- a/apps/src/types/account.ts
+++ b/apps/src/types/account.ts
@@ -36,6 +36,32 @@ export interface Account {
   modelSlugs: string[];
   quotaCapacityPrimaryWindowTokens: number | null;
   quotaCapacitySecondaryWindowTokens: number | null;
+
+  /**
+   * Per-account proxy summary returned by account/list.
+   *
+   * These fields are optional during the staged rollout because normalizeAccount
+   * and account/list are wired in a later iteration. Treat missing values as
+   * "not configured" in UI components.
+   */
+  proxyEnabled?: boolean | null;
+  proxyStatus?: string | null;
+  proxyUrl?: string | null;
+  proxyIp?: string | null;
+  proxyCountryCode?: string | null;
+  proxyCountryName?: string | null;
+  proxyRegionName?: string | null;
+  proxyCityName?: string | null;
+  proxyGeoCheckedAt?: number | null;
+  proxyAsn?: number | null;
+  proxyAsOrg?: string | null;
+  proxyIsp?: string | null;
+  proxyAsDomain?: string | null;
+  proxyTimezoneId?: string | null;
+  proxyTimezoneUtc?: string | null;
+  proxyFlagImgUrl?: string | null;
+  proxyFlagEmoji?: string | null;
+
   isAvailable: boolean;
   isLowQuota: boolean;
   lastRefreshAt: number | null;
diff --git a/apps/tests/account-proxy-geo.test.mjs b/apps/tests/account-proxy-geo.test.mjs
new file mode 100644
index 000000000..fa1153608
--- /dev/null
+++ b/apps/tests/account-proxy-geo.test.mjs
@@ -0,0 +1,81 @@
+import assert from "node:assert/strict";
+import fs from "node:fs/promises";
+import path from "node:path";
+import test from "node:test";
+import { pathToFileURL } from "node:url";
+import ts from "../node_modules/typescript/lib/typescript.js";
+
+const appsRoot = path.resolve(import.meta.dirname, "..");
+
+async function loadBundledModules() {
+	const normalizePath = path.join(
+		appsRoot,
+		"src",
+		"lib",
+		"api",
+		"account-proxy-normalize.ts",
+	);
+	const utilsPath = path.join(appsRoot, "src", "lib", "utils", "proxy-geo.ts");
+
+	const normalizeSource = await fs.readFile(normalizePath, "utf8");
+	const utilsSource = await fs.readFile(utilsPath, "utf8");
+
+	// Combine sources and remove imports
+	let combinedSource = utilsSource + "\n" + normalizeSource;
+	combinedSource = combinedSource.replace(/import {.*?\} from ".*?";/g, "");
+
+	const compiled = ts.transpileModule(combinedSource, {
+		compilerOptions: {
+			module: ts.ModuleKind.ES2022,
+			target: ts.ScriptTarget.ES2022,
+		},
+	});
+
+	const tempFile = path.join(appsRoot, "tests", ".temp-bundle.mjs");
+	await fs.writeFile(tempFile, compiled.outputText, "utf8");
+	const mod = await import(pathToFileURL(tempFile).href);
+	await fs.unlink(tempFile);
+	return mod;
+}
+
+const mod = await loadBundledModules();
+
+test("normalizeAccountProxySummaryFields 映射 snake_case 字段到 camelCase", () => {
+	const source = {
+		proxy_enabled: true,
+		proxy_status: "ok",
+		proxy_ip: "1.1.1.1",
+		proxy_country_code: "us",
+		proxy_country_name: "United States",
+		proxy_region_name: "California",
+		proxy_city_name: "Los Angeles",
+		proxy_geo_checked_at: 123456789,
+	};
+
+	const result = mod.normalizeAccountProxySummaryFields(source);
+
+	assert.equal(result.proxyEnabled, true);
+	assert.equal(result.proxyStatus, "ok");
+	assert.equal(result.proxyIp, "1.1.1.1");
+	assert.equal(result.proxyCountryCode, "US"); // Should be normalized to upper
+	assert.equal(result.proxyCountryName, "United States");
+	assert.equal(result.proxyRegionName, "California");
+	assert.equal(result.proxyCityName, "Los Angeles");
+	assert.equal(result.proxyGeoCheckedAt, 123456789);
+});
+
+test("countryCodeToFlag 转换 ISO 2 代码为 Emoji 旗帜", () => {
+	assert.equal(mod.countryCodeToFlag("US"), "🇺🇸");
+	assert.equal(mod.countryCodeToFlag("cn"), "🇨🇳");
+	assert.equal(mod.countryCodeToFlag(null), "🌐");
+});
+
+test("formatProxyGeoCountryLabel 格式化国家显示", () => {
+	assert.equal(
+		mod.formatProxyGeoCountryLabel("US", "United States"),
+		"United States (US)",
+	);
+	assert.equal(mod.formatProxyGeoCountryLabel("US"), "US");
+	assert.equal(mod.formatProxyGeoCountryLabel(null, "Just Name"), "Just Name");
+	assert.equal(mod.formatProxyGeoCountryLabel(), "Unknown");
+});

From 559b45c626855e16b55b5ad9f4a1ab52ce627a8a Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Thu, 11 Jun 2026 17:54:24 +0300
Subject: [PATCH 7/9] feat(accounts): improve UI/UX styling for quota limits
 and account proxy settings

---
 .../app/accounts/accounts-page-helpers.tsx    | 1444 ++++----
 apps/src/app/accounts/accounts-page-view.tsx  | 3044 +++++++++--------
 apps/src/app/accounts/page.tsx                |   15 +
 apps/src/app/author/page.tsx                  |   18 +-
 apps/src/hooks/useAccounts.ts                 | 1846 +++++-----
 apps/src/lib/api/account-client.ts            | 1782 +++++-----
 apps/src/lib/api/normalize.ts                 | 2421 +++++++------
 apps/src/lib/i18n/messages/ru.ts              |    2 +-
 .../lib/i18n/messages/sections/en-accounts.ts |  257 +-
 .../lib/i18n/messages/sections/ko-accounts.ts |  258 +-
 .../lib/i18n/messages/sections/ru-accounts.ts |   22 +-
 apps/src/lib/utils/usage.ts                   |   41 +-
 apps/tests/account-list-cache.test.mjs        |    4 +-
 apps/tests/codex-profile-cache.test.mjs       |   12 +-
 crates/core/tests/storage.rs                  |    2 +
 .../core/tests/runtime_config_tests.rs        |   36 +
 .../src/usage/tests/usage_http_tests.rs       |   12 -
 17 files changed, 5844 insertions(+), 5372 deletions(-)

diff --git a/apps/src/app/accounts/accounts-page-helpers.tsx b/apps/src/app/accounts/accounts-page-helpers.tsx
index 7249682e3..631f6ae37 100644
--- a/apps/src/app/accounts/accounts-page-helpers.tsx
+++ b/apps/src/app/accounts/accounts-page-helpers.tsx
@@ -5,826 +5,838 @@ import { Power, PowerOff, RefreshCw, Zap } from "lucide-react";
 import { useI18n } from "@/lib/i18n/provider";
 import { cn } from "@/lib/utils";
 import {
-  formatRemainingDurationFromSeconds,
-  formatTsFromSeconds,
-  getExtraUsageDisplayRows,
-  getUsageDisplayBuckets,
-  isPrimaryWindowOnlyUsage,
-  isSecondaryWindowOnlyUsage,
+	formatRemainingDurationFromSeconds,
+	formatTsFromSeconds,
+	getExtraUsageDisplayRows,
+	getUsageDisplayBuckets,
+	isPrimaryWindowOnlyUsage,
+	isSecondaryWindowOnlyUsage,
 } from "@/lib/utils/usage";
 import { Badge } from "@/components/ui/badge";
 import { Progress } from "@/components/ui/progress";
 import {
-  Tooltip,
-  TooltipContent,
-  TooltipTrigger,
+	Tooltip,
+	TooltipContent,
+	TooltipTrigger,
 } from "@/components/ui/tooltip";
 import type { Account } from "@/types";
 
-export type StatusFilter = "all" | "available" | "low_quota" | "limited" | "banned";
+export type StatusFilter =
+	| "all"
+	| "available"
+	| "low_quota"
+	| "limited"
+	| "banned";
 export type AccountExportMode = "single" | "multiple";
 export type AccountSizeSortMode = "large-first" | "small-first";
 
 const ACCOUNT_SORT_STEP = 5;
 
 export function fitLongTextClassName(
-  value: string,
-  baseClassName: string,
-  defaultSizeClassName: string,
+	value: string,
+	baseClassName: string,
+	defaultSizeClassName: string,
 ): string {
-  const length = Array.from(String(value || "")).length;
-  if (length > 96) return cn(baseClassName, "text-[8px] leading-tight");
-  if (length > 72) return cn(baseClassName, "text-[9px] leading-snug");
-  if (length > 40) return cn(baseClassName, "text-[10px] leading-snug");
-  if (length > 24) return cn(baseClassName, "text-[11px] leading-snug");
-  return cn(baseClassName, defaultSizeClassName);
+	const length = Array.from(String(value || "")).length;
+	if (length > 96) return cn(baseClassName, "text-[8px] leading-tight");
+	if (length > 72) return cn(baseClassName, "text-[9px] leading-snug");
+	if (length > 40) return cn(baseClassName, "text-[10px] leading-snug");
+	if (length > 24) return cn(baseClassName, "text-[11px] leading-snug");
+	return cn(baseClassName, defaultSizeClassName);
 }
 
 export type TranslateFn = (
-  key: string,
-  values?: Record<string, string | number>,
+	key: string,
+	values?: Record<string, string | number>,
 ) => string;
 
 export function formatAccountPlanValueLabel(value: string, t: TranslateFn) {
-  const normalized = String(value || "")
-    .trim()
-    .toLowerCase();
-  switch (normalized) {
-    case "free":
-      return "FREE";
-    case "go":
-      return "GO";
-    case "plus":
-      return "PLUS";
-    case "pro":
-      return "PRO";
-    case "team":
-      return "TEAM";
-    case "business":
-      return "BUSINESS";
-    case "enterprise":
-      return "ENTERPRISE";
-    case "edu":
-      return "EDU";
-    case "unknown":
-      return t("未知");
-    default:
-      return normalized ? normalized.toUpperCase() : t("未知");
-  }
+	const normalized = String(value || "")
+		.trim()
+		.toLowerCase();
+	switch (normalized) {
+		case "free":
+			return "FREE";
+		case "go":
+			return "GO";
+		case "plus":
+			return "PLUS";
+		case "pro":
+			return "PRO";
+		case "team":
+			return "TEAM";
+		case "business":
+			return "BUSINESS";
+		case "enterprise":
+			return "ENTERPRISE";
+		case "edu":
+			return "EDU";
+		case "unknown":
+			return t("未知");
+		default:
+			return normalized ? normalized.toUpperCase() : t("未知");
+	}
 }
 
 export function normalizeAccountPlanKey(account: Account) {
-  return (
-    String(account.planType || "")
-      .trim()
-      .toLowerCase() || "unknown"
-  );
+	return (
+		String(account.planType || "")
+			.trim()
+			.toLowerCase() || "unknown"
+	);
 }
 
 export function formatPlanFilterLabel(value: string, t: TranslateFn) {
-  const nextValue = String(value || "").trim();
-  if (!nextValue || nextValue === "all") {
-    return t("全部类型");
-  }
-  return formatAccountPlanValueLabel(nextValue, t);
+	const nextValue = String(value || "").trim();
+	if (!nextValue || nextValue === "all") {
+		return t("全部类型");
+	}
+	return formatAccountPlanValueLabel(nextValue, t);
 }
 
 export function formatStatusFilterLabel(value: string, t: TranslateFn) {
-  const nextValue = String(value || "").trim();
-  switch (nextValue) {
-    case "available":
-      return t("可用");
-    case "low_quota":
-      return t("低配额");
-    case "limited":
-      return t("限流");
-    case "banned":
-      return t("封禁");
-    case "all":
-    default:
-      return t("全部");
-  }
+	const nextValue = String(value || "").trim();
+	switch (nextValue) {
+		case "available":
+			return t("可用");
+		case "low_quota":
+			return t("低配额");
+		case "limited":
+			return t("限流");
+		case "banned":
+			return t("封禁");
+		case "all":
+		default:
+			return t("全部");
+	}
 }
 
 export interface QuotaProgressProps {
-  label: string;
-  remainPercent: number | null;
-  resetsAt: number | null;
-  icon: LucideIcon;
-  tone: "green" | "blue" | "amber";
-  caption?: string;
-  emptyText?: string;
-  emptyResetText?: string;
+	label: string;
+	remainPercent: number | null;
+	resetsAt: number | null;
+	icon: LucideIcon;
+	tone: "green" | "blue" | "amber";
+	caption?: string;
+	emptyText?: string;
+	emptyResetText?: string;
 }
 
 export interface QuotaSummaryItem extends QuotaProgressProps {
-  id: string;
+	id: string;
 }
 
 export interface AccountEditorState {
-  accountId: string;
-  accountName: string;
-  currentLabel: string;
-  currentTags: string;
-  currentNote: string;
-  currentSort: number;
-  currentModelSlugs: string;
-  currentQuotaPrimaryWindowTokens: number | null;
-  currentQuotaSecondaryWindowTokens: number | null;
+	accountId: string;
+	accountName: string;
+	currentLabel: string;
+	currentTags: string;
+	currentNote: string;
+	currentSort: number;
+	currentModelSlugs: string;
+	currentQuotaPrimaryWindowTokens: number | null;
+	currentQuotaSecondaryWindowTokens: number | null;
 }
 
 export type DeleteDialogState =
-  | { kind: "single"; account: Account }
-  | { kind: "selected"; ids: string[]; count: number }
-  | null;
+	| { kind: "single"; account: Account }
+	| { kind: "selected"; ids: string[]; count: number }
+	| null;
+
+export const QUOTA_TONE_CLASSES = {
+	blue: {
+		track: "bg-blue-500/20",
+		indicator: "bg-blue-500",
+		icon: "text-blue-500",
+	},
+	green: {
+		track: "bg-green-500/20",
+		indicator: "bg-green-500",
+		icon: "text-green-500",
+	},
+	amber: {
+		track: "bg-amber-500/20",
+		indicator: "bg-amber-500",
+		icon: "text-amber-500",
+	},
+} as const;
+
 
 function QuotaProgress({
-  label,
-  remainPercent,
-  resetsAt,
-  icon: Icon,
-  tone,
-  caption,
-  emptyText = "--",
-  emptyResetText = "未知",
+	label,
+	remainPercent,
+	resetsAt,
+	icon: Icon,
+	tone,
+	caption,
+	emptyText = "--",
+	emptyResetText = "未知",
 }: QuotaProgressProps) {
-  const { t } = useI18n();
-  const value = remainPercent ?? 0;
-  const toneClasses = {
-    blue: {
-      track: "bg-blue-500/20",
-      indicator: "bg-blue-500",
-      icon: "text-blue-500",
-    },
-    green: {
-      track: "bg-green-500/20",
-      indicator: "bg-green-500",
-      icon: "text-green-500",
-    },
-    amber: {
-      track: "bg-amber-500/20",
-      indicator: "bg-amber-500",
-      icon: "text-amber-500",
-    },
-  } as const;
-  const palette = toneClasses[tone];
-
-  return (
-    <div className="flex min-w-[180px] flex-col gap-1.5">
-      <div className="flex items-center justify-between text-[10px]">
-        <div className="min-w-0">
-          <div className="flex items-center gap-1 text-muted-foreground">
-            <Icon className={cn("h-3 w-3", palette.icon)} />
-            <span>{label}</span>
-          </div>
-          {caption ? (
-            <div
-              className={fitLongTextClassName(
-                caption,
-                "max-w-full break-all text-muted-foreground/80 [overflow-wrap:anywhere]",
-                "text-[9px]",
-              )}
-              title={caption}
-            >
-              {caption}
-            </div>
-          ) : null}
-        </div>
-        <span className="font-medium">
-          {remainPercent == null ? emptyText : `${value}%`}
-        </span>
-      </div>
-      <Progress
-        value={value}
-        trackClassName={palette.track}
-        indicatorClassName={palette.indicator}
-      />
-      <div className="text-[10px] text-muted-foreground">
-        {t("重置")}: {formatTsFromSeconds(resetsAt, emptyResetText)}
-      </div>
-    </div>
-  );
+	const { t } = useI18n();
+	const value = remainPercent ?? 0;
+	const centerText = caption ?? label;
+	const showLabelOnRight = Boolean(caption);
+	const palette = QUOTA_TONE_CLASSES[tone];
+
+	return (
+		<div className="flex min-w-[180px] flex-col gap-1.5">
+			<div className="flex items-center justify-between gap-2 text-[10px]">
+				<div className="flex min-w-0 flex-1 items-center gap-1.5">
+					<Icon className={cn("h-3 w-3 shrink-0", palette.icon)} />
+					{caption ? (
+						<span className="shrink-0 whitespace-nowrap font-medium text-foreground/80">
+							{label}
+						</span>
+					) : null}
+					<span
+						className={fitLongTextClassName(
+							caption ?? label,
+							"min-w-0 flex-1 truncate text-center text-muted-foreground/80",
+							"text-[10px]",
+						)}
+						title={caption ?? label}
+					>
+						{caption ?? label}
+					</span>
+				</div>
+				<div className="flex shrink-0 items-center gap-2 font-medium">
+					<span>{remainPercent == null ? emptyText : `${value}%`}</span>
+				</div>
+			</div>
+			<Progress
+				value={value}
+				trackClassName={palette.track}
+				indicatorClassName={palette.indicator}
+			/>
+			<div className="text-[10px] text-muted-foreground">
+				{t("重置")}: {formatTsFromSeconds(resetsAt, emptyResetText)}
+			</div>
+		</div>
+	);
 }
 
 export function QuotaOverviewCell({ items }: { items: QuotaSummaryItem[] }) {
-  const { t } = useI18n();
-  const summaryItems = items.slice(0, 2);
-
-  return (
-    <Tooltip>
-      <TooltipTrigger render={<div />} className="block min-w-0 cursor-help">
-        <div className="rounded-xl border border-primary/5 bg-accent/10 px-3 py-2">
-          <div className="flex items-center gap-3">
-            {summaryItems.map((item) => (
-              <div key={item.id} className="min-w-0 flex-1 space-y-1">
-                <div className="flex items-center justify-between text-[10px]">
-                  <span
-                    className={fitLongTextClassName(
-                      item.label,
-                      "min-w-0 max-w-full break-words text-muted-foreground [overflow-wrap:anywhere]",
-                      "text-[10px]",
-                    )}
-                    title={item.label}
-                  >
-                    {item.label}
-                  </span>
-                  <span className="font-medium text-foreground/80">
-                    {item.remainPercent == null
-                      ? (item.emptyText ?? "--")
-                      : `${item.remainPercent}%`}
-                  </span>
-                </div>
-                <Progress
-                  value={item.remainPercent ?? 0}
-                  trackClassName={
-                    item.tone === "blue"
-                      ? "bg-blue-500/20"
-                      : item.tone === "amber"
-                        ? "bg-amber-500/20"
-                        : "bg-green-500/20"
-                  }
-                  indicatorClassName={
-                    item.tone === "blue"
-                      ? "bg-blue-500"
-                      : item.tone === "amber"
-                        ? "bg-amber-500"
-                        : "bg-green-500"
-                  }
-                />
-              </div>
-            ))}
-          </div>
-          <div className="mt-1 grid grid-cols-2 gap-3 text-[10px] text-muted-foreground">
-            {summaryItems.map((item) => (
-              <div
-                key={`${item.id}-reset`}
-                className="flex min-w-0 items-center justify-between gap-2"
-              >
-                <span
-                  className={fitLongTextClassName(
-                    formatTsFromSeconds(
-                      item.resetsAt,
-                      item.emptyResetText ?? t("未知"),
-                    ),
-                    "min-w-0 break-words [overflow-wrap:anywhere]",
-                    "text-[10px]",
-                  )}
-                >
-                  {formatTsFromSeconds(
-                    item.resetsAt,
-                    item.emptyResetText ?? t("未知"),
-                  )}
-                </span>
-                <span className="shrink-0 whitespace-nowrap">
-                  {formatRemainingDurationFromSeconds(
-                    item.resetsAt,
-                    item.id.endsWith("-primary") ? "hours" : "days",
-                    item.emptyResetText ?? t("未知"),
-                  )}
-                  {t("后刷新")}
-                </span>
-              </div>
-            ))}
-          </div>
-        </div>
-      </TooltipTrigger>
-      <TooltipContent
-        side="right"
-        align="center"
-        sideOffset={10}
-        className="max-w-[340px] rounded-lg bg-popover p-3 text-popover-foreground shadow-md"
-      >
-        <div className="space-y-3">
-          <div className="space-y-1">
-            <p className="text-sm font-semibold">
-              {t("额度详情（悬停查看所有额度）")}
-            </p>
-            <p className="text-[10px] text-muted-foreground">
-              {t("标准额度与专属额度统一在这里查看。")}
-            </p>
-          </div>
-          <div className="space-y-2">
-            {items.map((item) => (
-              <QuotaProgress
-                key={item.id}
-                label={item.label}
-                remainPercent={item.remainPercent}
-                resetsAt={item.resetsAt}
-                icon={item.icon}
-                tone={item.tone}
-                caption={item.caption}
-                emptyText={item.emptyText}
-                emptyResetText={item.emptyResetText}
-              />
-            ))}
-          </div>
-        </div>
-      </TooltipContent>
-    </Tooltip>
-  );
+	const { locale, t } = useI18n();
+	const summaryItems = items.slice(0, 2);
+
+	return (
+		<Tooltip>
+			<TooltipTrigger render={<div />} className="block min-w-0 cursor-help">
+				<div className="rounded-xl border border-primary/5 bg-accent/10 px-3 py-2">
+					<div className="space-y-3">
+						{summaryItems.map((item) => {
+							const palette = QUOTA_TONE_CLASSES[item.tone];
+							return (
+								<div key={item.id} className="min-w-0 space-y-1.5">
+									<div className="flex items-center justify-between gap-2 text-[10px]">
+										<div className="flex min-w-0 flex-1 items-center gap-1.5 text-muted-foreground">
+											{item.icon && (
+												<item.icon className={cn("h-3.5 w-3.5 shrink-0", palette.icon)} />
+											)}
+											{item.caption ? (
+												<span className="shrink-0 whitespace-nowrap font-medium text-foreground/80">
+													{item.label}
+												</span>
+											) : null}
+											<span
+												className={fitLongTextClassName(
+													item.caption ?? item.label,
+													"min-w-0 flex-1 truncate text-center [overflow-wrap:anywhere]",
+													"text-[10px]",
+												)}
+												title={item.caption ?? item.label}
+											>
+												{item.caption ?? item.label}
+											</span>
+										</div>
+										<div className="flex shrink-0 items-center gap-2 font-medium text-foreground/80 text-[10px]">
+											<span>
+											{item.remainPercent == null
+												? (item.emptyText ?? "--")
+												: `${item.remainPercent}%`}
+											</span>
+										</div>
+									</div>
+									<Progress
+										value={item.remainPercent ?? 0}
+										trackClassName={palette.track}
+										indicatorClassName={palette.indicator}
+									/>
+								<div className="flex min-w-0 items-center justify-between gap-2 text-[9px] text-muted-foreground/80 pt-0.5 leading-none">
+									<span
+										className={fitLongTextClassName(
+											`${t("重置")}: ${formatTsFromSeconds(
+												item.resetsAt,
+												item.emptyResetText ?? t("未知"),
+											)}`,
+											"min-w-0 break-words [overflow-wrap:anywhere]",
+											"text-[9px]",
+										)}
+									>
+										{t("重置")}: {formatTsFromSeconds(
+											item.resetsAt,
+											item.emptyResetText ?? t("未知"),
+										)}
+									</span>
+									<span className="shrink-0 whitespace-nowrap text-[9px]">
+										{formatRemainingDurationFromSeconds(
+											item.resetsAt,
+											item.id.endsWith("-primary") ? "hours" : "days",
+											item.emptyResetText ?? t("未知"),
+											locale,
+										)}
+									</span>
+								</div>
+							</div>
+							);
+						})}
+					</div>
+				</div>
+			</TooltipTrigger>
+			<TooltipContent
+				side="right"
+				align="center"
+				sideOffset={10}
+				className="max-w-[340px] rounded-lg bg-popover p-3 text-popover-foreground shadow-md"
+			>
+				<div className="space-y-3">
+					<div className="space-y-1">
+						<p className="text-sm font-semibold">
+							{t("额度详情（悬停查看所有额度）")}
+						</p>
+						<p className="text-[10px] text-muted-foreground">
+							{t("标准额度与专属额度统一在这里查看。")}
+						</p>
+					</div>
+					<div className="space-y-2">
+						{items.map((item) => (
+							<QuotaProgress
+								key={item.id}
+								label={item.label}
+								remainPercent={item.remainPercent}
+								resetsAt={item.resetsAt}
+								icon={item.icon}
+								tone={item.tone}
+								caption={item.caption}
+								emptyText={item.emptyText}
+								emptyResetText={item.emptyResetText}
+							/>
+						))}
+					</div>
+				</div>
+			</TooltipContent>
+		</Tooltip>
+	);
 }
 
 export function getAccountStatusAction(
-  account: Account,
-  t: TranslateFn,
+	account: Account,
+	t: TranslateFn,
 ): {
-  action: "enable" | "disable" | null;
-  label: string;
-  icon: LucideIcon;
+	action: "enable" | "disable" | null;
+	label: string;
+	icon: LucideIcon;
 } {
-  const normalizedStatus = String(account.status || "")
-    .trim()
-    .toLowerCase();
-  if (normalizedStatus === "disabled") {
-    return { action: "enable", label: t("启用账号"), icon: Power };
-  }
-  if (normalizedStatus === "inactive") {
-    return { action: "enable", label: t("恢复账号"), icon: Power };
-  }
-  if (normalizedStatus === "banned") {
-    return { action: null, label: t("封禁账号"), icon: PowerOff };
-  }
-  return { action: "disable", label: t("禁用账号"), icon: PowerOff };
+	const normalizedStatus = String(account.status || "")
+		.trim()
+		.toLowerCase();
+	if (normalizedStatus === "disabled") {
+		return { action: "enable", label: t("启用账号"), icon: Power };
+	}
+	if (normalizedStatus === "inactive") {
+		return { action: "enable", label: t("恢复账号"), icon: Power };
+	}
+	if (normalizedStatus === "banned") {
+		return { action: null, label: t("封禁账号"), icon: PowerOff };
+	}
+	return { action: "disable", label: t("禁用账号"), icon: PowerOff };
 }
 
 export function getAccountStatusReasonCode(account: Account): string {
-  const reason = String(account.statusReason || "").trim();
-  return reason.toLowerCase() === "usage_ok" ? "" : reason;
+	const reason = String(account.statusReason || "").trim();
+	return reason.toLowerCase() === "usage_ok" ? "" : reason;
 }
 
 export function formatAccountStatusReasonLabel(
-  account: Account,
-  t: TranslateFn,
+	account: Account,
+	t: TranslateFn,
 ): string | null {
-  const reasonCode = getAccountStatusReasonCode(account);
-  if (!reasonCode) {
-    return null;
-  }
-
-  const reason = reasonCode.toLowerCase();
-  if (reason.startsWith("refresh_token_invalid:")) {
-    const detail = reason.slice("refresh_token_invalid:".length);
-    switch (detail) {
-      case "refresh_token_reused":
-        return t("Refresh Token 已被重复使用，需要重新登录");
-      case "refresh_token_invalidated":
-        return t("Refresh Token 已被撤销，需要重新登录");
-      case "refresh_token_expired":
-        return t("Refresh Token 已过期，需要重新登录");
-      case "invalid_grant":
-        return t("Refresh Token 授权无效，需要重新登录");
-      case "refresh_token_unknown_401":
-        return t("刷新登录凭证返回 401，需要重新登录");
-      default:
-        return t("Refresh Token 失效，需要重新登录");
-    }
-  }
-  if (reason === "refresh_token_region_blocked") {
-    return t("代理地区不受支持，已暂停账号刷新");
-  }
-
-  const usageHttpStatus = reason.match(/^usage_http_(\d{3})$/);
-  if (usageHttpStatus) {
-    const statusCode = usageHttpStatus[1];
-    if (statusCode === "401") {
-      return t("用量接口返回 401，账号授权失效");
-    }
-    if (statusCode === "403") {
-      return t("用量接口返回 403，账号权限不足或被限制");
-    }
-    return t("用量接口返回 HTTP {status}", { status: statusCode });
-  }
-
-  switch (reason) {
-    case "account_deactivated":
-      return t("账号已停用");
-    case "workspace_deactivated":
-    case "deactivated_workspace":
-      return t("工作区已停用");
-    case "usage_limit_exhausted":
-      return t("额度已耗尽");
-    default:
-      return reasonCode;
-  }
+	const reasonCode = getAccountStatusReasonCode(account);
+	if (!reasonCode) {
+		return null;
+	}
+
+	const reason = reasonCode.toLowerCase();
+	if (reason.startsWith("refresh_token_invalid:")) {
+		const detail = reason.slice("refresh_token_invalid:".length);
+		switch (detail) {
+			case "refresh_token_reused":
+				return t("Refresh Token 已被重复使用，需要重新登录");
+			case "refresh_token_invalidated":
+				return t("Refresh Token 已被撤销，需要重新登录");
+			case "refresh_token_expired":
+				return t("Refresh Token 已过期，需要重新登录");
+			case "invalid_grant":
+				return t("Refresh Token 授权无效，需要重新登录");
+			case "refresh_token_unknown_401":
+				return t("刷新登录凭证返回 401，需要重新登录");
+			default:
+				return t("Refresh Token 失效，需要重新登录");
+		}
+	}
+	if (reason === "refresh_token_region_blocked") {
+		return t("代理地区不受支持，已暂停账号刷新");
+	}
+
+	const usageHttpStatus = reason.match(/^usage_http_(\d{3})$/);
+	if (usageHttpStatus) {
+		const statusCode = usageHttpStatus[1];
+		if (statusCode === "401") {
+			return t("用量接口返回 401，账号授权失效");
+		}
+		if (statusCode === "403") {
+			return t("用量接口返回 403，账号权限不足或被限制");
+		}
+		return t("用量接口返回 HTTP {status}", { status: statusCode });
+	}
+
+	switch (reason) {
+		case "account_deactivated":
+			return t("账号已停用");
+		case "workspace_deactivated":
+		case "deactivated_workspace":
+			return t("工作区已停用");
+		case "usage_limit_exhausted":
+			return t("额度已耗尽");
+		default:
+			return reasonCode;
+	}
 }
 
 export function AccountStatusCell({ account }: { account: Account }) {
-  const { t } = useI18n();
-  const statusReasonCode = getAccountStatusReasonCode(account);
-  const statusReasonLabel = formatAccountStatusReasonLabel(account, t);
-  const statusText = t(account.availabilityText || "未知");
-
-  return (
-    <Tooltip>
-      <TooltipTrigger render={<div />} className="block min-w-0 cursor-help">
-        <div className="flex min-w-0 flex-col gap-1">
-          <div className="flex min-w-0 items-center gap-1.5">
-            <div
-              className={cn(
-                "h-1.5 w-1.5 shrink-0 rounded-full",
-                account.isAvailable ? "bg-green-500" : "bg-red-500",
-              )}
-            />
-            <span
-              className={cn(
-                "text-[11px] font-medium",
-                account.isAvailable
-                  ? "text-green-600 dark:text-green-400"
-                  : "text-red-600 dark:text-red-400",
-              )}
-            >
-              {statusText}
-            </span>
-          </div>
-          {statusReasonLabel ? (
-            <span
-              className={fitLongTextClassName(
-                statusReasonLabel,
-                "block max-w-[180px] whitespace-normal break-words text-muted-foreground [overflow-wrap:anywhere]",
-                "text-[10px] leading-snug",
-              )}
-              title={statusReasonLabel}
-            >
-              {statusReasonLabel}
-            </span>
-          ) : null}
-        </div>
-      </TooltipTrigger>
-      <TooltipContent
-        side="left"
-        align="center"
-        className="max-w-[320px] bg-popover p-3 text-popover-foreground shadow-md"
-      >
-        <div className="space-y-2 text-left">
-          <div className="space-y-0.5">
-            <div className="text-[10px] text-muted-foreground">{t("当前状态")}</div>
-            <div className="font-medium">{statusText}</div>
-          </div>
-          {statusReasonLabel ? (
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-muted-foreground">{t("状态原因")}</div>
-              <div className="font-medium">{statusReasonLabel}</div>
-            </div>
-          ) : null}
-          {statusReasonCode ? (
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-muted-foreground">{t("原因码")}</div>
-              <div className="break-all rounded-md bg-muted px-2 py-1 font-mono text-[10px]">
-                {statusReasonCode}
-              </div>
-            </div>
-          ) : null}
-        </div>
-      </TooltipContent>
-    </Tooltip>
-  );
+	const { t } = useI18n();
+	const statusReasonCode = getAccountStatusReasonCode(account);
+	const statusReasonLabel = formatAccountStatusReasonLabel(account, t);
+	const statusText = t(account.availabilityText || "未知");
+
+	return (
+		<Tooltip>
+			<TooltipTrigger render={<div />} className="block min-w-0 cursor-help">
+				<div className="flex min-w-0 flex-col gap-1">
+					<div className="flex min-w-0 items-center gap-1.5">
+						<div
+							className={cn(
+								"h-1.5 w-1.5 shrink-0 rounded-full",
+								account.isAvailable ? "bg-green-500" : "bg-red-500",
+							)}
+						/>
+						<span
+							className={cn(
+								"text-[11px] font-medium",
+								account.isAvailable
+									? "text-green-600 dark:text-green-400"
+									: "text-red-600 dark:text-red-400",
+							)}
+						>
+							{statusText}
+						</span>
+					</div>
+					{statusReasonLabel ? (
+						<span
+							className={fitLongTextClassName(
+								statusReasonLabel,
+								"block max-w-[180px] whitespace-normal break-words text-muted-foreground [overflow-wrap:anywhere]",
+								"text-[10px] leading-snug",
+							)}
+							title={statusReasonLabel}
+						>
+							{statusReasonLabel}
+						</span>
+					) : null}
+				</div>
+			</TooltipTrigger>
+			<TooltipContent
+				side="left"
+				align="center"
+				className="max-w-[320px] bg-popover p-3 text-popover-foreground shadow-md"
+			>
+				<div className="space-y-2 text-left">
+					<div className="space-y-0.5">
+						<div className="text-[10px] text-muted-foreground">
+							{t("当前状态")}
+						</div>
+						<div className="font-medium">{statusText}</div>
+					</div>
+					{statusReasonLabel ? (
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-muted-foreground">
+								{t("状态原因")}
+							</div>
+							<div className="font-medium">{statusReasonLabel}</div>
+						</div>
+					) : null}
+					{statusReasonCode ? (
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-muted-foreground">
+								{t("原因码")}
+							</div>
+							<div className="break-all rounded-md bg-muted px-2 py-1 font-mono text-[10px]">
+								{statusReasonCode}
+							</div>
+						</div>
+					) : null}
+				</div>
+			</TooltipContent>
+		</Tooltip>
+	);
 }
 
 export function formatAccountPlanLabel(
-  account: Account,
-  t: TranslateFn,
+	account: Account,
+	t: TranslateFn,
 ): string | null {
-  const normalized = normalizeAccountPlanKey(account);
-  return normalized === "unknown"
-    ? null
-    : formatAccountPlanValueLabel(normalized, t);
+	const normalized = normalizeAccountPlanKey(account);
+	return normalized === "unknown"
+		? null
+		: formatAccountPlanValueLabel(normalized, t);
 }
 
 export function formatAccountSubscriptionPlanLabel(
-  account: Account,
-  t: TranslateFn,
+	account: Account,
+	t: TranslateFn,
 ): string {
-  const normalized = String(account.subscriptionPlan || account.planType || "")
-    .trim()
-    .toLowerCase();
-  return normalized
-    ? formatAccountPlanValueLabel(normalized, t)
-    : t("未知");
+	const normalized = String(account.subscriptionPlan || account.planType || "")
+		.trim()
+		.toLowerCase();
+	return normalized ? formatAccountPlanValueLabel(normalized, t) : t("未知");
 }
 
 export function formatAccountSubscriptionStatusLabel(
-  account: Account,
-  t: TranslateFn,
+	account: Account,
+	t: TranslateFn,
 ): string {
-  const hasSubscriptionEvidence =
-    Boolean(String(account.subscriptionPlan || "").trim()) ||
-    account.subscriptionExpiresAt != null ||
-    account.subscriptionRenewsAt != null;
-  const nowSeconds = Math.floor(Date.now() / 1000);
-  const isExpired =
-    account.subscriptionExpiresAt != null &&
-    account.subscriptionExpiresAt < nowSeconds &&
-    Boolean(String(account.subscriptionPlan || account.planType || "").trim());
-
-  if (
-    account.hasSubscription === true ||
-    (account.hasSubscription == null && hasSubscriptionEvidence)
-  ) {
-    return t("已订阅");
-  }
-  if (isExpired) {
-    return t("已过期");
-  }
-  if (account.hasSubscription === false) {
-    return t("未订阅");
-  }
-  return t("未知");
+	const hasSubscriptionEvidence =
+		Boolean(String(account.subscriptionPlan || "").trim()) ||
+		account.subscriptionExpiresAt != null ||
+		account.subscriptionRenewsAt != null;
+	const nowSeconds = Math.floor(Date.now() / 1000);
+	const isExpired =
+		account.subscriptionExpiresAt != null &&
+		account.subscriptionExpiresAt < nowSeconds &&
+		Boolean(String(account.subscriptionPlan || account.planType || "").trim());
+
+	if (
+		account.hasSubscription === true ||
+		(account.hasSubscription == null && hasSubscriptionEvidence)
+	) {
+		return t("已订阅");
+	}
+	if (isExpired) {
+		return t("已过期");
+	}
+	if (account.hasSubscription === false) {
+		return t("未订阅");
+	}
+	return t("未知");
 }
 
 export function getAccountPlanBadgeClassName(planLabel: string | null): string {
-  switch (planLabel) {
-    case "FREE":
-      return "bg-slate-500/10 text-slate-700 dark:text-slate-300";
-    case "GO":
-      return "bg-sky-500/10 text-sky-700 dark:text-sky-300";
-    case "PLUS":
-      return "bg-amber-500/10 text-amber-700 dark:text-amber-300";
-    case "PRO":
-      return "bg-fuchsia-500/10 text-fuchsia-700 dark:text-fuchsia-300";
-    case "TEAM":
-      return "bg-emerald-500/10 text-emerald-700 dark:text-emerald-300";
-    case "BUSINESS":
-      return "bg-indigo-500/10 text-indigo-700 dark:text-indigo-300";
-    case "ENTERPRISE":
-      return "bg-rose-500/10 text-rose-700 dark:text-rose-300";
-    case "EDU":
-      return "bg-cyan-500/10 text-cyan-700 dark:text-cyan-300";
-    default:
-      return "bg-accent/50";
-  }
+	switch (planLabel) {
+		case "FREE":
+			return "bg-slate-500/10 text-slate-700 dark:text-slate-300";
+		case "GO":
+			return "bg-sky-500/10 text-sky-700 dark:text-sky-300";
+		case "PLUS":
+			return "bg-amber-500/10 text-amber-700 dark:text-amber-300";
+		case "PRO":
+			return "bg-fuchsia-500/10 text-fuchsia-700 dark:text-fuchsia-300";
+		case "TEAM":
+			return "bg-emerald-500/10 text-emerald-700 dark:text-emerald-300";
+		case "BUSINESS":
+			return "bg-indigo-500/10 text-indigo-700 dark:text-indigo-300";
+		case "ENTERPRISE":
+			return "bg-rose-500/10 text-rose-700 dark:text-rose-300";
+		case "EDU":
+			return "bg-cyan-500/10 text-cyan-700 dark:text-cyan-300";
+		default:
+			return "bg-accent/50";
+	}
 }
 
 export function formatAccountTags(tags: string[]): string {
-  return tags
-    .map((tag) => String(tag || "").trim())
-    .filter(Boolean)
-    .join("、");
+	return tags
+		.map((tag) => String(tag || "").trim())
+		.filter(Boolean)
+		.join("、");
 }
 
 export function normalizeTagsDraft(tagsDraft: string): string[] {
-  return tagsDraft
-    .split(",")
-    .map((tag) => tag.trim())
-    .filter(Boolean);
+	return tagsDraft
+		.split(",")
+		.map((tag) => tag.trim())
+		.filter(Boolean);
 }
 
 export function buildAccountOrderUpdates(orderedAccounts: Account[]) {
-  return orderedAccounts.reduce<Array<{ accountId: string; sort: number }>>(
-    (updates, account, index) => {
-      const nextSort = index * ACCOUNT_SORT_STEP;
-      const currentSort = Number.isFinite(account.priority)
-        ? account.priority
-        : Number(account.sort) || 0;
-      if (currentSort !== nextSort) {
-        updates.push({ accountId: account.id, sort: nextSort });
-      }
-      return updates;
-    },
-    [],
-  );
+	return orderedAccounts.reduce<Array<{ accountId: string; sort: number }>>(
+		(updates, account, index) => {
+			const nextSort = index * ACCOUNT_SORT_STEP;
+			const currentSort = Number.isFinite(account.priority)
+				? account.priority
+				: Number(account.sort) || 0;
+			if (currentSort !== nextSort) {
+				updates.push({ accountId: account.id, sort: nextSort });
+			}
+			return updates;
+		},
+		[],
+	);
 }
 
 export function getAccountSizeGroup(
-  account: Account,
+	account: Account,
 ): "large" | "standard" | "small" {
-  switch (normalizeAccountPlanKey(account)) {
-    case "plus":
-    case "pro":
-    case "team":
-    case "business":
-    case "enterprise":
-      return "large";
-    case "free":
-      return "small";
-    default:
-      return "standard";
-  }
+	switch (normalizeAccountPlanKey(account)) {
+		case "plus":
+		case "pro":
+		case "team":
+		case "business":
+		case "enterprise":
+			return "large";
+		case "free":
+			return "small";
+		default:
+			return "standard";
+	}
 }
 
 export function buildAccountsBySizeOrder(
-  orderedAccounts: Account[],
-  mode: AccountSizeSortMode,
+	orderedAccounts: Account[],
+	mode: AccountSizeSortMode,
 ) {
-  const buckets = {
-    large: [] as Account[],
-    standard: [] as Account[],
-    small: [] as Account[],
-  };
-
-  for (const account of orderedAccounts) {
-    buckets[getAccountSizeGroup(account)].push(account);
-  }
-
-  return mode === "large-first"
-    ? [...buckets.large, ...buckets.standard, ...buckets.small]
-    : [...buckets.small, ...buckets.standard, ...buckets.large];
+	const buckets = {
+		large: [] as Account[],
+		standard: [] as Account[],
+		small: [] as Account[],
+	};
+
+	for (const account of orderedAccounts) {
+		buckets[getAccountSizeGroup(account)].push(account);
+	}
+
+	return mode === "large-first"
+		? [...buckets.large, ...buckets.standard, ...buckets.small]
+		: [...buckets.small, ...buckets.standard, ...buckets.large];
 }
 
 export function formatAccountExportModeLabel(value: string, t: TranslateFn) {
-  return value === "single" ? t("单 JSON") : t("多 JSON");
+	return value === "single" ? t("单 JSON") : t("多 JSON");
 }
 
 export function buildQuotaSummaryItems(
-  account: Account,
-  t: TranslateFn,
+	account: Account,
+	t: TranslateFn,
 ): QuotaSummaryItem[] {
-  const primaryWindowOnly = isPrimaryWindowOnlyUsage(account.usage);
-  const secondaryWindowOnly = isSecondaryWindowOnlyUsage(account.usage);
-  const usageBuckets = getUsageDisplayBuckets(account.usage);
-  const extraUsageRows = getExtraUsageDisplayRows(account.usage);
-  return [
-    {
-      id: `${account.id}-primary`,
-      label: t("5小时"),
-      remainPercent: account.primaryRemainPercent,
-      resetsAt: usageBuckets.primaryResetsAt,
-      icon: RefreshCw,
-      tone: "green",
-      caption: t("标准模型窗口"),
-      emptyText: secondaryWindowOnly ? t("未提供") : "--",
-      emptyResetText: secondaryWindowOnly ? t("未提供") : t("未知"),
-    },
-    {
-      id: `${account.id}-secondary`,
-      label: t("7天"),
-      remainPercent: account.secondaryRemainPercent,
-      resetsAt: usageBuckets.secondaryResetsAt,
-      icon: RefreshCw,
-      tone: "blue",
-      caption: t("长周期窗口"),
-      emptyText: primaryWindowOnly ? t("未提供") : "--",
-      emptyResetText: primaryWindowOnly ? t("未提供") : t("未知"),
-    },
-    ...extraUsageRows.map((item) => ({
-      id: item.id,
-      label: `${t(item.label, item.labelValues)}${item.labelSuffix ? t(item.labelSuffix) : ""}`,
-      remainPercent: item.remainPercent,
-      resetsAt: item.resetsAt,
-      icon: Zap,
-      tone: "amber" as const,
-      caption: t(item.windowLabel, item.windowLabelValues),
-      emptyText: "--",
-      emptyResetText: t("未知"),
-    })),
-  ];
+	const primaryWindowOnly = isPrimaryWindowOnlyUsage(account.usage);
+	const secondaryWindowOnly = isSecondaryWindowOnlyUsage(account.usage);
+	const usageBuckets = getUsageDisplayBuckets(account.usage);
+	const extraUsageRows = getExtraUsageDisplayRows(account.usage);
+	return [
+		{
+			id: `${account.id}-primary`,
+			label: t("5小时"),
+			remainPercent: account.primaryRemainPercent,
+			resetsAt: usageBuckets.primaryResetsAt,
+			icon: RefreshCw,
+			tone: "green",
+			caption: t("标准模型窗口"),
+			emptyText: secondaryWindowOnly ? t("未提供") : "--",
+			emptyResetText: secondaryWindowOnly ? t("未提供") : t("未知"),
+		},
+		{
+			id: `${account.id}-secondary`,
+			label: t("7天"),
+			remainPercent: account.secondaryRemainPercent,
+			resetsAt: usageBuckets.secondaryResetsAt,
+			icon: RefreshCw,
+			tone: "blue",
+			caption: t("长周期窗口"),
+			emptyText: primaryWindowOnly ? t("未提供") : "--",
+			emptyResetText: primaryWindowOnly ? t("未提供") : t("未知"),
+		},
+		...extraUsageRows.map((item) => ({
+			id: item.id,
+			label: `${t(item.label, item.labelValues)}${item.labelSuffix ? t(item.labelSuffix) : ""}`,
+			remainPercent: item.remainPercent,
+			resetsAt: item.resetsAt,
+			icon: Zap,
+			tone: "amber" as const,
+			caption: t(item.windowLabel, item.windowLabelValues),
+			emptyText: "--",
+			emptyResetText: t("未知"),
+		})),
+	];
 }
 
 export function AccountInfoCell({
-  account,
-  isPreferred,
+	account,
+	isPreferred,
 }: {
-  account: Account;
-  isPreferred: boolean;
+	account: Account;
+	isPreferred: boolean;
 }) {
-  const { t } = useI18n();
-  const accountPlanLabel = formatAccountPlanLabel(account, t);
-  const subscriptionStatusLabel = formatAccountSubscriptionStatusLabel(account, t);
-  const subscriptionPlanLabel = formatAccountSubscriptionPlanLabel(account, t);
-  const subscriptionExpiryText =
-    account.subscriptionExpiresAt != null
-      ? formatTsFromSeconds(account.subscriptionExpiresAt, t("未知"))
-      : account.hasSubscription === false
-        ? t("未订阅")
-        : t("未知");
-  const statusReasonCode = getAccountStatusReasonCode(account);
-  const statusReasonLabel = formatAccountStatusReasonLabel(account, t);
-  const tagsText = formatAccountTags(account.tags);
-  const noteText = String(account.note || "").trim();
-
-  return (
-    <Tooltip>
-      <TooltipTrigger
-        render={<div />}
-        className="block min-w-0 max-w-full cursor-help text-left"
-      >
-        <div className="flex min-w-0 flex-col whitespace-normal">
-          <div className="flex min-w-0 flex-wrap items-center gap-1.5">
-            <span
-              className={fitLongTextClassName(
-                account.name,
-                "inline-block min-w-0 max-w-full break-words font-semibold [overflow-wrap:anywhere]",
-                "text-sm",
-              )}
-              title={account.name}
-            >
-              {account.name}
-            </span>
-            {accountPlanLabel ? (
-              <Badge
-                variant="secondary"
-                className={cn(
-                  "h-4 shrink-0 px-1.5 text-[9px]",
-                  getAccountPlanBadgeClassName(accountPlanLabel),
-                )}
-              >
-                {accountPlanLabel}
-              </Badge>
-            ) : null}
-            {isPreferred ? (
-              <Badge
-                variant="secondary"
-                className="h-4 shrink-0 bg-amber-500/15 px-1.5 text-[9px] text-amber-700 dark:text-amber-300"
-              >
-                {t("优先")}
-              </Badge>
-            ) : null}
-          </div>
-          <span
-            className={fitLongTextClassName(
-              account.id,
-              "mt-0.5 block max-w-full break-all font-mono uppercase text-muted-foreground opacity-60 [overflow-wrap:anywhere]",
-              "text-[10px]",
-            )}
-            title={account.id}
-          >
-            {account.id}
-          </span>
-          <span className="mt-1 text-[10px] text-muted-foreground">
-            {t("最近刷新")}:{" "}
-            {formatTsFromSeconds(account.lastRefreshAt, t("从未刷新"))}
-          </span>
-          <span className="text-[10px] text-muted-foreground">
-            {t("订阅到期")}: {subscriptionExpiryText}
-          </span>
-        </div>
-      </TooltipTrigger>
-      <TooltipContent className="max-w-sm">
-        <div className="flex min-w-[260px] flex-col gap-2">
-          <div className="grid gap-2 sm:grid-cols-2">
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-background/70">
-                {t("账号类型")}
-              </div>
-              <div className="font-medium">{accountPlanLabel || t("未知")}</div>
-            </div>
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-background/70">
-                {t("当前状态")}
-              </div>
-              <div className="font-medium">
-                {t(account.availabilityText || "未知")}
-              </div>
-            </div>
-            {statusReasonLabel ? (
-              <div className="space-y-0.5 sm:col-span-2">
-                <div className="text-[10px] text-background/70">
-                  {t("状态原因")}
-                </div>
-                <div className="font-medium">{statusReasonLabel}</div>
-                {statusReasonCode ? (
-                  <div className="break-all font-mono text-[10px] text-background/70">
-                    {statusReasonCode}
-                  </div>
-                ) : null}
-              </div>
-            ) : null}
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-background/70">
-                {t("订阅状态")}
-              </div>
-              <div className="font-medium">{subscriptionStatusLabel}</div>
-            </div>
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-background/70">
-                {t("订阅方案")}
-              </div>
-              <div className="font-medium">{subscriptionPlanLabel}</div>
-            </div>
-          </div>
-          <div className="grid gap-2 sm:grid-cols-2">
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-background/70">
-                {t("到期时间")}
-              </div>
-              <div className="font-medium">
-                {formatTsFromSeconds(account.subscriptionExpiresAt, t("未知"))}
-              </div>
-            </div>
-            <div className="space-y-0.5">
-              <div className="text-[10px] text-background/70">
-                {t("续费时间")}
-              </div>
-              <div className="font-medium">
-                {formatTsFromSeconds(account.subscriptionRenewsAt, t("未知"))}
-              </div>
-            </div>
-          </div>
-          <div className="space-y-0.5">
-            <div className="text-[10px] text-background/70">{t("标签")}</div>
-            <div className="break-words">{tagsText || t("未设置")}</div>
-          </div>
-          <div className="space-y-0.5">
-            <div className="text-[10px] text-background/70">{t("备注")}</div>
-            <div className="whitespace-pre-wrap break-words">
-              {noteText || t("未设置")}
-            </div>
-          </div>
-          <div className="space-y-0.5">
-            <div className="text-[10px] text-background/70">{t("账号 ID")}</div>
-            <div className="break-all font-mono text-[11px]">{account.id}</div>
-          </div>
-        </div>
-      </TooltipContent>
-    </Tooltip>
-  );
+	const { t } = useI18n();
+	const accountPlanLabel = formatAccountPlanLabel(account, t);
+	const subscriptionStatusLabel = formatAccountSubscriptionStatusLabel(
+		account,
+		t,
+	);
+	const subscriptionPlanLabel = formatAccountSubscriptionPlanLabel(account, t);
+	const subscriptionExpiryText =
+		account.subscriptionExpiresAt != null
+			? formatTsFromSeconds(account.subscriptionExpiresAt, t("未知"))
+			: account.hasSubscription === false
+				? t("未订阅")
+				: t("未知");
+	const statusReasonCode = getAccountStatusReasonCode(account);
+	const statusReasonLabel = formatAccountStatusReasonLabel(account, t);
+	const tagsText = formatAccountTags(account.tags);
+	const noteText = String(account.note || "").trim();
+
+	return (
+		<Tooltip>
+			<TooltipTrigger
+				render={<div />}
+				className="block min-w-0 max-w-full cursor-help text-left"
+			>
+				<div className="flex min-w-0 flex-col whitespace-normal">
+					<div className="flex min-w-0 flex-wrap items-center gap-1.5">
+						<span
+							className={fitLongTextClassName(
+								account.name,
+								"inline-block min-w-0 max-w-full break-words font-semibold [overflow-wrap:anywhere]",
+								"text-sm",
+							)}
+							title={account.name}
+						>
+							{account.name}
+						</span>
+						{accountPlanLabel ? (
+							<Badge
+								variant="secondary"
+								className={cn(
+									"h-4 shrink-0 px-1.5 text-[9px]",
+									getAccountPlanBadgeClassName(accountPlanLabel),
+								)}
+							>
+								{accountPlanLabel}
+							</Badge>
+						) : null}
+						{isPreferred ? (
+							<Badge
+								variant="secondary"
+								className="h-4 shrink-0 bg-amber-500/15 px-1.5 text-[9px] text-amber-700 dark:text-amber-300"
+							>
+								{t("优先")}
+							</Badge>
+						) : null}
+					</div>
+					<span
+						className={fitLongTextClassName(
+							account.id,
+							"mt-0.5 block max-w-full break-all font-mono uppercase text-muted-foreground opacity-60 [overflow-wrap:anywhere]",
+							"text-[10px]",
+						)}
+						title={account.id}
+					>
+						{account.id}
+					</span>
+					<span className="mt-1 text-[10px] text-muted-foreground">
+						{t("最近刷新")}:{" "}
+						{formatTsFromSeconds(account.lastRefreshAt, t("从未刷新"))}
+					</span>
+					<span className="text-[10px] text-muted-foreground">
+						{t("订阅到期")}: {subscriptionExpiryText}
+					</span>
+				</div>
+			</TooltipTrigger>
+			<TooltipContent className="max-w-sm">
+				<div className="flex min-w-[260px] flex-col gap-2">
+					<div className="grid gap-2 sm:grid-cols-2">
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-background/70">
+								{t("账号类型")}
+							</div>
+							<div className="font-medium">{accountPlanLabel || t("未知")}</div>
+						</div>
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-background/70">
+								{t("当前状态")}
+							</div>
+							<div className="font-medium">
+								{t(account.availabilityText || "未知")}
+							</div>
+						</div>
+						{statusReasonLabel ? (
+							<div className="space-y-0.5 sm:col-span-2">
+								<div className="text-[10px] text-background/70">
+									{t("状态原因")}
+								</div>
+								<div className="font-medium">{statusReasonLabel}</div>
+								{statusReasonCode ? (
+									<div className="break-all font-mono text-[10px] text-background/70">
+										{statusReasonCode}
+									</div>
+								) : null}
+							</div>
+						) : null}
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-background/70">
+								{t("订阅状态")}
+							</div>
+							<div className="font-medium">{subscriptionStatusLabel}</div>
+						</div>
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-background/70">
+								{t("订阅方案")}
+							</div>
+							<div className="font-medium">{subscriptionPlanLabel}</div>
+						</div>
+					</div>
+					<div className="grid gap-2 sm:grid-cols-2">
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-background/70">
+								{t("到期时间")}
+							</div>
+							<div className="font-medium">
+								{formatTsFromSeconds(account.subscriptionExpiresAt, t("未知"))}
+							</div>
+						</div>
+						<div className="space-y-0.5">
+							<div className="text-[10px] text-background/70">
+								{t("续费时间")}
+							</div>
+							<div className="font-medium">
+								{formatTsFromSeconds(account.subscriptionRenewsAt, t("未知"))}
+							</div>
+						</div>
+					</div>
+					<div className="space-y-0.5">
+						<div className="text-[10px] text-background/70">{t("标签")}</div>
+						<div className="break-words">{tagsText || t("未设置")}</div>
+					</div>
+					<div className="space-y-0.5">
+						<div className="text-[10px] text-background/70">{t("备注")}</div>
+						<div className="whitespace-pre-wrap break-words">
+							{noteText || t("未设置")}
+						</div>
+					</div>
+					<div className="space-y-0.5">
+						<div className="text-[10px] text-background/70">{t("账号 ID")}</div>
+						<div className="break-all font-mono text-[11px]">{account.id}</div>
+					</div>
+				</div>
+			</TooltipContent>
+		</Tooltip>
+	);
 }
diff --git a/apps/src/app/accounts/accounts-page-view.tsx b/apps/src/app/accounts/accounts-page-view.tsx
index ee10113b3..17b26a0c1 100644
--- a/apps/src/app/accounts/accounts-page-view.tsx
+++ b/apps/src/app/accounts/accounts-page-view.tsx
@@ -2,24 +2,24 @@
 
 import type { Dispatch, SetStateAction } from "react";
 import {
-  ArrowDown,
-  ArrowUp,
-  ArrowUpDown,
-  BarChart3,
-  Download,
-  FileUp,
-  FolderOpen,
-  KeyRound,
-  Loader2,
-  MoreVertical,
-  Network,
-  PencilLine,
-  Pin,
-  Plus,
-  RefreshCw,
-  Search,
-  Trash2,
-  Zap,
+	ArrowDown,
+	ArrowUp,
+	ArrowUpDown,
+	BarChart3,
+	Download,
+	FileUp,
+	FolderOpen,
+	KeyRound,
+	Loader2,
+	MoreVertical,
+	Network,
+	PencilLine,
+	Pin,
+	Plus,
+	RefreshCw,
+	Search,
+	Trash2,
+	Zap,
 } from "lucide-react";
 import { AddAccountModal } from "@/components/modals/add-account-modal";
 import { ConfirmDialog } from "@/components/modals/confirm-dialog";
@@ -28,1513 +28,1593 @@ import { Button, buttonVariants } from "@/components/ui/button";
 import { Card, CardContent } from "@/components/ui/card";
 import { Checkbox } from "@/components/ui/checkbox";
 import {
-  Dialog,
-  DialogClose,
-  DialogContent,
-  DialogDescription,
-  DialogFooter,
-  DialogHeader,
-  DialogTitle,
+	Dialog,
+	DialogClose,
+	DialogContent,
+	DialogDescription,
+	DialogFooter,
+	DialogHeader,
+	DialogTitle,
 } from "@/components/ui/dialog";
 import {
-  DropdownMenu,
-  DropdownMenuContent,
-  DropdownMenuGroup,
-  DropdownMenuItem,
-  DropdownMenuLabel,
-  DropdownMenuSeparator,
-  DropdownMenuShortcut,
-  DropdownMenuTrigger,
+	DropdownMenu,
+	DropdownMenuContent,
+	DropdownMenuGroup,
+	DropdownMenuItem,
+	DropdownMenuLabel,
+	DropdownMenuSeparator,
+	DropdownMenuShortcut,
+	DropdownMenuTrigger,
 } from "@/components/ui/dropdown-menu";
 import { Input } from "@/components/ui/input";
 import { Label } from "@/components/ui/label";
 import {
-  Select,
-  SelectContent,
-  SelectGroup,
-  SelectItem,
-  SelectTrigger,
-  SelectValue,
+	Select,
+	SelectContent,
+	SelectGroup,
+	SelectItem,
+	SelectTrigger,
+	SelectValue,
 } from "@/components/ui/select";
 import { Skeleton } from "@/components/ui/skeleton";
 import { Switch } from "@/components/ui/switch";
 import {
-  Table,
-  TableBody,
-  TableCell,
-  TableHead,
-  TableHeader,
-  TableRow,
+	Table,
+	TableBody,
+	TableCell,
+	TableHead,
+	TableHeader,
+	TableRow,
 } from "@/components/ui/table";
 import { Textarea } from "@/components/ui/textarea";
 import {
-  Tooltip,
-  TooltipContent,
-  TooltipTrigger,
+	Tooltip,
+	TooltipContent,
+	TooltipTrigger,
 } from "@/components/ui/tooltip";
 import { useI18n } from "@/lib/i18n/provider";
 import { cn } from "@/lib/utils";
 import { formatCompactNumber } from "@/lib/utils/usage";
 import type { AccountProxySettings } from "@/lib/api/account-client";
 import type { Account } from "@/types";
+import { Badge } from "@/components/ui/badge";
+import { AccountProxyCell } from "@/components/accounts/account-proxy-cell";
+import { AccountProxyGeoStatusGrid } from "@/components/accounts/account-proxy-status-grid";
 import {
-  type AccountEditorState,
-  type AccountExportMode,
-  type AccountSizeSortMode,
-  type DeleteDialogState,
-  type StatusFilter,
-  AccountInfoCell,
-  AccountStatusCell,
-  QuotaOverviewCell,
-  buildQuotaSummaryItems,
-  formatAccountExportModeLabel,
-  formatAccountPlanLabel,
-  formatAccountPlanValueLabel,
-  fitLongTextClassName,
-  formatPlanFilterLabel,
-  formatStatusFilterLabel,
-  getAccountStatusAction,
+	type AccountEditorState,
+	type AccountExportMode,
+	type AccountSizeSortMode,
+	type DeleteDialogState,
+	type StatusFilter,
+	AccountInfoCell,
+	AccountStatusCell,
+	QuotaOverviewCell,
+	buildQuotaSummaryItems,
+	formatAccountExportModeLabel,
+	formatAccountPlanLabel,
+	formatAccountPlanValueLabel,
+	fitLongTextClassName,
+	formatPlanFilterLabel,
+	formatStatusFilterLabel,
+	getAccountStatusAction,
+	getAccountPlanBadgeClassName,
 } from "@/app/accounts/accounts-page-helpers";
 
 interface PlanTypeOption {
-  value: string;
-  count: number;
+	value: string;
+	count: number;
 }
 
 interface StatusFilterOption {
-  id: StatusFilter;
-  label: string;
+	id: StatusFilter;
+	label: string;
 }
 
 interface CleanupStatusOption {
-  id: string;
-  label: string;
-  description: string;
-  count: number;
+	id: string;
+	label: string;
+	description: string;
+	count: number;
 }
 
 export interface AccountsPageViewProps {
-  accounts: Account[];
-  planTypes: PlanTypeOption[];
-  isLoading: boolean;
-  isServiceReady: boolean;
-  isPageActive: boolean;
-  search: string;
-  planFilter: string;
-  statusFilter: StatusFilter;
-  pageSize: string;
-  safePage: number;
-  totalPages: number;
-  filteredAccounts: Account[];
-  visibleAccounts: Account[];
-  filteredAccountIndexMap: Map<string, number>;
-  effectiveSelectedIds: string[];
-  addAccountModalOpen: boolean;
-  usageModalOpen: boolean;
-  exportDialogOpen: boolean;
-  exportModeDraft: AccountExportMode;
-  exportTargetCount: number;
-  exportScopeText: string;
-  cleanupDialogOpen: boolean;
-  cleanupStatusDraft: string[];
-  cleanupStatusOptions: CleanupStatusOption[];
-  proxyDialogAccount: Account | null;
-  proxySettings: AccountProxySettings | null;
-  isProxySettingsLoading: boolean;
-  proxyEnabledDraft: boolean;
-  proxyUrlDraft: string;
-  selectedAccount: Account | null;
-  accountEditorState: AccountEditorState | null;
-  deleteDialogState: DeleteDialogState;
-  currentEditingAccount: Account | null;
-  labelDraft: string;
-  tagsDraft: string;
-  noteDraft: string;
-  sortDraft: string;
-  modelWhitelistDraft: string;
-  quotaPrimaryDraft: string;
-  quotaSecondaryDraft: string;
-  isRefreshingAllAccounts: boolean;
-  isRefreshingAccountId: string | null;
-  isRefreshingRtAccountId: string | null;
-  isRefreshingAllRtAccounts: boolean;
-  isExporting: boolean;
-  isWarmingUpAccounts: boolean;
-  isDeletingMany: boolean;
-  isCleaningAccountsByStatus: boolean;
-  isUpdatingPreferred: boolean;
-  isSavingAccountProxy: boolean;
-  isClearingAccountProxy: boolean;
-  isTestingAccountProxy: boolean;
-  isReorderingAccounts: boolean;
-  isUpdatingProfileAccountId: string | null;
-  isUpdatingStatusAccountId: string | null;
-  statusFilterOptions: StatusFilterOption[];
-  importFileActionLabel: string;
-  importDirectoryActionLabel: string;
-  exportActionLabel: string;
-  exportActionShortcut: string;
-  setAddAccountModalOpen: Dispatch<SetStateAction<boolean>>;
-  setExportDialogOpen: Dispatch<SetStateAction<boolean>>;
-  setExportModeDraft: Dispatch<SetStateAction<AccountExportMode>>;
-  setDeleteDialogState: Dispatch<SetStateAction<DeleteDialogState>>;
-  setCleanupDialogOpen: Dispatch<SetStateAction<boolean>>;
-  setProxyEnabledDraft: Dispatch<SetStateAction<boolean>>;
-  setProxyUrlDraft: Dispatch<SetStateAction<string>>;
-  setAccountEditorState: Dispatch<SetStateAction<AccountEditorState | null>>;
-  setLabelDraft: Dispatch<SetStateAction<string>>;
-  setTagsDraft: Dispatch<SetStateAction<string>>;
-  setNoteDraft: Dispatch<SetStateAction<string>>;
-  setSortDraft: Dispatch<SetStateAction<string>>;
-  setModelWhitelistDraft: Dispatch<SetStateAction<string>>;
-  setQuotaPrimaryDraft: Dispatch<SetStateAction<string>>;
-  setQuotaSecondaryDraft: Dispatch<SetStateAction<string>>;
-  setPage: Dispatch<SetStateAction<number>>;
-  handleSearchChange: (value: string) => void;
-  handlePlanFilterChange: (value: string | null) => void;
-  handleStatusFilterChange: (value: StatusFilter) => void;
-  handlePageSizeChange: (value: string | null) => void;
-  toggleSelect: (id: string) => void;
-  toggleSelectAllVisible: () => void;
-  openUsage: (account: Account) => void;
-  handleUsageModalOpenChange: (open: boolean) => void;
-  handleDeleteSelected: () => void;
-  openCleanupDialog: () => void;
-  toggleCleanupStatus: (status: string) => void;
-  handleConfirmCleanupStatuses: () => Promise<void>;
-  handleWarmupAccounts: () => Promise<void>;
-  openExportDialog: () => void;
-  handleConfirmExport: () => Promise<void>;
-  handleDeleteSingle: (account: Account) => void;
-  openProxyDialog: (account: Account) => void;
-  handleProxyDialogOpenChange: (open: boolean) => void;
-  handleSaveProxySettings: () => Promise<void>;
-  handleClearProxySettings: () => Promise<void>;
-  handleTestProxySettings: () => Promise<void>;
-  openAccountEditor: (account: Account) => void;
-  handleMoveAccount: (
-    account: Account,
-    direction: "up" | "down",
-  ) => Promise<void>;
-  handleApplyAccountSizeSort: (mode: AccountSizeSortMode) => Promise<void>;
-  handleConfirmAccountEditor: () => Promise<void>;
-  handleConfirmDelete: () => void;
-  refreshAllAccounts: () => void;
-  refreshAllAccountRt: () => void;
-  refreshAccountList: () => void;
-  refreshAccountRt: (accountId: string) => void;
-  importByFile: () => void;
-  importByDirectory: () => void;
-  refreshAccount: (accountId: string) => void;
-  clearPreferredAccount: (accountId: string) => void;
-  setPreferredAccount: (accountId: string) => void;
-  toggleAccountStatus: (
-    accountId: string,
-    enabled: boolean,
-    currentStatus: string,
-  ) => void;
+	accounts: Account[];
+	planTypes: PlanTypeOption[];
+	isLoading: boolean;
+	isServiceReady: boolean;
+	isPageActive: boolean;
+	search: string;
+	planFilter: string;
+	statusFilter: StatusFilter;
+	pageSize: string;
+	safePage: number;
+	totalPages: number;
+	filteredAccounts: Account[];
+	visibleAccounts: Account[];
+	filteredAccountIndexMap: Map<string, number>;
+	effectiveSelectedIds: string[];
+	addAccountModalOpen: boolean;
+	usageModalOpen: boolean;
+	exportDialogOpen: boolean;
+	exportModeDraft: AccountExportMode;
+	exportTargetCount: number;
+	exportScopeText: string;
+	cleanupDialogOpen: boolean;
+	cleanupStatusDraft: string[];
+	cleanupStatusOptions: CleanupStatusOption[];
+	proxyDialogAccount: Account | null;
+	proxySettings: AccountProxySettings | null;
+	isProxySettingsLoading: boolean;
+	proxyEnabledDraft: boolean;
+	proxyUrlDraft: string;
+	selectedAccount: Account | null;
+	accountEditorState: AccountEditorState | null;
+	deleteDialogState: DeleteDialogState;
+	currentEditingAccount: Account | null;
+	labelDraft: string;
+	tagsDraft: string;
+	noteDraft: string;
+	sortDraft: string;
+	modelWhitelistDraft: string;
+	quotaPrimaryDraft: string;
+	quotaSecondaryDraft: string;
+	isRefreshingAllAccounts: boolean;
+	isRefreshingAccountId: string | null;
+	isRefreshingRtAccountId: string | null;
+	isRefreshingAllRtAccounts: boolean;
+	isExporting: boolean;
+	isWarmingUpAccounts: boolean;
+	isDeletingMany: boolean;
+	isCleaningAccountsByStatus: boolean;
+	isUpdatingPreferred: boolean;
+	isSavingAccountProxy: boolean;
+	isClearingAccountProxy: boolean;
+	isTestingAccountProxy: boolean;
+	isReorderingAccounts: boolean;
+	isUpdatingProfileAccountId: string | null;
+	isUpdatingStatusAccountId: string | null;
+	statusFilterOptions: StatusFilterOption[];
+	importFileActionLabel: string;
+	importDirectoryActionLabel: string;
+	exportActionLabel: string;
+	exportActionShortcut: string;
+	setAddAccountModalOpen: Dispatch<SetStateAction<boolean>>;
+	setExportDialogOpen: Dispatch<SetStateAction<boolean>>;
+	setExportModeDraft: Dispatch<SetStateAction<AccountExportMode>>;
+	setDeleteDialogState: Dispatch<SetStateAction<DeleteDialogState>>;
+	setCleanupDialogOpen: Dispatch<SetStateAction<boolean>>;
+	setProxyEnabledDraft: Dispatch<SetStateAction<boolean>>;
+	setProxyUrlDraft: Dispatch<SetStateAction<string>>;
+	setAccountEditorState: Dispatch<SetStateAction<AccountEditorState | null>>;
+	setLabelDraft: Dispatch<SetStateAction<string>>;
+	setTagsDraft: Dispatch<SetStateAction<string>>;
+	setNoteDraft: Dispatch<SetStateAction<string>>;
+	setSortDraft: Dispatch<SetStateAction<string>>;
+	setModelWhitelistDraft: Dispatch<SetStateAction<string>>;
+	setQuotaPrimaryDraft: Dispatch<SetStateAction<string>>;
+	setQuotaSecondaryDraft: Dispatch<SetStateAction<string>>;
+	setPage: Dispatch<SetStateAction<number>>;
+	handleSearchChange: (value: string) => void;
+	handlePlanFilterChange: (value: string | null) => void;
+	handleStatusFilterChange: (value: StatusFilter) => void;
+	handlePageSizeChange: (value: string | null) => void;
+	toggleSelect: (id: string) => void;
+	toggleSelectAllVisible: () => void;
+	openUsage: (account: Account) => void;
+	handleUsageModalOpenChange: (open: boolean) => void;
+	handleDeleteSelected: () => void;
+	openCleanupDialog: () => void;
+	toggleCleanupStatus: (status: string) => void;
+	handleConfirmCleanupStatuses: () => Promise<void>;
+	handleWarmupAccounts: () => Promise<void>;
+	openExportDialog: () => void;
+	handleConfirmExport: () => Promise<void>;
+	handleDeleteSingle: (account: Account) => void;
+	openProxyDialog: (account: Account) => void;
+	handleProxyDialogOpenChange: (open: boolean) => void;
+	handleSaveProxySettings: () => Promise<void>;
+	handleClearProxySettings: () => Promise<void>;
+	handleTestProxySettings: () => Promise<void>;
+	openAccountEditor: (account: Account) => void;
+	handleMoveAccount: (
+		account: Account,
+		direction: "up" | "down",
+	) => Promise<void>;
+	handleApplyAccountSizeSort: (mode: AccountSizeSortMode) => Promise<void>;
+	handleConfirmAccountEditor: () => Promise<void>;
+	handleConfirmDelete: () => void;
+	refreshAllAccounts: () => void;
+	refreshAllAccountRt: () => void;
+	refreshAccountList: () => void;
+	refreshAccountRt: (accountId: string) => void;
+	importByFile: () => void;
+	importByDirectory: () => void;
+	refreshAccount: (accountId: string) => void;
+	clearPreferredAccount: (accountId: string) => void;
+	setPreferredAccount: (accountId: string) => void;
+	toggleAccountStatus: (
+		accountId: string,
+		enabled: boolean,
+		currentStatus: string,
+	) => void;
 }
 
 export function AccountsPageView(props: AccountsPageViewProps) {
-  const { t } = useI18n();
-  const {
-    accounts,
-    planTypes,
-    isLoading,
-    isServiceReady,
-    isPageActive,
-    search,
-    planFilter,
-    statusFilter,
-    pageSize,
-    safePage,
-    totalPages,
-    filteredAccounts,
-    visibleAccounts,
-    filteredAccountIndexMap,
-    effectiveSelectedIds,
-    addAccountModalOpen,
-    usageModalOpen,
-    exportDialogOpen,
-    exportModeDraft,
-    exportTargetCount,
-    exportScopeText,
-    cleanupDialogOpen,
-    cleanupStatusDraft,
-    cleanupStatusOptions,
-    proxyDialogAccount,
-    proxySettings,
-    isProxySettingsLoading,
-    proxyEnabledDraft,
-    proxyUrlDraft,
-    selectedAccount,
-    accountEditorState,
-    deleteDialogState,
-    currentEditingAccount,
-    labelDraft,
-    tagsDraft,
-    noteDraft,
-    sortDraft,
-    modelWhitelistDraft,
-    quotaPrimaryDraft,
-    quotaSecondaryDraft,
-    isRefreshingAllAccounts,
-    isRefreshingAccountId,
-    isRefreshingRtAccountId,
-    isRefreshingAllRtAccounts,
-    isExporting,
-    isWarmingUpAccounts,
-    isDeletingMany,
-    isCleaningAccountsByStatus,
-    isUpdatingPreferred,
-    isSavingAccountProxy,
-    isClearingAccountProxy,
-    isTestingAccountProxy,
-    isReorderingAccounts,
-    isUpdatingProfileAccountId,
-    isUpdatingStatusAccountId,
-    statusFilterOptions,
-    importFileActionLabel,
-    importDirectoryActionLabel,
-    exportActionLabel,
-    exportActionShortcut,
-    setAddAccountModalOpen,
-    setExportDialogOpen,
-    setExportModeDraft,
-    setDeleteDialogState,
-    setCleanupDialogOpen,
-    setProxyEnabledDraft,
-    setProxyUrlDraft,
-    setAccountEditorState,
-    setLabelDraft,
-    setTagsDraft,
-    setNoteDraft,
-    setSortDraft,
-    setModelWhitelistDraft,
-    setQuotaPrimaryDraft,
-    setQuotaSecondaryDraft,
-    setPage,
-    handleSearchChange,
-    handlePlanFilterChange,
-    handleStatusFilterChange,
-    handlePageSizeChange,
-    toggleSelect,
-    toggleSelectAllVisible,
-    openUsage,
-    handleUsageModalOpenChange,
-    handleDeleteSelected,
-    openCleanupDialog,
-    toggleCleanupStatus,
-    handleConfirmCleanupStatuses,
-    handleWarmupAccounts,
-    openExportDialog,
-    handleConfirmExport,
-    handleDeleteSingle,
-    openProxyDialog,
-    handleProxyDialogOpenChange,
-    handleSaveProxySettings,
-    handleClearProxySettings,
-    handleTestProxySettings,
-    openAccountEditor,
-    handleMoveAccount,
-    handleApplyAccountSizeSort,
-    handleConfirmAccountEditor,
-    handleConfirmDelete,
-    refreshAllAccounts,
-    refreshAllAccountRt,
-    refreshAccountList,
-    refreshAccountRt,
-    importByFile,
-    importByDirectory,
-    refreshAccount,
-    clearPreferredAccount,
-    setPreferredAccount,
-    toggleAccountStatus,
-  } = props;
-  const cleanupSelectedCount = cleanupStatusOptions.reduce(
-    (total, option) =>
-      cleanupStatusDraft.includes(option.id) ? total + option.count : total,
-    0,
-  );
-  const accountProxyBusy =
-    isProxySettingsLoading ||
-    isSavingAccountProxy ||
-    isClearingAccountProxy ||
-    isTestingAccountProxy;
-  const accountProxyStatusText = (() => {
-    const status = String(proxySettings?.status || "not_configured");
-    switch (status) {
-      case "ok":
-        return t("可用");
-      case "runtime_error":
-        return t("运行时错误");
-      case "failed":
-        return t("测试失败");
-      case "invalid_url":
-        return t("地址无效");
-      case "checking":
-        return t("测试中");
-      case "unchecked":
-        return t("未测试");
-      case "not_configured":
-      default:
-        return t("未配置");
-    }
-  })();
-  const accountProxyLastCheckText =
-    proxySettings?.lastCheckAt != null
-      ? new Date(proxySettings.lastCheckAt * 1000).toLocaleString()
-      : t("从未检查");
+	const { t } = useI18n();
+	const {
+		accounts,
+		planTypes,
+		isLoading,
+		isServiceReady,
+		isPageActive,
+		search,
+		planFilter,
+		statusFilter,
+		pageSize,
+		safePage,
+		totalPages,
+		filteredAccounts,
+		visibleAccounts,
+		filteredAccountIndexMap,
+		effectiveSelectedIds,
+		addAccountModalOpen,
+		usageModalOpen,
+		exportDialogOpen,
+		exportModeDraft,
+		exportTargetCount,
+		exportScopeText,
+		cleanupDialogOpen,
+		cleanupStatusDraft,
+		cleanupStatusOptions,
+		proxyDialogAccount,
+		proxySettings,
+		isProxySettingsLoading,
+		proxyEnabledDraft,
+		proxyUrlDraft,
+		selectedAccount,
+		accountEditorState,
+		deleteDialogState,
+		currentEditingAccount,
+		labelDraft,
+		tagsDraft,
+		noteDraft,
+		sortDraft,
+		modelWhitelistDraft,
+		quotaPrimaryDraft,
+		quotaSecondaryDraft,
+		isRefreshingAllAccounts,
+		isRefreshingAccountId,
+		isRefreshingRtAccountId,
+		isRefreshingAllRtAccounts,
+		isExporting,
+		isWarmingUpAccounts,
+		isDeletingMany,
+		isCleaningAccountsByStatus,
+		isUpdatingPreferred,
+		isSavingAccountProxy,
+		isClearingAccountProxy,
+		isTestingAccountProxy,
+		isReorderingAccounts,
+		isUpdatingProfileAccountId,
+		isUpdatingStatusAccountId,
+		statusFilterOptions,
+		importFileActionLabel,
+		importDirectoryActionLabel,
+		exportActionLabel,
+		exportActionShortcut,
+		setAddAccountModalOpen,
+		setExportDialogOpen,
+		setExportModeDraft,
+		setDeleteDialogState,
+		setCleanupDialogOpen,
+		setProxyEnabledDraft,
+		setProxyUrlDraft,
+		setAccountEditorState,
+		setLabelDraft,
+		setTagsDraft,
+		setNoteDraft,
+		setSortDraft,
+		setModelWhitelistDraft,
+		setQuotaPrimaryDraft,
+		setQuotaSecondaryDraft,
+		setPage,
+		handleSearchChange,
+		handlePlanFilterChange,
+		handleStatusFilterChange,
+		handlePageSizeChange,
+		toggleSelect,
+		toggleSelectAllVisible,
+		openUsage,
+		handleUsageModalOpenChange,
+		handleDeleteSelected,
+		openCleanupDialog,
+		toggleCleanupStatus,
+		handleConfirmCleanupStatuses,
+		handleWarmupAccounts,
+		openExportDialog,
+		handleConfirmExport,
+		handleDeleteSingle,
+		openProxyDialog,
+		handleProxyDialogOpenChange,
+		handleSaveProxySettings,
+		handleClearProxySettings,
+		handleTestProxySettings,
+		openAccountEditor,
+		handleMoveAccount,
+		handleApplyAccountSizeSort,
+		handleConfirmAccountEditor,
+		handleConfirmDelete,
+		refreshAllAccounts,
+		refreshAllAccountRt,
+		refreshAccountList,
+		refreshAccountRt,
+		importByFile,
+		importByDirectory,
+		refreshAccount,
+		clearPreferredAccount,
+		setPreferredAccount,
+		toggleAccountStatus,
+	} = props;
+	const cleanupSelectedCount = cleanupStatusOptions.reduce(
+		(total, option) =>
+			cleanupStatusDraft.includes(option.id) ? total + option.count : total,
+		0,
+	);
+	const accountProxyBusy =
+		isProxySettingsLoading ||
+		isSavingAccountProxy ||
+		isClearingAccountProxy ||
+		isTestingAccountProxy;
+	const accountProxyStatusText = (() => {
+		const status = String(proxySettings?.status || "not_configured");
+		switch (status) {
+			case "ok":
+				return t("可用");
+			case "runtime_error":
+				return t("运行时错误");
+			case "failed":
+				return t("测试失败");
+			case "invalid_url":
+				return t("地址无效");
+			case "checking":
+				return t("测试中");
+			case "unchecked":
+				return t("未测试");
+			case "not_configured":
+			default:
+				return t("未配置");
+		}
+	})();
+	const accountProxyStatusColorClass = (() => {
+		const status = String(proxySettings?.status || "not_configured");
+		switch (status) {
+			case "ok":
+				return "text-green-600 dark:text-green-400";
+			case "checking":
+				return "text-yellow-600 dark:text-yellow-400";
+			case "unchecked":
+				return "text-orange-600 dark:text-orange-400";
+			case "failed":
+			case "runtime_error":
+			case "invalid_url":
+				return "text-red-600 dark:text-red-400";
+			case "not_configured":
+			default:
+				return "text-muted-foreground";
+		}
+	})();
+	const accountProxyLastCheckText =
+		proxySettings?.lastCheckAt != null
+			? new Date(proxySettings.lastCheckAt * 1000).toLocaleString()
+			: t("从未检查");
 
-  return (
-    <div className="space-y-6">
-      {!isServiceReady ? (
-        <Card className="glass-card shadow-sm">
-          <CardContent className="pt-6 text-sm text-muted-foreground">
-            {t(
-              "服务未连接，账号列表与相关操作暂不可用；连接恢复后会自动继续加载。",
-            )}
-          </CardContent>
-        </Card>
-      ) : null}
+	return (
+		<div className="space-y-6">
+			{!isServiceReady ? (
+				<Card className="glass-card shadow-sm">
+					<CardContent className="pt-6 text-sm text-muted-foreground">
+						{t(
+							"服务未连接，账号列表与相关操作暂不可用；连接恢复后会自动继续加载。",
+						)}
+					</CardContent>
+				</Card>
+			) : null}
 
-      <Card className="glass-card shadow-sm">
-        <CardContent className="grid gap-3 pt-0 lg:grid-cols-[200px_auto_minmax(0,1fr)_auto] lg:items-center">
-          <div className="min-w-0">
-            <Input
-              placeholder={t("搜索账号名 / 编号...")}
-              className="glass-card h-10 rounded-xl px-3"
-              value={search}
-              onChange={(event) => handleSearchChange(event.target.value)}
-            />
-          </div>
+			<Card className="glass-card shadow-sm">
+				<CardContent className="grid gap-3 pt-0 lg:grid-cols-[200px_auto_minmax(0,1fr)_auto] lg:items-center">
+					<div className="min-w-0">
+						<Input
+							placeholder={t("搜索账号名 / 编号...")}
+							className="glass-card h-10 rounded-xl px-3"
+							value={search}
+							onChange={(event) => handleSearchChange(event.target.value)}
+						/>
+					</div>
 
-          <div className="flex shrink-0 items-center gap-3">
-            <Select value={planFilter} onValueChange={handlePlanFilterChange}>
-              <SelectTrigger className="h-10 w-[140px] shrink-0 rounded-xl bg-card/50">
-                <SelectValue placeholder={t("全部类型")}>
-                  {(value) => formatPlanFilterLabel(String(value || ""), t)}
-                </SelectValue>
-              </SelectTrigger>
-              <SelectContent>
-                    <SelectGroup>
-                <SelectItem value="all">
-                  {t("全部类型")} ({accounts.length})
-                </SelectItem>
-                {planTypes.map((planType) => (
-                  <SelectItem key={planType.value} value={planType.value}>
-                    {formatAccountPlanValueLabel(planType.value, t)} (
-                    {planType.count})
-                  </SelectItem>
-                ))}
-                </SelectGroup>
-              </SelectContent>
-            </Select>
-            <Select
-              value={statusFilter}
-              onValueChange={(value) =>
-                handleStatusFilterChange(value as StatusFilter)
-              }
-            >
-              <SelectTrigger className="h-10 w-[152px] shrink-0 rounded-xl bg-card/50">
-                <SelectValue placeholder={t("全部状态")}>
-                  {(value) => formatStatusFilterLabel(String(value || ""), t)}
-                </SelectValue>
-              </SelectTrigger>
-              <SelectContent>
-                    <SelectGroup>
-                {statusFilterOptions.map((filter) => (
-                  <SelectItem key={filter.id} value={filter.id}>
-                    {filter.label}
-                  </SelectItem>
-                ))}
-                </SelectGroup>
-              </SelectContent>
-            </Select>
-          </div>
+					<div className="flex shrink-0 items-center gap-3">
+						<Select value={planFilter} onValueChange={handlePlanFilterChange}>
+							<SelectTrigger className="h-10 w-[140px] shrink-0 rounded-xl bg-card/50">
+								<SelectValue placeholder={t("全部类型")}>
+									{(value) => formatPlanFilterLabel(String(value || ""), t)}
+								</SelectValue>
+							</SelectTrigger>
+							<SelectContent>
+								<SelectGroup>
+									<SelectItem value="all">
+										{t("全部类型")} ({accounts.length})
+									</SelectItem>
+									{planTypes.map((planType) => (
+										<SelectItem key={planType.value} value={planType.value}>
+											{formatAccountPlanValueLabel(planType.value, t)} (
+											{planType.count})
+										</SelectItem>
+									))}
+								</SelectGroup>
+							</SelectContent>
+						</Select>
+						<Select
+							value={statusFilter}
+							onValueChange={(value) =>
+								handleStatusFilterChange(value as StatusFilter)
+							}
+						>
+							<SelectTrigger className="h-10 w-[152px] shrink-0 rounded-xl bg-card/50">
+								<SelectValue placeholder={t("全部状态")}>
+									{(value) => formatStatusFilterLabel(String(value || ""), t)}
+								</SelectValue>
+							</SelectTrigger>
+							<SelectContent>
+								<SelectGroup>
+									{statusFilterOptions.map((filter) => (
+										<SelectItem key={filter.id} value={filter.id}>
+											{filter.label}
+										</SelectItem>
+									))}
+								</SelectGroup>
+							</SelectContent>
+						</Select>
+					</div>
 
-          <div className="hidden min-w-0 lg:block" />
+					<div className="hidden min-w-0 lg:block" />
 
-          <div className="ml-auto flex shrink-0 items-center gap-2 lg:ml-0 lg:justify-self-end">
-            <Tooltip>
-              <TooltipTrigger render={<span />} className="inline-flex">
-                <Button
-                  variant="outline"
-                  className="glass-card h-10 min-w-[88px] gap-2 rounded-xl px-3"
-                  disabled={
-                    !isServiceReady || isWarmingUpAccounts || accounts.length === 0
-                  }
-                  onClick={() => void handleWarmupAccounts()}
-                >
-                  {isWarmingUpAccounts ? (
-                    <Loader2 className="h-4 w-4 animate-spin" />
-                  ) : (
-                    <Zap className="h-4 w-4" />
-                  )}
-                  <span className="text-sm font-medium">
-                    {isWarmingUpAccounts ? t("预热中...") : t("预热")}
-                  </span>
-                </Button>
-              </TooltipTrigger>
-              <TooltipContent className="max-w-xs whitespace-pre-wrap break-words">
-                {t(
-                  "向选中账号发送 hi 进行预热；如果未选中账号，则默认预热全部账号。",
-                )}
-              </TooltipContent>
-            </Tooltip>
-            <DropdownMenu>
-              <DropdownMenuTrigger>
-                <Button
-                  variant="outline"
-                  className="glass-card h-10 min-w-[50px] justify-between gap-2 rounded-xl px-3"
-                  render={<span />}
-                  nativeButton={false}
-                >
-                  <span className="flex items-center gap-2">
-                    <span className="text-sm font-medium">{t("账号操作")}</span>
-                    {effectiveSelectedIds.length > 0 ? (
-                      <span className="rounded-full bg-primary/10 px-2 py-0.5 text-[10px] font-semibold text-primary">
-                        {effectiveSelectedIds.length}
-                      </span>
-                    ) : null}
-                  </span>
-                  <MoreVertical className="h-4 w-4 text-muted-foreground" />
-                </Button>
-              </DropdownMenuTrigger>
-              <DropdownMenuContent
-                align="end"
-                className="w-64 rounded-xl border border-border/70 bg-popover/95 p-2 shadow-sm"
-              >
-                                  <DropdownMenuGroup>
-                  <DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
-                    {t("刷新")}
-                  </DropdownMenuLabel>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={!isServiceReady || isRefreshingAllAccounts}
-                    onClick={refreshAllAccounts}
-                  >
-                    <RefreshCw
-                      className={cn(
-                        "mr-2 h-4 w-4",
-                        isRefreshingAllAccounts && "animate-spin",
-                      )}
-                    />
-                    {t("刷新账号用量")}
-                    <DropdownMenuShortcut>ALL</DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={!isServiceReady || isRefreshingAllRtAccounts}
-                    onClick={refreshAllAccountRt}
-                  >
-                    <KeyRound
-                      className={cn(
-                        "mr-2 h-4 w-4",
-                        isRefreshingAllRtAccounts && "animate-pulse",
-                      )}
-                    />
-                    {t("刷新全部 AT/RT")}
-                    <DropdownMenuShortcut>RT</DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={!isServiceReady}
-                    onClick={refreshAccountList}
-                  >
-                    <RefreshCw className="mr-2 h-4 w-4" />
-                    {t("刷新列表")}
-                    <DropdownMenuShortcut>LIST</DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                </DropdownMenuGroup>
-                <DropdownMenuSeparator />
-                <DropdownMenuGroup>
-                  <DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
-                    {t("号池管理")}
-                  </DropdownMenuLabel>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={!isServiceReady}
-                    onClick={() => setAddAccountModalOpen(true)}
-                  >
-                    <Plus className="mr-2 h-4 w-4" /> {t("添加账号")}
-                  </DropdownMenuItem>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={!isServiceReady}
-                    onClick={importByFile}
-                  >
-                    <FileUp className="mr-2 h-4 w-4" /> {importFileActionLabel}
-                    <DropdownMenuShortcut>FILE</DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={!isServiceReady}
-                    onClick={importByDirectory}
-                  >
-                    <FolderOpen className="mr-2 h-4 w-4" />
-                    {importDirectoryActionLabel}
-                    <DropdownMenuShortcut>DIR</DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={
-                      !isServiceReady || isExporting || accounts.length === 0
-                    }
-                    onClick={openExportDialog}
-                  >
-                    <Download className="mr-2 h-4 w-4" />
-                    {exportActionLabel}
-                    <DropdownMenuShortcut>
-                      {exportActionShortcut}
-                    </DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                </DropdownMenuGroup>
-                <DropdownMenuSeparator />
-                <DropdownMenuGroup>
-                  <DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
-                    {t("排序")}
-                  </DropdownMenuLabel>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={
-                      !isServiceReady ||
-                      isReorderingAccounts ||
-                      accounts.length < 2
-                    }
-                    onClick={() => void handleApplyAccountSizeSort("large-first")}
-                  >
-                    <ArrowUpDown className="mr-2 h-4 w-4" />
-                    {t("大号优先排序")}
-                    <DropdownMenuShortcut>BIZ</DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                  <DropdownMenuItem
-                    className="h-9 rounded-lg px-2"
-                    disabled={
-                      !isServiceReady ||
-                      isReorderingAccounts ||
-                      accounts.length < 2
-                    }
-                    onClick={() => void handleApplyAccountSizeSort("small-first")}
-                  >
-                    <ArrowDown className="mr-2 h-4 w-4" />
-                    {t("小号优先排序")}
-                    <DropdownMenuShortcut>FREE</DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                </DropdownMenuGroup>
-                <DropdownMenuSeparator />
-                <DropdownMenuGroup>
-                  <DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
-                    {t("清理")}
-                  </DropdownMenuLabel>
-                  <DropdownMenuItem
-                    disabled={
-                      !isServiceReady ||
-                      !effectiveSelectedIds.length ||
-                      isDeletingMany
-                    }
-                    variant="destructive"
-                    className="h-9 rounded-lg px-2"
-                    onClick={handleDeleteSelected}
-                  >
-                    <Trash2 className="mr-2 h-4 w-4" /> {t("删除选中账号")}
-                    <DropdownMenuShortcut>
-                      {effectiveSelectedIds.length || "-"}
-                    </DropdownMenuShortcut>
-                  </DropdownMenuItem>
-                  <DropdownMenuItem
-                    variant="destructive"
-                    className="h-9 rounded-lg px-2"
-                    disabled={
-                      !isServiceReady ||
-                      isCleaningAccountsByStatus ||
-                      accounts.length === 0
-                    }
-                    onClick={openCleanupDialog}
-                  >
-                    <Trash2 className="mr-2 h-4 w-4" /> {t("按状态清理账号")}
-                  </DropdownMenuItem>
-                </DropdownMenuGroup>
-              </DropdownMenuContent>
-            </DropdownMenu>
-          </div>
-        </CardContent>
-      </Card>
+					<div className="ml-auto flex shrink-0 items-center gap-2 lg:ml-0 lg:justify-self-end">
+						<Tooltip>
+							<TooltipTrigger render={<span />} className="inline-flex">
+								<Button
+									variant="outline"
+									className="glass-card h-10 min-w-[88px] gap-2 rounded-xl px-3"
+									disabled={
+										!isServiceReady ||
+										isWarmingUpAccounts ||
+										accounts.length === 0
+									}
+									onClick={() => void handleWarmupAccounts()}
+								>
+									{isWarmingUpAccounts ? (
+										<Loader2 className="h-4 w-4 animate-spin" />
+									) : (
+										<Zap className="h-4 w-4" />
+									)}
+									<span className="text-sm font-medium">
+										{isWarmingUpAccounts ? t("预热中...") : t("预热")}
+									</span>
+								</Button>
+							</TooltipTrigger>
+							<TooltipContent className="max-w-xs whitespace-pre-wrap break-words">
+								{t(
+									"向选中账号发送 hi 进行预热；如果未选中账号，则默认预热全部账号。",
+								)}
+							</TooltipContent>
+						</Tooltip>
+						<DropdownMenu>
+							<DropdownMenuTrigger>
+								<Button
+									variant="outline"
+									className="glass-card h-10 min-w-[50px] justify-between gap-2 rounded-xl px-3"
+									render={<span />}
+									nativeButton={false}
+								>
+									<span className="flex items-center gap-2">
+										<span className="text-sm font-medium">{t("账号操作")}</span>
+										{effectiveSelectedIds.length > 0 ? (
+											<span className="rounded-full bg-primary/10 px-2 py-0.5 text-[10px] font-semibold text-primary">
+												{effectiveSelectedIds.length}
+											</span>
+										) : null}
+									</span>
+									<MoreVertical className="h-4 w-4 text-muted-foreground" />
+								</Button>
+							</DropdownMenuTrigger>
+							<DropdownMenuContent
+								align="end"
+								className="w-64 rounded-xl border border-border/70 bg-popover/95 p-2 shadow-sm"
+							>
+								<DropdownMenuGroup>
+									<DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
+										{t("刷新")}
+									</DropdownMenuLabel>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={!isServiceReady || isRefreshingAllAccounts}
+										onClick={refreshAllAccounts}
+									>
+										<RefreshCw
+											className={cn(
+												"mr-2 h-4 w-4",
+												isRefreshingAllAccounts && "animate-spin",
+											)}
+										/>
+										{t("刷新账号用量")}
+										<DropdownMenuShortcut>ALL</DropdownMenuShortcut>
+									</DropdownMenuItem>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={!isServiceReady || isRefreshingAllRtAccounts}
+										onClick={refreshAllAccountRt}
+									>
+										<KeyRound
+											className={cn(
+												"mr-2 h-4 w-4",
+												isRefreshingAllRtAccounts && "animate-pulse",
+											)}
+										/>
+										{t("刷新全部 AT/RT")}
+										<DropdownMenuShortcut>RT</DropdownMenuShortcut>
+									</DropdownMenuItem>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={!isServiceReady}
+										onClick={refreshAccountList}
+									>
+										<RefreshCw className="mr-2 h-4 w-4" />
+										{t("刷新列表")}
+										<DropdownMenuShortcut>LIST</DropdownMenuShortcut>
+									</DropdownMenuItem>
+								</DropdownMenuGroup>
+								<DropdownMenuSeparator />
+								<DropdownMenuGroup>
+									<DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
+										{t("号池管理")}
+									</DropdownMenuLabel>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={!isServiceReady}
+										onClick={() => setAddAccountModalOpen(true)}
+									>
+										<Plus className="mr-2 h-4 w-4" /> {t("添加账号")}
+									</DropdownMenuItem>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={!isServiceReady}
+										onClick={importByFile}
+									>
+										<FileUp className="mr-2 h-4 w-4" /> {importFileActionLabel}
+										<DropdownMenuShortcut>FILE</DropdownMenuShortcut>
+									</DropdownMenuItem>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={!isServiceReady}
+										onClick={importByDirectory}
+									>
+										<FolderOpen className="mr-2 h-4 w-4" />
+										{importDirectoryActionLabel}
+										<DropdownMenuShortcut>DIR</DropdownMenuShortcut>
+									</DropdownMenuItem>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={
+											!isServiceReady || isExporting || accounts.length === 0
+										}
+										onClick={openExportDialog}
+									>
+										<Download className="mr-2 h-4 w-4" />
+										{exportActionLabel}
+										<DropdownMenuShortcut>
+											{exportActionShortcut}
+										</DropdownMenuShortcut>
+									</DropdownMenuItem>
+								</DropdownMenuGroup>
+								<DropdownMenuSeparator />
+								<DropdownMenuGroup>
+									<DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
+										{t("排序")}
+									</DropdownMenuLabel>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={
+											!isServiceReady ||
+											isReorderingAccounts ||
+											accounts.length < 2
+										}
+										onClick={() =>
+											void handleApplyAccountSizeSort("large-first")
+										}
+									>
+										<ArrowUpDown className="mr-2 h-4 w-4" />
+										{t("大号优先排序")}
+										<DropdownMenuShortcut>BIZ</DropdownMenuShortcut>
+									</DropdownMenuItem>
+									<DropdownMenuItem
+										className="h-9 rounded-lg px-2"
+										disabled={
+											!isServiceReady ||
+											isReorderingAccounts ||
+											accounts.length < 2
+										}
+										onClick={() =>
+											void handleApplyAccountSizeSort("small-first")
+										}
+									>
+										<ArrowDown className="mr-2 h-4 w-4" />
+										{t("小号优先排序")}
+										<DropdownMenuShortcut>FREE</DropdownMenuShortcut>
+									</DropdownMenuItem>
+								</DropdownMenuGroup>
+								<DropdownMenuSeparator />
+								<DropdownMenuGroup>
+									<DropdownMenuLabel className="px-2 py-1 text-[11px] uppercase tracking-[0.16em] text-muted-foreground/80">
+										{t("清理")}
+									</DropdownMenuLabel>
+									<DropdownMenuItem
+										disabled={
+											!isServiceReady ||
+											!effectiveSelectedIds.length ||
+											isDeletingMany
+										}
+										variant="destructive"
+										className="h-9 rounded-lg px-2"
+										onClick={handleDeleteSelected}
+									>
+										<Trash2 className="mr-2 h-4 w-4" /> {t("删除选中账号")}
+										<DropdownMenuShortcut>
+											{effectiveSelectedIds.length || "-"}
+										</DropdownMenuShortcut>
+									</DropdownMenuItem>
+									<DropdownMenuItem
+										variant="destructive"
+										className="h-9 rounded-lg px-2"
+										disabled={
+											!isServiceReady ||
+											isCleaningAccountsByStatus ||
+											accounts.length === 0
+										}
+										onClick={openCleanupDialog}
+									>
+										<Trash2 className="mr-2 h-4 w-4" /> {t("按状态清理账号")}
+									</DropdownMenuItem>
+								</DropdownMenuGroup>
+							</DropdownMenuContent>
+						</DropdownMenu>
+					</div>
+				</CardContent>
+			</Card>
 
-      <Dialog open={exportDialogOpen} onOpenChange={setExportDialogOpen}>
-        <DialogContent className="glass-card border-border/70 sm:max-w-md">
-          <DialogHeader>
-            <DialogTitle>{t("导出账号")}</DialogTitle>
-            <DialogDescription>
-              {t("选择导出方式；如果已勾选账号，则只导出当前选中项。")}
-            </DialogDescription>
-          </DialogHeader>
-          <div className="space-y-4">
-            <div className="rounded-xl border border-border/60 bg-muted/30 p-3 text-sm text-muted-foreground">
-              {exportScopeText}
-            </div>
-            <div className="grid gap-3">
-              <Label>{t("导出格式")}</Label>
-              <Select
-                value={exportModeDraft}
-                onValueChange={(value) =>
-                  setExportModeDraft(value as AccountExportMode)
-                }
-              >
-                <SelectTrigger className="h-11 rounded-xl bg-background/70">
-                  <SelectValue>
-                    {(value) =>
-                      formatAccountExportModeLabel(String(value || ""), t)
-                    }
-                  </SelectValue>
-                </SelectTrigger>
-                <SelectContent>
-                    <SelectGroup>
-                  <SelectItem value="multiple">
-                    {formatAccountExportModeLabel("multiple", t)}
-                  </SelectItem>
-                  <SelectItem value="single">
-                    {formatAccountExportModeLabel("single", t)}
-                  </SelectItem>
-                  </SelectGroup>
-                </SelectContent>
-              </Select>
-              <div className="rounded-xl bg-accent/20 px-3 py-2">
-                <div className="text-xs text-muted-foreground">
-                  {exportModeDraft === "single"
-                    ? t(
-                        "导出为一个 `accounts.json` 数组文件，适合整体备份和再次导入。",
-                      )
-                    : t(
-                        "每个账号导出为一个独立 JSON 文件，适合逐个分发或单独管理。",
-                      )}
-                </div>
-              </div>
-            </div>
-          </div>
-          <DialogFooter>
-            <DialogClose
-              className={cn(
-                buttonVariants({ variant: "outline" }),
-                "rounded-xl",
-              )}
-              disabled={isExporting}
-            >
-              {t("取消")}
-            </DialogClose>
-            <Button
-              className="rounded-xl"
-              onClick={() => void handleConfirmExport()}
-              disabled={isExporting || exportTargetCount <= 0}
-            >
-              {isExporting ? t("导出中...") : t("开始导出")}
-            </Button>
-          </DialogFooter>
-        </DialogContent>
-      </Dialog>
+			<Dialog open={exportDialogOpen} onOpenChange={setExportDialogOpen}>
+				<DialogContent className="glass-card border-border/70 sm:max-w-md">
+					<DialogHeader>
+						<DialogTitle>{t("导出账号")}</DialogTitle>
+						<DialogDescription>
+							{t("选择导出方式；如果已勾选账号，则只导出当前选中项。")}
+						</DialogDescription>
+					</DialogHeader>
+					<div className="space-y-4">
+						<div className="rounded-xl border border-border/60 bg-muted/30 p-3 text-sm text-muted-foreground">
+							{exportScopeText}
+						</div>
+						<div className="grid gap-3">
+							<Label>{t("导出格式")}</Label>
+							<Select
+								value={exportModeDraft}
+								onValueChange={(value) =>
+									setExportModeDraft(value as AccountExportMode)
+								}
+							>
+								<SelectTrigger className="h-11 rounded-xl bg-background/70">
+									<SelectValue>
+										{(value) =>
+											formatAccountExportModeLabel(String(value || ""), t)
+										}
+									</SelectValue>
+								</SelectTrigger>
+								<SelectContent>
+									<SelectGroup>
+										<SelectItem value="multiple">
+											{formatAccountExportModeLabel("multiple", t)}
+										</SelectItem>
+										<SelectItem value="single">
+											{formatAccountExportModeLabel("single", t)}
+										</SelectItem>
+									</SelectGroup>
+								</SelectContent>
+							</Select>
+							<div className="rounded-xl bg-accent/20 px-3 py-2">
+								<div className="text-xs text-muted-foreground">
+									{exportModeDraft === "single"
+										? t(
+												"导出为一个 `accounts.json` 数组文件，适合整体备份和再次导入。",
+											)
+										: t(
+												"每个账号导出为一个独立 JSON 文件，适合逐个分发或单独管理。",
+											)}
+								</div>
+							</div>
+						</div>
+					</div>
+					<DialogFooter>
+						<DialogClose
+							className={cn(
+								buttonVariants({ variant: "outline" }),
+								"rounded-xl",
+							)}
+							disabled={isExporting}
+						>
+							{t("取消")}
+						</DialogClose>
+						<Button
+							className="rounded-xl"
+							onClick={() => void handleConfirmExport()}
+							disabled={isExporting || exportTargetCount <= 0}
+						>
+							{isExporting ? t("导出中...") : t("开始导出")}
+						</Button>
+					</DialogFooter>
+				</DialogContent>
+			</Dialog>
 
-      <Dialog
-        open={isPageActive && cleanupDialogOpen}
-        onOpenChange={(open) => {
-          if (!isCleaningAccountsByStatus) {
-            setCleanupDialogOpen(open);
-          }
-        }}
-      >
-        <DialogContent className="glass-card border-border/70 sm:max-w-[520px]">
-          <DialogHeader>
-            <DialogTitle>{t("按状态清理账号")}</DialogTitle>
-            <DialogDescription>
-              {t("选择要删除的账号状态；删除后不可恢复。")}
-            </DialogDescription>
-          </DialogHeader>
-          <div className="space-y-3">
-            <div className="rounded-xl border border-destructive/20 bg-destructive/5 px-3 py-2 text-xs text-destructive">
-              {t("将删除所有匹配所选状态的账号，不再额外限制账号套餐。")}
-            </div>
-            <div className="grid gap-2">
-              {cleanupStatusOptions.map((option) => {
-                const checked = cleanupStatusDraft.includes(option.id);
-                return (
-                  <div
-                    key={option.id}
-                    className={cn(
-                      "flex w-full items-center gap-3 rounded-xl border px-3 py-3 text-left transition-colors",
-                      checked
-                        ? "border-primary/40 bg-primary/10"
-                        : "border-border/70 bg-background/45",
-                    )}
-                  >
-                    <Checkbox
-                      checked={checked}
-                      disabled={isCleaningAccountsByStatus}
-                      onCheckedChange={() => toggleCleanupStatus(option.id)}
-                      aria-label={option.label}
-                    />
-                    <div className="min-w-0 flex-1">
-                      <div className="flex items-center gap-2">
-                        <span className="text-sm font-medium">
-                          {option.label}
-                        </span>
-                        <span className="rounded-full bg-muted px-2 py-0.5 text-[10px] font-semibold text-muted-foreground">
-                          {option.count}
-                        </span>
-                      </div>
-                      <p className="mt-1 text-xs text-muted-foreground">
-                        {option.description}
-                      </p>
-                    </div>
-                  </div>
-                );
-              })}
-            </div>
-            <div className="rounded-xl bg-muted/30 px-3 py-2 text-xs text-muted-foreground">
-              {t("预计删除")}{" "}
-              <span className="font-semibold text-foreground">
-                {cleanupSelectedCount}
-              </span>{" "}
-              {t("个账号")}
-            </div>
-          </div>
-          <DialogFooter className="gap-2 sm:gap-2">
-            <DialogClose
-              className={buttonVariants({ variant: "outline" })}
-              type="button"
-              disabled={isCleaningAccountsByStatus}
-            >
-              {t("取消")}
-            </DialogClose>
-            <Button
-              variant="destructive"
-              disabled={
-                isCleaningAccountsByStatus ||
-                cleanupStatusDraft.length === 0 ||
-                cleanupSelectedCount <= 0
-              }
-              onClick={() => void handleConfirmCleanupStatuses()}
-            >
-              {isCleaningAccountsByStatus ? (
-                <Loader2 className="mr-2 h-4 w-4 animate-spin" />
-              ) : (
-                <Trash2 className="mr-2 h-4 w-4" />
-              )}
-              {t("确认清理")}
-            </Button>
-          </DialogFooter>
-        </DialogContent>
-      </Dialog>
+			<Dialog
+				open={isPageActive && cleanupDialogOpen}
+				onOpenChange={(open) => {
+					if (!isCleaningAccountsByStatus) {
+						setCleanupDialogOpen(open);
+					}
+				}}
+			>
+				<DialogContent className="glass-card border-border/70 sm:max-w-[520px]">
+					<DialogHeader>
+						<DialogTitle>{t("按状态清理账号")}</DialogTitle>
+						<DialogDescription>
+							{t("选择要删除的账号状态；删除后不可恢复。")}
+						</DialogDescription>
+					</DialogHeader>
+					<div className="space-y-3">
+						<div className="rounded-xl border border-destructive/20 bg-destructive/5 px-3 py-2 text-xs text-destructive">
+							{t("将删除所有匹配所选状态的账号，不再额外限制账号套餐。")}
+						</div>
+						<div className="grid gap-2">
+							{cleanupStatusOptions.map((option) => {
+								const checked = cleanupStatusDraft.includes(option.id);
+								return (
+									<div
+										key={option.id}
+										className={cn(
+											"flex w-full items-center gap-3 rounded-xl border px-3 py-3 text-left transition-colors",
+											checked
+												? "border-primary/40 bg-primary/10"
+												: "border-border/70 bg-background/45",
+										)}
+									>
+										<Checkbox
+											checked={checked}
+											disabled={isCleaningAccountsByStatus}
+											onCheckedChange={() => toggleCleanupStatus(option.id)}
+											aria-label={option.label}
+										/>
+										<div className="min-w-0 flex-1">
+											<div className="flex items-center gap-2">
+												<span className="text-sm font-medium">
+													{option.label}
+												</span>
+												<span className="rounded-full bg-muted px-2 py-0.5 text-[10px] font-semibold text-muted-foreground">
+													{option.count}
+												</span>
+											</div>
+											<p className="mt-1 text-xs text-muted-foreground">
+												{option.description}
+											</p>
+										</div>
+									</div>
+								);
+							})}
+						</div>
+						<div className="rounded-xl bg-muted/30 px-3 py-2 text-xs text-muted-foreground">
+							{t("预计删除")}{" "}
+							<span className="font-semibold text-foreground">
+								{cleanupSelectedCount}
+							</span>{" "}
+							{t("个账号")}
+						</div>
+					</div>
+					<DialogFooter className="gap-2 sm:gap-2">
+						<DialogClose
+							className={buttonVariants({ variant: "outline" })}
+							type="button"
+							disabled={isCleaningAccountsByStatus}
+						>
+							{t("取消")}
+						</DialogClose>
+						<Button
+							variant="destructive"
+							disabled={
+								isCleaningAccountsByStatus ||
+								cleanupStatusDraft.length === 0 ||
+								cleanupSelectedCount <= 0
+							}
+							onClick={() => void handleConfirmCleanupStatuses()}
+						>
+							{isCleaningAccountsByStatus ? (
+								<Loader2 className="mr-2 h-4 w-4 animate-spin" />
+							) : (
+								<Trash2 className="mr-2 h-4 w-4" />
+							)}
+							{t("确认清理")}
+						</Button>
+					</DialogFooter>
+				</DialogContent>
+			</Dialog>
 
-      <Card className="glass-card overflow-hidden py-0 shadow-sm">
-        <CardContent className="p-0">
-          <Table>
-            <TableHeader>
-              <TableRow>
-                <TableHead className="w-12 text-center">
-                  <Checkbox
-                    checked={
-                      visibleAccounts.length > 0 &&
-                      visibleAccounts.every((account) =>
-                        effectiveSelectedIds.includes(account.id),
-                      )
-                    }
-                    onCheckedChange={toggleSelectAllVisible}
-                  />
-                </TableHead>
-                <TableHead className="w-[clamp(220px,28vw,340px)] min-w-[220px] max-w-[340px] whitespace-normal">
-                  {t("账号信息")}
-                </TableHead>
-                <TableHead className="min-w-[250px] text-center">
-                  {t("额度详情")}
-                </TableHead>
-                <TableHead className="w-[156px]">{t("顺序")}</TableHead>
-                <TableHead>{t("状态")}</TableHead>
-                <TableHead className="table-sticky-action-head w-[112px] text-center">
-                  {t("操作")}
-                </TableHead>
-              </TableRow>
-            </TableHeader>
-            <TableBody>
-              {isLoading ? (
-                Array.from({ length: 5 }).map((_, index) => (
-                  <TableRow key={index}>
-                    <TableCell>
-                      <Skeleton className="mx-auto h-4 w-4" />
-                    </TableCell>
-                    <TableCell>
-                      <Skeleton className="h-4 w-32" />
-                    </TableCell>
-                    <TableCell>
-                      <div className="space-y-2">
-                        <Skeleton className="h-4 w-40" />
-                        <Skeleton className="h-4 w-40" />
-                        <Skeleton className="h-4 w-40" />
-                      </div>
-                    </TableCell>
-                    <TableCell>
-                      <Skeleton className="h-4 w-10" />
-                    </TableCell>
-                    <TableCell>
-                      <Skeleton className="h-6 w-16 rounded-full" />
-                    </TableCell>
-                    <TableCell className="table-sticky-action-cell">
-                      <Skeleton className="mx-auto h-8 w-24" />
-                    </TableCell>
-                  </TableRow>
-                ))
-              ) : visibleAccounts.length === 0 ? (
-                <TableRow>
-                  <TableCell colSpan={6} className="h-48 text-center">
-                    <div className="flex flex-col items-center justify-center gap-2 text-muted-foreground">
-                      <Search className="h-8 w-8 opacity-20" />
-                      <p>{t("未找到符合条件的账号")}</p>
-                    </div>
-                  </TableCell>
-                </TableRow>
-              ) : (
-                visibleAccounts.map((account) => {
-                  const quotaItems = buildQuotaSummaryItems(account, t);
-                  const statusAction = getAccountStatusAction(account, t);
-                  const StatusActionIcon = statusAction.icon;
-                  const modelPoolText = account.modelSlugs.length
-                    ? account.modelSlugs.slice(0, 2).join(", ")
-                    : t("全部 API 模型");
-                  const modelPoolDisplayText = `${t("模型池")}: ${modelPoolText}${
-                    account.modelSlugs.length > 2
-                      ? ` +${account.modelSlugs.length - 2}`
-                      : ""
-                  }`;
-                  const isRefreshingCurrentAccount =
-                    isRefreshingAccountId === account.id;
-                  const isRefreshingCurrentRt =
-                    isRefreshingRtAccountId === account.id;
-                  const filteredIndex =
-                    filteredAccountIndexMap.get(account.id) ?? -1;
-                  const canMoveUp = filteredIndex > 0;
-                  const canMoveDown =
-                    filteredIndex !== -1 &&
-                    filteredIndex < filteredAccounts.length - 1;
-                  return (
-                    <TableRow key={account.id} className="group">
-                      <TableCell className="text-center">
-                        <Checkbox
-                          checked={effectiveSelectedIds.includes(account.id)}
-                          onCheckedChange={() => toggleSelect(account.id)}
-                        />
-                      </TableCell>
-                      <TableCell className="w-[clamp(220px,28vw,340px)] min-w-[220px] max-w-[340px] whitespace-normal align-top">
-                        <AccountInfoCell
-                          account={account}
-                          isPreferred={account.preferred}
-                        />
-                      </TableCell>
-                      <TableCell>
-                        <QuotaOverviewCell items={quotaItems} />
-                        <div className="mt-1.5 flex flex-wrap gap-1.5 text-[10px] text-muted-foreground">
-                          <span
-                            className={fitLongTextClassName(
-                              modelPoolDisplayText,
-                              "max-w-full rounded-full border border-border/50 bg-background/40 px-2 py-0.5 break-all [overflow-wrap:anywhere]",
-                              "text-[10px]",
-                            )}
-                            title={modelPoolDisplayText}
-                          >
-                            {modelPoolDisplayText}
-                          </span>
-                          {account.quotaCapacityPrimaryWindowTokens ||
-                          account.quotaCapacitySecondaryWindowTokens ? (
-                            <span className="max-w-full rounded-full border border-border/50 bg-background/40 px-2 py-0.5 break-words [overflow-wrap:anywhere]">
-                              {t("容量覆盖")}:{" "}
-                              {account.quotaCapacityPrimaryWindowTokens
-                                ? `5h ${formatCompactNumber(
-                                    account.quotaCapacityPrimaryWindowTokens,
-                                    "0.00",
-                                    2,
-                                    true,
-                                  )}`
-                                : "5h --"}
-                              {" / "}
-                              {account.quotaCapacitySecondaryWindowTokens
-                                ? `7d ${formatCompactNumber(
-                                    account.quotaCapacitySecondaryWindowTokens,
-                                    "0.00",
-                                    2,
-                                    true,
-                                  )}`
-                                : "7d --"}
-                            </span>
-                          ) : (
-                            <span className="max-w-full rounded-full border border-border/50 bg-background/40 px-2 py-0.5 break-words [overflow-wrap:anywhere]">
-                              {t("未设置账号容量覆盖")}
-                            </span>
-                          )}
-                        </div>
-                      </TableCell>
-                      <TableCell>
-                        <div className="flex items-center gap-1">
-                          <span className="rounded bg-muted/50 px-2 py-0.5 font-mono text-xs">
-                            {account.priority}
-                          </span>
-                          <Button
-                            variant="ghost"
-                            size="icon"
-                            className="h-7 w-7 text-muted-foreground transition-colors hover:text-primary"
-                            disabled={
-                              !isServiceReady ||
-                              !canMoveUp ||
-                              isReorderingAccounts ||
-                              isUpdatingProfileAccountId === account.id
-                            }
-                            onClick={() => void handleMoveAccount(account, "up")}
-                            title={t("上移一位")}
-                          >
-                            <ArrowUp className="h-3.5 w-3.5" />
-                          </Button>
-                          <Button
-                            variant="ghost"
-                            size="icon"
-                            className="h-7 w-7 text-muted-foreground transition-colors hover:text-primary"
-                            disabled={
-                              !isServiceReady ||
-                              !canMoveDown ||
-                              isReorderingAccounts ||
-                              isUpdatingProfileAccountId === account.id
-                            }
-                            onClick={() =>
-                              void handleMoveAccount(account, "down")
-                            }
-                            title={t("下移一位")}
-                          >
-                            <ArrowDown className="h-3.5 w-3.5" />
-                          </Button>
-                          <Button
-                            variant="ghost"
-                            size="icon"
-                            className="h-7 w-7 text-muted-foreground transition-colors hover:text-primary"
-                            disabled={
-                              !isServiceReady ||
-                              isReorderingAccounts ||
-                              isUpdatingProfileAccountId === account.id
-                            }
-                            onClick={() => openAccountEditor(account)}
-                            title={t("编辑账号信息")}
-                          >
-                            <PencilLine className="h-3.5 w-3.5" />
-                          </Button>
-                        </div>
-                      </TableCell>
-                      <TableCell>
-                        <AccountStatusCell account={account} />
-                      </TableCell>
-                      <TableCell className="table-sticky-action-cell">
-                        <div className="table-action-cell gap-1">
-                          <Button
-                            variant="ghost"
-                            size="icon"
-                            className="h-8 w-8 text-muted-foreground transition-colors hover:text-primary"
-                            disabled={!isServiceReady}
-                            onClick={() => openUsage(account)}
-                            title={t("用量详情")}
-                            aria-label={t("用量详情")}
-                          >
-                            <BarChart3 className="h-4 w-4" />
-                          </Button>
-                          <DropdownMenu>
-                            <DropdownMenuTrigger>
-                              <Button
-                                variant="ghost"
-                                size="icon"
-                                className="h-8 w-8"
-                                render={<span />}
-                                nativeButton={false}
-                                disabled={!isServiceReady}
-                                title={t("更多账号操作")}
-                                aria-label={t("更多账号操作")}
-                              >
-                                <MoreVertical className="h-4 w-4" />
-                                <span className="sr-only">
-                                  {t("更多账号操作")}
-                                </span>
-                              </Button>
-                            </DropdownMenuTrigger>
-                            <DropdownMenuContent align="end">
-                                  <DropdownMenuGroup>
-                              <DropdownMenuItem
-                                className="gap-2"
-                                disabled={
-                                  !isServiceReady ||
-                                  isRefreshingAllAccounts ||
-                                  isRefreshingCurrentAccount
-                                }
-                                onClick={() => refreshAccount(account.id)}
-                              >
-                                <RefreshCw
-                                  className={cn(
-                                    "h-4 w-4",
-                                    isRefreshingCurrentAccount && "animate-spin",
-                                  )}
-                                />
-                                {t("刷新用量")}
-                              </DropdownMenuItem>
-                              <DropdownMenuItem
-                                className="gap-2"
-                                disabled={!isServiceReady || isRefreshingCurrentRt}
-                                onClick={() => refreshAccountRt(account.id)}
-                              >
-                                <KeyRound
-                                  className={cn(
-                                    "h-4 w-4",
-                                    isRefreshingCurrentRt && "animate-pulse",
-                                  )}
-                                />
-                                {t("刷新 AT/RT")}
-                                <DropdownMenuShortcut>RT</DropdownMenuShortcut>
-                              </DropdownMenuItem>
-                              <DropdownMenuSeparator />
-                              <DropdownMenuItem
-                                className="gap-2"
-                                disabled={!isServiceReady || isUpdatingPreferred}
-                                onClick={() =>
-                                  account.preferred
-                                    ? clearPreferredAccount(account.id)
-                                    : setPreferredAccount(account.id)
-                                }
-                              >
-                                <Pin className="h-4 w-4" />
-                                {account.preferred ? t("取消优先") : t("设为优先")}
-                              </DropdownMenuItem>
-                              <DropdownMenuItem
-                                className="gap-2"
-                                disabled={!isServiceReady}
-                                onClick={() => void openProxyDialog(account)}
-                              >
-                                <Network className="h-4 w-4" />
-                                {t("账号代理")}
-                              </DropdownMenuItem>
-                              <DropdownMenuItem
-                                className="gap-2"
-                                disabled={
-                                  !isServiceReady ||
-                                  isUpdatingStatusAccountId === account.id ||
-                                  statusAction.action === null
-                                }
-                                onClick={() =>
-                                  statusAction.action &&
-                                  toggleAccountStatus(
-                                    account.id,
-                                    statusAction.action === "enable",
-                                    account.status,
-                                  )
-                                }
-                              >
-                                <StatusActionIcon className="h-4 w-4" />
-                                {statusAction.label}
-                              </DropdownMenuItem>
-                              <DropdownMenuSeparator />
-                              <DropdownMenuItem
-                                className="gap-2 text-red-500"
-                                disabled={!isServiceReady}
-                                onClick={() => handleDeleteSingle(account)}
-                              >
-                                <Trash2 className="h-4 w-4" /> {t("删除")}
-                              </DropdownMenuItem>
-                              </DropdownMenuGroup>
-                            </DropdownMenuContent>
-                          </DropdownMenu>
-                        </div>
-                      </TableCell>
-                    </TableRow>
-                  );
-                })
-              )}
-            </TableBody>
-          </Table>
-        </CardContent>
-      </Card>
+			<Card className="glass-card overflow-hidden py-0 shadow-sm">
+				<CardContent className="p-0">
+					<Table>
+						<TableHeader>
+							<TableRow>
+								<TableHead className="w-12 text-center">
+									<Checkbox
+										checked={
+											visibleAccounts.length > 0 &&
+											visibleAccounts.every((account) =>
+												effectiveSelectedIds.includes(account.id),
+											)
+										}
+										onCheckedChange={toggleSelectAllVisible}
+									/>
+								</TableHead>
+								<TableHead className="w-[clamp(220px,28vw,340px)] min-w-[220px] max-w-[340px] whitespace-normal">
+									{t("账号信息")}
+								</TableHead>
+								<TableHead className="min-w-[250px] text-center">
+									{t("模型白名单 / 额度管理")}
+								</TableHead>
+								<TableHead className="w-[156px]">{t("顺序")}</TableHead>
+								<TableHead className="w-[120px]">{t("代理")}</TableHead>
+								<TableHead>{t("状态")}</TableHead>
+								<TableHead className="table-sticky-action-head w-[112px] text-center">
+									{t("操作")}
+								</TableHead>
+							</TableRow>
+						</TableHeader>
+						<TableBody>
+							{isLoading ? (
+								Array.from({ length: 5 }).map((_, index) => (
+									<TableRow key={index}>
+										<TableCell>
+											<Skeleton className="mx-auto h-4 w-4" />
+										</TableCell>
+										<TableCell>
+											<Skeleton className="h-4 w-32" />
+										</TableCell>
+										<TableCell>
+											<div className="space-y-2">
+												<Skeleton className="h-4 w-40" />
+												<Skeleton className="h-4 w-40" />
+												<Skeleton className="h-4 w-40" />
+											</div>
+										</TableCell>
+										<TableCell>
+											<Skeleton className="h-4 w-10" />
+										</TableCell>
+										<TableCell>
+											<Skeleton className="h-6 w-16 rounded-full" />
+										</TableCell>
+										<TableCell>
+											<Skeleton className="h-4 w-10" />
+										</TableCell>
+										<TableCell className="table-sticky-action-cell">
+											<Skeleton className="mx-auto h-8 w-24" />
+										</TableCell>
+									</TableRow>
+								))
+							) : visibleAccounts.length === 0 ? (
+								<TableRow>
+									<TableCell colSpan={7} className="h-48 text-center">
+										<div className="flex flex-col items-center justify-center gap-2 text-muted-foreground">
+											<Search className="h-8 w-8 opacity-20" />
+											<p>{t("未找到符合条件的账号")}</p>
+										</div>
+									</TableCell>
+								</TableRow>
+							) : (
+								visibleAccounts.map((account) => {
+									const quotaItems = buildQuotaSummaryItems(account, t);
+									const statusAction = getAccountStatusAction(account, t);
+									const StatusActionIcon = statusAction.icon;
+									const modelPoolText = account.modelSlugs.length
+										? account.modelSlugs.slice(0, 2).join(", ")
+										: t("全部 API 模型");
+									const modelPoolDisplayText = `${t("模型池")}: ${modelPoolText}${
+										account.modelSlugs.length > 2
+											? ` +${account.modelSlugs.length - 2}`
+											: ""
+									}`;
+									const isRefreshingCurrentAccount =
+										isRefreshingAccountId === account.id;
+									const isRefreshingCurrentRt =
+										isRefreshingRtAccountId === account.id;
+									const filteredIndex =
+										filteredAccountIndexMap.get(account.id) ?? -1;
+									const canMoveUp = filteredIndex > 0;
+									const canMoveDown =
+										filteredIndex !== -1 &&
+										filteredIndex < filteredAccounts.length - 1;
+									return (
+										<TableRow key={account.id} className="group">
+											<TableCell className="text-center">
+												<Checkbox
+													checked={effectiveSelectedIds.includes(account.id)}
+													onCheckedChange={() => toggleSelect(account.id)}
+												/>
+											</TableCell>
+											<TableCell className="w-[clamp(220px,28vw,340px)] min-w-[220px] max-w-[340px] whitespace-normal align-top">
+												<AccountInfoCell
+													account={account}
+													isPreferred={account.preferred}
+												/>
+											</TableCell>
+											<TableCell>
+												<QuotaOverviewCell items={quotaItems} />
+												<div className="mt-1.5 flex flex-wrap gap-1.5 text-[10px] text-muted-foreground">
+													<span
+														className={fitLongTextClassName(
+															modelPoolDisplayText,
+															"max-w-full rounded-full border border-border/50 bg-background/40 px-2 py-0.5 break-all [overflow-wrap:anywhere]",
+															"text-[10px]",
+														)}
+														title={modelPoolDisplayText}
+													>
+														{modelPoolDisplayText}
+													</span>
+													{account.quotaCapacityPrimaryWindowTokens ||
+													account.quotaCapacitySecondaryWindowTokens ? (
+														<span className="max-w-full rounded-full border border-border/50 bg-background/40 px-2 py-0.5 break-words [overflow-wrap:anywhere]">
+															{t("容量覆盖")}:{" "}
+															{account.quotaCapacityPrimaryWindowTokens
+																? `5h ${formatCompactNumber(
+																		account.quotaCapacityPrimaryWindowTokens,
+																		"0.00",
+																		2,
+																		true,
+																	)}`
+																: "5h --"}
+															{" / "}
+															{account.quotaCapacitySecondaryWindowTokens
+																? `7d ${formatCompactNumber(
+																		account.quotaCapacitySecondaryWindowTokens,
+																		"0.00",
+																		2,
+																		true,
+																	)}`
+																: "7d --"}
+														</span>
+													) : (
+														<span className="max-w-full rounded-full border border-border/50 bg-background/40 px-2 py-0.5 break-words [overflow-wrap:anywhere]">
+															{t("未设置账号容量覆盖")}
+														</span>
+													)}
+												</div>
+											</TableCell>
+											<TableCell>
+												<div className="flex items-center gap-1">
+													<span className="rounded bg-muted/50 px-2 py-0.5 font-mono text-xs">
+														{account.priority}
+													</span>
+													<Button
+														variant="ghost"
+														size="icon"
+														className="h-7 w-7 text-muted-foreground transition-colors hover:text-primary"
+														disabled={
+															!isServiceReady ||
+															!canMoveUp ||
+															isReorderingAccounts ||
+															isUpdatingProfileAccountId === account.id
+														}
+														onClick={() =>
+															void handleMoveAccount(account, "up")
+														}
+														title={t("上移一位")}
+													>
+														<ArrowUp className="h-3.5 w-3.5" />
+													</Button>
+													<Button
+														variant="ghost"
+														size="icon"
+														className="h-7 w-7 text-muted-foreground transition-colors hover:text-primary"
+														disabled={
+															!isServiceReady ||
+															!canMoveDown ||
+															isReorderingAccounts ||
+															isUpdatingProfileAccountId === account.id
+														}
+														onClick={() =>
+															void handleMoveAccount(account, "down")
+														}
+														title={t("下移一位")}
+													>
+														<ArrowDown className="h-3.5 w-3.5" />
+													</Button>
+													<Button
+														variant="ghost"
+														size="icon"
+														className="h-7 w-7 text-muted-foreground transition-colors hover:text-primary"
+														disabled={
+															!isServiceReady ||
+															isReorderingAccounts ||
+															isUpdatingProfileAccountId === account.id
+														}
+														onClick={() => openAccountEditor(account)}
+														title={t("编辑账号信息")}
+													>
+														<PencilLine className="h-3.5 w-3.5" />
+													</Button>
+												</div>
+											</TableCell>
+											<TableCell>
+												<AccountProxyCell account={account} />
+											</TableCell>
+											<TableCell>
+												<AccountStatusCell account={account} />
+											</TableCell>
+											<TableCell className="table-sticky-action-cell">
+												<div className="table-action-cell gap-1">
+													<Button
+														variant="ghost"
+														size="icon"
+														className="h-8 w-8 text-muted-foreground transition-colors hover:text-primary"
+														disabled={!isServiceReady}
+														onClick={() => openUsage(account)}
+														title={t("用量详情")}
+														aria-label={t("用量详情")}
+													>
+														<BarChart3 className="h-4 w-4" />
+													</Button>
+													<DropdownMenu>
+														<DropdownMenuTrigger>
+															<Button
+																variant="ghost"
+																size="icon"
+																className="h-8 w-8"
+																render={<span />}
+																nativeButton={false}
+																disabled={!isServiceReady}
+																title={t("更多账号操作")}
+																aria-label={t("更多账号操作")}
+															>
+																<MoreVertical className="h-4 w-4" />
+																<span className="sr-only">
+																	{t("更多账号操作")}
+																</span>
+															</Button>
+														</DropdownMenuTrigger>
+														<DropdownMenuContent align="end">
+															<DropdownMenuGroup>
+																<DropdownMenuItem
+																	className="gap-2"
+																	disabled={
+																		!isServiceReady ||
+																		isRefreshingAllAccounts ||
+																		isRefreshingCurrentAccount
+																	}
+																	onClick={() => refreshAccount(account.id)}
+																>
+																	<RefreshCw
+																		className={cn(
+																			"h-4 w-4",
+																			isRefreshingCurrentAccount &&
+																				"animate-spin",
+																		)}
+																	/>
+																	{t("刷新用量")}
+																</DropdownMenuItem>
+																<DropdownMenuItem
+																	className="gap-2"
+																	disabled={
+																		!isServiceReady || isRefreshingCurrentRt
+																	}
+																	onClick={() => refreshAccountRt(account.id)}
+																>
+																	<KeyRound
+																		className={cn(
+																			"h-4 w-4",
+																			isRefreshingCurrentRt && "animate-pulse",
+																		)}
+																	/>
+																	{t("刷新 AT/RT")}
+																	<DropdownMenuShortcut>
+																		RT
+																	</DropdownMenuShortcut>
+																</DropdownMenuItem>
+																<DropdownMenuSeparator />
+																<DropdownMenuItem
+																	className="gap-2"
+																	disabled={
+																		!isServiceReady || isUpdatingPreferred
+																	}
+																	onClick={() =>
+																		account.preferred
+																			? clearPreferredAccount(account.id)
+																			: setPreferredAccount(account.id)
+																	}
+																>
+																	<Pin className="h-4 w-4" />
+																	{account.preferred
+																		? t("取消优先")
+																		: t("设为优先")}
+																</DropdownMenuItem>
+																<DropdownMenuItem
+																	className="gap-2"
+																	disabled={!isServiceReady}
+																	onClick={() => void openProxyDialog(account)}
+																>
+																	<Network className="h-4 w-4" />
+																	{t("账号代理")}
+																</DropdownMenuItem>
+																<DropdownMenuItem
+																	className="gap-2"
+																	disabled={
+																		!isServiceReady ||
+																		isUpdatingStatusAccountId === account.id ||
+																		statusAction.action === null
+																	}
+																	onClick={() =>
+																		statusAction.action &&
+																		toggleAccountStatus(
+																			account.id,
+																			statusAction.action === "enable",
+																			account.status,
+																		)
+																	}
+																>
+																	<StatusActionIcon className="h-4 w-4" />
+																	{statusAction.label}
+																</DropdownMenuItem>
+																<DropdownMenuSeparator />
+																<DropdownMenuItem
+																	className="gap-2 text-red-500"
+																	disabled={!isServiceReady}
+																	onClick={() => handleDeleteSingle(account)}
+																>
+																	<Trash2 className="h-4 w-4" /> {t("删除")}
+																</DropdownMenuItem>
+															</DropdownMenuGroup>
+														</DropdownMenuContent>
+													</DropdownMenu>
+												</div>
+											</TableCell>
+										</TableRow>
+									);
+								})
+							)}
+						</TableBody>
+					</Table>
+				</CardContent>
+			</Card>
 
-      <div className="flex items-center justify-between px-2">
-        <div className="text-xs text-muted-foreground">
-          {t("共")} {filteredAccounts.length} {t("个账号")}
-          {effectiveSelectedIds.length > 0 ? (
-            <span className="ml-1 text-primary">
-              ({t("已选择")} {effectiveSelectedIds.length} {t("个")})
-            </span>
-          ) : null}
-        </div>
-        <div className="flex items-center gap-6">
-          <div className="flex items-center gap-2">
-            <span className="whitespace-nowrap text-xs text-muted-foreground">
-              {t("每页显示")}
-            </span>
-            <Select value={pageSize} onValueChange={handlePageSizeChange}>
-              <SelectTrigger className="h-8 w-[70px] text-xs">
-                <SelectValue />
-              </SelectTrigger>
-              <SelectContent>
-                    <SelectGroup>
-                {["5", "10", "20", "50", "100", "500"].map((value) => (
-                  <SelectItem key={value} value={value}>
-                    {value}
-                  </SelectItem>
-                ))}
-                </SelectGroup>
-              </SelectContent>
-            </Select>
-          </div>
-          <div className="flex items-center gap-2">
-            <Button
-              variant="outline"
-              size="sm"
-              className="h-8 px-3 text-xs"
-              disabled={safePage <= 1}
-              onClick={() => setPage((current) => Math.max(1, current - 1))}
-            >
-              {t("上一页")}
-            </Button>
-            <div className="min-w-[60px] text-center text-xs font-medium">
-              {t("第")} {safePage} / {totalPages} {t("页")}
-            </div>
-            <Button
-              variant="outline"
-              size="sm"
-              className="h-8 px-3 text-xs"
-              disabled={safePage >= totalPages}
-              onClick={() =>
-                setPage((current) => Math.min(totalPages, current + 1))
-              }
-            >
-              {t("下一页")}
-            </Button>
-          </div>
-        </div>
-      </div>
+			<div className="flex items-center justify-between px-2">
+				<div className="text-xs text-muted-foreground">
+					{t("共")} {filteredAccounts.length} {t("个账号")}
+					{effectiveSelectedIds.length > 0 ? (
+						<span className="ml-1 text-primary">
+							({t("已选择")} {effectiveSelectedIds.length} {t("个")})
+						</span>
+					) : null}
+				</div>
+				<div className="flex items-center gap-6">
+					<div className="flex items-center gap-2">
+						<span className="whitespace-nowrap text-xs text-muted-foreground">
+							{t("每页显示")}
+						</span>
+						<Select value={pageSize} onValueChange={handlePageSizeChange}>
+							<SelectTrigger className="h-8 w-[70px] text-xs">
+								<SelectValue />
+							</SelectTrigger>
+							<SelectContent>
+								<SelectGroup>
+									{["5", "10", "20", "50", "100", "500"].map((value) => (
+										<SelectItem key={value} value={value}>
+											{value}
+										</SelectItem>
+									))}
+								</SelectGroup>
+							</SelectContent>
+						</Select>
+					</div>
+					<div className="flex items-center gap-2">
+						<Button
+							variant="outline"
+							size="sm"
+							className="h-8 px-3 text-xs"
+							disabled={safePage <= 1}
+							onClick={() => setPage((current) => Math.max(1, current - 1))}
+						>
+							{t("上一页")}
+						</Button>
+						<div className="min-w-[60px] text-center text-xs font-medium">
+							{t("第")} {safePage} / {totalPages} {t("页")}
+						</div>
+						<Button
+							variant="outline"
+							size="sm"
+							className="h-8 px-3 text-xs"
+							disabled={safePage >= totalPages}
+							onClick={() =>
+								setPage((current) => Math.min(totalPages, current + 1))
+							}
+						>
+							{t("下一页")}
+						</Button>
+					</div>
+				</div>
+			</div>
 
-{addAccountModalOpen ? (
-        <AddAccountModal
-          open={isPageActive && addAccountModalOpen}
-          onOpenChange={setAddAccountModalOpen}
-        />
-      ) : null}
-      <UsageModal
-        account={selectedAccount}
-        open={isPageActive && usageModalOpen}
-        onOpenChange={handleUsageModalOpenChange}
-        onRefresh={refreshAccount}
-        onRefreshRt={refreshAccountRt}
-        isRefreshing={
-          isRefreshingAllAccounts ||
-          (!!selectedAccount && isRefreshingAccountId === selectedAccount.id)
-        }
-        isRefreshingRt={
-          !!selectedAccount && isRefreshingRtAccountId === selectedAccount.id
-        }
-      />
-      <Dialog
-        open={isPageActive && Boolean(proxyDialogAccount)}
-        onOpenChange={handleProxyDialogOpenChange}
-      >
-        <DialogContent className="glass-card p-0 sm:max-w-[560px]">
-          <DialogHeader className="px-6 pt-6">
-            <DialogTitle>{t("账号代理")}</DialogTitle>
-            <DialogDescription>
-              {proxyDialogAccount
-                ? proxyDialogAccount.name
-                : t("为单个 OpenAI 账号配置本地代理。")}
-            </DialogDescription>
-          </DialogHeader>
-          <div className="grid gap-4 px-6 py-4">
-            <div className="flex items-center justify-between gap-4 rounded-xl border border-border/70 bg-muted/20 px-3 py-3">
-              <div className="min-w-0">
-                <Label htmlFor="account-proxy-enabled" className="text-sm">
-                  {t("启用账号代理")}
-                </Label>
-                <p className="mt-1 text-[11px] leading-4 text-muted-foreground">
-                  {t("启用后，该账号会优先使用这里的代理地址。")}
-                </p>
-              </div>
-              <Switch
-                id="account-proxy-enabled"
-                checked={proxyEnabledDraft}
-                disabled={accountProxyBusy}
-                onCheckedChange={(value) => setProxyEnabledDraft(Boolean(value))}
-              />
-            </div>
-            <div className="grid gap-2">
-              <Label htmlFor="account-proxy-url">{t("代理地址")}</Label>
-              <div className="flex gap-2">
-                <Input
-                  id="account-proxy-url"
-                  value={proxyUrlDraft}
-                  disabled={accountProxyBusy}
-                  onChange={(event) => setProxyUrlDraft(event.target.value)}
-                  placeholder="http://127.0.0.1:7891"
-                />
-                <Button
-                  type="button"
-                  variant="outline"
-                  disabled={accountProxyBusy || !proxySettings}
-                  onClick={() => void handleClearProxySettings()}
-                >
-                  {isClearingAccountProxy ? (
-                    <Loader2 className="mr-2 h-4 w-4 animate-spin" />
-                  ) : null}
-                  {t("清除")}
-                </Button>
-              </div>
-              <p className="text-[11px] leading-4 text-muted-foreground">
-                {t("支持 http、https、socks4、socks5；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。")}
-              </p>
-              <p className="text-[11px] leading-4 text-amber-600 dark:text-amber-400">
-                {t("建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。")}
-              </p>
-              <p className="text-[11px] leading-4 text-amber-600 dark:text-amber-400">
-                {t("建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。")}
-              </p>
-            </div>
-            <div className="grid gap-2 rounded-xl bg-muted/20 px-3 py-3 text-xs sm:grid-cols-2">
-              <div>
-                <div className="text-muted-foreground">{t("测试状态")}</div>
-                <div className="mt-1 font-medium">{accountProxyStatusText}</div>
-              </div>
-              <div>
-                <div className="text-muted-foreground">{t("最近检查")}</div>
-                <div className="mt-1 font-medium">{accountProxyLastCheckText}</div>
-              </div>
-              <div>
-                <div className="text-muted-foreground">{t("延迟")}</div>
-                <div className="mt-1 font-medium">
-                  {proxySettings?.latencyMs != null
-                    ? `${proxySettings.latencyMs} ms`
-                    : "--"}
-                </div>
-              </div>
-              <div>
-                <div className="text-muted-foreground">{t("当前模式")}</div>
-                <div className="mt-1 font-medium">
-                  {proxySettings?.enabled ? t("账号代理") : t("默认路由")}
-                </div>
-              </div>
-              {proxySettings?.lastError ? (
-                <div className="sm:col-span-2">
-                  <div className="text-muted-foreground">{t("错误")}</div>
-                  <div className="mt-1 break-words rounded-lg bg-background/60 px-2 py-1 font-mono text-[11px] text-destructive [overflow-wrap:anywhere]">
-                    {proxySettings.lastError}
-                  </div>
-                </div>
-              ) : null}
-            </div>
-          </div>
-          <DialogFooter className="mx-0 mb-0 gap-2 rounded-b-xl border-t bg-muted/40 px-6 py-4 sm:gap-2">
-            <DialogClose
-              className={cn(
-                buttonVariants({ variant: "outline" }),
-                "rounded-xl",
-              )}
-              disabled={accountProxyBusy}
-            >
-              {t("关闭")}
-            </DialogClose>
-            <Button
-              type="button"
-              variant="outline"
-              disabled={accountProxyBusy || !proxyDialogAccount}
-              onClick={() => void handleTestProxySettings()}
-            >
-              {isTestingAccountProxy ? (
-                <Loader2 className="mr-2 h-4 w-4 animate-spin" />
-              ) : null}
-              {t("测试")}
-            </Button>
-            <Button
-              type="button"
-              disabled={accountProxyBusy}
-              onClick={() => void handleSaveProxySettings()}
-            >
-              {isSavingAccountProxy ? (
-                <Loader2 className="mr-2 h-4 w-4 animate-spin" />
-              ) : null}
-              {t("保存")}
-            </Button>
-          </DialogFooter>
-        </DialogContent>
-      </Dialog>
-      <ConfirmDialog
-        open={isPageActive && Boolean(deleteDialogState)}
-        onOpenChange={(open) => {
-          if (!open) {
-            setDeleteDialogState(null);
-          }
-        }}
-        title={
-          deleteDialogState?.kind === "single"
-            ? t("删除账号")
-            : t("批量删除账号")
-        }
-        description={
-          deleteDialogState?.kind === "single"
-            ? `${t("确定删除账号")} ${deleteDialogState.account.name} ${t("吗？删除后不可恢复。")}`
-            : `${t("确定删除选中的")} ${deleteDialogState?.count || 0} ${t("个账号吗？删除后不可恢复。")}`
-        }
-        confirmText={t("删除")}
-        confirmVariant="destructive"
-        onConfirm={handleConfirmDelete}
-      />
-      <Dialog
-        open={isPageActive && Boolean(accountEditorState)}
-        onOpenChange={(open) => {
-          if (!open && !isUpdatingProfileAccountId) {
-            setAccountEditorState(null);
-          }
-        }}
-      >
-        <DialogContent className="glass-card max-h-[calc(100vh-2rem)] overflow-hidden p-0 sm:max-w-[560px]">
-          <DialogHeader className="px-6 pt-6">
-            <DialogTitle>{t("编辑账号信息")}</DialogTitle>
-            <DialogDescription>
-              {accountEditorState
-                ? `${t("修改")} ${accountEditorState.accountName} ${t("的名称、标签、备注、排序与额度池配置。")}`
-                : t("修改账号的基础资料。")}
-            </DialogDescription>
-          </DialogHeader>
-          <div className="grid max-h-[calc(100vh-13rem)] gap-4 overflow-y-auto px-6 py-4">
-            <div className="grid gap-4 sm:grid-cols-2">
-              <div className="grid gap-2">
-                <Label htmlFor="account-label-input">{t("账号名称")}</Label>
-                <Input
-                  id="account-label-input"
-                  value={labelDraft}
-                  disabled={Boolean(isUpdatingProfileAccountId)}
-                  onChange={(event) => setLabelDraft(event.target.value)}
-                />
-              </div>
-              <div className="grid gap-2">
-                <Label htmlFor="account-tags-input">
-                  {t("标签（逗号分隔）")}
-                </Label>
-                <Input
-                  id="account-tags-input"
-                  value={tagsDraft}
-                  disabled={Boolean(isUpdatingProfileAccountId)}
-                  onChange={(event) => setTagsDraft(event.target.value)}
-                  placeholder={t("例如：高频, 团队A")}
-                />
-              </div>
-            </div>
-            <div className="grid gap-2">
-              <Label htmlFor="account-note-input">{t("备注")}</Label>
-              <Textarea
-                id="account-note-input"
-                value={noteDraft}
-                disabled={Boolean(isUpdatingProfileAccountId)}
-                onChange={(event) => setNoteDraft(event.target.value)}
-                placeholder={t("例如：主账号 / 测试号 / 团队共享")}
-                className="min-h-[108px]"
-              />
-            </div>
-            <div className="grid gap-2 sm:grid-cols-[minmax(0,1fr)_120px] sm:items-end">
-              <div className="grid gap-2">
-                <Label htmlFor="account-sort-input">{t("顺序值")}</Label>
-                <Input
-                  id="account-sort-input"
-                  type="number"
-                  min={0}
-                  step={1}
-                  value={sortDraft}
-                  disabled={Boolean(isUpdatingProfileAccountId)}
-                  onChange={(event) => setSortDraft(event.target.value)}
-                  onKeyDown={(event) => {
-                    if (event.key === "Enter") {
-                      event.preventDefault();
-                      void handleConfirmAccountEditor();
-                    }
-                  }}
-                />
-              </div>
-              <div className="grid gap-1 rounded-xl bg-muted/30 px-3 py-2 text-[11px] text-muted-foreground">
-                <span>{t("值越小越靠前")}</span>
-                <span>{t("仅修改当前账号")}</span>
-              </div>
-            </div>
-            <div className="grid gap-2">
-              <Label htmlFor="account-model-whitelist-input">
-                {t("额度模型白名单")}
-              </Label>
-              <Input
-                id="account-model-whitelist-input"
-                value={modelWhitelistDraft}
-                disabled={Boolean(isUpdatingProfileAccountId)}
-                onChange={(event) => setModelWhitelistDraft(event.target.value)}
-                placeholder="gpt-5.4, gpt-5.4-mini"
-              />
-              <p className="text-[11px] leading-4 text-muted-foreground">
-                {t("仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。")}
-              </p>
-            </div>
-            <div className="grid gap-4 sm:grid-cols-2">
-              <div className="grid gap-2">
-                <Label htmlFor="account-quota-primary-input">
-                  {t("5h 容量覆盖（Token）")}
-                </Label>
-                <Input
-                  id="account-quota-primary-input"
-                  type="number"
-                  min={1}
-                  step={1}
-                  value={quotaPrimaryDraft}
-                  disabled={Boolean(isUpdatingProfileAccountId)}
-                  onChange={(event) => setQuotaPrimaryDraft(event.target.value)}
-                  placeholder={t("留空使用计划模板")}
-                />
-              </div>
-              <div className="grid gap-2">
-                <Label htmlFor="account-quota-secondary-input">
-                  {t("7d 容量覆盖（Token）")}
-                </Label>
-                <Input
-                  id="account-quota-secondary-input"
-                  type="number"
-                  min={1}
-                  step={1}
-                  value={quotaSecondaryDraft}
-                  disabled={Boolean(isUpdatingProfileAccountId)}
-                  onChange={(event) => setQuotaSecondaryDraft(event.target.value)}
-                  placeholder={t("留空使用计划模板")}
-                />
-              </div>
-            </div>
-            <div className="grid gap-3 rounded-xl bg-muted/20 px-3 py-3 text-[11px] text-muted-foreground sm:grid-cols-2">
-              <div className="space-y-1">
-                <div>{t("账号 ID")}</div>
-                <div className="break-all font-mono">
-                  {accountEditorState?.accountId || "-"}
-                </div>
-              </div>
-              <div className="space-y-1">
-                <div>{t("账号类型")}</div>
-                <div className="font-medium text-foreground/80">
-                  {currentEditingAccount
-                    ? formatAccountPlanLabel(currentEditingAccount, t) || t("未知")
-                    : t("未知")}
-                </div>
-              </div>
-            </div>
-          </div>
-          <DialogFooter className="mx-0 mb-0 gap-2 rounded-b-xl border-t bg-muted/40 px-6 py-4 sm:gap-2">
-            <DialogClose
-              className={buttonVariants({ variant: "outline" })}
-              type="button"
-              disabled={Boolean(isUpdatingProfileAccountId)}
-            >
-              {t("取消")}
-            </DialogClose>
-            <Button
-              disabled={Boolean(isUpdatingProfileAccountId)}
-              onClick={() => void handleConfirmAccountEditor()}
-            >
-              {t("保存")}
-            </Button>
-          </DialogFooter>
-        </DialogContent>
-      </Dialog>
-    </div>
-  );
+			{addAccountModalOpen ? (
+				<AddAccountModal
+					open={isPageActive && addAccountModalOpen}
+					onOpenChange={setAddAccountModalOpen}
+				/>
+			) : null}
+			<UsageModal
+				account={selectedAccount}
+				open={isPageActive && usageModalOpen}
+				onOpenChange={handleUsageModalOpenChange}
+				onRefresh={refreshAccount}
+				onRefreshRt={refreshAccountRt}
+				isRefreshing={
+					isRefreshingAllAccounts ||
+					(!!selectedAccount && isRefreshingAccountId === selectedAccount.id)
+				}
+				isRefreshingRt={
+					!!selectedAccount && isRefreshingRtAccountId === selectedAccount.id
+				}
+			/>
+			<Dialog
+				open={isPageActive && Boolean(proxyDialogAccount)}
+				onOpenChange={handleProxyDialogOpenChange}
+			>
+				<DialogContent className="glass-card max-h-[calc(100vh-2rem)] overflow-hidden p-0 sm:max-w-[672px]">
+					<DialogHeader className="px-6 pt-6">
+						<DialogTitle>{t("账号代理")}</DialogTitle>
+						<DialogDescription className="flex flex-wrap items-center gap-1.5 mt-1.5 text-muted-foreground break-all text-xs">
+							<span className="text-sm font-medium text-foreground">
+								{proxyDialogAccount?.name || "--"}
+							</span>
+							{proxyDialogAccount &&
+							formatAccountPlanLabel(proxyDialogAccount, t) ? (
+								<Badge
+									className={cn(
+										"text-[10px] font-medium leading-none px-2 py-0.5",
+										getAccountPlanBadgeClassName(
+											formatAccountPlanLabel(proxyDialogAccount, t),
+										),
+									)}
+								>
+									{formatAccountPlanLabel(proxyDialogAccount, t)}
+								</Badge>
+							) : null}
+						</DialogDescription>
+					</DialogHeader>
+					<div className="grid max-h-[calc(100vh-13rem)] gap-4 overflow-y-auto px-6 py-4">
+						<div className="flex items-center justify-between gap-4 rounded-xl border border-border/70 bg-muted/20 px-3 py-3">
+							<div className="min-w-0">
+								<Label htmlFor="account-proxy-enabled" className="text-sm">
+									{t("启用账号代理")}
+								</Label>
+								<p className="mt-1 text-[11px] leading-4 text-muted-foreground">
+									{t("启用后，该账号对 OpenAI API 的请求将通过指定的代理发送。")}
+								</p>
+							</div>
+							<Switch
+								id="account-proxy-enabled"
+								checked={proxyEnabledDraft}
+								disabled={accountProxyBusy}
+								onCheckedChange={(value) =>
+									setProxyEnabledDraft(Boolean(value))
+								}
+							/>
+						</div>
+						<div className="grid gap-2">
+							<Label htmlFor="account-proxy-url">{t("代理地址")}</Label>
+							<div className="flex gap-2">
+								<Input
+									id="account-proxy-url"
+									value={proxyUrlDraft}
+									disabled={accountProxyBusy}
+									onChange={(event) => setProxyUrlDraft(event.target.value)}
+									placeholder="http://127.0.0.1:7891"
+								/>
+								<Button
+									type="button"
+									variant="outline"
+									disabled={accountProxyBusy || !proxySettings}
+									onClick={() => void handleClearProxySettings()}
+								>
+									{isClearingAccountProxy ? (
+										<Loader2 className="mr-2 h-4 w-4 animate-spin" />
+									) : null}
+									{t("清除")}
+								</Button>
+							</div>
+							<div className="mt-4 grid gap-2">
+								<Label className="text-sm font-medium">{t("代理信息")}</Label>
+								<div className="rounded-xl bg-muted/20 px-4 py-4 text-xs">
+									<div className="flex flex-wrap items-start gap-x-12 gap-y-3 border-b border-border/50 pb-4 mb-4">
+										<div>
+											<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+												{t("测试状态")}
+											</div>
+											<div
+												className={cn(
+													"mt-0.5 text-xs font-normal",
+													accountProxyStatusColorClass,
+												)}
+											>
+												{accountProxyStatusText}
+												{proxySettings?.status === "ok" && proxySettings?.latencyMs != null && (
+													<span className="text-muted-foreground font-normal">
+														{" • "}{proxySettings.latencyMs} {t("ms")}
+													</span>
+												)}
+											</div>
+										</div>
+										<div>
+											<div className="text-[10px] font-medium text-muted-foreground/80 uppercase tracking-wider">
+												{t("最近检查")}
+											</div>
+											<div className="mt-0.5 text-xs font-normal text-foreground">
+												{accountProxyLastCheckText}
+											</div>
+										</div>
+									</div>
+									<AccountProxyGeoStatusGrid geo={proxySettings} t={t} />
+								</div>
+							</div>
+							<p className="text-[11px] leading-4 text-muted-foreground">
+								{t(
+									"支持 http、https、socks4、socks5；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。",
+								)}
+							</p>
+							<p className="text-[11px] leading-4 text-amber-600 dark:text-amber-400">
+								{t(
+									"建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。",
+								)}
+							</p>
+						</div>
+
+						{proxySettings?.lastError ? (
+							<div className="grid grid-cols-2 gap-4 rounded-xl border border-primary/5 bg-accent/20 px-4 py-3 text-xs sm:grid-cols-4">
+								<div className="sm:col-span-4">
+									<div className="text-muted-foreground">{t("错误")}</div>
+									<div className="mt-1 break-words rounded-lg bg-background/60 px-2 py-1 font-mono text-[11px] text-destructive [overflow-wrap:anywhere]">
+										{proxySettings.lastError}
+									</div>
+								</div>
+							</div>
+						) : null}
+					</div>
+					<DialogFooter className="mx-0 mb-0 gap-2 rounded-b-xl border-t bg-muted/40 px-6 py-4 sm:gap-2">
+						<DialogClose
+							className={cn(
+								buttonVariants({ variant: "outline" }),
+								"rounded-xl",
+							)}
+							disabled={accountProxyBusy}
+						>
+							{t("关闭")}
+						</DialogClose>
+						<Button
+							type="button"
+							variant="outline"
+							disabled={accountProxyBusy || !proxyDialogAccount}
+							onClick={() => void handleTestProxySettings()}
+						>
+							{isTestingAccountProxy ? (
+								<Loader2 className="mr-2 h-4 w-4 animate-spin" />
+							) : null}
+							{t("测试")}
+						</Button>
+						<Button
+							type="button"
+							disabled={accountProxyBusy}
+							onClick={() => void handleSaveProxySettings()}
+						>
+							{isSavingAccountProxy ? (
+								<Loader2 className="mr-2 h-4 w-4 animate-spin" />
+							) : null}
+							{t("保存")}
+						</Button>
+					</DialogFooter>
+				</DialogContent>
+			</Dialog>
+			<ConfirmDialog
+				open={isPageActive && Boolean(deleteDialogState)}
+				onOpenChange={(open) => {
+					if (!open) {
+						setDeleteDialogState(null);
+					}
+				}}
+				title={
+					deleteDialogState?.kind === "single"
+						? t("删除账号")
+						: t("批量删除账号")
+				}
+				description={
+					deleteDialogState?.kind === "single"
+						? `${t("确定删除账号")} ${deleteDialogState.account.name} ${t("吗？删除后不可恢复。")}`
+						: `${t("确定删除选中的")} ${deleteDialogState?.count || 0} ${t("个账号吗？删除后不可恢复。")}`
+				}
+				confirmText={t("删除")}
+				confirmVariant="destructive"
+				onConfirm={handleConfirmDelete}
+			/>
+			<Dialog
+				open={isPageActive && Boolean(accountEditorState)}
+				onOpenChange={(open) => {
+					if (!open && !isUpdatingProfileAccountId) {
+						setAccountEditorState(null);
+					}
+				}}
+			>
+				<DialogContent className="glass-card max-h-[calc(100vh-2rem)] overflow-hidden p-0 sm:max-w-[560px]">
+					<DialogHeader className="px-6 pt-6">
+						<DialogTitle>{t("编辑账号信息")}</DialogTitle>
+						<DialogDescription>
+							{accountEditorState
+								? `${t("修改")} ${accountEditorState.accountName} ${t("的名称、标签、备注、排序与额度池配置。")}`
+								: t("修改账号的基础资料。")}
+						</DialogDescription>
+					</DialogHeader>
+					<div className="grid max-h-[calc(100vh-13rem)] gap-4 overflow-y-auto px-6 py-4">
+						<div className="grid gap-4 sm:grid-cols-2">
+							<div className="grid gap-2">
+								<Label htmlFor="account-label-input">{t("账号名称")}</Label>
+								<Input
+									id="account-label-input"
+									value={labelDraft}
+									disabled={Boolean(isUpdatingProfileAccountId)}
+									onChange={(event) => setLabelDraft(event.target.value)}
+								/>
+							</div>
+							<div className="grid gap-2">
+								<Label htmlFor="account-tags-input">
+									{t("标签（逗号分隔）")}
+								</Label>
+								<Input
+									id="account-tags-input"
+									value={tagsDraft}
+									disabled={Boolean(isUpdatingProfileAccountId)}
+									onChange={(event) => setTagsDraft(event.target.value)}
+									placeholder={t("例如：高频, 团队A")}
+								/>
+							</div>
+						</div>
+						<div className="grid gap-2">
+							<Label htmlFor="account-note-input">{t("备注")}</Label>
+							<Textarea
+								id="account-note-input"
+								value={noteDraft}
+								disabled={Boolean(isUpdatingProfileAccountId)}
+								onChange={(event) => setNoteDraft(event.target.value)}
+								placeholder={t("例如：主账号 / 测试号 / 团队共享")}
+								className="min-h-[108px]"
+							/>
+						</div>
+						<div className="grid gap-2 sm:grid-cols-[minmax(0,1fr)_120px] sm:items-end">
+							<div className="grid gap-2">
+								<Label htmlFor="account-sort-input">{t("顺序值")}</Label>
+								<Input
+									id="account-sort-input"
+									type="number"
+									min={0}
+									step={1}
+									value={sortDraft}
+									disabled={Boolean(isUpdatingProfileAccountId)}
+									onChange={(event) => setSortDraft(event.target.value)}
+									onKeyDown={(event) => {
+										if (event.key === "Enter") {
+											event.preventDefault();
+											void handleConfirmAccountEditor();
+										}
+									}}
+								/>
+							</div>
+							<div className="grid gap-1 rounded-xl bg-muted/30 px-3 py-2 text-[11px] text-muted-foreground">
+								<span>{t("值越小越靠前")}</span>
+								<span>{t("仅修改当前账号")}</span>
+							</div>
+						</div>
+						<div className="grid gap-2">
+							<Label htmlFor="account-model-whitelist-input">
+								{t("额度模型白名单")}
+							</Label>
+							<Input
+								id="account-model-whitelist-input"
+								value={modelWhitelistDraft}
+								disabled={Boolean(isUpdatingProfileAccountId)}
+								onChange={(event) => setModelWhitelistDraft(event.target.value)}
+								placeholder="gpt-5.4, gpt-5.4-mini"
+							/>
+							<p className="text-[11px] leading-4 text-muted-foreground">
+								{t(
+									"仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。",
+								)}
+							</p>
+						</div>
+						<div className="grid gap-4 sm:grid-cols-2">
+							<div className="grid gap-2">
+								<Label htmlFor="account-quota-primary-input">
+									{t("5h 容量覆盖（Token）")}
+								</Label>
+								<Input
+									id="account-quota-primary-input"
+									type="number"
+									min={1}
+									step={1}
+									value={quotaPrimaryDraft}
+									disabled={Boolean(isUpdatingProfileAccountId)}
+									onChange={(event) => setQuotaPrimaryDraft(event.target.value)}
+									placeholder={t("留空使用计划模板")}
+								/>
+							</div>
+							<div className="grid gap-2">
+								<Label htmlFor="account-quota-secondary-input">
+									{t("7d 容量覆盖（Token）")}
+								</Label>
+								<Input
+									id="account-quota-secondary-input"
+									type="number"
+									min={1}
+									step={1}
+									value={quotaSecondaryDraft}
+									disabled={Boolean(isUpdatingProfileAccountId)}
+									onChange={(event) =>
+										setQuotaSecondaryDraft(event.target.value)
+									}
+									placeholder={t("留空使用计划模板")}
+								/>
+							</div>
+						</div>
+						<div className="grid gap-3 rounded-xl bg-muted/20 px-3 py-3 text-[11px] text-muted-foreground sm:grid-cols-2">
+							<div className="space-y-1">
+								<div>{t("账号 ID")}</div>
+								<div className="break-all font-mono">
+									{accountEditorState?.accountId || "-"}
+								</div>
+							</div>
+							<div className="space-y-1">
+								<div>{t("账号类型")}</div>
+								<div className="font-medium text-foreground/80">
+									{currentEditingAccount
+										? formatAccountPlanLabel(currentEditingAccount, t) ||
+											t("未知")
+										: t("未知")}
+								</div>
+							</div>
+						</div>
+					</div>
+					<DialogFooter className="mx-0 mb-0 gap-2 rounded-b-xl border-t bg-muted/40 px-6 py-4 sm:gap-2">
+						<DialogClose
+							className={buttonVariants({ variant: "outline" })}
+							type="button"
+							disabled={Boolean(isUpdatingProfileAccountId)}
+						>
+							{t("取消")}
+						</DialogClose>
+						<Button
+							disabled={Boolean(isUpdatingProfileAccountId)}
+							onClick={() => void handleConfirmAccountEditor()}
+						>
+							{t("保存")}
+						</Button>
+					</DialogFooter>
+				</DialogContent>
+			</Dialog>
+		</div>
+	);
 }
diff --git a/apps/src/app/accounts/page.tsx b/apps/src/app/accounts/page.tsx
index 0278518df..84216b740 100644
--- a/apps/src/app/accounts/page.tsx
+++ b/apps/src/app/accounts/page.tsx
@@ -476,10 +476,25 @@ const toggleCleanupStatus = (rawStatus: string) => {
   const handleSaveProxySettings = async () => {
     if (!proxyDialogAccount) return;
     try {
+      const isTested = proxySettings && proxySettings.proxyUrl === proxyUrlDraft;
       const settings = await setAccountProxySettings({
         accountId: proxyDialogAccount.id,
         enabled: proxyEnabledDraft,
         proxyUrl: proxyUrlDraft,
+        ...(isTested
+          ? {
+              status: proxySettings.status,
+              latencyMs: proxySettings.latencyMs,
+              lastError: proxySettings.lastError,
+              ip: proxySettings.ip,
+              countryCode: proxySettings.countryCode,
+              countryName: proxySettings.countryName,
+              regionName: proxySettings.regionName,
+              cityName: proxySettings.cityName,
+              geoCheckedAt: proxySettings.geoCheckedAt,
+              geoError: proxySettings.geoError,
+            }
+          : {}),
       });
       if (settings) {
         setProxySettings(settings);
diff --git a/apps/src/app/author/page.tsx b/apps/src/app/author/page.tsx
index dd6a4bc13..bf7243fb0 100644
--- a/apps/src/app/author/page.tsx
+++ b/apps/src/app/author/page.tsx
@@ -61,12 +61,12 @@ const AUTHOR_PARTNER_IMAGE_BY_KEY: Record<string, string> = {
 function PartnerTable({
   items,
   onOpenLink,
-  translate,
+  t,
   emptyVisualLabel,
 }: {
   items: readonly SponsorLinkItem[];
   onOpenLink: (url: string) => Promise<void>;
-  translate: (message: string) => string;
+  t: (message: string) => string;
   emptyVisualLabel: string;
 }) {
   return (
@@ -83,13 +83,13 @@ function PartnerTable({
                   {AUTHOR_PARTNER_IMAGE_BY_KEY[item.key] || item.imageSrc ? (
                     <img
                       src={AUTHOR_PARTNER_IMAGE_BY_KEY[item.key] || item.imageSrc}
-                      alt={translate(item.imageAlt ?? item.name)}
+                      alt={t(item.imageAlt ?? item.name)}
                       className="max-h-20 w-auto object-contain"
                     />
                   ) : (
                     <div className="flex h-20 w-full max-w-[180px] items-center justify-center rounded-xl bg-gradient-to-br from-primary/15 via-background to-primary/5 px-4 text-center">
                       <span className="text-lg font-semibold tracking-tight text-foreground">
-                        {translate(emptyVisualLabel)}
+                        {t(emptyVisualLabel)}
                       </span>
                     </div>
                   )}
@@ -99,10 +99,10 @@ function PartnerTable({
                 <div className="space-y-3">
                   <div className="space-y-1">
                     <h3 className="text-base font-semibold text-foreground">
-                      {translate(item.name)}
+                      {t(item.name)}
                     </h3>
                     <p className="text-sm leading-7 text-muted-foreground">
-                      {translate(item.description)}
+                      {t(item.description)}
                     </p>
                   </div>
                   <div className="flex flex-wrap items-center gap-3">
@@ -114,7 +114,7 @@ function PartnerTable({
                       }}
                       className="rounded-full"
                     >
-                      {translate(item.actionLabel)}
+                      {t(item.actionLabel)}
                       <ExternalLink data-icon="inline-end" />
                     </Button>
                   </div>
@@ -229,7 +229,7 @@ export default function AuthorPage() {
                 <PartnerTable
                   items={visibleSponsors}
                   onOpenLink={handleOpenLink}
-                  translate={t}
+                  t={t}
                   emptyVisualLabel="Sponsor"
                 />
               </CardContent>
@@ -251,7 +251,7 @@ export default function AuthorPage() {
                 <PartnerTable
                   items={visibleServerRecommendations}
                   onOpenLink={handleOpenLink}
-                  translate={t}
+                  t={t}
                   emptyVisualLabel="RackNerd"
                 />
               </CardContent>
diff --git a/apps/src/hooks/useAccounts.ts b/apps/src/hooks/useAccounts.ts
index 3912a003f..172015331 100644
--- a/apps/src/hooks/useAccounts.ts
+++ b/apps/src/hooks/useAccounts.ts
@@ -8,9 +8,9 @@ import { CODEX_PROFILE_CANDIDATES_QUERY_KEY } from "@/lib/api/codex-profile-clie
 import { attachUsagesToAccounts } from "@/lib/api/normalize";
 import { serviceClient } from "@/lib/api/service-client";
 import {
-  buildStartupSnapshotQueryKey,
-  STARTUP_SNAPSHOT_REQUEST_LOG_LIMIT,
-  STARTUP_SNAPSHOT_STALE_TIME,
+	buildStartupSnapshotQueryKey,
+	STARTUP_SNAPSHOT_REQUEST_LOG_LIMIT,
+	STARTUP_SNAPSHOT_STALE_TIME,
 } from "@/lib/api/startup-snapshot";
 import { getAppErrorMessage } from "@/lib/api/transport";
 import { listenUsageRefreshCompleted } from "@/lib/api/usage-refresh-events";
@@ -20,22 +20,37 @@ import { useLocalDayRange } from "@/hooks/useLocalDayRange";
 import { useRuntimeCapabilities } from "@/hooks/useRuntimeCapabilities";
 import { useI18n } from "@/lib/i18n/provider";
 import { useAppStore } from "@/lib/store/useAppStore";
-import { Account, AccountListResult, AccountUsage, StartupSnapshot } from "@/types";
+import {
+	Account,
+	AccountListResult,
+	AccountUsage,
+	StartupSnapshot,
+} from "@/types";
 
-type ImportByDirectoryResult = Awaited<ReturnType<typeof accountClient.importByDirectory>>;
-type ImportByFileResult = Awaited<ReturnType<typeof accountClient.importByFile>>;
+type ImportByDirectoryResult = Awaited<
+	ReturnType<typeof accountClient.importByDirectory>
+>;
+type ImportByFileResult = Awaited<
+	ReturnType<typeof accountClient.importByFile>
+>;
 type AccountExportPayload = Parameters<typeof accountClient.export>[0];
 type ExportResult = Awaited<ReturnType<typeof accountClient.export>>;
 type WarmupPayload = Parameters<typeof accountClient.warmup>[0];
 type WarmupResult = Awaited<ReturnType<typeof accountClient.warmup>>;
-type AccountProxySettings = Awaited<ReturnType<typeof accountClient.getProxySettings>>;
-type AccountProxySetPayload = Parameters<typeof accountClient.setProxySettings>[0];
-type AccountProxyTestPayload = Parameters<typeof accountClient.testProxySettings>[0];
+type AccountProxySettings = Awaited<
+	ReturnType<typeof accountClient.getProxySettings>
+>;
+type AccountProxySetPayload = Parameters<
+	typeof accountClient.setProxySettings
+>[0];
+type AccountProxyTestPayload = Parameters<
+	typeof accountClient.testProxySettings
+>[0];
 type RefreshAllRtResult = Awaited<
-  ReturnType<typeof accountClient.refreshAllChatgptAuthTokens>
+	ReturnType<typeof accountClient.refreshAllChatgptAuthTokens>
 >;
 type DeleteAccountsByStatusesResult = Awaited<
-  ReturnType<typeof accountClient.deleteByStatuses>
+	ReturnType<typeof accountClient.deleteByStatuses>
 >;
 type AccountSortUpdate = { accountId: string; sort: number };
 const ACCOUNTS_LIST_QUERY_KEY = ["accounts", "list"] as const;
@@ -54,7 +69,11 @@ const ACCOUNTS_LIST_QUERY_KEY = ["accounts", "list"] as const;
  * 返回函数执行结果
  */
 function isAccountRefreshBlocked(status: string | null | undefined): boolean {
-  return String(status || "").trim().toLowerCase() === "disabled";
+	return (
+		String(status || "")
+			.trim()
+			.toLowerCase() === "disabled"
+	);
 }
 
 /**
@@ -70,17 +89,20 @@ function isAccountRefreshBlocked(status: string | null | undefined): boolean {
  * # 返回
  * 返回函数执行结果
  */
-function buildImportSummaryMessage(result: ImportByDirectoryResult, t: (message: string, values?: Record<string, string | number>) => string): string {
-  const total = Number(result?.total || 0);
-  const created = Number(result?.created || 0);
-  const updated = Number(result?.updated || 0);
-  const failed = Number(result?.failed || 0);
-  return t("导入完成：共{total}，新增{created}，更新{updated}，失败{failed}", {
-    total,
-    created,
-    updated,
-    failed,
-  });
+function buildImportSummaryMessage(
+	result: ImportByDirectoryResult,
+	t: (message: string, values?: Record<string, string | number>) => string,
+): string {
+	const total = Number(result?.total || 0);
+	const created = Number(result?.created || 0);
+	const updated = Number(result?.updated || 0);
+	const failed = Number(result?.failed || 0);
+	return t("导入完成：共{total}，新增{created}，更新{updated}，失败{failed}", {
+		total,
+		created,
+		updated,
+		failed,
+	});
 }
 
 /**
@@ -97,72 +119,77 @@ function buildImportSummaryMessage(result: ImportByDirectoryResult, t: (message:
  * 返回函数执行结果
  */
 function formatUsageRefreshErrorMessage(
-  error: unknown,
-  t: (message: string, values?: Record<string, string | number>) => string,
+	error: unknown,
+	t: (message: string, values?: Record<string, string | number>) => string,
 ): string {
-  const message = getAppErrorMessage(error);
-  if (message.toLowerCase().includes("refresh token failed with status 401")) {
-    return t("账号长期未登录，refresh 已过期，已改为不可用状态");
-  }
-  return message;
+	const message = getAppErrorMessage(error);
+	if (message.toLowerCase().includes("refresh token failed with status 401")) {
+		return t("账号长期未登录，refresh 已过期，已改为不可用状态");
+	}
+	return message;
 }
 
 function getAccountsAutoRefreshIntervalMs(
-  enabled: boolean,
-  intervalSecs: number,
+	enabled: boolean,
+	intervalSecs: number,
 ): number | false {
-  if (!enabled) {
-    return false;
-  }
-  if (typeof document !== "undefined" && document.visibilityState !== "visible") {
-    return false;
-  }
-  return Math.max(1, intervalSecs) * 1000;
+	if (!enabled) {
+		return false;
+	}
+	if (
+		typeof document !== "undefined" &&
+		document.visibilityState !== "visible"
+	) {
+		return false;
+	}
+	return Math.max(1, intervalSecs) * 1000;
 }
 
 function getUsageListRefreshIntervalMs(
-  enabled: boolean,
-  intervalSecs: number,
+	enabled: boolean,
+	intervalSecs: number,
 ): number | false {
-  const intervalMs = getAccountsAutoRefreshIntervalMs(enabled, intervalSecs);
-  if (!intervalMs) {
-    return false;
-  }
-  return Math.min(5_000, intervalMs);
+	const intervalMs = getAccountsAutoRefreshIntervalMs(enabled, intervalSecs);
+	if (!intervalMs) {
+		return false;
+	}
+	return Math.min(5_000, intervalMs);
 }
 
 function buildUsageListFingerprint(usages: AccountUsage[]): string {
-  if (usages.length === 0) {
-    return "";
-  }
+	if (usages.length === 0) {
+		return "";
+	}
 
-  return usages
-    .map((usage) =>
-      [
-        usage.accountId,
-        usage.capturedAt ?? "",
-        usage.usedPercent ?? "",
-        usage.secondaryUsedPercent ?? "",
-        usage.resetsAt ?? "",
-        usage.secondaryResetsAt ?? "",
-        usage.availabilityStatus ?? "",
-        usage.creditsJson ?? "",
-      ].join(":"),
-    )
-    .sort()
-    .join("|");
+	return usages
+		.map((usage) =>
+			[
+				usage.accountId,
+				usage.capturedAt ?? "",
+				usage.usedPercent ?? "",
+				usage.secondaryUsedPercent ?? "",
+				usage.resetsAt ?? "",
+				usage.secondaryResetsAt ?? "",
+				usage.availabilityStatus ?? "",
+				usage.creditsJson ?? "",
+			].join(":"),
+		)
+		.sort()
+		.join("|");
 }
 
-function buildAccountListResultFromSnapshot(accounts: Account[]): AccountListResult | undefined {
-  if (accounts.length === 0) {
-    return undefined;
-  }
-  return {
-    items: accounts,
-    total: accounts.length,
-    page: 1,
-    pageSize: accounts.length,
-  };
+function buildAccountListResultFromSnapshot(
+	accounts: Account[],
+): AccountListResult | undefined {
+	if (accounts.length === 0) {
+		return undefined;
+	}
+	return {
+		items: accounts,
+		total: accounts.length,
+		page: 1,
+		pageSize: accounts.length,
+	};
 }
 
 /**
@@ -179,863 +206,900 @@ function buildAccountListResultFromSnapshot(accounts: Account[]): AccountListRes
  * 返回函数执行结果
  */
 export function useAccounts() {
-  const queryClient = useQueryClient();
-  const { t } = useI18n();
-  const localDayRange = useLocalDayRange();
-  const serviceStatus = useAppStore((state) => state.serviceStatus);
-  const backgroundTasks = useAppStore((state) => state.appSettings.backgroundTasks);
-  const { canAccessManagementRpc } = useRuntimeCapabilities();
-  const isServiceReady = canAccessManagementRpc && serviceStatus.connected;
-  const isPageActive = useDesktopPageActive("/accounts/");
-  const areAccountQueriesEnabled = useDeferredDesktopActivation(
-    isServiceReady && isPageActive,
-  );
-  const usageListRefreshIntervalMs = getUsageListRefreshIntervalMs(
-    areAccountQueriesEnabled && backgroundTasks.usagePollingEnabled,
-    backgroundTasks.usagePollIntervalSecs,
-  );
-  const usageListFingerprintRef = useRef<string | null>(null);
-  const allowEmptyAccountListRef = useRef(false);
-  const startupSnapshotQueryKey = buildStartupSnapshotQueryKey(
-    serviceStatus.addr,
-    STARTUP_SNAPSHOT_REQUEST_LOG_LIMIT,
-    localDayRange.dayStartTs,
-  );
-  const startupSnapshotQuery = useQuery({
-    queryKey: startupSnapshotQueryKey,
-    queryFn: () =>
-      serviceClient.getStartupSnapshot({
-        requestLogLimit: STARTUP_SNAPSHOT_REQUEST_LOG_LIMIT,
-        dayStartTs: localDayRange.dayStartTs,
-        dayEndTs: localDayRange.dayEndTs,
-      }),
-    enabled: areAccountQueriesEnabled,
-    retry: 1,
-    staleTime: STARTUP_SNAPSHOT_STALE_TIME,
-  });
-  const startupSnapshot =
-    startupSnapshotQuery.data ||
-    queryClient.getQueryData<StartupSnapshot>(startupSnapshotQueryKey);
-  const startupAccounts = startupSnapshot?.accounts || [];
-  const startupUsages = startupSnapshot?.usageSnapshots || [];
-  const hasStartupAccountSnapshot = startupAccounts.length > 0;
-  const startupAccountList = useMemo(
-    () => buildAccountListResultFromSnapshot(startupAccounts),
-    [startupAccounts],
-  );
+	const queryClient = useQueryClient();
+	const { t } = useI18n();
+	const localDayRange = useLocalDayRange();
+	const serviceStatus = useAppStore((state) => state.serviceStatus);
+	const backgroundTasks = useAppStore(
+		(state) => state.appSettings.backgroundTasks,
+	);
+	const { canAccessManagementRpc } = useRuntimeCapabilities();
+	const isServiceReady = canAccessManagementRpc && serviceStatus.connected;
+	const isPageActive = useDesktopPageActive("/accounts/");
+	const areAccountQueriesEnabled = useDeferredDesktopActivation(
+		isServiceReady && isPageActive,
+	);
+	const usageListRefreshIntervalMs = getUsageListRefreshIntervalMs(
+		areAccountQueriesEnabled && backgroundTasks.usagePollingEnabled,
+		backgroundTasks.usagePollIntervalSecs,
+	);
+	const usageListFingerprintRef = useRef<string | null>(null);
+	const allowEmptyAccountListRef = useRef(false);
+	const startupSnapshotQueryKey = buildStartupSnapshotQueryKey(
+		serviceStatus.addr,
+		STARTUP_SNAPSHOT_REQUEST_LOG_LIMIT,
+		localDayRange.dayStartTs,
+	);
+	const startupSnapshotQuery = useQuery({
+		queryKey: startupSnapshotQueryKey,
+		queryFn: () =>
+			serviceClient.getStartupSnapshot({
+				requestLogLimit: STARTUP_SNAPSHOT_REQUEST_LOG_LIMIT,
+				dayStartTs: localDayRange.dayStartTs,
+				dayEndTs: localDayRange.dayEndTs,
+			}),
+		enabled: areAccountQueriesEnabled,
+		retry: 1,
+		staleTime: STARTUP_SNAPSHOT_STALE_TIME,
+	});
+	const startupSnapshot =
+		startupSnapshotQuery.data ||
+		queryClient.getQueryData<StartupSnapshot>(startupSnapshotQueryKey);
+	const startupAccounts = startupSnapshot?.accounts || [];
+	const startupUsages = startupSnapshot?.usageSnapshots || [];
+	const hasStartupAccountSnapshot = startupAccounts.length > 0;
+	const startupAccountList = useMemo(
+		() => buildAccountListResultFromSnapshot(startupAccounts),
+		[startupAccounts],
+	);
 
-  /**
-   * 函数 `ensureServiceReady`
-   *
-   * 作者: gaohongshun
-   *
-   * 时间: 2026-04-02
-   *
-   * # 参数
-   * - actionLabel: 参数 actionLabel
-   *
-   * # 返回
-   * 返回函数执行结果
-   */
-  const ensureServiceReady = (actionLabel: string): boolean => {
-    if (isServiceReady) {
-      return true;
-    }
-    toast.info(`${t("服务未连接，暂时无法")} ${t(actionLabel)}`);
-    return false;
-  };
+	/**
+	 * 函数 `ensureServiceReady`
+	 *
+	 * 作者: gaohongshun
+	 *
+	 * 时间: 2026-04-02
+	 *
+	 * # 参数
+	 * - actionLabel: 参数 actionLabel
+	 *
+	 * # 返回
+	 * 返回函数执行结果
+	 */
+	const ensureServiceReady = (actionLabel: string): boolean => {
+		if (isServiceReady) {
+			return true;
+		}
+		toast.info(`${t("服务未连接，暂时无法")} ${t(actionLabel)}`);
+		return false;
+	};
 
-  // 账号实体列表只在显式账号操作/手动刷新时更新；用量轮询通过 usage/list 合并展示，避免临时空读覆盖账号池。
-  const accountsQuery = useQuery({
-    queryKey: ["accounts", "list"],
-    queryFn: async () => {
-      const data = await accountClient.list();
-      if (data.items.length > 0) {
-        allowEmptyAccountListRef.current = false;
-        return data;
-      }
-      if (allowEmptyAccountListRef.current) {
-        allowEmptyAccountListRef.current = false;
-        return data;
-      }
-      if (
-        startupAccountList &&
-        startupAccountList.items.length > 0
-      ) {
-        console.warn(
-          "account/list returned empty while startup snapshot still has accounts; keeping startup account list",
-          {
-            startupCount: startupAccountList.items.length,
-            startupTotal: startupAccountList.total,
-          },
-        );
-        return startupAccountList;
-      }
-      return data;
-    },
-    enabled: areAccountQueriesEnabled,
-    retry: 1,
-    staleTime: Infinity,
-    refetchOnWindowFocus: false,
-    refetchOnReconnect: false,
-    initialData: () =>
-      queryClient.getQueryData<AccountListResult>(["accounts", "list"]) ||
-      startupAccountList,
-    placeholderData: (previousData): AccountListResult | undefined =>
-      previousData || startupAccountList,
-  });
+	// 账号实体列表只在显式账号操作/手动刷新时更新；用量轮询通过 usage/list 合并展示，避免临时空读覆盖账号池。
+	const accountsQuery = useQuery({
+		queryKey: ["accounts", "list"],
+		queryFn: async () => {
+			const data = await accountClient.list();
+			if (data.items.length > 0) {
+				allowEmptyAccountListRef.current = false;
+				return data;
+			}
+			if (allowEmptyAccountListRef.current) {
+				allowEmptyAccountListRef.current = false;
+				return data;
+			}
+			if (startupAccountList && startupAccountList.items.length > 0) {
+				console.warn(
+					"account/list returned empty while startup snapshot still has accounts; keeping startup account list",
+					{
+						startupCount: startupAccountList.items.length,
+						startupTotal: startupAccountList.total,
+					},
+				);
+				return startupAccountList;
+			}
+			return data;
+		},
+		enabled: areAccountQueriesEnabled,
+		retry: 1,
+		staleTime: Infinity,
+		refetchInterval: 3600_000,
+		refetchOnWindowFocus: false,
+		refetchOnReconnect: false,
+		initialData: () =>
+			queryClient.getQueryData<AccountListResult>(["accounts", "list"]) ||
+			startupAccountList,
+		placeholderData: (previousData): AccountListResult | undefined =>
+			previousData || startupAccountList,
+	});
 
-  const usagesQuery = useQuery({
-    queryKey: ["usage", "list"],
-    queryFn: () => accountClient.listUsage(),
-    enabled: areAccountQueriesEnabled,
-    retry: 1,
-    refetchInterval: usageListRefreshIntervalMs,
-    refetchIntervalInBackground: false,
-    placeholderData: (previousData) =>
-      previousData || (startupUsages.length > 0 ? startupUsages : undefined),
-  });
+	const usagesQuery = useQuery({
+		queryKey: ["usage", "list"],
+		queryFn: () => accountClient.listUsage(),
+		enabled: areAccountQueriesEnabled,
+		retry: 1,
+		refetchInterval: usageListRefreshIntervalMs,
+		refetchIntervalInBackground: false,
+		placeholderData: (previousData) =>
+			previousData || (startupUsages.length > 0 ? startupUsages : undefined),
+	});
 
-  const usageListFingerprint = useMemo(
-    () => buildUsageListFingerprint(usagesQuery.data || []),
-    [usagesQuery.data],
-  );
+	const usageListFingerprint = useMemo(
+		() => buildUsageListFingerprint(usagesQuery.data || []),
+		[usagesQuery.data],
+	);
 
-  useEffect(() => {
-    if (!areAccountQueriesEnabled) {
-      return;
-    }
+	useEffect(() => {
+		if (!areAccountQueriesEnabled) {
+			return;
+		}
 
-    let disposed = false;
-    let unlisten: (() => void) | null = null;
-    const refreshVisibleUsageData = () => {
-      void Promise.all([
-        queryClient.refetchQueries({ queryKey: ["usage", "list"], type: "active" }),
-        queryClient.invalidateQueries({ queryKey: ["usage-aggregate"] }),
-        queryClient.invalidateQueries({ queryKey: ["today-summary"] }),
-        queryClient.invalidateQueries({ queryKey: ["startup-snapshot"] }),
-        queryClient.invalidateQueries({ queryKey: CODEX_PROFILE_CANDIDATES_QUERY_KEY }),
-      ]);
-    };
+		let disposed = false;
+		let unlisten: (() => void) | null = null;
+		const refreshVisibleUsageData = () => {
+			void Promise.all([
+				queryClient.refetchQueries({
+					queryKey: ["usage", "list"],
+					type: "active",
+				}),
+				queryClient.invalidateQueries({ queryKey: ["usage-aggregate"] }),
+				queryClient.invalidateQueries({ queryKey: ["today-summary"] }),
+				queryClient.invalidateQueries({ queryKey: ["startup-snapshot"] }),
+				queryClient.invalidateQueries({
+					queryKey: CODEX_PROFILE_CANDIDATES_QUERY_KEY,
+				}),
+			]);
+		};
 
-    void listenUsageRefreshCompleted(() => {
-      refreshVisibleUsageData();
-    }).then((cleanup) => {
-      if (disposed) {
-        cleanup();
-        return;
-      }
-      unlisten = cleanup;
-    });
+		void listenUsageRefreshCompleted(() => {
+			refreshVisibleUsageData();
+		}).then((cleanup) => {
+			if (disposed) {
+				cleanup();
+				return;
+			}
+			unlisten = cleanup;
+		});
 
-    return () => {
-      disposed = true;
-      unlisten?.();
-    };
-  }, [areAccountQueriesEnabled, queryClient]);
+		return () => {
+			disposed = true;
+			unlisten?.();
+		};
+	}, [areAccountQueriesEnabled, queryClient]);
 
-  useEffect(() => {
-    if (!areAccountQueriesEnabled) {
-      usageListFingerprintRef.current = null;
-      return;
-    }
+	useEffect(() => {
+		if (!areAccountQueriesEnabled) {
+			usageListFingerprintRef.current = null;
+			return;
+		}
 
-    if (!usagesQuery.isFetched) {
-      return;
-    }
+		if (!usagesQuery.isFetched) {
+			return;
+		}
 
-    const previousFingerprint = usageListFingerprintRef.current;
-    usageListFingerprintRef.current = usageListFingerprint;
-    if (previousFingerprint == null || previousFingerprint === usageListFingerprint) {
-      return;
-    }
+		const previousFingerprint = usageListFingerprintRef.current;
+		usageListFingerprintRef.current = usageListFingerprint;
+		if (
+			previousFingerprint == null ||
+			previousFingerprint === usageListFingerprint
+		) {
+			return;
+		}
 
-    void Promise.all([
-      queryClient.invalidateQueries({ queryKey: ["usage-aggregate"] }),
-      queryClient.invalidateQueries({ queryKey: ["today-summary"] }),
-      queryClient.invalidateQueries({ queryKey: ["startup-snapshot"] }),
-      queryClient.invalidateQueries({ queryKey: CODEX_PROFILE_CANDIDATES_QUERY_KEY }),
-    ]);
-  }, [
-    areAccountQueriesEnabled,
-    queryClient,
-    usageListFingerprint,
-    usagesQuery.isFetched,
-  ]);
+		void Promise.all([
+			queryClient.invalidateQueries({ queryKey: ["usage-aggregate"] }),
+			queryClient.invalidateQueries({ queryKey: ["today-summary"] }),
+			queryClient.invalidateQueries({ queryKey: ["startup-snapshot"] }),
+			queryClient.invalidateQueries({
+				queryKey: CODEX_PROFILE_CANDIDATES_QUERY_KEY,
+			}),
+		]);
+	}, [
+		areAccountQueriesEnabled,
+		queryClient,
+		usageListFingerprint,
+		usagesQuery.isFetched,
+	]);
 
-  const visibleAccountList = accountsQuery.data;
+	const visibleAccountList = accountsQuery.data;
 
-  const accounts = useMemo(() => {
-    return attachUsagesToAccounts(
-      visibleAccountList?.items || [],
-      usagesQuery.data || []
-    );
-  }, [visibleAccountList?.items, usagesQuery.data]);
+	const accounts = useMemo(() => {
+		return attachUsagesToAccounts(
+			visibleAccountList?.items || [],
+			usagesQuery.data || [],
+		);
+	}, [visibleAccountList?.items, usagesQuery.data]);
 
-  const planTypes = useMemo(() => {
-    const map = new Map<string, number>();
-    const sortOrder = [
-      "free",
-      "go",
-      "plus",
-      "pro",
-      "team",
-      "business",
-      "enterprise",
-      "edu",
-      "unknown",
-    ];
-    /**
-     * 函数 `getSortIndex`
-     *
-     * 作者: gaohongshun
-     *
-     * 时间: 2026-04-02
-     *
-     * # 参数
-     * - value: 参数 value
-     *
-     * # 返回
-     * 返回函数执行结果
-     */
-    const getSortIndex = (value: string) => {
-      const index = sortOrder.indexOf(value);
-      return index === -1 ? sortOrder.length : index;
-    };
+	const planTypes = useMemo(() => {
+		const map = new Map<string, number>();
+		const sortOrder = [
+			"free",
+			"go",
+			"plus",
+			"pro",
+			"team",
+			"business",
+			"enterprise",
+			"edu",
+			"unknown",
+		];
+		/**
+		 * 函数 `getSortIndex`
+		 *
+		 * 作者: gaohongshun
+		 *
+		 * 时间: 2026-04-02
+		 *
+		 * # 参数
+		 * - value: 参数 value
+		 *
+		 * # 返回
+		 * 返回函数执行结果
+		 */
+		const getSortIndex = (value: string) => {
+			const index = sortOrder.indexOf(value);
+			return index === -1 ? sortOrder.length : index;
+		};
 
-    for (const account of accounts) {
-      const planType = String(account.planType || "").trim().toLowerCase() || "unknown";
-      map.set(planType, (map.get(planType) || 0) + 1);
-    }
+		for (const account of accounts) {
+			const planType =
+				String(account.planType || "")
+					.trim()
+					.toLowerCase() || "unknown";
+			map.set(planType, (map.get(planType) || 0) + 1);
+		}
 
-    return Array.from(map.entries())
-      .sort((left, right) => {
-        const sortDiff = getSortIndex(left[0]) - getSortIndex(right[0]);
-        if (sortDiff !== 0) {
-          return sortDiff;
-        }
-        return left[0].localeCompare(right[0], "zh-Hans-CN");
-      })
-      .map(([value, count]) => ({ value, count }));
-  }, [accounts]);
+		return Array.from(map.entries())
+			.sort((left, right) => {
+				const sortDiff = getSortIndex(left[0]) - getSortIndex(right[0]);
+				if (sortDiff !== 0) {
+					return sortDiff;
+				}
+				return left[0].localeCompare(right[0], "zh-Hans-CN");
+			})
+			.map(([value, count]) => ({ value, count }));
+	}, [accounts]);
 
-  /**
-   * 函数 `invalidateUsageData`
-   *
-   * 作者: gaohongshun
-   *
-   * 时间: 2026-04-02
-   *
-   * # 参数
-   * 无
-   *
-   * # 返回
-   * 返回函数执行结果
-   */
-  const invalidateUsageData = async () => {
-    await Promise.all([
-      queryClient.invalidateQueries({ queryKey: ["usage"] }),
-      queryClient.invalidateQueries({ queryKey: ["usage-aggregate"] }),
-      queryClient.invalidateQueries({ queryKey: ["today-summary"] }),
-      queryClient.invalidateQueries({ queryKey: ["startup-snapshot"] }),
-      queryClient.invalidateQueries({ queryKey: ["logs"] }),
-      queryClient.invalidateQueries({ queryKey: CODEX_PROFILE_CANDIDATES_QUERY_KEY }),
-    ]);
-  };
+	/**
+	 * 函数 `invalidateUsageData`
+	 *
+	 * 作者: gaohongshun
+	 *
+	 * 时间: 2026-04-02
+	 *
+	 * # 参数
+	 * 无
+	 *
+	 * # 返回
+	 * 返回函数执行结果
+	 */
+	const invalidateUsageData = async () => {
+		await Promise.all([
+			queryClient.invalidateQueries({ queryKey: ["usage"] }),
+			queryClient.invalidateQueries({ queryKey: ["usage-aggregate"] }),
+			queryClient.invalidateQueries({ queryKey: ["today-summary"] }),
+			queryClient.invalidateQueries({ queryKey: ["startup-snapshot"] }),
+			queryClient.invalidateQueries({ queryKey: ["logs"] }),
+			queryClient.invalidateQueries({
+				queryKey: CODEX_PROFILE_CANDIDATES_QUERY_KEY,
+			}),
+		]);
+	};
 
-  const invalidateAccountData = async () => {
-    await Promise.all([
-      queryClient.invalidateQueries({ queryKey: ACCOUNTS_LIST_QUERY_KEY }),
-      invalidateUsageData(),
-    ]);
-  };
+	const invalidateAccountData = async () => {
+		await Promise.all([
+			queryClient.invalidateQueries({ queryKey: ACCOUNTS_LIST_QUERY_KEY }),
+			invalidateUsageData(),
+		]);
+	};
 
-  const allowExplicitEmptyAccountList = () => {
-    allowEmptyAccountListRef.current = true;
-  };
+	const allowExplicitEmptyAccountList = () => {
+		allowEmptyAccountListRef.current = true;
+	};
 
-  const refreshAccountMutation = useMutation({
-    mutationFn: (accountId: string) => accountClient.refreshUsage(accountId),
-    onSuccess: () => {
-      toast.success(t("账号用量已刷新"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("刷新失败")}: ${formatUsageRefreshErrorMessage(error, t)}`);
-    },
-    onSettled: async () => {
-      await invalidateUsageData();
-    },
-  });
+	const refreshAccountMutation = useMutation({
+		mutationFn: (accountId: string) => accountClient.refreshUsage(accountId),
+		onSuccess: () => {
+			toast.success(t("账号用量已刷新"));
+		},
+		onError: (error: unknown) => {
+			toast.error(
+				`${t("刷新失败")}: ${formatUsageRefreshErrorMessage(error, t)}`,
+			);
+		},
+		onSettled: async () => {
+			await invalidateUsageData();
+		},
+	});
 
-  const refreshAllMutation = useMutation({
-    mutationFn: () => accountClient.refreshUsage(),
-    onSuccess: () => {
-      toast.success(t("账号用量已刷新"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("刷新失败")}: ${formatUsageRefreshErrorMessage(error, t)}`);
-    },
-    onSettled: async () => {
-      await invalidateUsageData();
-    },
-  });
+	const refreshAllMutation = useMutation({
+		mutationFn: () => accountClient.refreshUsage(),
+		onSuccess: () => {
+			toast.success(t("账号用量已刷新"));
+		},
+		onError: (error: unknown) => {
+			toast.error(
+				`${t("刷新失败")}: ${formatUsageRefreshErrorMessage(error, t)}`,
+			);
+		},
+		onSettled: async () => {
+			await invalidateUsageData();
+		},
+	});
 
-  const refreshAccountRtMutation = useMutation({
-    mutationFn: (accountId: string) =>
-      accountClient.refreshChatgptAuthTokens(accountId),
-    onSuccess: () => {
-      toast.success(t("账号 AT/RT 已刷新"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("刷新 AT/RT 失败")}: ${getAppErrorMessage(error)}`);
-    },
-    onSettled: async () => {
-      await invalidateAccountData();
-    },
-  });
+	const refreshAccountRtMutation = useMutation({
+		mutationFn: (accountId: string) =>
+			accountClient.refreshChatgptAuthTokens(accountId),
+		onSuccess: () => {
+			toast.success(t("账号 AT/RT 已刷新"));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("刷新 AT/RT 失败")}: ${getAppErrorMessage(error)}`);
+		},
+		onSettled: async () => {
+			await invalidateAccountData();
+		},
+	});
 
-  const refreshAllAccountRtMutation = useMutation({
-    mutationFn: () => accountClient.refreshAllChatgptAuthTokens(),
-    onSuccess: (result: RefreshAllRtResult) => {
-      const succeeded = Number(result?.succeeded || 0);
-      const failed = Number(result?.failed || 0);
-      const skipped = Number(result?.skipped || 0);
-      if (failed > 0) {
-        const firstFailure = (result?.results || []).find((item) => !item.ok);
-        toast.warning(
-          firstFailure?.message
-            ? t("AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}", {
-                success: succeeded,
-                failed,
-                skipped,
-                message: firstFailure.message,
-              })
-            : t("AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个", {
-                success: succeeded,
-                failed,
-                skipped,
-              }),
-        );
-        return;
-      }
-      toast.success(
-        t("AT/RT 刷新完成：成功{success}个，跳过{skipped}个", {
-          success: succeeded,
-          skipped,
-        }),
-      );
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("批量刷新 AT/RT 失败")}: ${getAppErrorMessage(error)}`);
-    },
-    onSettled: async () => {
-      await invalidateAccountData();
-    },
-  });
+	const refreshAllAccountRtMutation = useMutation({
+		mutationFn: () => accountClient.refreshAllChatgptAuthTokens(),
+		onSuccess: (result: RefreshAllRtResult) => {
+			const succeeded = Number(result?.succeeded || 0);
+			const failed = Number(result?.failed || 0);
+			const skipped = Number(result?.skipped || 0);
+			if (failed > 0) {
+				const firstFailure = (result?.results || []).find((item) => !item.ok);
+				toast.warning(
+					firstFailure?.message
+						? t(
+								"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}",
+								{
+									success: succeeded,
+									failed,
+									skipped,
+									message: firstFailure.message,
+								},
+							)
+						: t(
+								"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个",
+								{
+									success: succeeded,
+									failed,
+									skipped,
+								},
+							),
+				);
+				return;
+			}
+			toast.success(
+				t("AT/RT 刷新完成：成功{success}个，跳过{skipped}个", {
+					success: succeeded,
+					skipped,
+				}),
+			);
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("批量刷新 AT/RT 失败")}: ${getAppErrorMessage(error)}`);
+		},
+		onSettled: async () => {
+			await invalidateAccountData();
+		},
+	});
 
-  const deleteMutation = useMutation({
-    mutationFn: (accountId: string) => accountClient.delete(accountId),
-    onSuccess: async () => {
-      allowExplicitEmptyAccountList();
-      await invalidateAccountData();
-      toast.success(t("账号已删除"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("删除失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const deleteMutation = useMutation({
+		mutationFn: (accountId: string) => accountClient.delete(accountId),
+		onSuccess: async () => {
+			allowExplicitEmptyAccountList();
+			await invalidateAccountData();
+			toast.success(t("账号已删除"));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("删除失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const deleteManyMutation = useMutation({
-    mutationFn: (accountIds: string[]) => accountClient.deleteMany(accountIds),
-    onSuccess: async (_result, accountIds) => {
-      allowExplicitEmptyAccountList();
-      await invalidateAccountData();
-      toast.success(t("已删除 {count} 个账号", { count: accountIds.length }));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("批量删除失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const deleteManyMutation = useMutation({
+		mutationFn: (accountIds: string[]) => accountClient.deleteMany(accountIds),
+		onSuccess: async (_result, accountIds) => {
+			allowExplicitEmptyAccountList();
+			await invalidateAccountData();
+			toast.success(t("已删除 {count} 个账号", { count: accountIds.length }));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("批量删除失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const deleteByStatusesMutation = useMutation({
-    mutationFn: (statuses: string[]) => accountClient.deleteByStatuses({ statuses }),
-    onSuccess: async (result: DeleteAccountsByStatusesResult) => {
-      const deleted = Number(result?.deleted || 0);
-      if (deleted > 0) {
-        allowExplicitEmptyAccountList();
-      }
-      await invalidateAccountData();
-      if (deleted > 0) {
-        toast.success(t("已清理 {count} 个账号", { count: deleted }));
-      } else {
-        toast.success(t("未发现可清理的账号"));
-      }
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("清理失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const deleteByStatusesMutation = useMutation({
+		mutationFn: (statuses: string[]) =>
+			accountClient.deleteByStatuses({ statuses }),
+		onSuccess: async (result: DeleteAccountsByStatusesResult) => {
+			const deleted = Number(result?.deleted || 0);
+			if (deleted > 0) {
+				allowExplicitEmptyAccountList();
+			}
+			await invalidateAccountData();
+			if (deleted > 0) {
+				toast.success(t("已清理 {count} 个账号", { count: deleted }));
+			} else {
+				toast.success(t("未发现可清理的账号"));
+			}
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("清理失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const updateAccountSortMutation = useMutation({
-    mutationFn: ({ accountId, sort }: { accountId: string; sort: number }) =>
-      accountClient.updateSort(accountId, sort),
-    onSuccess: async () => {
-      await invalidateAccountData();
-      toast.success(t("账号顺序已更新"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("更新顺序失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const updateAccountSortMutation = useMutation({
+		mutationFn: ({ accountId, sort }: { accountId: string; sort: number }) =>
+			accountClient.updateSort(accountId, sort),
+		onSuccess: async () => {
+			await invalidateAccountData();
+			toast.success(t("账号顺序已更新"));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("更新顺序失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const reorderAccountsMutation = useMutation({
-    mutationFn: async (updates: AccountSortUpdate[]) => {
-      for (const update of updates) {
-        await accountClient.updateSort(update.accountId, update.sort);
-      }
-      return updates.length;
-    },
-    onSuccess: async (count) => {
-      await invalidateAccountData();
-      toast.success(
-        count > 1
-          ? t("账号顺序已调整（{count} 项）", { count })
-          : t("账号顺序已更新"),
-      );
-    },
-    onError: async (error: unknown) => {
-      await invalidateAccountData();
-      toast.error(`${t("调整账号顺序失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const reorderAccountsMutation = useMutation({
+		mutationFn: async (updates: AccountSortUpdate[]) => {
+			for (const update of updates) {
+				await accountClient.updateSort(update.accountId, update.sort);
+			}
+			return updates.length;
+		},
+		onSuccess: async (count) => {
+			await invalidateAccountData();
+			toast.success(
+				count > 1
+					? t("账号顺序已调整（{count} 项）", { count })
+					: t("账号顺序已更新"),
+			);
+		},
+		onError: async (error: unknown) => {
+			await invalidateAccountData();
+			toast.error(`${t("调整账号顺序失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const updateAccountProfileMutation = useMutation({
-    mutationFn: ({
-      accountId,
-      label,
-      note,
-      tags,
-      sort,
-      modelSlugs,
-      quotaCapacityPrimaryWindowTokens,
-      quotaCapacitySecondaryWindowTokens,
-    }: {
-      accountId: string;
-      label?: string | null;
-      note?: string | null;
-      tags?: string[] | string | null;
-      sort?: number | null;
-      modelSlugs?: string[] | null;
-      quotaCapacityPrimaryWindowTokens?: number | null;
-      quotaCapacitySecondaryWindowTokens?: number | null;
-    }) =>
-      accountClient.updateProfile(accountId, {
-        label,
-        note,
-        tags,
-        sort,
-        modelSlugs,
-        quotaCapacityPrimaryWindowTokens,
-        quotaCapacitySecondaryWindowTokens,
-      }),
-    onSuccess: async () => {
-      await invalidateAccountData();
-      toast.success(t("账号信息已更新"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("更新账号信息失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const updateAccountProfileMutation = useMutation({
+		mutationFn: ({
+			accountId,
+			label,
+			note,
+			tags,
+			sort,
+			modelSlugs,
+			quotaCapacityPrimaryWindowTokens,
+			quotaCapacitySecondaryWindowTokens,
+		}: {
+			accountId: string;
+			label?: string | null;
+			note?: string | null;
+			tags?: string[] | string | null;
+			sort?: number | null;
+			modelSlugs?: string[] | null;
+			quotaCapacityPrimaryWindowTokens?: number | null;
+			quotaCapacitySecondaryWindowTokens?: number | null;
+		}) =>
+			accountClient.updateProfile(accountId, {
+				label,
+				note,
+				tags,
+				sort,
+				modelSlugs,
+				quotaCapacityPrimaryWindowTokens,
+				quotaCapacitySecondaryWindowTokens,
+			}),
+		onSuccess: async () => {
+			await invalidateAccountData();
+			toast.success(t("账号信息已更新"));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("更新账号信息失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const toggleAccountStatusMutation = useMutation({
-    mutationFn: ({
-      accountId,
-      enabled,
-    }: {
-      accountId: string;
-      enabled: boolean;
-      sourceStatus?: string | null;
-    }) =>
-      enabled
-        ? accountClient.enableAccount(accountId)
-        : accountClient.disableAccount(accountId),
-    onSuccess: async (_result, variables) => {
-      await invalidateAccountData();
-      const normalizedSourceStatus = String(variables.sourceStatus || "")
-        .trim()
-        .toLowerCase();
-      toast.success(
-        variables.enabled
-          ? normalizedSourceStatus === "inactive"
-            ? t("账号已恢复")
-            : t("账号已启用")
-          : t("账号已禁用")
-      );
-    },
-    onError: (error: unknown, variables) => {
-      const normalizedSourceStatus = String(variables.sourceStatus || "")
-        .trim()
-        .toLowerCase();
-      const actionLabel = variables.enabled
-        ? normalizedSourceStatus === "inactive"
-          ? t("恢复")
-          : t("启用")
-        : t("禁用");
-      toast.error(
-        t("账号{action}失败: {error}", {
-          action: actionLabel,
-          error: getAppErrorMessage(error),
-        })
-      );
-    },
-  });
+	const toggleAccountStatusMutation = useMutation({
+		mutationFn: ({
+			accountId,
+			enabled,
+		}: {
+			accountId: string;
+			enabled: boolean;
+			sourceStatus?: string | null;
+		}) =>
+			enabled
+				? accountClient.enableAccount(accountId)
+				: accountClient.disableAccount(accountId),
+		onSuccess: async (_result, variables) => {
+			await invalidateAccountData();
+			const normalizedSourceStatus = String(variables.sourceStatus || "")
+				.trim()
+				.toLowerCase();
+			toast.success(
+				variables.enabled
+					? normalizedSourceStatus === "inactive"
+						? t("账号已恢复")
+						: t("账号已启用")
+					: t("账号已禁用"),
+			);
+		},
+		onError: (error: unknown, variables) => {
+			const normalizedSourceStatus = String(variables.sourceStatus || "")
+				.trim()
+				.toLowerCase();
+			const actionLabel = variables.enabled
+				? normalizedSourceStatus === "inactive"
+					? t("恢复")
+					: t("启用")
+				: t("禁用");
+			toast.error(
+				t("账号{action}失败: {error}", {
+					action: actionLabel,
+					error: getAppErrorMessage(error),
+				}),
+			);
+		},
+	});
 
-  const importByDirectoryMutation = useMutation({
-    mutationFn: () => accountClient.importByDirectory(),
-    onSuccess: async (result: ImportByDirectoryResult) => {
-      if (result?.canceled) {
-        toast.info(t("已取消导入"));
-        return;
-      }
-      await invalidateAccountData();
-      toast.success(buildImportSummaryMessage(result, t));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("导入失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const importByDirectoryMutation = useMutation({
+		mutationFn: () => accountClient.importByDirectory(),
+		onSuccess: async (result: ImportByDirectoryResult) => {
+			if (result?.canceled) {
+				toast.info(t("已取消导入"));
+				return;
+			}
+			await invalidateAccountData();
+			toast.success(buildImportSummaryMessage(result, t));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("导入失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const importByFileMutation = useMutation({
-    mutationFn: () => accountClient.importByFile(),
-    onSuccess: async (result: ImportByFileResult) => {
-      if (result?.canceled) {
-        toast.info(t("已取消导入"));
-        return;
-      }
-      await invalidateAccountData();
-      toast.success(buildImportSummaryMessage(result, t));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("导入失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const importByFileMutation = useMutation({
+		mutationFn: () => accountClient.importByFile(),
+		onSuccess: async (result: ImportByFileResult) => {
+			if (result?.canceled) {
+				toast.info(t("已取消导入"));
+				return;
+			}
+			await invalidateAccountData();
+			toast.success(buildImportSummaryMessage(result, t));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("导入失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const exportMutation = useMutation({
-    mutationFn: (params?: AccountExportPayload) => accountClient.export(params),
-    onSuccess: (result: ExportResult) => {
-      if (result?.canceled) {
-        toast.info(t("已取消导出"));
-        return;
-      }
-      const exported = Number(result?.exported || 0);
-      const outputDir = String(result?.outputDir || "").trim();
-      const isBrowserDownload = outputDir === "browser-download";
-      toast.success(
-        isBrowserDownload
-          ? t("已导出 {count} 个账号，浏览器将开始下载", { count: exported })
-          : outputDir
-          ? t("已导出 {count} 个账号到 {outputDir}", {
-              count: exported,
-              outputDir,
-            })
-          : t("已导出 {count} 个账号", { count: exported })
-      );
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("导出失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const exportMutation = useMutation({
+		mutationFn: (params?: AccountExportPayload) => accountClient.export(params),
+		onSuccess: (result: ExportResult) => {
+			if (result?.canceled) {
+				toast.info(t("已取消导出"));
+				return;
+			}
+			const exported = Number(result?.exported || 0);
+			const outputDir = String(result?.outputDir || "").trim();
+			const isBrowserDownload = outputDir === "browser-download";
+			toast.success(
+				isBrowserDownload
+					? t("已导出 {count} 个账号，浏览器将开始下载", { count: exported })
+					: outputDir
+						? t("已导出 {count} 个账号到 {outputDir}", {
+								count: exported,
+								outputDir,
+							})
+						: t("已导出 {count} 个账号", { count: exported }),
+			);
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("导出失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const warmupMutation = useMutation({
-    mutationFn: (params?: WarmupPayload) => accountClient.warmup(params),
-    onSuccess: async (result: WarmupResult) => {
-      await invalidateUsageData();
-      const requested = Number(result?.requested || 0);
-      const succeeded = Number(result?.succeeded || 0);
-      const failed = Number(result?.failed || 0);
-      const firstFailedItem = (result?.results || []).find((item) => !item.ok);
-      if (requested <= 0) {
-        toast.info(t("当前没有可预热的账号"));
-        return;
-      }
-      if (failed <= 0) {
-        toast.success(t("预热完成：共{requested}个账号，成功{count}个", {
-          requested,
-          count: succeeded,
-        }));
-        return;
-      }
-      const summary = t("预热完成：成功{success}个，失败{failed}个", {
-        success: succeeded,
-        failed,
-      });
-      toast.warning(
-        firstFailedItem?.message
-          ? `${summary}；${t("首个失败")}: ${firstFailedItem.accountName || firstFailedItem.accountId} - ${firstFailedItem.message}`
-          : summary,
-      );
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("账号预热失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const warmupMutation = useMutation({
+		mutationFn: (params?: WarmupPayload) => accountClient.warmup(params),
+		onSuccess: async (result: WarmupResult) => {
+			await invalidateUsageData();
+			const requested = Number(result?.requested || 0);
+			const succeeded = Number(result?.succeeded || 0);
+			const failed = Number(result?.failed || 0);
+			const firstFailedItem = (result?.results || []).find((item) => !item.ok);
+			if (requested <= 0) {
+				toast.info(t("当前没有可预热的账号"));
+				return;
+			}
+			if (failed <= 0) {
+				toast.success(
+					t("预热完成：共{requested}个账号，成功{count}个", {
+						requested,
+						count: succeeded,
+					}),
+				);
+				return;
+			}
+			const summary = t("预热完成：成功{success}个，失败{failed}个", {
+				success: succeeded,
+				failed,
+			});
+			toast.warning(
+				firstFailedItem?.message
+					? `${summary}；${t("首个失败")}: ${firstFailedItem.accountName || firstFailedItem.accountId} - ${firstFailedItem.message}`
+					: summary,
+			);
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("账号预热失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const setPreferredMutation = useMutation({
-    mutationFn: (accountId: string) => accountClient.setPreferred(accountId),
-    onSuccess: async () => {
-      await invalidateAccountData();
-      toast.success(t("已设为优先账号"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("设置优先账号失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const setPreferredMutation = useMutation({
+		mutationFn: (accountId: string) => accountClient.setPreferred(accountId),
+		onSuccess: async () => {
+			await invalidateAccountData();
+			toast.success(t("已设为优先账号"));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("设置优先账号失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const clearPreferredMutation = useMutation({
-    mutationFn: (accountId: string) => accountClient.clearPreferred(accountId),
-    onSuccess: async () => {
-      await invalidateAccountData();
-      toast.success(t("已取消优先账号"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("取消优先账号失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const clearPreferredMutation = useMutation({
+		mutationFn: (accountId: string) => accountClient.clearPreferred(accountId),
+		onSuccess: async () => {
+			await invalidateAccountData();
+			toast.success(t("已取消优先账号"));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("取消优先账号失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const getAccountProxySettings = async (
-    accountId: string,
-  ): Promise<AccountProxySettings> => {
-    if (!ensureServiceReady("读取账号代理")) {
-      throw new Error(t("服务未连接，暂时无法读取账号代理"));
-    }
-    const targetAccountId = accountId.trim();
-    if (!targetAccountId) {
-      throw new Error(t("未找到当前账号，请刷新后重试"));
-    }
-    return accountClient.getProxySettings(targetAccountId);
-  };
+	const getAccountProxySettings = async (
+		accountId: string,
+	): Promise<AccountProxySettings> => {
+		if (!ensureServiceReady("读取账号代理")) {
+			throw new Error(t("服务未连接，暂时无法读取账号代理"));
+		}
+		const targetAccountId = accountId.trim();
+		if (!targetAccountId) {
+			throw new Error(t("未找到当前账号，请刷新后重试"));
+		}
+		return accountClient.getProxySettings(targetAccountId);
+	};
 
-  const setAccountProxyMutation = useMutation({
-    mutationFn: (params: AccountProxySetPayload) =>
-      accountClient.setProxySettings(params),
-    onSuccess: async (settings) => {
-      await invalidateUsageData();
-      toast.success(
-        settings.enabled ? t("账号代理已保存") : t("账号代理已关闭"),
-      );
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("保存账号代理失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const setAccountProxyMutation = useMutation({
+		mutationFn: (params: AccountProxySetPayload) =>
+			accountClient.setProxySettings(params),
+		onSuccess: async (settings) => {
+			await invalidateAccountData();
+			toast.success(
+				settings.enabled ? t("账号代理已保存") : t("账号代理已关闭"),
+			);
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("保存账号代理失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const clearAccountProxyMutation = useMutation({
-    mutationFn: (accountId: string) => accountClient.clearProxySettings(accountId),
-    onSuccess: async () => {
-      await invalidateUsageData();
-      toast.success(t("账号代理已清除"));
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("清除账号代理失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const clearAccountProxyMutation = useMutation({
+		mutationFn: (accountId: string) =>
+			accountClient.clearProxySettings(accountId),
+		onSuccess: async () => {
+			await invalidateAccountData();
+			toast.success(t("账号代理已清除"));
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("清除账号代理失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  const testAccountProxyMutation = useMutation({
-    mutationFn: (params: AccountProxyTestPayload) =>
-      accountClient.testProxySettings(params),
-    onSuccess: async (settings) => {
-      await invalidateUsageData();
-      if (settings.status === "ok") {
-        toast.success(t("账号代理测试通过"));
-        return;
-      }
-      toast.warning(
-        settings.lastError
-          ? `${t("账号代理测试未通过")}: ${settings.lastError}`
-          : t("账号代理测试未通过"),
-      );
-    },
-    onError: (error: unknown) => {
-      toast.error(`${t("测试账号代理失败")}: ${getAppErrorMessage(error)}`);
-    },
-  });
+	const testAccountProxyMutation = useMutation({
+		mutationFn: (params: AccountProxyTestPayload) =>
+			accountClient.testProxySettings(params),
+		onSuccess: async (settings) => {
+			await invalidateAccountData();
+			if (settings.status === "ok") {
+				toast.success(t("账号代理测试通过"));
+				return;
+			}
+			toast.warning(
+				settings.lastError
+					? `${t("账号代理测试未通过")}: ${settings.lastError}`
+					: t("账号代理测试未通过"),
+			);
+		},
+		onError: (error: unknown) => {
+			toast.error(`${t("测试账号代理失败")}: ${getAppErrorMessage(error)}`);
+		},
+	});
 
-  return {
-    accounts,
-    planTypes,
-    total: visibleAccountList?.total || accounts.length,
-    isLoading:
-      isServiceReady &&
-      !hasStartupAccountSnapshot &&
-      (!areAccountQueriesEnabled || accountsQuery.isLoading || usagesQuery.isLoading),
-    isServiceReady,
-    refreshAccount: (accountId: string) => {
-      if (!ensureServiceReady("刷新账号")) return;
-      const targetAccountId = accountId.trim();
-      if (!targetAccountId) {
-        toast.error(t("未找到当前账号，请刷新后重试"));
-        return;
-      }
-      refreshAccountMutation.mutate(targetAccountId);
-    },
-    refreshAccountRt: (accountId: string) => {
-      if (!ensureServiceReady("刷新 AT/RT")) return;
-      const targetAccountId = accountId.trim();
-      if (!targetAccountId) {
-        toast.error(t("未找到当前账号，请刷新后重试"));
-        return;
-      }
-      refreshAccountRtMutation.mutate(targetAccountId);
-    },
-    refreshAllAccountRt: () => {
-      if (!ensureServiceReady("刷新 AT/RT")) return;
-      if (!accounts.length) {
-        toast.info(t("当前没有可刷新的账号"));
-        return;
-      }
-      refreshAllAccountRtMutation.mutate();
-    },
-    refreshAllAccounts: () => {
-      if (!ensureServiceReady("刷新账号")) return;
-      if (!accounts.some((account) => !isAccountRefreshBlocked(account.status))) {
-        toast.info(t("当前没有可刷新的账号"));
-        return;
-      }
-      refreshAllMutation.mutate();
-    },
-    refreshAccountList: async () => {
-      if (!ensureServiceReady("刷新账号列表")) return;
-      await invalidateAccountData();
-      toast.success(t("账号列表已刷新"));
-    },
-    deleteAccount: (accountId: string) => {
-      if (!ensureServiceReady("删除账号")) return;
-      deleteMutation.mutate(accountId);
-    },
-    deleteManyAccounts: (accountIds: string[]) => {
-      if (!ensureServiceReady("批量删除账号")) return;
-      deleteManyMutation.mutate(accountIds);
-    },
-    cleanupAccountsByStatuses: async (statuses: string[]) => {
-      if (!ensureServiceReady("清理账号")) return;
-      await deleteByStatusesMutation.mutateAsync(statuses);
-    },
-    importByFile: () => {
-      if (!ensureServiceReady("导入账号")) return;
-      importByFileMutation.mutate();
-    },
-    importByDirectory: () => {
-      if (!ensureServiceReady("导入账号")) return;
-      importByDirectoryMutation.mutate();
-    },
-    exportAccounts: async (params?: AccountExportPayload) => {
-      if (!ensureServiceReady("导出账号")) return;
-      await exportMutation.mutateAsync(params);
-    },
-    warmupAccounts: async (params?: WarmupPayload) => {
-      if (!ensureServiceReady("账号预热")) return;
-      return await warmupMutation.mutateAsync(params);
-    },
-    setPreferredAccount: (accountId: string) => {
-      if (!ensureServiceReady("设置优先账号")) return;
-      setPreferredMutation.mutate(accountId);
-    },
-    clearPreferredAccount: (accountId: string) => {
-      if (!ensureServiceReady("取消优先账号")) return;
-      clearPreferredMutation.mutate(accountId);
-    },
-    getAccountProxySettings,
-    setAccountProxySettings: async (params: AccountProxySetPayload) => {
-      if (!ensureServiceReady("保存账号代理")) return;
-      return await setAccountProxyMutation.mutateAsync(params);
-    },
-    clearAccountProxySettings: async (accountId: string) => {
-      if (!ensureServiceReady("清除账号代理")) return;
-      return await clearAccountProxyMutation.mutateAsync(accountId);
-    },
-    testAccountProxySettings: async (params: AccountProxyTestPayload) => {
-      if (!ensureServiceReady("测试账号代理")) return;
-      return await testAccountProxyMutation.mutateAsync(params);
-    },
-    updateAccountSort: async (accountId: string, sort: number) => {
-      if (!ensureServiceReady("更新账号顺序")) return;
-      await updateAccountSortMutation.mutateAsync({ accountId, sort });
-    },
-    reorderAccounts: async (updates: AccountSortUpdate[]) => {
-      if (!ensureServiceReady("调整账号顺序")) return;
-      if (!updates.length) return;
-      await reorderAccountsMutation.mutateAsync(updates);
-    },
-    updateAccountProfile: async (
-      accountId: string,
-      params: {
-        label?: string | null;
-        note?: string | null;
-        tags?: string[] | string | null;
-        sort?: number | null;
-        modelSlugs?: string[] | null;
-        quotaCapacityPrimaryWindowTokens?: number | null;
-        quotaCapacitySecondaryWindowTokens?: number | null;
-      }
-    ) => {
-      if (!ensureServiceReady("更新账号信息")) return;
-      await updateAccountProfileMutation.mutateAsync({ accountId, ...params });
-    },
-    toggleAccountStatus: (
-      accountId: string,
-      enabled: boolean,
-      sourceStatus?: string | null
-    ) => {
-      if (!ensureServiceReady(enabled ? "启用账号" : "禁用账号")) return;
-      toggleAccountStatusMutation.mutate({ accountId, enabled, sourceStatus });
-    },
-    isRefreshingAccountId:
-      refreshAccountMutation.isPending && typeof refreshAccountMutation.variables === "string"
-        ? refreshAccountMutation.variables
-        : "",
-    isRefreshingRtAccountId:
-      refreshAccountRtMutation.isPending &&
-      typeof refreshAccountRtMutation.variables === "string"
-        ? refreshAccountRtMutation.variables
-        : "",
-    isRefreshingAllRtAccounts: refreshAllAccountRtMutation.isPending,
-    isRefreshingAllAccounts: refreshAllMutation.isPending,
-    isExporting: exportMutation.isPending,
-    isWarmingUpAccounts: warmupMutation.isPending,
-    isDeletingMany: deleteManyMutation.isPending,
-    isCleaningAccountsByStatus: deleteByStatusesMutation.isPending,
-    isUpdatingPreferred:
-      setPreferredMutation.isPending || clearPreferredMutation.isPending,
-    isSavingAccountProxy: setAccountProxyMutation.isPending,
-    isClearingAccountProxy: clearAccountProxyMutation.isPending,
-    isTestingAccountProxy: testAccountProxyMutation.isPending,
-    isUpdatingSortAccountId:
-      updateAccountSortMutation.isPending &&
-      updateAccountSortMutation.variables &&
-      typeof updateAccountSortMutation.variables === "object" &&
-      "accountId" in updateAccountSortMutation.variables
-        ? String(
-            (updateAccountSortMutation.variables as { accountId?: unknown }).accountId || ""
-          )
-        : "",
-    isReorderingAccounts: reorderAccountsMutation.isPending,
-    isUpdatingProfileAccountId:
-      updateAccountProfileMutation.isPending &&
-      updateAccountProfileMutation.variables &&
-      typeof updateAccountProfileMutation.variables === "object" &&
-      "accountId" in updateAccountProfileMutation.variables
-        ? String(
-            (updateAccountProfileMutation.variables as { accountId?: unknown }).accountId || ""
-          )
-        : "",
-    isUpdatingStatusAccountId:
-      toggleAccountStatusMutation.isPending &&
-      toggleAccountStatusMutation.variables &&
-      typeof toggleAccountStatusMutation.variables === "object" &&
-      "accountId" in toggleAccountStatusMutation.variables
-        ? String(
-            (toggleAccountStatusMutation.variables as { accountId?: unknown }).accountId || ""
-          )
-        : "",
-  };
+	return {
+		accounts,
+		planTypes,
+		total: visibleAccountList?.total || accounts.length,
+		isLoading:
+			isServiceReady &&
+			!hasStartupAccountSnapshot &&
+			(!areAccountQueriesEnabled ||
+				accountsQuery.isLoading ||
+				usagesQuery.isLoading),
+		isServiceReady,
+		refreshAccount: (accountId: string) => {
+			if (!ensureServiceReady("刷新账号")) return;
+			const targetAccountId = accountId.trim();
+			if (!targetAccountId) {
+				toast.error(t("未找到当前账号，请刷新后重试"));
+				return;
+			}
+			refreshAccountMutation.mutate(targetAccountId);
+		},
+		refreshAccountRt: (accountId: string) => {
+			if (!ensureServiceReady("刷新 AT/RT")) return;
+			const targetAccountId = accountId.trim();
+			if (!targetAccountId) {
+				toast.error(t("未找到当前账号，请刷新后重试"));
+				return;
+			}
+			refreshAccountRtMutation.mutate(targetAccountId);
+		},
+		refreshAllAccountRt: () => {
+			if (!ensureServiceReady("刷新 AT/RT")) return;
+			if (!accounts.length) {
+				toast.info(t("当前没有可刷新的账号"));
+				return;
+			}
+			refreshAllAccountRtMutation.mutate();
+		},
+		refreshAllAccounts: () => {
+			if (!ensureServiceReady("刷新账号")) return;
+			if (
+				!accounts.some((account) => !isAccountRefreshBlocked(account.status))
+			) {
+				toast.info(t("当前没有可刷新的账号"));
+				return;
+			}
+			refreshAllMutation.mutate();
+		},
+		refreshAccountList: async () => {
+			if (!ensureServiceReady("刷新账号列表")) return;
+			await invalidateAccountData();
+			toast.success(t("账号列表已刷新"));
+		},
+		deleteAccount: (accountId: string) => {
+			if (!ensureServiceReady("删除账号")) return;
+			deleteMutation.mutate(accountId);
+		},
+		deleteManyAccounts: (accountIds: string[]) => {
+			if (!ensureServiceReady("批量删除账号")) return;
+			deleteManyMutation.mutate(accountIds);
+		},
+		cleanupAccountsByStatuses: async (statuses: string[]) => {
+			if (!ensureServiceReady("清理账号")) return;
+			await deleteByStatusesMutation.mutateAsync(statuses);
+		},
+		importByFile: () => {
+			if (!ensureServiceReady("导入账号")) return;
+			importByFileMutation.mutate();
+		},
+		importByDirectory: () => {
+			if (!ensureServiceReady("导入账号")) return;
+			importByDirectoryMutation.mutate();
+		},
+		exportAccounts: async (params?: AccountExportPayload) => {
+			if (!ensureServiceReady("导出账号")) return;
+			await exportMutation.mutateAsync(params);
+		},
+		warmupAccounts: async (params?: WarmupPayload) => {
+			if (!ensureServiceReady("账号预热")) return;
+			return await warmupMutation.mutateAsync(params);
+		},
+		setPreferredAccount: (accountId: string) => {
+			if (!ensureServiceReady("设置优先账号")) return;
+			setPreferredMutation.mutate(accountId);
+		},
+		clearPreferredAccount: (accountId: string) => {
+			if (!ensureServiceReady("取消优先账号")) return;
+			clearPreferredMutation.mutate(accountId);
+		},
+		getAccountProxySettings,
+		setAccountProxySettings: async (params: AccountProxySetPayload) => {
+			if (!ensureServiceReady("保存账号代理")) return;
+			return await setAccountProxyMutation.mutateAsync(params);
+		},
+		clearAccountProxySettings: async (accountId: string) => {
+			if (!ensureServiceReady("清除账号代理")) return;
+			return await clearAccountProxyMutation.mutateAsync(accountId);
+		},
+		testAccountProxySettings: async (params: AccountProxyTestPayload) => {
+			if (!ensureServiceReady("测试账号代理")) return;
+			return await testAccountProxyMutation.mutateAsync(params);
+		},
+		updateAccountSort: async (accountId: string, sort: number) => {
+			if (!ensureServiceReady("更新账号顺序")) return;
+			await updateAccountSortMutation.mutateAsync({ accountId, sort });
+		},
+		reorderAccounts: async (updates: AccountSortUpdate[]) => {
+			if (!ensureServiceReady("调整账号顺序")) return;
+			if (!updates.length) return;
+			await reorderAccountsMutation.mutateAsync(updates);
+		},
+		updateAccountProfile: async (
+			accountId: string,
+			params: {
+				label?: string | null;
+				note?: string | null;
+				tags?: string[] | string | null;
+				sort?: number | null;
+				modelSlugs?: string[] | null;
+				quotaCapacityPrimaryWindowTokens?: number | null;
+				quotaCapacitySecondaryWindowTokens?: number | null;
+			},
+		) => {
+			if (!ensureServiceReady("更新账号信息")) return;
+			await updateAccountProfileMutation.mutateAsync({ accountId, ...params });
+		},
+		toggleAccountStatus: (
+			accountId: string,
+			enabled: boolean,
+			sourceStatus?: string | null,
+		) => {
+			if (!ensureServiceReady(enabled ? "启用账号" : "禁用账号")) return;
+			toggleAccountStatusMutation.mutate({ accountId, enabled, sourceStatus });
+		},
+		isRefreshingAccountId:
+			refreshAccountMutation.isPending &&
+			typeof refreshAccountMutation.variables === "string"
+				? refreshAccountMutation.variables
+				: "",
+		isRefreshingRtAccountId:
+			refreshAccountRtMutation.isPending &&
+			typeof refreshAccountRtMutation.variables === "string"
+				? refreshAccountRtMutation.variables
+				: "",
+		isRefreshingAllRtAccounts: refreshAllAccountRtMutation.isPending,
+		isRefreshingAllAccounts: refreshAllMutation.isPending,
+		isExporting: exportMutation.isPending,
+		isWarmingUpAccounts: warmupMutation.isPending,
+		isDeletingMany: deleteManyMutation.isPending,
+		isCleaningAccountsByStatus: deleteByStatusesMutation.isPending,
+		isUpdatingPreferred:
+			setPreferredMutation.isPending || clearPreferredMutation.isPending,
+		isSavingAccountProxy: setAccountProxyMutation.isPending,
+		isClearingAccountProxy: clearAccountProxyMutation.isPending,
+		isTestingAccountProxy: testAccountProxyMutation.isPending,
+		isUpdatingSortAccountId:
+			updateAccountSortMutation.isPending &&
+			updateAccountSortMutation.variables &&
+			typeof updateAccountSortMutation.variables === "object" &&
+			"accountId" in updateAccountSortMutation.variables
+				? String(
+						(updateAccountSortMutation.variables as { accountId?: unknown })
+							.accountId || "",
+					)
+				: "",
+		isReorderingAccounts: reorderAccountsMutation.isPending,
+		isUpdatingProfileAccountId:
+			updateAccountProfileMutation.isPending &&
+			updateAccountProfileMutation.variables &&
+			typeof updateAccountProfileMutation.variables === "object" &&
+			"accountId" in updateAccountProfileMutation.variables
+				? String(
+						(updateAccountProfileMutation.variables as { accountId?: unknown })
+							.accountId || "",
+					)
+				: "",
+		isUpdatingStatusAccountId:
+			toggleAccountStatusMutation.isPending &&
+			toggleAccountStatusMutation.variables &&
+			typeof toggleAccountStatusMutation.variables === "object" &&
+			"accountId" in toggleAccountStatusMutation.variables
+				? String(
+						(toggleAccountStatusMutation.variables as { accountId?: unknown })
+							.accountId || "",
+					)
+				: "",
+	};
 }
diff --git a/apps/src/lib/api/account-client.ts b/apps/src/lib/api/account-client.ts
index 2243de578..337d11a9d 100644
--- a/apps/src/lib/api/account-client.ts
+++ b/apps/src/lib/api/account-client.ts
@@ -1,244 +1,230 @@
 import { invoke, withAddr } from "./transport";
 import {
-  normalizeAccountList,
-  normalizeAggregateApiBalanceRefreshResult,
-  normalizeAggregateApiCreateResult,
-  normalizeAggregateApiList,
-  normalizeAggregateApiSecretResult,
-  normalizeAggregateApiSupplierModel,
-  normalizeAggregateApiSupplierModelImportResult,
-  normalizeAggregateApiSupplierModelList,
-  normalizeAggregateApiTestResult,
-  normalizeApiKeyCreateResult,
-  normalizeApiKeyList,
-  normalizeApiKeyUsageStats,
-  normalizeLoginStartResult,
-  normalizeManagedModelCatalog,
-  normalizeManagedModelInfo,
-  normalizeManagedModelRouting,
-  normalizeModelCatalog,
-  normalizeUsageAggregateSummary,
-  normalizeUsageList,
-  normalizeUsageSnapshot,
+	normalizeAccountList,
+	normalizeAggregateApiBalanceRefreshResult,
+	normalizeAggregateApiCreateResult,
+	normalizeAggregateApiList,
+	normalizeAggregateApiSecretResult,
+	normalizeAggregateApiSupplierModel,
+	normalizeAggregateApiSupplierModelImportResult,
+	normalizeAggregateApiSupplierModelList,
+	normalizeAggregateApiTestResult,
+	normalizeApiKeyCreateResult,
+	normalizeApiKeyList,
+	normalizeApiKeyUsageStats,
+	normalizeLoginStartResult,
+	normalizeManagedModelCatalog,
+	normalizeManagedModelInfo,
+	normalizeManagedModelRouting,
+	normalizeModelCatalog,
+	normalizeUsageAggregateSummary,
+	normalizeUsageList,
+	normalizeUsageSnapshot,
 } from "./normalize";
 import {
-  readChatgptAuthTokensRefreshAllResult,
-  readChatgptAuthTokensRefreshResult,
-  readCurrentAccessTokenAccountReadResult,
-  readLoginStatusResult,
+	readChatgptAuthTokensRefreshAllResult,
+	readChatgptAuthTokensRefreshResult,
+	readCurrentAccessTokenAccountReadResult,
+	readLoginStatusResult,
 } from "./account-auth";
 import {
-  AccountExportResult,
-  AccountImportResult,
-  AccountWarmupResult,
-  DeleteAccountsByStatusesResult,
-  DeleteUnavailableFreeResult,
-  readAccountExportResult,
-  readAccountImportResult,
-  readAccountWarmupResult,
-  readDeleteAccountsByStatusesResult,
-  readApiKeySecret,
-  readDeleteUnavailableFreeResult,
+	AccountExportResult,
+	AccountImportResult,
+	AccountWarmupResult,
+	DeleteAccountsByStatusesResult,
+	DeleteUnavailableFreeResult,
+	readAccountExportResult,
+	readAccountImportResult,
+	readAccountWarmupResult,
+	readDeleteAccountsByStatusesResult,
+	readApiKeySecret,
+	readDeleteUnavailableFreeResult,
 } from "./account-maintenance";
 import { serializeManagedModelForRpc } from "./model-catalog";
 import { unwrapUsageSnapshotPayload } from "./usage-response";
 import {
-  AccountListResult,
-  AccountUsage,
-  AggregateApi,
-  AggregateApiBalanceRefreshResult,
-  AggregateApiCreateResult,
-  AggregateApiSecretResult,
-  AggregateApiSupplierModel,
-  AggregateApiSupplierModelImportResult,
-  AggregateApiTestResult,
-  ApiKey,
-  ApiKeyCreateResult,
-  ApiKeyUsageStat,
-  ChatgptAuthTokensRefreshAllResult,
-  ChatgptAuthTokensRefreshResult,
-  CurrentAccessTokenAccountReadResult,
-  LoginStatusResult,
-  LoginStartResult,
-  ManagedModelCatalog,
-  ManagedModelInfo,
-  ManagedModelRouting,
-  ManagedModelSourceMapping,
-  ManagedModelSourceModel,
-  ModelCatalog,
-  ModelInfo,
-  UsageAggregateSummary,
+	AccountListResult,
+	AccountUsage,
+	AggregateApi,
+	AggregateApiBalanceRefreshResult,
+	AggregateApiCreateResult,
+	AggregateApiSecretResult,
+	AggregateApiSupplierModel,
+	AggregateApiSupplierModelImportResult,
+	AggregateApiTestResult,
+	ApiKey,
+	ApiKeyCreateResult,
+	ApiKeyUsageStat,
+	ChatgptAuthTokensRefreshAllResult,
+	ChatgptAuthTokensRefreshResult,
+	CurrentAccessTokenAccountReadResult,
+	LoginStatusResult,
+	LoginStartResult,
+	ManagedModelCatalog,
+	ManagedModelInfo,
+	ManagedModelRouting,
+	ManagedModelSourceMapping,
+	ManagedModelSourceModel,
+	ModelCatalog,
+	ModelInfo,
+	UsageAggregateSummary,
 } from "../../types";
 
 export interface AccountExportPayload {
-  selectedAccountIds?: string[];
-  exportMode?: "single" | "multiple";
+	selectedAccountIds?: string[];
+	exportMode?: "single" | "multiple";
 }
 
 export interface AccountWarmupPayload {
-  accountIds?: string[];
-  message?: string;
+	accountIds?: string[];
+	message?: string;
 }
 
-export interface AccountProxySettings {
-  accountId: string;
-  enabled: boolean;
-  proxyUrl: string;
-  status: string;
-  latencyMs: number | null;
-  lastCheckAt: number | null;
-  lastError: string | null;
-}
-
-export interface AccountProxySetPayload {
-  accountId: string;
-  enabled: boolean;
-  proxyUrl?: string | null;
-}
-
-export interface AccountProxyTestPayload {
-  accountId: string;
-  enabled?: boolean;
-  proxyUrl?: string | null;
-}
+import {
+	readAccountProxySettings,
+	type AccountProxySettings,
+	type AccountProxySetPayload,
+	type AccountProxyTestPayload,
+} from "./account-proxy-settings";
+export type { AccountProxySettings, AccountProxySetPayload, AccountProxyTestPayload };
 
 export interface AccountDeleteByStatusesPayload {
-  statuses: string[];
+	statuses: string[];
 }
 
 interface LoginStartPayload {
-  loginType?: string;
-  openBrowser?: boolean;
-  note?: string | null;
-  tags?: string[] | string | null;
-  workspaceId?: string | null;
+	loginType?: string;
+	openBrowser?: boolean;
+	note?: string | null;
+	tags?: string[] | string | null;
+	workspaceId?: string | null;
 }
 
 interface AccountUpdatePayload {
-  sort?: number | null;
-  preferred?: boolean | null;
-  status?: string | null;
-  label?: string | null;
-  note?: string | null;
-  tags?: string[] | string | null;
-  modelSlugs?: string[] | null;
-  quotaCapacityPrimaryWindowTokens?: number | null;
-  quotaCapacitySecondaryWindowTokens?: number | null;
+	sort?: number | null;
+	preferred?: boolean | null;
+	status?: string | null;
+	label?: string | null;
+	note?: string | null;
+	tags?: string[] | string | null;
+	modelSlugs?: string[] | null;
+	quotaCapacityPrimaryWindowTokens?: number | null;
+	quotaCapacitySecondaryWindowTokens?: number | null;
 }
 
 interface ChatgptAuthTokensLoginPayload {
-  accessToken: string;
-  refreshToken?: string | null;
-  idToken?: string | null;
-  chatgptAccountId?: string | null;
-  workspaceId?: string | null;
-  chatgptPlanType?: string | null;
+	accessToken: string;
+	refreshToken?: string | null;
+	idToken?: string | null;
+	chatgptAccountId?: string | null;
+	workspaceId?: string | null;
+	chatgptPlanType?: string | null;
 }
 
 interface ApiKeyPayload {
-  name?: string | null;
-  modelSlug?: string | null;
-  reasoningEffort?: string | null;
-  serviceTier?: string | null;
-  protocolType?: string | null;
-  upstreamBaseUrl?: string | null;
-  staticHeadersJson?: string | null;
-  rotationStrategy?: string | null;
-  aggregateApiId?: string | null;
-  accountPlanFilter?: string | null;
-  quotaLimitTokens?: number | null;
-  customKey?: string | null;
+	name?: string | null;
+	modelSlug?: string | null;
+	reasoningEffort?: string | null;
+	serviceTier?: string | null;
+	protocolType?: string | null;
+	upstreamBaseUrl?: string | null;
+	staticHeadersJson?: string | null;
+	rotationStrategy?: string | null;
+	aggregateApiId?: string | null;
+	accountPlanFilter?: string | null;
+	quotaLimitTokens?: number | null;
+	customKey?: string | null;
 }
 
 export interface ManagedModelPayload {
-  previousSlug?: string | null;
-  sourceKind?: string | null;
-  userEdited?: boolean | null;
-  sortIndex?: number | null;
-  model: ManagedModelInfo | ModelInfo;
+	previousSlug?: string | null;
+	sourceKind?: string | null;
+	userEdited?: boolean | null;
+	sortIndex?: number | null;
+	model: ManagedModelInfo | ModelInfo;
 }
 
 export interface ManagedModelSourceSyncPayload {
-  sourceKind: string;
-  sourceId?: string | null;
+	sourceKind: string;
+	sourceId?: string | null;
 }
 
 export interface ManagedModelSourceModelPayload {
-  sourceKind: string;
-  sourceId: string;
-  upstreamModel: string;
-  displayName?: string | null;
+	sourceKind: string;
+	sourceId: string;
+	upstreamModel: string;
+	displayName?: string | null;
 }
 
 export interface ManagedModelSourceMappingPayload {
-  id?: string | null;
-  platformModelSlug: string;
-  sourceKind: string;
-  sourceId: string;
-  upstreamModel: string;
-  enabled?: boolean | null;
-  priority?: number | null;
-  weight?: number | null;
-  billingModelSlug?: string | null;
+	id?: string | null;
+	platformModelSlug: string;
+	sourceKind: string;
+	sourceId: string;
+	upstreamModel: string;
+	enabled?: boolean | null;
+	priority?: number | null;
+	weight?: number | null;
+	billingModelSlug?: string | null;
 }
 
 export interface ModelPriceRuleEntry {
-  id: string;
-  provider: string;
-  modelPattern: string;
-  matchType: string;
-  inputPricePer1m: number | null;
-  cachedInputPricePer1m: number | null;
-  outputPricePer1m: number | null;
-  enabled: boolean;
-  priority: number;
-  source: string;
-  createdAt: number;
-  updatedAt: number;
+	id: string;
+	provider: string;
+	modelPattern: string;
+	matchType: string;
+	inputPricePer1m: number | null;
+	cachedInputPricePer1m: number | null;
+	outputPricePer1m: number | null;
+	enabled: boolean;
+	priority: number;
+	source: string;
+	createdAt: number;
+	updatedAt: number;
 }
 
 export interface ModelPriceRuleUpsertPayload {
-  id?: string | null;
-  provider?: string | null;
-  modelPattern: string;
-  matchType?: string | null;
-  inputPricePer1m?: number | null;
-  cachedInputPricePer1m?: number | null;
-  outputPricePer1m?: number | null;
-  enabled?: boolean | null;
-  priority?: number | null;
+	id?: string | null;
+	provider?: string | null;
+	modelPattern: string;
+	matchType?: string | null;
+	inputPricePer1m?: number | null;
+	cachedInputPricePer1m?: number | null;
+	outputPricePer1m?: number | null;
+	enabled?: boolean | null;
+	priority?: number | null;
 }
 
 export interface AggregateApiSupplierModelPayload {
-  supplierKey: string;
-  providerType: string;
-  upstreamModel: string;
-  displayName?: string | null;
-  status?: string | null;
+	supplierKey: string;
+	providerType: string;
+	upstreamModel: string;
+	displayName?: string | null;
+	status?: string | null;
 }
 
 interface AggregateApiPayload {
-  providerType?: string | null;
-  supplierName?: string | null;
-  sort?: number | null;
-  status?: string | null;
-  url?: string | null;
-  key?: string | null;
-  authType?: string | null;
-  authCustomEnabled?: boolean | null;
-  authParams?: Record<string, unknown> | null;
-  actionCustomEnabled?: boolean | null;
-  action?: string | null;
-  modelOverride?: string | null;
-  username?: string | null;
-  password?: string | null;
-  balanceQueryEnabled?: boolean | null;
-  balanceQueryTemplate?: string | null;
-  balanceQueryBaseUrl?: string | null;
-  balanceQueryAccessToken?: string | null;
-  balanceQueryUserId?: string | null;
-  balanceQueryConfigJson?: string | null;
-  modelSlugs?: string[] | null;
+	providerType?: string | null;
+	supplierName?: string | null;
+	sort?: number | null;
+	status?: string | null;
+	url?: string | null;
+	key?: string | null;
+	authType?: string | null;
+	authCustomEnabled?: boolean | null;
+	authParams?: Record<string, unknown> | null;
+	actionCustomEnabled?: boolean | null;
+	action?: string | null;
+	modelOverride?: string | null;
+	username?: string | null;
+	password?: string | null;
+	balanceQueryEnabled?: boolean | null;
+	balanceQueryTemplate?: string | null;
+	balanceQueryBaseUrl?: string | null;
+	balanceQueryAccessToken?: string | null;
+	balanceQueryUserId?: string | null;
+	balanceQueryConfigJson?: string | null;
+	modelSlugs?: string[] | null;
 }
 
 const MAX_IMPORT_RPC_BODY_BYTES = 4 * 1024 * 1024;
@@ -258,13 +244,13 @@ const MAX_IMPORT_ERROR_ITEMS = 50;
  * 返回函数执行结果
  */
 function createEmptyImportResult(): AccountImportResult {
-  return {
-    total: 0,
-    created: 0,
-    updated: 0,
-    failed: 0,
-    errors: [],
-  };
+	return {
+		total: 0,
+		created: 0,
+		updated: 0,
+		failed: 0,
+		errors: [],
+	};
 }
 
 /**
@@ -281,7 +267,7 @@ function createEmptyImportResult(): AccountImportResult {
  * 返回函数执行结果
  */
 function estimateImportRequestBytes(contents: string[]): number {
-  return new Blob([JSON.stringify({ contents })]).size;
+	return new Blob([JSON.stringify({ contents })]).size;
 }
 
 /**
@@ -298,28 +284,31 @@ function estimateImportRequestBytes(contents: string[]): number {
  * 返回函数执行结果
  */
 function splitImportContents(contents: string[]): string[][] {
-  const chunks: string[][] = [];
-  let current: string[] = [];
-
-  for (const content of contents) {
-    const next = current.concat(content);
-    if (current.length > 0 && estimateImportRequestBytes(next) > MAX_IMPORT_RPC_BODY_BYTES) {
-      chunks.push(current);
-      current = [content];
-      if (estimateImportRequestBytes(current) > MAX_IMPORT_RPC_BODY_BYTES) {
-        throw new Error("单条导入内容过大，请拆分后重试");
-      }
-      continue;
-    }
-
-    current = next;
-  }
-
-  if (current.length > 0) {
-    chunks.push(current);
-  }
-
-  return chunks;
+	const chunks: string[][] = [];
+	let current: string[] = [];
+
+	for (const content of contents) {
+		const next = current.concat(content);
+		if (
+			current.length > 0 &&
+			estimateImportRequestBytes(next) > MAX_IMPORT_RPC_BODY_BYTES
+		) {
+			chunks.push(current);
+			current = [content];
+			if (estimateImportRequestBytes(current) > MAX_IMPORT_RPC_BODY_BYTES) {
+				throw new Error("单条导入内容过大，请拆分后重试");
+			}
+			continue;
+		}
+
+		current = next;
+	}
+
+	if (current.length > 0) {
+		chunks.push(current);
+	}
+
+	return chunks;
 }
 
 /**
@@ -338,60 +327,28 @@ function splitImportContents(contents: string[]): string[][] {
  * 返回函数执行结果
  */
 function mergeImportResult(
-  target: AccountImportResult,
-  source: AccountImportResult,
-  indexOffset: number
+	target: AccountImportResult,
+	source: AccountImportResult,
+	indexOffset: number,
 ) {
-  target.total = (target.total || 0) + (source.total || 0);
-  target.created = (target.created || 0) + (source.created || 0);
-  target.updated = (target.updated || 0) + (source.updated || 0);
-  target.failed = (target.failed || 0) + (source.failed || 0);
-
-  const errors = source.errors || [];
-  if (!target.errors) {
-    target.errors = [];
-  }
-  for (const error of errors) {
-    if (target.errors.length >= MAX_IMPORT_ERROR_ITEMS) {
-      break;
-    }
-    target.errors.push({
-      index: (error.index || 0) + indexOffset,
-      message: error.message || "",
-    });
-  }
-}
+	target.total = (target.total || 0) + (source.total || 0);
+	target.created = (target.created || 0) + (source.created || 0);
+	target.updated = (target.updated || 0) + (source.updated || 0);
+	target.failed = (target.failed || 0) + (source.failed || 0);
 
-function readAccountProxySettings(payload: unknown): AccountProxySettings {
-  const source =
-    payload && typeof payload === "object"
-      ? (payload as Record<string, unknown>)
-      : {};
-  const readNumber = (value: unknown): number | null => {
-    if (typeof value === "number" && Number.isFinite(value)) {
-      return value;
-    }
-    if (typeof value === "string" && value.trim()) {
-      const parsed = Number(value);
-      return Number.isFinite(parsed) ? parsed : null;
-    }
-    return null;
-  };
-  const readString = (value: unknown): string =>
-    typeof value === "string" ? value : value == null ? "" : String(value);
-
-  return {
-    accountId: readString(source.accountId ?? source.account_id),
-    enabled: Boolean(source.enabled),
-    proxyUrl: readString(source.proxyUrl ?? source.proxy_url),
-    status: readString(source.status || "not_configured"),
-    latencyMs: readNumber(source.latencyMs ?? source.latency_ms),
-    lastCheckAt: readNumber(source.lastCheckAt ?? source.last_check_at),
-    lastError:
-      source.lastError == null && source.last_error == null
-        ? null
-        : readString(source.lastError ?? source.last_error),
-  };
+	const errors = source.errors || [];
+	if (!target.errors) {
+		target.errors = [];
+	}
+	for (const error of errors) {
+		if (target.errors.length >= MAX_IMPORT_ERROR_ITEMS) {
+			break;
+		}
+		target.errors.push({
+			index: (error.index || 0) + indexOffset,
+			message: error.message || "",
+		});
+	}
 }
 
 /**
@@ -407,613 +364,692 @@ function readAccountProxySettings(payload: unknown): AccountProxySettings {
  * # 返回
  * 返回函数执行结果
  */
-async function importAccountContents(contents: string[]): Promise<AccountImportResult> {
-  const batches = splitImportContents(contents);
-  if (batches.length === 0) {
-    return createEmptyImportResult();
-  }
-
-  const merged = createEmptyImportResult();
-  let processed = 0;
-  for (const batch of batches) {
-    const imported = readAccountImportResult(
-      await invoke<unknown>("service_account_import", withAddr({ contents: batch }))
-    );
-    mergeImportResult(merged, imported, processed);
-    processed += batch.length;
-  }
-
-  return merged;
+async function importAccountContents(
+	contents: string[],
+): Promise<AccountImportResult> {
+	const batches = splitImportContents(contents);
+	if (batches.length === 0) {
+		return createEmptyImportResult();
+	}
+
+	const merged = createEmptyImportResult();
+	let processed = 0;
+	for (const batch of batches) {
+		const imported = readAccountImportResult(
+			await invoke<unknown>(
+				"service_account_import",
+				withAddr({ contents: batch }),
+			),
+		);
+		mergeImportResult(merged, imported, processed);
+		processed += batch.length;
+	}
+
+	return merged;
 }
 
 export const accountClient = {
-  async list(): Promise<AccountListResult> {
-    const result = await invoke<unknown>("service_account_list", withAddr());
-    return normalizeAccountList(result);
-  },
-  delete: (accountId: string) =>
-    invoke("service_account_delete", withAddr({ accountId })),
-  deleteMany: (accountIds: string[]) =>
-    invoke("service_account_delete_many", withAddr({ accountIds })),
-  deleteUnavailableFree: async (): Promise<DeleteUnavailableFreeResult> =>
-    readDeleteUnavailableFreeResult(
-      await invoke<unknown>("service_account_delete_unavailable_free", withAddr())
-    ),
-  deleteByStatuses: async (
-    params: AccountDeleteByStatusesPayload
-  ): Promise<DeleteAccountsByStatusesResult> =>
-    readDeleteAccountsByStatusesResult(
-      await invoke<unknown>(
-        "service_account_delete_by_statuses",
-        withAddr({
-          statuses: Array.isArray(params?.statuses) ? params.statuses : [],
-        })
-      )
-    ),
-  updateSort: (accountId: string, sort: number) =>
-    invoke("service_account_update", withAddr({ accountId, sort })),
-  updateProfile: (accountId: string, params: AccountUpdatePayload) =>
-    invoke(
-      "service_account_update",
-      withAddr({
-        accountId,
-        sort: typeof params.sort === "number" ? params.sort : null,
-        preferred: typeof params.preferred === "boolean" ? params.preferred : null,
-        status: params.status || null,
-        label: params.label ?? null,
-        note: params.note ?? null,
-        tags: Array.isArray(params.tags)
-          ? params.tags
-              .map((item: string) => String(item || "").trim())
-              .filter(Boolean)
-              .join(",")
-          : params.tags ?? null,
-        modelSlugs: Array.isArray(params.modelSlugs)
-          ? params.modelSlugs
-              .map((item) => String(item || "").trim())
-              .filter(Boolean)
-          : null,
-        quotaCapacityPrimaryWindowTokens:
-          typeof params.quotaCapacityPrimaryWindowTokens === "number"
-            ? params.quotaCapacityPrimaryWindowTokens
-            : null,
-        quotaCapacitySecondaryWindowTokens:
-          typeof params.quotaCapacitySecondaryWindowTokens === "number"
-            ? params.quotaCapacitySecondaryWindowTokens
-            : null,
-      })
-    ),
-  setPreferred: (accountId: string) =>
-    invoke("service_account_update", withAddr({ accountId, preferred: true })),
-  clearPreferred: (accountId: string) =>
-    invoke("service_account_update", withAddr({ accountId, preferred: false })),
-  disableAccount: (accountId: string) =>
-    invoke("service_account_update", withAddr({ accountId, status: "disabled" })),
-  enableAccount: (accountId: string) =>
-    invoke("service_account_update", withAddr({ accountId, status: "active" })),
-  import: importAccountContents,
-  async importByDirectory(): Promise<AccountImportResult> {
-    const picked = readAccountImportResult(
-      await invoke<unknown>("service_account_import_by_directory", withAddr())
-    );
-    if (picked?.canceled || !Array.isArray(picked?.contents) || picked.contents.length === 0) {
-      return picked;
-    }
-
-    const imported = await importAccountContents(picked.contents);
-    return {
-      ...imported,
-      canceled: false,
-      directoryPath: picked.directoryPath || "",
-      fileCount: picked.fileCount || picked.contents.length,
-    };
-  },
-  async importByFile(): Promise<AccountImportResult> {
-    const picked = readAccountImportResult(
-      await invoke<unknown>("service_account_import_by_file", withAddr())
-    );
-    if (picked?.canceled || !Array.isArray(picked?.contents) || picked.contents.length === 0) {
-      return picked;
-    }
-
-    const imported = await importAccountContents(picked.contents);
-    return {
-      ...imported,
-      canceled: false,
-      fileCount: picked.fileCount || picked.contents.length,
-    };
-  },
-  export: async (params?: AccountExportPayload): Promise<AccountExportResult> =>
-    readAccountExportResult(await invoke<unknown>(
-      "service_account_export_by_account_files",
-      withAddr({
-        selectedAccountIds: Array.isArray(params?.selectedAccountIds)
-          ? params?.selectedAccountIds
-          : [],
-        exportMode: params?.exportMode || "multiple",
-      })
-    )),
-  warmup: async (params?: AccountWarmupPayload): Promise<AccountWarmupResult> =>
-    readAccountWarmupResult(
-      await invoke<unknown>(
-        "service_account_warmup",
-        withAddr({
-          accountIds: Array.isArray(params?.accountIds) ? params.accountIds : [],
-          message: params?.message || "hi",
-        }),
-      ),
-    ),
-  getProxySettings: async (accountId: string): Promise<AccountProxySettings> =>
-    readAccountProxySettings(
-      await invoke<unknown>("service_account_proxy_get", withAddr({ accountId })),
-    ),
-  setProxySettings: async (
-    params: AccountProxySetPayload,
-  ): Promise<AccountProxySettings> =>
-    readAccountProxySettings(
-      await invoke<unknown>(
-        "service_account_proxy_set",
-        withAddr({
-          accountId: params.accountId,
-          enabled: params.enabled,
-          proxyUrl: params.proxyUrl ?? null,
-        }),
-      ),
-    ),
-  clearProxySettings: async (accountId: string): Promise<AccountProxySettings> =>
-    readAccountProxySettings(
-      await invoke<unknown>("service_account_proxy_clear", withAddr({ accountId })),
-    ),
-  testProxySettings: async (
-    params: AccountProxyTestPayload,
-  ): Promise<AccountProxySettings> =>
-    readAccountProxySettings(
-      await invoke<unknown>(
-        "service_account_proxy_test",
-        withAddr({
-          accountId: params.accountId,
-          enabled: params.enabled,
-          proxyUrl: params.proxyUrl ?? null,
-        }),
-      ),
-    ),
-
-  async getUsage(accountId: string): Promise<AccountUsage | null> {
-    const result = await invoke<unknown>(
-      "service_usage_read",
-      withAddr({ accountId, account_id: accountId })
-    );
-    return normalizeUsageSnapshot(unwrapUsageSnapshotPayload(result));
-  },
-  async getLatestUsage(): Promise<AccountUsage | null> {
-    const result = await invoke<unknown>("service_usage_read", withAddr());
-    return normalizeUsageSnapshot(unwrapUsageSnapshotPayload(result));
-  },
-  async listUsage(): Promise<AccountUsage[]> {
-    const result = await invoke<unknown>("service_usage_list", withAddr());
-    return normalizeUsageList(result);
-  },
-  refreshUsage: (accountId?: string) => {
-    const targetAccountId = accountId?.trim();
-    return invoke(
-      "service_usage_refresh",
-      withAddr(
-        targetAccountId
-          ? { accountId: targetAccountId, account_id: targetAccountId }
-          : {}
-      )
-    );
-  },
-  async aggregateUsage(): Promise<UsageAggregateSummary> {
-    const result = await invoke<unknown>("service_usage_aggregate", withAddr());
-    return normalizeUsageAggregateSummary(result);
-  },
-
-  async startLogin(params: LoginStartPayload): Promise<LoginStartResult> {
-    const result = await invoke<unknown>(
-      "service_login_start",
-      withAddr({
-        loginType: params?.loginType || "chatgpt",
-        openBrowser: params?.openBrowser ?? true,
-        note: params?.note || null,
-        tags: Array.isArray(params?.tags)
-          ? params.tags
-              .map((item: string) => String(item || "").trim())
-              .filter(Boolean)
-              .join(",")
-          : params?.tags || null,
-        workspaceId: params?.workspaceId || null,
-      })
-    );
-    return normalizeLoginStartResult(result);
-  },
-  async getLoginStatus(loginId: string): Promise<LoginStatusResult> {
-    const result = await invoke<unknown>("service_login_status", withAddr({ loginId }));
-    return readLoginStatusResult(result);
-  },
-  completeLogin: (state: string, code: string, redirectUri: string) =>
-    invoke("service_login_complete", withAddr({ state, code, redirectUri })),
-  loginWithChatgptAuthTokens: (params: ChatgptAuthTokensLoginPayload) =>
-    invoke("service_login_chatgpt_auth_tokens", withAddr({
-      accessToken: params.accessToken,
-      refreshToken: params.refreshToken || null,
-      idToken: params.idToken || null,
-      chatgptAccountId: params.chatgptAccountId || null,
-      workspaceId: params.workspaceId || null,
-      chatgptPlanType: params.chatgptPlanType || null,
-    })),
-  async readCurrentAccessTokenAccount(
-    refreshToken = false
-  ): Promise<CurrentAccessTokenAccountReadResult> {
-    const result = await invoke<unknown>(
-      "service_account_read",
-      withAddr({ refreshToken })
-    );
-    return readCurrentAccessTokenAccountReadResult(result);
-  },
-  logoutCurrentAccessTokenAccount: () =>
-    invoke("service_account_logout", withAddr()),
-  async refreshChatgptAuthTokens(
-    accountId?: string
-  ): Promise<ChatgptAuthTokensRefreshResult> {
-    const targetAccountId = accountId?.trim() || null;
-    const result = await invoke<unknown>(
-      "service_chatgpt_auth_tokens_refresh",
-      withAddr({
-        accountId: targetAccountId,
-        previousAccountId: targetAccountId,
-      })
-    );
-    return readChatgptAuthTokensRefreshResult(result);
-  },
-  async refreshAllChatgptAuthTokens(): Promise<ChatgptAuthTokensRefreshAllResult> {
-    const result = await invoke<unknown>(
-      "service_chatgpt_auth_tokens_refresh_all",
-      withAddr()
-    );
-    return readChatgptAuthTokensRefreshAllResult(result);
-  },
-
-  async listAggregateApis(): Promise<AggregateApi[]> {
-    const result = await invoke<unknown>("service_aggregate_api_list", withAddr());
-    return normalizeAggregateApiList(result);
-  },
-  async createAggregateApi(params: AggregateApiPayload): Promise<AggregateApiCreateResult> {
-    const result = await invoke<unknown>(
-      "service_aggregate_api_create",
-      withAddr({
-        providerType: params.providerType || null,
-        supplierName: params.supplierName || null,
-        sort: typeof params.sort === "number" ? params.sort : null,
-        status: params.status || null,
-        url: params.url || null,
-        key: params.key || null,
-        authType: params.authType || null,
-        authCustomEnabled:
-          typeof params.authCustomEnabled === "boolean"
-            ? params.authCustomEnabled
-            : null,
-        authParams: params.authParams || null,
-        actionCustomEnabled:
-          typeof params.actionCustomEnabled === "boolean"
-            ? params.actionCustomEnabled
-            : null,
-        action: params.action ?? null,
-        modelOverride:
-          typeof params.modelOverride === "string" ? params.modelOverride : null,
-        username: params.username || null,
-        password: params.password || null,
-        balanceQueryEnabled:
-          typeof params.balanceQueryEnabled === "boolean"
-            ? params.balanceQueryEnabled
-            : null,
-        balanceQueryTemplate: params.balanceQueryTemplate || null,
-        balanceQueryBaseUrl:
-          typeof params.balanceQueryBaseUrl === "string"
-            ? params.balanceQueryBaseUrl
-            : null,
-        balanceQueryAccessToken: params.balanceQueryAccessToken || null,
-        balanceQueryUserId:
-          typeof params.balanceQueryUserId === "string"
-            ? params.balanceQueryUserId
-            : null,
-        balanceQueryConfigJson:
-          typeof params.balanceQueryConfigJson === "string"
-            ? params.balanceQueryConfigJson
-            : null,
-        modelSlugs: Array.isArray(params.modelSlugs) ? params.modelSlugs : null,
-      })
-    );
-    return normalizeAggregateApiCreateResult(result);
-  },
-  updateAggregateApi: (apiId: string, params: AggregateApiPayload) =>
-    invoke(
-      "service_aggregate_api_update",
-      withAddr({
-        id: apiId,
-        providerType: params.providerType || null,
-        supplierName: params.supplierName || null,
-        sort: typeof params.sort === "number" ? params.sort : null,
-        status: params.status || null,
-        url: params.url || null,
-        key: params.key || null,
-        authType: params.authType || null,
-        authCustomEnabled:
-          typeof params.authCustomEnabled === "boolean"
-            ? params.authCustomEnabled
-            : null,
-        authParams: params.authParams || null,
-        actionCustomEnabled:
-          typeof params.actionCustomEnabled === "boolean"
-            ? params.actionCustomEnabled
-            : null,
-        action: params.action ?? null,
-        modelOverride:
-          typeof params.modelOverride === "string" ? params.modelOverride : null,
-        username: params.username || null,
-        password: params.password || null,
-        balanceQueryEnabled:
-          typeof params.balanceQueryEnabled === "boolean"
-            ? params.balanceQueryEnabled
-            : null,
-        balanceQueryTemplate: params.balanceQueryTemplate || null,
-        balanceQueryBaseUrl:
-          typeof params.balanceQueryBaseUrl === "string"
-            ? params.balanceQueryBaseUrl
-            : null,
-        balanceQueryAccessToken: params.balanceQueryAccessToken || null,
-        balanceQueryUserId:
-          typeof params.balanceQueryUserId === "string"
-            ? params.balanceQueryUserId
-            : null,
-        balanceQueryConfigJson:
-          typeof params.balanceQueryConfigJson === "string"
-            ? params.balanceQueryConfigJson
-            : null,
-        modelSlugs: Array.isArray(params.modelSlugs) ? params.modelSlugs : null,
-      })
-    ),
-  deleteAggregateApi: (apiId: string) =>
-    invoke("service_aggregate_api_delete", withAddr({ id: apiId })),
-  async readAggregateApiSecret(apiId: string): Promise<AggregateApiSecretResult> {
-    const result = await invoke<unknown>(
-      "service_aggregate_api_read_secret",
-      withAddr({ id: apiId })
-    );
-    return normalizeAggregateApiSecretResult(result);
-  },
-  async testAggregateApiConnection(apiId: string): Promise<AggregateApiTestResult> {
-    const result = await invoke<unknown>(
-      "service_aggregate_api_test_connection",
-      withAddr({ id: apiId })
-    );
-    return normalizeAggregateApiTestResult(result);
-  },
-  async refreshAggregateApiBalance(apiId: string): Promise<AggregateApiBalanceRefreshResult> {
-    const result = await invoke<unknown>(
-      "service_aggregate_api_refresh_balance",
-      withAddr({ id: apiId })
-    );
-    return normalizeAggregateApiBalanceRefreshResult(result);
-  },
-  async listAggregateApiSupplierModels(params?: {
-    supplierKey?: string | null;
-    providerType?: string | null;
-  }): Promise<AggregateApiSupplierModel[]> {
-    const result = await invoke<unknown>(
-      "service_aggregate_api_supplier_models_list",
-      withAddr({
-        supplierKey: params?.supplierKey || null,
-        providerType: params?.providerType || null,
-      })
-    );
-    return normalizeAggregateApiSupplierModelList(result);
-  },
-  async saveAggregateApiSupplierModel(
-    params: AggregateApiSupplierModelPayload,
-  ): Promise<AggregateApiSupplierModel> {
-    const result = await invoke<unknown>(
-      "service_aggregate_api_supplier_model_save",
-      withAddr({ payload: params }),
-    );
-    const item = normalizeAggregateApiSupplierModel(result);
-    if (!item) throw new Error("供应商模型保存结果为空");
-    return item;
-  },
-  deleteAggregateApiSupplierModel: (params: {
-    supplierKey: string;
-    providerType: string;
-    upstreamModel: string;
-  }) =>
-    invoke(
-      "service_aggregate_api_supplier_model_delete",
-      withAddr({
-        supplierKey: params.supplierKey,
-        providerType: params.providerType,
-        upstreamModel: params.upstreamModel,
-      }),
-    ),
-  async importAggregateApiSupplierModels(params: {
-    apiId: string;
-    supplierKey?: string | null;
-    providerType?: string | null;
-  }): Promise<AggregateApiSupplierModelImportResult> {
-    const result = await invoke<unknown>(
-      "service_aggregate_api_supplier_models_import",
-      withAddr({
-        apiId: params.apiId,
-        supplierKey: params.supplierKey || null,
-        providerType: params.providerType || null,
-      }),
-    );
-    return normalizeAggregateApiSupplierModelImportResult(result);
-  },
-
-  async listApiKeys(): Promise<ApiKey[]> {
-    const result = await invoke<unknown>("service_apikey_list", withAddr());
-    return normalizeApiKeyList(result);
-  },
-  async createApiKey(params: ApiKeyPayload): Promise<ApiKeyCreateResult> {
-    const result = await invoke<unknown>(
-      "service_apikey_create",
-      withAddr({
-        name: params.name || null,
-        modelSlug: params.modelSlug || null,
-        reasoningEffort: params.reasoningEffort || null,
-        serviceTier: params.serviceTier || null,
-        protocolType: params.protocolType || null,
-        upstreamBaseUrl: params.upstreamBaseUrl || null,
-        staticHeadersJson: params.staticHeadersJson || null,
-        rotationStrategy: params.rotationStrategy || null,
-        aggregateApiId: params.aggregateApiId || null,
-        accountPlanFilter: params.accountPlanFilter || null,
-        quotaLimitTokens: params.quotaLimitTokens ?? null,
-        customKey: params.customKey || null,
-      })
-    );
-    return normalizeApiKeyCreateResult(result);
-  },
-  async listApiKeyUsageStats(): Promise<ApiKeyUsageStat[]> {
-    const result = await invoke<unknown>("service_apikey_usage_stats", withAddr());
-    return normalizeApiKeyUsageStats(result);
-  },
-  deleteApiKey: (keyId: string) =>
-    invoke("service_apikey_delete", withAddr({ keyId })),
-  updateApiKey: (keyId: string, params: ApiKeyPayload) => {
-    const payload: Record<string, unknown> = {
-      keyId,
-      name: params.name || null,
-      modelSlug: params.modelSlug || null,
-      reasoningEffort: params.reasoningEffort || null,
-      serviceTier: params.serviceTier || null,
-      protocolType: params.protocolType || null,
-      upstreamBaseUrl: params.upstreamBaseUrl || null,
-      staticHeadersJson: params.staticHeadersJson || null,
-      rotationStrategy: params.rotationStrategy || null,
-      aggregateApiId: params.aggregateApiId || null,
-      accountPlanFilter: params.accountPlanFilter || null,
-    };
-    if ("quotaLimitTokens" in params) {
-      payload.quotaLimitTokens = params.quotaLimitTokens ?? null;
-    }
-    return invoke("service_apikey_update_model", withAddr(payload));
-  },
-  disableApiKey: (keyId: string) =>
-    invoke("service_apikey_disable", withAddr({ keyId })),
-  enableApiKey: (keyId: string) =>
-    invoke("service_apikey_enable", withAddr({ keyId })),
-  async listModels(refreshRemote?: boolean): Promise<ModelCatalog> {
-    const result = await invoke<unknown>(
-      "service_apikey_models",
-      withAddr({ refreshRemote })
-    );
-    return normalizeModelCatalog(result);
-  },
-  async listManagedModels(refreshRemote?: boolean): Promise<ManagedModelCatalog> {
-    const result = await invoke<unknown>(
-      "service_model_catalog_list",
-      withAddr({ refreshRemote })
-    );
-    return normalizeManagedModelCatalog(result);
-  },
-  async listManagedModelRouting(): Promise<ManagedModelRouting> {
-    const result = await invoke<unknown>("service_model_routing", withAddr());
-    return normalizeManagedModelRouting(result);
-  },
-  async syncManagedModelSourceModels(
-    params: ManagedModelSourceSyncPayload,
-  ): Promise<ManagedModelRouting> {
-    const result = await invoke<unknown>(
-      "service_model_source_sync",
-      withAddr({ payload: params }),
-    );
-    return normalizeManagedModelRouting(result);
-  },
-  async saveManagedModelSourceModel(
-    params: ManagedModelSourceModelPayload,
-  ): Promise<ManagedModelSourceModel> {
-    const result = await invoke<unknown>(
-      "service_model_source_model_save",
-      withAddr({ payload: params }),
-    );
-    const routing = normalizeManagedModelRouting({ sourceModels: [result], mappings: [] });
-    const item = routing.sourceModels[0];
-    if (!item) throw new Error("来源模型保存结果为空");
-    return item;
-  },
-  async saveManagedModelSourceMapping(
-    params: ManagedModelSourceMappingPayload,
-  ): Promise<ManagedModelSourceMapping> {
-    const result = await invoke<unknown>(
-      "service_model_source_mapping_save",
-      withAddr({ payload: params }),
-    );
-    const routing = normalizeManagedModelRouting({ sourceModels: [], mappings: [result] });
-    const item = routing.mappings[0];
-    if (!item) throw new Error("模型映射保存结果为空");
-    return item;
-  },
-  deleteManagedModelSourceMapping: (params: {
-    id: string;
-    sourceKind: string;
-    sourceId: string;
-    upstreamModel: string;
-  }) =>
-    invoke("service_model_source_mapping_delete", withAddr({ payload: params })),
-  async saveManagedModel(params: ManagedModelPayload): Promise<ManagedModelInfo> {
-    const payload = {
-      previousSlug: params.previousSlug || null,
-      sourceKind: params.sourceKind || null,
-      userEdited:
-        typeof params.userEdited === "boolean" ? params.userEdited : null,
-      sortIndex: typeof params.sortIndex === "number" ? params.sortIndex : null,
-      ...serializeManagedModelForRpc(params.model),
-    };
-    const result = await invoke<unknown>(
-      "service_model_catalog_save",
-      withAddr({ payload })
-    );
-    const normalized = normalizeManagedModelInfo(result);
-    if (!normalized) {
-      throw new Error("模型保存结果为空");
-    }
-    return normalized;
-  },
-  deleteManagedModel: (slug: string) =>
-    invoke("service_model_catalog_delete", withAddr({ slug })),
-  listModelPriceRules: async () => {
-    const result = await invoke<{ items: ModelPriceRuleEntry[] }>(
-      "service_model_price_rules_list",
-      withAddr(),
-    );
-    return result.items;
-  },
-  readModelPriceRule: async (modelPattern: string) => {
-    const result = await invoke<ModelPriceRuleEntry | null>(
-      "service_model_price_rule_read",
-      withAddr({ modelPattern }),
-    );
-    return result;
-  },
-  upsertModelPriceRule: async (payload: ModelPriceRuleUpsertPayload) => {
-    const result = await invoke<ModelPriceRuleEntry>(
-      "service_model_price_rule_upsert",
-      withAddr({ payload }),
-    );
-    return result;
-  },
-  async pruneStaleRemoteManagedModels(): Promise<ManagedModelCatalog> {
-    const result = await invoke<unknown>(
-      "service_model_catalog_prune_stale_remote",
-      withAddr()
-    );
-    return normalizeManagedModelCatalog(result);
-  },
-  async readApiKeySecret(keyId: string): Promise<string> {
-    const result = await invoke<unknown>(
-      "service_apikey_read_secret",
-      withAddr({ keyId })
-    );
-    return readApiKeySecret(result);
-  },
+	async list(): Promise<AccountListResult> {
+		const result = await invoke<unknown>("service_account_list", withAddr());
+		return normalizeAccountList(result);
+	},
+	delete: (accountId: string) =>
+		invoke("service_account_delete", withAddr({ accountId })),
+	deleteMany: (accountIds: string[]) =>
+		invoke("service_account_delete_many", withAddr({ accountIds })),
+	deleteUnavailableFree: async (): Promise<DeleteUnavailableFreeResult> =>
+		readDeleteUnavailableFreeResult(
+			await invoke<unknown>(
+				"service_account_delete_unavailable_free",
+				withAddr(),
+			),
+		),
+	deleteByStatuses: async (
+		params: AccountDeleteByStatusesPayload,
+	): Promise<DeleteAccountsByStatusesResult> =>
+		readDeleteAccountsByStatusesResult(
+			await invoke<unknown>(
+				"service_account_delete_by_statuses",
+				withAddr({
+					statuses: Array.isArray(params?.statuses) ? params.statuses : [],
+				}),
+			),
+		),
+	updateSort: (accountId: string, sort: number) =>
+		invoke("service_account_update", withAddr({ accountId, sort })),
+	updateProfile: (accountId: string, params: AccountUpdatePayload) =>
+		invoke(
+			"service_account_update",
+			withAddr({
+				accountId,
+				sort: typeof params.sort === "number" ? params.sort : null,
+				preferred:
+					typeof params.preferred === "boolean" ? params.preferred : null,
+				status: params.status || null,
+				label: params.label ?? null,
+				note: params.note ?? null,
+				tags: Array.isArray(params.tags)
+					? params.tags
+							.map((item: string) => String(item || "").trim())
+							.filter(Boolean)
+							.join(",")
+					: (params.tags ?? null),
+				modelSlugs: Array.isArray(params.modelSlugs)
+					? params.modelSlugs
+							.map((item) => String(item || "").trim())
+							.filter(Boolean)
+					: null,
+				quotaCapacityPrimaryWindowTokens:
+					typeof params.quotaCapacityPrimaryWindowTokens === "number"
+						? params.quotaCapacityPrimaryWindowTokens
+						: null,
+				quotaCapacitySecondaryWindowTokens:
+					typeof params.quotaCapacitySecondaryWindowTokens === "number"
+						? params.quotaCapacitySecondaryWindowTokens
+						: null,
+			}),
+		),
+	setPreferred: (accountId: string) =>
+		invoke("service_account_update", withAddr({ accountId, preferred: true })),
+	clearPreferred: (accountId: string) =>
+		invoke("service_account_update", withAddr({ accountId, preferred: false })),
+	disableAccount: (accountId: string) =>
+		invoke(
+			"service_account_update",
+			withAddr({ accountId, status: "disabled" }),
+		),
+	enableAccount: (accountId: string) =>
+		invoke("service_account_update", withAddr({ accountId, status: "active" })),
+	import: importAccountContents,
+	async importByDirectory(): Promise<AccountImportResult> {
+		const picked = readAccountImportResult(
+			await invoke<unknown>("service_account_import_by_directory", withAddr()),
+		);
+		if (
+			picked?.canceled ||
+			!Array.isArray(picked?.contents) ||
+			picked.contents.length === 0
+		) {
+			return picked;
+		}
+
+		const imported = await importAccountContents(picked.contents);
+		return {
+			...imported,
+			canceled: false,
+			directoryPath: picked.directoryPath || "",
+			fileCount: picked.fileCount || picked.contents.length,
+		};
+	},
+	async importByFile(): Promise<AccountImportResult> {
+		const picked = readAccountImportResult(
+			await invoke<unknown>("service_account_import_by_file", withAddr()),
+		);
+		if (
+			picked?.canceled ||
+			!Array.isArray(picked?.contents) ||
+			picked.contents.length === 0
+		) {
+			return picked;
+		}
+
+		const imported = await importAccountContents(picked.contents);
+		return {
+			...imported,
+			canceled: false,
+			fileCount: picked.fileCount || picked.contents.length,
+		};
+	},
+	export: async (params?: AccountExportPayload): Promise<AccountExportResult> =>
+		readAccountExportResult(
+			await invoke<unknown>(
+				"service_account_export_by_account_files",
+				withAddr({
+					selectedAccountIds: Array.isArray(params?.selectedAccountIds)
+						? params?.selectedAccountIds
+						: [],
+					exportMode: params?.exportMode || "multiple",
+				}),
+			),
+		),
+	warmup: async (params?: AccountWarmupPayload): Promise<AccountWarmupResult> =>
+		readAccountWarmupResult(
+			await invoke<unknown>(
+				"service_account_warmup",
+				withAddr({
+					accountIds: Array.isArray(params?.accountIds)
+						? params.accountIds
+						: [],
+					message: params?.message || "hi",
+				}),
+			),
+		),
+	getProxySettings: async (accountId: string): Promise<AccountProxySettings> =>
+		readAccountProxySettings(
+			await invoke<unknown>(
+				"service_account_proxy_get",
+				withAddr({ accountId }),
+			),
+		),
+	setProxySettings: async (
+		params: AccountProxySetPayload,
+	): Promise<AccountProxySettings> =>
+		readAccountProxySettings(
+			await invoke<unknown>(
+				"service_account_proxy_set",
+				withAddr({
+					accountId: params.accountId,
+					enabled: params.enabled,
+					proxyUrl: params.proxyUrl ?? null,
+					status: params.status ?? null,
+					latencyMs: params.latencyMs ?? null,
+					lastError: params.lastError ?? null,
+					ip: params.ip ?? null,
+					countryCode: params.countryCode ?? null,
+					countryName: params.countryName ?? null,
+					regionName: params.regionName ?? null,
+					cityName: params.cityName ?? null,
+					geoCheckedAt: params.geoCheckedAt ?? null,
+					geoError: params.geoError ?? null,
+				}),
+			),
+		),
+	clearProxySettings: async (
+		accountId: string,
+	): Promise<AccountProxySettings> =>
+		readAccountProxySettings(
+			await invoke<unknown>(
+				"service_account_proxy_clear",
+				withAddr({ accountId }),
+			),
+		),
+	testProxySettings: async (
+		params: AccountProxyTestPayload,
+	): Promise<AccountProxySettings> =>
+		readAccountProxySettings(
+			await invoke<unknown>(
+				"service_account_proxy_test",
+				withAddr({
+					accountId: params.accountId,
+					enabled: params.enabled,
+					proxyUrl: params.proxyUrl ?? null,
+				}),
+			),
+		),
+
+	async getUsage(accountId: string): Promise<AccountUsage | null> {
+		const result = await invoke<unknown>(
+			"service_usage_read",
+			withAddr({ accountId, account_id: accountId }),
+		);
+		return normalizeUsageSnapshot(unwrapUsageSnapshotPayload(result));
+	},
+	async getLatestUsage(): Promise<AccountUsage | null> {
+		const result = await invoke<unknown>("service_usage_read", withAddr());
+		return normalizeUsageSnapshot(unwrapUsageSnapshotPayload(result));
+	},
+	async listUsage(): Promise<AccountUsage[]> {
+		const result = await invoke<unknown>("service_usage_list", withAddr());
+		return normalizeUsageList(result);
+	},
+	refreshUsage: (accountId?: string) => {
+		const targetAccountId = accountId?.trim();
+		return invoke(
+			"service_usage_refresh",
+			withAddr(
+				targetAccountId
+					? { accountId: targetAccountId, account_id: targetAccountId }
+					: {},
+			),
+		);
+	},
+	async aggregateUsage(): Promise<UsageAggregateSummary> {
+		const result = await invoke<unknown>("service_usage_aggregate", withAddr());
+		return normalizeUsageAggregateSummary(result);
+	},
+
+	async startLogin(params: LoginStartPayload): Promise<LoginStartResult> {
+		const result = await invoke<unknown>(
+			"service_login_start",
+			withAddr({
+				loginType: params?.loginType || "chatgpt",
+				openBrowser: params?.openBrowser ?? true,
+				note: params?.note || null,
+				tags: Array.isArray(params?.tags)
+					? params.tags
+							.map((item: string) => String(item || "").trim())
+							.filter(Boolean)
+							.join(",")
+					: params?.tags || null,
+				workspaceId: params?.workspaceId || null,
+			}),
+		);
+		return normalizeLoginStartResult(result);
+	},
+	async getLoginStatus(loginId: string): Promise<LoginStatusResult> {
+		const result = await invoke<unknown>(
+			"service_login_status",
+			withAddr({ loginId }),
+		);
+		return readLoginStatusResult(result);
+	},
+	completeLogin: (state: string, code: string, redirectUri: string) =>
+		invoke("service_login_complete", withAddr({ state, code, redirectUri })),
+	loginWithChatgptAuthTokens: (params: ChatgptAuthTokensLoginPayload) =>
+		invoke(
+			"service_login_chatgpt_auth_tokens",
+			withAddr({
+				accessToken: params.accessToken,
+				refreshToken: params.refreshToken || null,
+				idToken: params.idToken || null,
+				chatgptAccountId: params.chatgptAccountId || null,
+				workspaceId: params.workspaceId || null,
+				chatgptPlanType: params.chatgptPlanType || null,
+			}),
+		),
+	async readCurrentAccessTokenAccount(
+		refreshToken = false,
+	): Promise<CurrentAccessTokenAccountReadResult> {
+		const result = await invoke<unknown>(
+			"service_account_read",
+			withAddr({ refreshToken }),
+		);
+		return readCurrentAccessTokenAccountReadResult(result);
+	},
+	logoutCurrentAccessTokenAccount: () =>
+		invoke("service_account_logout", withAddr()),
+	async refreshChatgptAuthTokens(
+		accountId?: string,
+	): Promise<ChatgptAuthTokensRefreshResult> {
+		const targetAccountId = accountId?.trim() || null;
+		const result = await invoke<unknown>(
+			"service_chatgpt_auth_tokens_refresh",
+			withAddr({
+				accountId: targetAccountId,
+				previousAccountId: targetAccountId,
+			}),
+		);
+		return readChatgptAuthTokensRefreshResult(result);
+	},
+	async refreshAllChatgptAuthTokens(): Promise<ChatgptAuthTokensRefreshAllResult> {
+		const result = await invoke<unknown>(
+			"service_chatgpt_auth_tokens_refresh_all",
+			withAddr(),
+		);
+		return readChatgptAuthTokensRefreshAllResult(result);
+	},
+
+	async listAggregateApis(): Promise<AggregateApi[]> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_list",
+			withAddr(),
+		);
+		return normalizeAggregateApiList(result);
+	},
+	async createAggregateApi(
+		params: AggregateApiPayload,
+	): Promise<AggregateApiCreateResult> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_create",
+			withAddr({
+				providerType: params.providerType || null,
+				supplierName: params.supplierName || null,
+				sort: typeof params.sort === "number" ? params.sort : null,
+				status: params.status || null,
+				url: params.url || null,
+				key: params.key || null,
+				authType: params.authType || null,
+				authCustomEnabled:
+					typeof params.authCustomEnabled === "boolean"
+						? params.authCustomEnabled
+						: null,
+				authParams: params.authParams || null,
+				actionCustomEnabled:
+					typeof params.actionCustomEnabled === "boolean"
+						? params.actionCustomEnabled
+						: null,
+				action: params.action ?? null,
+				modelOverride:
+					typeof params.modelOverride === "string"
+						? params.modelOverride
+						: null,
+				username: params.username || null,
+				password: params.password || null,
+				balanceQueryEnabled:
+					typeof params.balanceQueryEnabled === "boolean"
+						? params.balanceQueryEnabled
+						: null,
+				balanceQueryTemplate: params.balanceQueryTemplate || null,
+				balanceQueryBaseUrl:
+					typeof params.balanceQueryBaseUrl === "string"
+						? params.balanceQueryBaseUrl
+						: null,
+				balanceQueryAccessToken: params.balanceQueryAccessToken || null,
+				balanceQueryUserId:
+					typeof params.balanceQueryUserId === "string"
+						? params.balanceQueryUserId
+						: null,
+				balanceQueryConfigJson:
+					typeof params.balanceQueryConfigJson === "string"
+						? params.balanceQueryConfigJson
+						: null,
+				modelSlugs: Array.isArray(params.modelSlugs) ? params.modelSlugs : null,
+			}),
+		);
+		return normalizeAggregateApiCreateResult(result);
+	},
+	updateAggregateApi: (apiId: string, params: AggregateApiPayload) =>
+		invoke(
+			"service_aggregate_api_update",
+			withAddr({
+				id: apiId,
+				providerType: params.providerType || null,
+				supplierName: params.supplierName || null,
+				sort: typeof params.sort === "number" ? params.sort : null,
+				status: params.status || null,
+				url: params.url || null,
+				key: params.key || null,
+				authType: params.authType || null,
+				authCustomEnabled:
+					typeof params.authCustomEnabled === "boolean"
+						? params.authCustomEnabled
+						: null,
+				authParams: params.authParams || null,
+				actionCustomEnabled:
+					typeof params.actionCustomEnabled === "boolean"
+						? params.actionCustomEnabled
+						: null,
+				action: params.action ?? null,
+				modelOverride:
+					typeof params.modelOverride === "string"
+						? params.modelOverride
+						: null,
+				username: params.username || null,
+				password: params.password || null,
+				balanceQueryEnabled:
+					typeof params.balanceQueryEnabled === "boolean"
+						? params.balanceQueryEnabled
+						: null,
+				balanceQueryTemplate: params.balanceQueryTemplate || null,
+				balanceQueryBaseUrl:
+					typeof params.balanceQueryBaseUrl === "string"
+						? params.balanceQueryBaseUrl
+						: null,
+				balanceQueryAccessToken: params.balanceQueryAccessToken || null,
+				balanceQueryUserId:
+					typeof params.balanceQueryUserId === "string"
+						? params.balanceQueryUserId
+						: null,
+				balanceQueryConfigJson:
+					typeof params.balanceQueryConfigJson === "string"
+						? params.balanceQueryConfigJson
+						: null,
+				modelSlugs: Array.isArray(params.modelSlugs) ? params.modelSlugs : null,
+			}),
+		),
+	deleteAggregateApi: (apiId: string) =>
+		invoke("service_aggregate_api_delete", withAddr({ id: apiId })),
+	async readAggregateApiSecret(
+		apiId: string,
+	): Promise<AggregateApiSecretResult> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_read_secret",
+			withAddr({ id: apiId }),
+		);
+		return normalizeAggregateApiSecretResult(result);
+	},
+	async testAggregateApiConnection(
+		apiId: string,
+	): Promise<AggregateApiTestResult> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_test_connection",
+			withAddr({ id: apiId }),
+		);
+		return normalizeAggregateApiTestResult(result);
+	},
+	async refreshAggregateApiBalance(
+		apiId: string,
+	): Promise<AggregateApiBalanceRefreshResult> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_refresh_balance",
+			withAddr({ id: apiId }),
+		);
+		return normalizeAggregateApiBalanceRefreshResult(result);
+	},
+	async listAggregateApiSupplierModels(params?: {
+		supplierKey?: string | null;
+		providerType?: string | null;
+	}): Promise<AggregateApiSupplierModel[]> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_supplier_models_list",
+			withAddr({
+				supplierKey: params?.supplierKey || null,
+				providerType: params?.providerType || null,
+			}),
+		);
+		return normalizeAggregateApiSupplierModelList(result);
+	},
+	async saveAggregateApiSupplierModel(
+		params: AggregateApiSupplierModelPayload,
+	): Promise<AggregateApiSupplierModel> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_supplier_model_save",
+			withAddr({ payload: params }),
+		);
+		const item = normalizeAggregateApiSupplierModel(result);
+		if (!item) throw new Error("供应商模型保存结果为空");
+		return item;
+	},
+	deleteAggregateApiSupplierModel: (params: {
+		supplierKey: string;
+		providerType: string;
+		upstreamModel: string;
+	}) =>
+		invoke(
+			"service_aggregate_api_supplier_model_delete",
+			withAddr({
+				supplierKey: params.supplierKey,
+				providerType: params.providerType,
+				upstreamModel: params.upstreamModel,
+			}),
+		),
+	async importAggregateApiSupplierModels(params: {
+		apiId: string;
+		supplierKey?: string | null;
+		providerType?: string | null;
+	}): Promise<AggregateApiSupplierModelImportResult> {
+		const result = await invoke<unknown>(
+			"service_aggregate_api_supplier_models_import",
+			withAddr({
+				apiId: params.apiId,
+				supplierKey: params.supplierKey || null,
+				providerType: params.providerType || null,
+			}),
+		);
+		return normalizeAggregateApiSupplierModelImportResult(result);
+	},
+
+	async listApiKeys(): Promise<ApiKey[]> {
+		const result = await invoke<unknown>("service_apikey_list", withAddr());
+		return normalizeApiKeyList(result);
+	},
+	async createApiKey(params: ApiKeyPayload): Promise<ApiKeyCreateResult> {
+		const result = await invoke<unknown>(
+			"service_apikey_create",
+			withAddr({
+				name: params.name || null,
+				modelSlug: params.modelSlug || null,
+				reasoningEffort: params.reasoningEffort || null,
+				serviceTier: params.serviceTier || null,
+				protocolType: params.protocolType || null,
+				upstreamBaseUrl: params.upstreamBaseUrl || null,
+				staticHeadersJson: params.staticHeadersJson || null,
+				rotationStrategy: params.rotationStrategy || null,
+				aggregateApiId: params.aggregateApiId || null,
+				accountPlanFilter: params.accountPlanFilter || null,
+				quotaLimitTokens: params.quotaLimitTokens ?? null,
+				customKey: params.customKey || null,
+			}),
+		);
+		return normalizeApiKeyCreateResult(result);
+	},
+	async listApiKeyUsageStats(): Promise<ApiKeyUsageStat[]> {
+		const result = await invoke<unknown>(
+			"service_apikey_usage_stats",
+			withAddr(),
+		);
+		return normalizeApiKeyUsageStats(result);
+	},
+	deleteApiKey: (keyId: string) =>
+		invoke("service_apikey_delete", withAddr({ keyId })),
+	updateApiKey: (keyId: string, params: ApiKeyPayload) => {
+		const payload: Record<string, unknown> = {
+			keyId,
+			name: params.name || null,
+			modelSlug: params.modelSlug || null,
+			reasoningEffort: params.reasoningEffort || null,
+			serviceTier: params.serviceTier || null,
+			protocolType: params.protocolType || null,
+			upstreamBaseUrl: params.upstreamBaseUrl || null,
+			staticHeadersJson: params.staticHeadersJson || null,
+			rotationStrategy: params.rotationStrategy || null,
+			aggregateApiId: params.aggregateApiId || null,
+			accountPlanFilter: params.accountPlanFilter || null,
+		};
+		if ("quotaLimitTokens" in params) {
+			payload.quotaLimitTokens = params.quotaLimitTokens ?? null;
+		}
+		return invoke("service_apikey_update_model", withAddr(payload));
+	},
+	disableApiKey: (keyId: string) =>
+		invoke("service_apikey_disable", withAddr({ keyId })),
+	enableApiKey: (keyId: string) =>
+		invoke("service_apikey_enable", withAddr({ keyId })),
+	async listModels(refreshRemote?: boolean): Promise<ModelCatalog> {
+		const result = await invoke<unknown>(
+			"service_apikey_models",
+			withAddr({ refreshRemote }),
+		);
+		return normalizeModelCatalog(result);
+	},
+	async listManagedModels(
+		refreshRemote?: boolean,
+	): Promise<ManagedModelCatalog> {
+		const result = await invoke<unknown>(
+			"service_model_catalog_list",
+			withAddr({ refreshRemote }),
+		);
+		return normalizeManagedModelCatalog(result);
+	},
+	async listManagedModelRouting(): Promise<ManagedModelRouting> {
+		const result = await invoke<unknown>("service_model_routing", withAddr());
+		return normalizeManagedModelRouting(result);
+	},
+	async syncManagedModelSourceModels(
+		params: ManagedModelSourceSyncPayload,
+	): Promise<ManagedModelRouting> {
+		const result = await invoke<unknown>(
+			"service_model_source_sync",
+			withAddr({ payload: params }),
+		);
+		return normalizeManagedModelRouting(result);
+	},
+	async saveManagedModelSourceModel(
+		params: ManagedModelSourceModelPayload,
+	): Promise<ManagedModelSourceModel> {
+		const result = await invoke<unknown>(
+			"service_model_source_model_save",
+			withAddr({ payload: params }),
+		);
+		const routing = normalizeManagedModelRouting({
+			sourceModels: [result],
+			mappings: [],
+		});
+		const item = routing.sourceModels[0];
+		if (!item) throw new Error("来源模型保存结果为空");
+		return item;
+	},
+	async saveManagedModelSourceMapping(
+		params: ManagedModelSourceMappingPayload,
+	): Promise<ManagedModelSourceMapping> {
+		const result = await invoke<unknown>(
+			"service_model_source_mapping_save",
+			withAddr({ payload: params }),
+		);
+		const routing = normalizeManagedModelRouting({
+			sourceModels: [],
+			mappings: [result],
+		});
+		const item = routing.mappings[0];
+		if (!item) throw new Error("模型映射保存结果为空");
+		return item;
+	},
+	deleteManagedModelSourceMapping: (params: {
+		id: string;
+		sourceKind: string;
+		sourceId: string;
+		upstreamModel: string;
+	}) =>
+		invoke(
+			"service_model_source_mapping_delete",
+			withAddr({ payload: params }),
+		),
+	async saveManagedModel(
+		params: ManagedModelPayload,
+	): Promise<ManagedModelInfo> {
+		const payload = {
+			previousSlug: params.previousSlug || null,
+			sourceKind: params.sourceKind || null,
+			userEdited:
+				typeof params.userEdited === "boolean" ? params.userEdited : null,
+			sortIndex: typeof params.sortIndex === "number" ? params.sortIndex : null,
+			...serializeManagedModelForRpc(params.model),
+		};
+		const result = await invoke<unknown>(
+			"service_model_catalog_save",
+			withAddr({ payload }),
+		);
+		const normalized = normalizeManagedModelInfo(result);
+		if (!normalized) {
+			throw new Error("模型保存结果为空");
+		}
+		return normalized;
+	},
+	deleteManagedModel: (slug: string) =>
+		invoke("service_model_catalog_delete", withAddr({ slug })),
+	listModelPriceRules: async () => {
+		const result = await invoke<{ items: ModelPriceRuleEntry[] }>(
+			"service_model_price_rules_list",
+			withAddr(),
+		);
+		return result.items;
+	},
+	readModelPriceRule: async (modelPattern: string) => {
+		const result = await invoke<ModelPriceRuleEntry | null>(
+			"service_model_price_rule_read",
+			withAddr({ modelPattern }),
+		);
+		return result;
+	},
+	upsertModelPriceRule: async (payload: ModelPriceRuleUpsertPayload) => {
+		const result = await invoke<ModelPriceRuleEntry>(
+			"service_model_price_rule_upsert",
+			withAddr({ payload }),
+		);
+		return result;
+	},
+	async pruneStaleRemoteManagedModels(): Promise<ManagedModelCatalog> {
+		const result = await invoke<unknown>(
+			"service_model_catalog_prune_stale_remote",
+			withAddr(),
+		);
+		return normalizeManagedModelCatalog(result);
+	},
+	async readApiKeySecret(keyId: string): Promise<string> {
+		const result = await invoke<unknown>(
+			"service_apikey_read_secret",
+			withAddr({ keyId }),
+		);
+		return readApiKeySecret(result);
+	},
 };
diff --git a/apps/src/lib/api/normalize.ts b/apps/src/lib/api/normalize.ts
index 1e589d5e9..02c597012 100644
--- a/apps/src/lib/api/normalize.ts
+++ b/apps/src/lib/api/normalize.ts
@@ -1,93 +1,95 @@
 "use client";
 
+import { normalizeAccountProxySummaryFields } from "./account-proxy-normalize";
+
 import {
-  Account,
-  AccountListResult,
-  AccountUsage,
-  AggregateApi,
-  AggregateApiBalanceRefreshResult,
-  AggregateApiBalanceSnapshot,
-  AggregateApiCreateResult,
-  AggregateApiSecretResult,
-  AggregateApiSupplierModel,
-  AggregateApiSupplierModelImportResult,
-  AggregateApiTestResult,
-  ApiKey,
-  ApiKeyCreateResult,
-  ApiKeyUsageStat,
-  AppSettings,
-  BackgroundTaskSettings,
-  QuotaGuardSettings,
-  RuntimeTimeZone,
-  DeviceAuthInfo,
-  EnvOverrideCatalogItem,
-  InstalledPluginSummary,
-  LoginStartResult,
-  ManagedModelCatalog,
-  ManagedModelInfo,
-  ManagedModelRouting,
-  ManagedModelSourceMapping,
-  ManagedModelSourceModel,
-  ModelCatalog,
-  ModelInfo,
-  ModelReasoningLevel,
-  ModelTruncationPolicy,
-  PluginCatalogEntry,
-  PluginCatalogResult,
-  PluginCatalogTask,
-  PluginRunLogSummary,
-  PluginTaskSummary,
-  RequestLog,
-  RequestLogFilterSummary,
-  RequestLogListResult,
-  RequestLogTodaySummary,
-  StartupSnapshot,
-  UsageAggregateSummary,
+	Account,
+	AccountListResult,
+	AccountUsage,
+	AggregateApi,
+	AggregateApiBalanceRefreshResult,
+	AggregateApiBalanceSnapshot,
+	AggregateApiCreateResult,
+	AggregateApiSecretResult,
+	AggregateApiSupplierModel,
+	AggregateApiSupplierModelImportResult,
+	AggregateApiTestResult,
+	ApiKey,
+	ApiKeyCreateResult,
+	ApiKeyUsageStat,
+	AppSettings,
+	BackgroundTaskSettings,
+	QuotaGuardSettings,
+	RuntimeTimeZone,
+	DeviceAuthInfo,
+	EnvOverrideCatalogItem,
+	InstalledPluginSummary,
+	LoginStartResult,
+	ManagedModelCatalog,
+	ManagedModelInfo,
+	ManagedModelRouting,
+	ManagedModelSourceMapping,
+	ManagedModelSourceModel,
+	ModelCatalog,
+	ModelInfo,
+	ModelReasoningLevel,
+	ModelTruncationPolicy,
+	PluginCatalogEntry,
+	PluginCatalogResult,
+	PluginCatalogTask,
+	PluginRunLogSummary,
+	PluginTaskSummary,
+	RequestLog,
+	RequestLogFilterSummary,
+	RequestLogListResult,
+	RequestLogTodaySummary,
+	StartupSnapshot,
+	UsageAggregateSummary,
 } from "@/types";
 import {
-  DEFAULT_CODEX_ORIGINATOR,
-  DEFAULT_CODEX_USER_AGENT_VERSION,
+	DEFAULT_CODEX_ORIGINATOR,
+	DEFAULT_CODEX_USER_AGENT_VERSION,
 } from "@/lib/constants/codex";
 import {
-  DEFAULT_AUTHOR_SERVER_RECOMMENDATIONS,
-  DEFAULT_AUTHOR_SPONSORS,
-  normalizeSponsorLinkItems,
+	DEFAULT_AUTHOR_SERVER_RECOMMENDATIONS,
+	DEFAULT_AUTHOR_SPONSORS,
+	normalizeSponsorLinkItems,
 } from "@/lib/sponsor-links";
 import {
-  calcAvailability,
-  getUsageDisplayBuckets,
-  isLowQuotaUsage,
-  toNullableNumber,
+	calcAvailability,
+	getUsageDisplayBuckets,
+	isLowQuotaUsage,
+	toNullableNumber,
 } from "@/lib/utils/usage";
 import { readBillingModeLock } from "./billing-mode-lock";
 
 const DEFAULT_BACKGROUND_TASKS: BackgroundTaskSettings = {
-  usagePollingEnabled: true,
-  usagePollIntervalSecs: 600,
-  gatewayKeepaliveEnabled: true,
-  gatewayKeepaliveIntervalSecs: 180,
-  tokenRefreshPollingEnabled: true,
-  tokenRefreshPollIntervalSecs: 60,
-  usageRefreshWorkers: 4,
-  httpWorkerFactor: 4,
-  httpWorkerMin: 8,
-  httpStreamWorkerFactor: 1,
-  httpStreamWorkerMin: 2,
-  warmupCronEnabled: false,
-  warmupCronExpression: "",
+	usagePollingEnabled: true,
+	usagePollIntervalSecs: 600,
+	gatewayKeepaliveEnabled: true,
+	gatewayKeepaliveIntervalSecs: 180,
+	tokenRefreshPollingEnabled: true,
+	tokenRefreshPollIntervalSecs: 60,
+	usageRefreshWorkers: 4,
+	httpWorkerFactor: 4,
+	httpWorkerMin: 8,
+	httpStreamWorkerFactor: 1,
+	httpStreamWorkerMin: 2,
+	warmupCronEnabled: false,
+	warmupCronExpression: "",
 };
 
 const DEFAULT_QUOTA_GUARD: QuotaGuardSettings = {
-  enabled: true,
-  primaryMinRemainingPercent: 5,
-  secondaryMinRemainingPercent: 10,
-  allowAllLowQuotaFallback: true,
+	enabled: true,
+	primaryMinRemainingPercent: 5,
+	secondaryMinRemainingPercent: 10,
+	allowAllLowQuotaFallback: true,
 };
 
 const DEFAULT_RUNTIME_TIME_ZONE: RuntimeTimeZone = {
-  name: "Local",
-  offset: "",
-  source: "system",
+	name: "Local",
+	offset: "",
+	source: "system",
 };
 
 /**
@@ -104,9 +106,9 @@ const DEFAULT_RUNTIME_TIME_ZONE: RuntimeTimeZone = {
  * 返回函数执行结果
  */
 function asObject(payload: unknown): Record<string, unknown> {
-  return payload && typeof payload === "object" && !Array.isArray(payload)
-    ? (payload as Record<string, unknown>)
-    : {};
+	return payload && typeof payload === "object" && !Array.isArray(payload)
+		? (payload as Record<string, unknown>)
+		: {};
 }
 
 /**
@@ -123,7 +125,7 @@ function asObject(payload: unknown): Record<string, unknown> {
  * 返回函数执行结果
  */
 function asArray<T = unknown>(payload: unknown): T[] {
-  return Array.isArray(payload) ? payload : [];
+	return Array.isArray(payload) ? payload : [];
 }
 
 /**
@@ -141,7 +143,7 @@ function asArray<T = unknown>(payload: unknown): T[] {
  * 返回函数执行结果
  */
 function asString(value: unknown, fallback = ""): string {
-  return typeof value === "string" ? value.trim() : fallback;
+	return typeof value === "string" ? value.trim() : fallback;
 }
 
 /**
@@ -159,24 +161,24 @@ function asString(value: unknown, fallback = ""): string {
  * 返回函数执行结果
  */
 function asBoolean(value: unknown, fallback = false): boolean {
-  if (typeof value === "boolean") return value;
-  if (typeof value === "number") return value !== 0;
-  if (typeof value === "string") {
-    const normalized = value.trim().toLowerCase();
-    if (["1", "true", "yes", "on"].includes(normalized)) return true;
-    if (["0", "false", "no", "off"].includes(normalized)) return false;
-  }
-  return fallback;
+	if (typeof value === "boolean") return value;
+	if (typeof value === "number") return value !== 0;
+	if (typeof value === "string") {
+		const normalized = value.trim().toLowerCase();
+		if (["1", "true", "yes", "on"].includes(normalized)) return true;
+		if (["0", "false", "no", "off"].includes(normalized)) return false;
+	}
+	return fallback;
 }
 
 function toNullableBoolean(value: unknown): boolean | null {
-  if (typeof value === "boolean") return value;
-  return null;
+	if (typeof value === "boolean") return value;
+	return null;
 }
 
 function toNullableObject(value: unknown): Record<string, unknown> | null {
-  const object = asObject(value);
-  return Object.keys(object).length > 0 ? object : null;
+	const object = asObject(value);
+	return Object.keys(object).length > 0 ? object : null;
 }
 
 /**
@@ -195,9 +197,9 @@ function toNullableObject(value: unknown): Record<string, unknown> | null {
  * 返回函数执行结果
  */
 function asInteger(value: unknown, fallback: number, min = 0): number {
-  const parsed = toNullableNumber(value);
-  if (parsed == null) return fallback;
-  return Math.max(min, Math.trunc(parsed));
+	const parsed = toNullableNumber(value);
+	if (parsed == null) return fallback;
+	return Math.max(min, Math.trunc(parsed));
 }
 
 /**
@@ -214,11 +216,14 @@ function asInteger(value: unknown, fallback: number, min = 0): number {
  * 返回函数执行结果
  */
 function normalizeStringRecord(payload: unknown): Record<string, string> {
-  const source = asObject(payload);
-  return Object.entries(source).reduce<Record<string, string>>((result, [key, value]) => {
-    result[key] = asString(value);
-    return result;
-  }, {});
+	const source = asObject(payload);
+	return Object.entries(source).reduce<Record<string, string>>(
+		(result, [key, value]) => {
+			result[key] = asString(value);
+			return result;
+		},
+		{},
+	);
 }
 
 /**
@@ -235,18 +240,18 @@ function normalizeStringRecord(payload: unknown): Record<string, string> {
  * 返回函数执行结果
  */
 function asStringArray(value: unknown): string[] {
-  if (Array.isArray(value)) {
-    return value
-      .map((item) => asString(item))
-      .filter((item) => item.length > 0);
-  }
-  if (typeof value === "string") {
-    return value
-      .split(",")
-      .map((item) => item.trim())
-      .filter(Boolean);
-  }
-  return [];
+	if (Array.isArray(value)) {
+		return value
+			.map((item) => asString(item))
+			.filter((item) => item.length > 0);
+	}
+	if (typeof value === "string") {
+		return value
+			.split(",")
+			.map((item) => item.trim())
+			.filter(Boolean);
+	}
+	return [];
 }
 
 /**
@@ -263,28 +268,32 @@ function asStringArray(value: unknown): string[] {
  * 返回函数执行结果
  */
 export function normalizeUsageSnapshot(payload: unknown): AccountUsage | null {
-  const source = asObject(payload);
-  const accountId = asString(source.accountId ?? source.account_id);
-  if (!accountId) return null;
-
-  return {
-    accountId,
-    availabilityStatus: asString(source.availabilityStatus ?? source.availability_status),
-    usedPercent: toNullableNumber(source.usedPercent ?? source.used_percent),
-    windowMinutes: toNullableNumber(source.windowMinutes ?? source.window_minutes),
-    resetsAt: toNullableNumber(source.resetsAt ?? source.resets_at),
-    secondaryUsedPercent: toNullableNumber(
-      source.secondaryUsedPercent ?? source.secondary_used_percent
-    ),
-    secondaryWindowMinutes: toNullableNumber(
-      source.secondaryWindowMinutes ?? source.secondary_window_minutes
-    ),
-    secondaryResetsAt: toNullableNumber(
-      source.secondaryResetsAt ?? source.secondary_resets_at
-    ),
-    creditsJson: asString(source.creditsJson ?? source.credits_json) || null,
-    capturedAt: toNullableNumber(source.capturedAt ?? source.captured_at),
-  };
+	const source = asObject(payload);
+	const accountId = asString(source.accountId ?? source.account_id);
+	if (!accountId) return null;
+
+	return {
+		accountId,
+		availabilityStatus: asString(
+			source.availabilityStatus ?? source.availability_status,
+		),
+		usedPercent: toNullableNumber(source.usedPercent ?? source.used_percent),
+		windowMinutes: toNullableNumber(
+			source.windowMinutes ?? source.window_minutes,
+		),
+		resetsAt: toNullableNumber(source.resetsAt ?? source.resets_at),
+		secondaryUsedPercent: toNullableNumber(
+			source.secondaryUsedPercent ?? source.secondary_used_percent,
+		),
+		secondaryWindowMinutes: toNullableNumber(
+			source.secondaryWindowMinutes ?? source.secondary_window_minutes,
+		),
+		secondaryResetsAt: toNullableNumber(
+			source.secondaryResetsAt ?? source.secondary_resets_at,
+		),
+		creditsJson: asString(source.creditsJson ?? source.credits_json) || null,
+		capturedAt: toNullableNumber(source.capturedAt ?? source.captured_at),
+	};
 }
 
 /**
@@ -301,11 +310,11 @@ export function normalizeUsageSnapshot(payload: unknown): AccountUsage | null {
  * 返回函数执行结果
  */
 export function normalizeUsageList(payload: unknown): AccountUsage[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizeUsageSnapshot(item))
-    .filter((item): item is AccountUsage => Boolean(item));
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizeUsageSnapshot(item))
+		.filter((item): item is AccountUsage => Boolean(item));
 }
 
 /**
@@ -321,8 +330,10 @@ export function normalizeUsageList(payload: unknown): AccountUsage[] {
  * # 返回
  * 返回函数执行结果
  */
-export function buildUsageMap(usages: AccountUsage[]): Map<string, AccountUsage> {
-  return new Map(usages.map((item) => [item.accountId, item]));
+export function buildUsageMap(
+	usages: AccountUsage[],
+): Map<string, AccountUsage> {
+	return new Map(usages.map((item) => [item.accountId, item]));
 }
 
 /**
@@ -338,18 +349,20 @@ export function buildUsageMap(usages: AccountUsage[]): Map<string, AccountUsage>
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeUsageAggregateSummary(payload: unknown): UsageAggregateSummary {
-  const source = asObject(payload);
-  return {
-    primaryBucketCount: asInteger(source.primaryBucketCount, 0, 0),
-    primaryKnownCount: asInteger(source.primaryKnownCount, 0, 0),
-    primaryUnknownCount: asInteger(source.primaryUnknownCount, 0, 0),
-    primaryRemainPercent: toNullableNumber(source.primaryRemainPercent),
-    secondaryBucketCount: asInteger(source.secondaryBucketCount, 0, 0),
-    secondaryKnownCount: asInteger(source.secondaryKnownCount, 0, 0),
-    secondaryUnknownCount: asInteger(source.secondaryUnknownCount, 0, 0),
-    secondaryRemainPercent: toNullableNumber(source.secondaryRemainPercent),
-  };
+export function normalizeUsageAggregateSummary(
+	payload: unknown,
+): UsageAggregateSummary {
+	const source = asObject(payload);
+	return {
+		primaryBucketCount: asInteger(source.primaryBucketCount, 0, 0),
+		primaryKnownCount: asInteger(source.primaryKnownCount, 0, 0),
+		primaryUnknownCount: asInteger(source.primaryUnknownCount, 0, 0),
+		primaryRemainPercent: toNullableNumber(source.primaryRemainPercent),
+		secondaryBucketCount: asInteger(source.secondaryBucketCount, 0, 0),
+		secondaryKnownCount: asInteger(source.secondaryKnownCount, 0, 0),
+		secondaryUnknownCount: asInteger(source.secondaryUnknownCount, 0, 0),
+		secondaryRemainPercent: toNullableNumber(source.secondaryRemainPercent),
+	};
 }
 
 /**
@@ -365,24 +378,26 @@ export function normalizeUsageAggregateSummary(payload: unknown): UsageAggregate
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeTodaySummary(payload: unknown): RequestLogTodaySummary {
-  const source = asObject(payload);
-  const inputTokens = asInteger(source.inputTokens, 0, 0);
-  const cachedInputTokens = asInteger(source.cachedInputTokens, 0, 0);
-  const outputTokens = asInteger(source.outputTokens, 0, 0);
-  const reasoningOutputTokens = asInteger(source.reasoningOutputTokens, 0, 0);
-  return {
-    inputTokens,
-    cachedInputTokens,
-    outputTokens,
-    reasoningOutputTokens,
-    todayTokens: asInteger(
-      source.todayTokens,
-      Math.max(0, inputTokens - cachedInputTokens) + outputTokens,
-      0
-    ),
-    estimatedCost: Math.max(0, toNullableNumber(source.estimatedCost) ?? 0),
-  };
+export function normalizeTodaySummary(
+	payload: unknown,
+): RequestLogTodaySummary {
+	const source = asObject(payload);
+	const inputTokens = asInteger(source.inputTokens, 0, 0);
+	const cachedInputTokens = asInteger(source.cachedInputTokens, 0, 0);
+	const outputTokens = asInteger(source.outputTokens, 0, 0);
+	const reasoningOutputTokens = asInteger(source.reasoningOutputTokens, 0, 0);
+	return {
+		inputTokens,
+		cachedInputTokens,
+		outputTokens,
+		reasoningOutputTokens,
+		todayTokens: asInteger(
+			source.todayTokens,
+			Math.max(0, inputTokens - cachedInputTokens) + outputTokens,
+			0,
+		),
+		estimatedCost: Math.max(0, toNullableNumber(source.estimatedCost) ?? 0),
+	};
 }
 
 /**
@@ -399,68 +414,81 @@ export function normalizeTodaySummary(payload: unknown): RequestLogTodaySummary
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeAccount(item: unknown, usage?: AccountUsage | null): Account | null {
-  const source = asObject(item);
-  const id = asString(source.id);
-  if (!id) return null;
-
-  const name = asString(source.label || source.name) || id;
-  const groupName = asString(source.groupName ?? source.group_name);
-  const status = asString(source.status);
-  const statusReason = asString(source.statusReason ?? source.status_reason);
-  const rawHasToken = source.hasToken ?? source.has_token;
-  const hasToken = typeof rawHasToken === "boolean" ? Boolean(rawHasToken) : true;
-  const availability = calcAvailability(usage, { status, statusReason, hasToken });
-  const usageBuckets = getUsageDisplayBuckets(usage);
-
-  return {
-    id,
-    name,
-    group: groupName,
-    priority: asInteger(source.sort ?? source.priority, 0, 0),
-    preferred: Boolean(source.preferred),
-    label: name,
-    groupName,
-    sort: asInteger(source.sort ?? source.priority, 0, 0),
-    status,
-    statusReason,
-    hasToken,
-    planType:
-      asString(source.planType ?? source.plan_type ?? source.subscriptionPlan ?? source.subscription_plan) ||
-      null,
-    planTypeRaw: asString(source.planTypeRaw ?? source.plan_type_raw) || null,
-    hasSubscription:
-      typeof (source.hasSubscription ?? source.has_subscription) === "boolean"
-        ? Boolean(source.hasSubscription ?? source.has_subscription)
-        : null,
-    subscriptionPlan:
-      asString(source.subscriptionPlan ?? source.subscription_plan) || null,
-    subscriptionExpiresAt: toNullableNumber(
-      source.subscriptionExpiresAt ?? source.subscription_expires_at
-    ),
-    subscriptionRenewsAt: toNullableNumber(
-      source.subscriptionRenewsAt ?? source.subscription_renews_at
-    ),
-    note: asString(source.note) || null,
-    tags: asStringArray(source.tags),
-    modelSlugs: asStringArray(source.modelSlugs ?? source.model_slugs),
-    quotaCapacityPrimaryWindowTokens: toNullableNumber(
-      source.quotaCapacityPrimaryWindowTokens ??
-        source.quota_capacity_primary_window_tokens
-    ),
-    quotaCapacitySecondaryWindowTokens: toNullableNumber(
-      source.quotaCapacitySecondaryWindowTokens ??
-        source.quota_capacity_secondary_window_tokens
-    ),
-    isAvailable: availability.level === "ok",
-    isLowQuota: isLowQuotaUsage(usage),
-    lastRefreshAt: usage?.capturedAt ?? null,
-    availabilityText: availability.text,
-    availabilityLevel: availability.level,
-    primaryRemainPercent: usageBuckets.primaryRemainPercent,
-    secondaryRemainPercent: usageBuckets.secondaryRemainPercent,
-    usage: usage ?? null,
-  };
+export function normalizeAccount(
+	item: unknown,
+	usage?: AccountUsage | null,
+): Account | null {
+	const source = asObject(item);
+	const id = asString(source.id);
+	if (!id) return null;
+
+	const name = asString(source.label || source.name) || id;
+	const groupName = asString(source.groupName ?? source.group_name);
+	const status = asString(source.status);
+	const statusReason = asString(source.statusReason ?? source.status_reason);
+	const rawHasToken = source.hasToken ?? source.has_token;
+	const hasToken =
+		typeof rawHasToken === "boolean" ? Boolean(rawHasToken) : true;
+	const availability = calcAvailability(usage, {
+		status,
+		statusReason,
+		hasToken,
+	});
+	const usageBuckets = getUsageDisplayBuckets(usage);
+
+	return {
+		id,
+		name,
+		group: groupName,
+		priority: asInteger(source.sort ?? source.priority, 0, 0),
+		preferred: Boolean(source.preferred),
+		label: name,
+		groupName,
+		sort: asInteger(source.sort ?? source.priority, 0, 0),
+		status,
+		statusReason,
+		hasToken,
+		planType:
+			asString(
+				source.planType ??
+					source.plan_type ??
+					source.subscriptionPlan ??
+					source.subscription_plan,
+			) || null,
+		planTypeRaw: asString(source.planTypeRaw ?? source.plan_type_raw) || null,
+		hasSubscription:
+			typeof (source.hasSubscription ?? source.has_subscription) === "boolean"
+				? Boolean(source.hasSubscription ?? source.has_subscription)
+				: null,
+		subscriptionPlan:
+			asString(source.subscriptionPlan ?? source.subscription_plan) || null,
+		subscriptionExpiresAt: toNullableNumber(
+			source.subscriptionExpiresAt ?? source.subscription_expires_at,
+		),
+		subscriptionRenewsAt: toNullableNumber(
+			source.subscriptionRenewsAt ?? source.subscription_renews_at,
+		),
+		note: asString(source.note) || null,
+		tags: asStringArray(source.tags),
+		modelSlugs: asStringArray(source.modelSlugs ?? source.model_slugs),
+		quotaCapacityPrimaryWindowTokens: toNullableNumber(
+			source.quotaCapacityPrimaryWindowTokens ??
+				source.quota_capacity_primary_window_tokens,
+		),
+		quotaCapacitySecondaryWindowTokens: toNullableNumber(
+			source.quotaCapacitySecondaryWindowTokens ??
+				source.quota_capacity_secondary_window_tokens,
+		),
+		isAvailable: availability.level === "ok",
+		isLowQuota: isLowQuotaUsage(usage),
+		lastRefreshAt: usage?.capturedAt ?? null,
+		availabilityText: availability.text,
+		availabilityLevel: availability.level,
+		primaryRemainPercent: usageBuckets.primaryRemainPercent,
+		secondaryRemainPercent: usageBuckets.secondaryRemainPercent,
+		usage: usage ?? null,
+		...normalizeAccountProxySummaryFields(source),
+	};
 }
 
 /**
@@ -478,22 +506,24 @@ export function normalizeAccount(item: unknown, usage?: AccountUsage | null): Ac
  * 返回函数执行结果
  */
 export function normalizeAccountList(
-  payload: unknown,
-  usages: AccountUsage[] = []
+	payload: unknown,
+	usages: AccountUsage[] = [],
 ): AccountListResult {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  const usageMap = buildUsageMap(usages);
-  const normalizedItems = items
-    .map((item) => normalizeAccount(item, usageMap.get(asString(asObject(item).id))))
-    .filter((item): item is Account => Boolean(item));
-
-  return {
-    items: normalizedItems,
-    total: asInteger(source.total, normalizedItems.length, 0),
-    page: asInteger(source.page, 1, 1),
-    pageSize: asInteger(source.pageSize, normalizedItems.length || 20, 1),
-  };
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	const usageMap = buildUsageMap(usages);
+	const normalizedItems = items
+		.map((item) =>
+			normalizeAccount(item, usageMap.get(asString(asObject(item).id))),
+		)
+		.filter((item): item is Account => Boolean(item));
+
+	return {
+		items: normalizedItems,
+		total: asInteger(source.total, normalizedItems.length, 0),
+		page: asInteger(source.page, 1, 1),
+		pageSize: asInteger(source.pageSize, normalizedItems.length || 20, 1),
+	};
 }
 
 /**
@@ -511,11 +541,13 @@ export function normalizeAccountList(
  * 返回函数执行结果
  */
 export function attachUsagesToAccounts(
-  accounts: Account[],
-  usages: AccountUsage[]
+	accounts: Account[],
+	usages: AccountUsage[],
 ): Account[] {
-  const usageMap = buildUsageMap(usages);
-  return accounts.map((account) => normalizeAccount(account, usageMap.get(account.id)) || account);
+	const usageMap = buildUsageMap(usages);
+	return accounts.map(
+		(account) => normalizeAccount(account, usageMap.get(account.id)) || account,
+	);
 }
 
 /**
@@ -531,31 +563,35 @@ export function attachUsagesToAccounts(
  * # 返回
  * 返回函数执行结果
  */
-function normalizeModelReasoningLevels(payload: unknown): ModelReasoningLevel[] {
-  const items = asArray(payload);
-  return items
-    .map((item) => {
-      const current = asObject(item);
-      const effort = asString(current.effort);
-      if (!effort) return null;
-      return {
-        ...current,
-        effort,
-        description: asString(current.description),
-      };
-    })
-    .filter((item): item is ModelReasoningLevel => Boolean(item));
-}
-
-function normalizeModelTruncationPolicy(payload: unknown): ModelTruncationPolicy | null {
-  const source = asObject(payload);
-  const mode = asString(source.mode);
-  if (!mode) return null;
-  return {
-    ...source,
-    mode,
-    limit: toNullableNumber(source.limit) ?? 0,
-  };
+function normalizeModelReasoningLevels(
+	payload: unknown,
+): ModelReasoningLevel[] {
+	const items = asArray(payload);
+	return items
+		.map((item) => {
+			const current = asObject(item);
+			const effort = asString(current.effort);
+			if (!effort) return null;
+			return {
+				...current,
+				effort,
+				description: asString(current.description),
+			};
+		})
+		.filter((item): item is ModelReasoningLevel => Boolean(item));
+}
+
+function normalizeModelTruncationPolicy(
+	payload: unknown,
+): ModelTruncationPolicy | null {
+	const source = asObject(payload);
+	const mode = asString(source.mode);
+	if (!mode) return null;
+	return {
+		...source,
+		mode,
+		limit: toNullableNumber(source.limit) ?? 0,
+	};
 }
 
 function normalizeModelServiceTiers(payload: unknown): ModelInfo["serviceTiers"] {
@@ -577,102 +613,104 @@ function normalizeModelServiceTiers(payload: unknown): ModelInfo["serviceTiers"]
 }
 
 function normalizeModelVisibility(value: unknown): string | null {
-  const normalized = asString(value).trim().toLowerCase();
-  if (!normalized) return null;
-  if (normalized === "hidden") {
-    return "hide";
-  }
-  return normalized;
+	const normalized = asString(value).trim().toLowerCase();
+	if (!normalized) return null;
+	if (normalized === "hidden") {
+		return "hide";
+	}
+	return normalized;
 }
 
 function normalizeModelInfo(payload: unknown): ModelInfo | null {
-  const source = asObject(payload);
-  const slug = asString(source.slug);
-  if (!slug) return null;
-  const rawInputModalities =
-    source.input_modalities ?? source.inputModalities ?? ["text", "image"];
-
-  return {
-    ...source,
-    slug,
-    displayName: asString(source.display_name ?? source.displayName) || slug,
-    description: asString(source.description) || null,
-    defaultReasoningLevel:
-      asString(source.default_reasoning_level ?? source.defaultReasoningLevel) || null,
-    supportedReasoningLevels: normalizeModelReasoningLevels(
-      source.supported_reasoning_levels ?? source.supportedReasoningLevels,
-    ),
-    shellType: asString(source.shell_type ?? source.shellType) || null,
-    visibility: normalizeModelVisibility(source.visibility),
-    supportedInApi: asBoolean(source.supported_in_api ?? source.supportedInApi, true),
-    priority: toNullableNumber(source.priority) ?? 0,
-    additionalSpeedTiers: asArray(
-      source.additional_speed_tiers ?? source.additionalSpeedTiers,
-    ).map((item) => asString(item)),
-    serviceTiers: normalizeModelServiceTiers(source.service_tiers ?? source.serviceTiers),
-    defaultServiceTier:
-      asString(source.default_service_tier ?? source.defaultServiceTier) || null,
-    availabilityNux: toNullableObject(source.availability_nux ?? source.availabilityNux),
-    upgrade: toNullableObject(source.upgrade),
-    upgradeInfo: toNullableObject(source.upgrade_info ?? source.upgradeInfo),
-    baseInstructions:
-      asString(source.base_instructions ?? source.baseInstructions) || null,
-    modelMessages: toNullableObject(source.model_messages ?? source.modelMessages),
-    supportsReasoningSummaries: toNullableBoolean(
-      source.supports_reasoning_summaries ?? source.supportsReasoningSummaries,
-    ),
-    defaultReasoningSummary:
-      asString(source.default_reasoning_summary ?? source.defaultReasoningSummary) || null,
-    supportVerbosity: toNullableBoolean(
-      source.support_verbosity ?? source.supportVerbosity,
-    ),
-    defaultVerbosity: source.default_verbosity ?? source.defaultVerbosity ?? null,
-    applyPatchToolType:
-      asString(source.apply_patch_tool_type ?? source.applyPatchToolType) || null,
-    webSearchToolType:
-      asString(source.web_search_tool_type ?? source.webSearchToolType) || null,
-    truncationPolicy: normalizeModelTruncationPolicy(
-      source.truncation_policy ?? source.truncationPolicy,
-    ),
-    supportsParallelToolCalls: toNullableBoolean(
-      source.supports_parallel_tool_calls ?? source.supportsParallelToolCalls,
-    ),
-    supportsImageDetailOriginal: toNullableBoolean(
-      source.supports_image_detail_original ?? source.supportsImageDetailOriginal,
-    ),
-    contextWindow: toNullableNumber(source.context_window ?? source.contextWindow),
-    autoCompactTokenLimit: toNullableNumber(
-      source.auto_compact_token_limit ?? source.autoCompactTokenLimit,
-    ),
-    effectiveContextWindowPercent: toNullableNumber(
-      source.effective_context_window_percent ?? source.effectiveContextWindowPercent,
-    ),
-    experimentalSupportedTools: asArray(
-      source.experimental_supported_tools ?? source.experimentalSupportedTools,
-    ).map((item) => asString(item)),
-    inputModalities: asArray(rawInputModalities).map((item) => asString(item)),
-    minimalClientVersion:
-      source.minimal_client_version ?? source.minimalClientVersion ?? null,
-    supportsSearchTool: toNullableBoolean(
-      source.supports_search_tool ?? source.supportsSearchTool,
-    ),
-    availableInPlans: asArray(source.available_in_plans ?? source.availableInPlans).map((item) =>
-      asString(item),
-    ),
-  };
-}
-
-export function normalizeManagedModelInfo(payload: unknown): ManagedModelInfo | null {
-  const model = normalizeModelInfo(payload);
-  if (!model) return null;
-  const source = asObject(payload);
-  return {
-    ...model,
-    sourceKind: asString(source.source_kind ?? source.sourceKind) || "remote",
-    userEdited: asBoolean(source.user_edited ?? source.userEdited, false),
-    sortIndex: asInteger(source.sort_index ?? source.sortIndex, 0, -1),
-    updatedAt: asInteger(source.updated_at ?? source.updatedAt, 0, 0),
-  };
+	const source = asObject(payload);
+	const slug = asString(source.slug);
+	if (!slug) return null;
+	const rawInputModalities = source.input_modalities ??
+		source.inputModalities ?? ["text", "image"];
+
+	return {
+		...source,
+		slug,
+		displayName: asString(source.display_name ?? source.displayName) || slug,
+		description: asString(source.description) || null,
+		defaultReasoningLevel:
+			asString(source.default_reasoning_level ?? source.defaultReasoningLevel) || null,
+		supportedReasoningLevels: normalizeModelReasoningLevels(
+			source.supported_reasoning_levels ?? source.supportedReasoningLevels,
+		),
+		shellType: asString(source.shell_type ?? source.shellType) || null,
+		visibility: normalizeModelVisibility(source.visibility),
+		supportedInApi: asBoolean(source.supported_in_api ?? source.supportedInApi, true),
+		priority: toNullableNumber(source.priority) ?? 0,
+		additionalSpeedTiers: asArray(
+			source.additional_speed_tiers ?? source.additionalSpeedTiers,
+		).map((item) => asString(item)),
+		serviceTiers: normalizeModelServiceTiers(source.service_tiers ?? source.serviceTiers),
+		defaultServiceTier:
+			asString(source.default_service_tier ?? source.defaultServiceTier) || null,
+		availabilityNux: toNullableObject(source.availability_nux ?? source.availabilityNux),
+		upgrade: toNullableObject(source.upgrade),
+		upgradeInfo: toNullableObject(source.upgrade_info ?? source.upgradeInfo),
+		baseInstructions:
+			asString(source.base_instructions ?? source.baseInstructions) || null,
+		modelMessages: toNullableObject(source.model_messages ?? source.modelMessages),
+		supportsReasoningSummaries: toNullableBoolean(
+			source.supports_reasoning_summaries ?? source.supportsReasoningSummaries,
+		),
+		defaultReasoningSummary:
+			asString(source.default_reasoning_summary ?? source.defaultReasoningSummary) || null,
+		supportVerbosity: toNullableBoolean(
+			source.support_verbosity ?? source.supportVerbosity,
+		),
+		defaultVerbosity: source.default_verbosity ?? source.defaultVerbosity ?? null,
+		applyPatchToolType:
+			asString(source.apply_patch_tool_type ?? source.applyPatchToolType) || null,
+		webSearchToolType:
+			asString(source.web_search_tool_type ?? source.webSearchToolType) || null,
+		truncationPolicy: normalizeModelTruncationPolicy(
+			source.truncation_policy ?? source.truncationPolicy,
+		),
+		supportsParallelToolCalls: toNullableBoolean(
+			source.supports_parallel_tool_calls ?? source.supportsParallelToolCalls,
+		),
+		supportsImageDetailOriginal: toNullableBoolean(
+			source.supports_image_detail_original ?? source.supportsImageDetailOriginal,
+		),
+		contextWindow: toNullableNumber(source.context_window ?? source.contextWindow),
+		autoCompactTokenLimit: toNullableNumber(
+			source.auto_compact_token_limit ?? source.autoCompactTokenLimit,
+		),
+		effectiveContextWindowPercent: toNullableNumber(
+			source.effective_context_window_percent ?? source.effectiveContextWindowPercent,
+		),
+		experimentalSupportedTools: asArray(
+			source.experimental_supported_tools ?? source.experimentalSupportedTools,
+		).map((item) => asString(item)),
+		inputModalities: asArray(rawInputModalities).map((item) => asString(item)),
+		minimalClientVersion:
+			source.minimal_client_version ?? source.minimalClientVersion ?? null,
+		supportsSearchTool: toNullableBoolean(
+			source.supports_search_tool ?? source.supportsSearchTool,
+		),
+		availableInPlans: asArray(source.available_in_plans ?? source.availableInPlans).map((item) =>
+			asString(item),
+		),
+	};
+}
+
+export function normalizeManagedModelInfo(
+	payload: unknown,
+): ManagedModelInfo | null {
+	const model = normalizeModelInfo(payload);
+	if (!model) return null;
+	const source = asObject(payload);
+	return {
+		...model,
+		sourceKind: asString(source.source_kind ?? source.sourceKind) || "remote",
+		userEdited: asBoolean(source.user_edited ?? source.userEdited, false),
+		sortIndex: asInteger(source.sort_index ?? source.sortIndex, 0, -1),
+		updatedAt: asInteger(source.updated_at ?? source.updatedAt, 0, 0),
+	};
 }
 
 /**
@@ -689,81 +727,94 @@ export function normalizeManagedModelInfo(payload: unknown): ManagedModelInfo |
  * 返回函数执行结果
  */
 export function normalizeModelCatalog(payload: unknown): ModelCatalog {
-  const source = asObject(payload);
-  const items = asArray(source.models ?? payload);
-  return {
-    ...source,
-    models: items
-      .map((item) => normalizeModelInfo(item))
-      .filter((item): item is ModelInfo => Boolean(item)),
-  };
-}
-
-export function normalizeManagedModelCatalog(payload: unknown): ManagedModelCatalog {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return {
-    ...source,
-    items: items
-      .map((item) => normalizeManagedModelInfo(item))
-      .filter((item): item is ManagedModelInfo => Boolean(item)),
-  };
-}
-
-function normalizeManagedModelSourceModel(payload: unknown): ManagedModelSourceModel | null {
-  const source = asObject(payload);
-  const sourceKind = asString(source.sourceKind ?? source.source_kind);
-  const sourceId = asString(source.sourceId ?? source.source_id);
-  const upstreamModel = asString(source.upstreamModel ?? source.upstream_model);
-  if (!sourceKind || !sourceId || !upstreamModel) return null;
-  return {
-    sourceKind,
-    sourceId,
-    upstreamModel,
-    displayName: asString(source.displayName ?? source.display_name) || null,
-    status: asString(source.status) || "available",
-    discoveryKind: asString(source.discoveryKind ?? source.discovery_kind) || "synced",
-    lastSyncedAt: toNullableNumber(source.lastSyncedAt ?? source.last_synced_at),
-    createdAt: asInteger(source.createdAt ?? source.created_at, 0, 0),
-    updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
-  };
-}
-
-function normalizeManagedModelSourceMapping(payload: unknown): ManagedModelSourceMapping | null {
-  const source = asObject(payload);
-  const id = asString(source.id);
-  const platformModelSlug = asString(
-    source.platformModelSlug ?? source.platform_model_slug,
-  );
-  const sourceKind = asString(source.sourceKind ?? source.source_kind);
-  const sourceId = asString(source.sourceId ?? source.source_id);
-  const upstreamModel = asString(source.upstreamModel ?? source.upstream_model);
-  if (!id || !platformModelSlug || !sourceKind || !sourceId || !upstreamModel) return null;
-  return {
-    id,
-    platformModelSlug,
-    sourceKind,
-    sourceId,
-    upstreamModel,
-    enabled: asBoolean(source.enabled, true),
-    priority: asInteger(source.priority, 0, -100000),
-    weight: asInteger(source.weight, 1, 1),
-    billingModelSlug: asString(source.billingModelSlug ?? source.billing_model_slug) || null,
-    createdAt: asInteger(source.createdAt ?? source.created_at, 0, 0),
-    updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
-  };
-}
-
-export function normalizeManagedModelRouting(payload: unknown): ManagedModelRouting {
-  const source = asObject(payload);
-  return {
-    sourceModels: asArray(source.sourceModels ?? source.source_models)
-      .map((item) => normalizeManagedModelSourceModel(item))
-      .filter((item): item is ManagedModelSourceModel => Boolean(item)),
-    mappings: asArray(source.mappings)
-      .map((item) => normalizeManagedModelSourceMapping(item))
-      .filter((item): item is ManagedModelSourceMapping => Boolean(item)),
-  };
+	const source = asObject(payload);
+	const items = asArray(source.models ?? payload);
+	return {
+		...source,
+		models: items
+			.map((item) => normalizeModelInfo(item))
+			.filter((item): item is ModelInfo => Boolean(item)),
+	};
+}
+
+export function normalizeManagedModelCatalog(
+	payload: unknown,
+): ManagedModelCatalog {
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return {
+		...source,
+		items: items
+			.map((item) => normalizeManagedModelInfo(item))
+			.filter((item): item is ManagedModelInfo => Boolean(item)),
+	};
+}
+
+function normalizeManagedModelSourceModel(
+	payload: unknown,
+): ManagedModelSourceModel | null {
+	const source = asObject(payload);
+	const sourceKind = asString(source.sourceKind ?? source.source_kind);
+	const sourceId = asString(source.sourceId ?? source.source_id);
+	const upstreamModel = asString(source.upstreamModel ?? source.upstream_model);
+	if (!sourceKind || !sourceId || !upstreamModel) return null;
+	return {
+		sourceKind,
+		sourceId,
+		upstreamModel,
+		displayName: asString(source.displayName ?? source.display_name) || null,
+		status: asString(source.status) || "available",
+		discoveryKind:
+			asString(source.discoveryKind ?? source.discovery_kind) || "synced",
+		lastSyncedAt: toNullableNumber(
+			source.lastSyncedAt ?? source.last_synced_at,
+		),
+		createdAt: asInteger(source.createdAt ?? source.created_at, 0, 0),
+		updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
+	};
+}
+
+function normalizeManagedModelSourceMapping(
+	payload: unknown,
+): ManagedModelSourceMapping | null {
+	const source = asObject(payload);
+	const id = asString(source.id);
+	const platformModelSlug = asString(
+		source.platformModelSlug ?? source.platform_model_slug,
+	);
+	const sourceKind = asString(source.sourceKind ?? source.source_kind);
+	const sourceId = asString(source.sourceId ?? source.source_id);
+	const upstreamModel = asString(source.upstreamModel ?? source.upstream_model);
+	if (!id || !platformModelSlug || !sourceKind || !sourceId || !upstreamModel)
+		return null;
+	return {
+		id,
+		platformModelSlug,
+		sourceKind,
+		sourceId,
+		upstreamModel,
+		enabled: asBoolean(source.enabled, true),
+		priority: asInteger(source.priority, 0, -100000),
+		weight: asInteger(source.weight, 1, 1),
+		billingModelSlug:
+			asString(source.billingModelSlug ?? source.billing_model_slug) || null,
+		createdAt: asInteger(source.createdAt ?? source.created_at, 0, 0),
+		updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
+	};
+}
+
+export function normalizeManagedModelRouting(
+	payload: unknown,
+): ManagedModelRouting {
+	const source = asObject(payload);
+	return {
+		sourceModels: asArray(source.sourceModels ?? source.source_models)
+			.map((item) => normalizeManagedModelSourceModel(item))
+			.filter((item): item is ManagedModelSourceModel => Boolean(item)),
+		mappings: asArray(source.mappings)
+			.map((item) => normalizeManagedModelSourceMapping(item))
+			.filter((item): item is ManagedModelSourceMapping => Boolean(item)),
+	};
 }
 
 /**
@@ -780,31 +831,45 @@ export function normalizeManagedModelRouting(payload: unknown): ManagedModelRout
  * 返回函数执行结果
  */
 export function normalizeApiKey(item: unknown): ApiKey | null {
-  const source = asObject(item);
-  const id = asString(source.id);
-  if (!id) return null;
-
-  return {
-    id,
-    name: asString(source.name),
-    model: asString(source.modelSlug ?? source.model_slug),
-    modelSlug: asString(source.modelSlug ?? source.model_slug),
-    reasoningEffort: asString(source.reasoningEffort ?? source.reasoning_effort),
-    serviceTier: asString(source.serviceTier ?? source.service_tier),
-    rotationStrategy: asString(source.rotationStrategy ?? source.rotation_strategy) || "account_rotation",
-    aggregateApiId: asString(source.aggregateApiId ?? source.aggregate_api_id) || null,
-    accountPlanFilter: asString(source.accountPlanFilter ?? source.account_plan_filter) || null,
-    aggregateApiUrl: asString(source.aggregateApiUrl ?? source.aggregate_api_url) || null,
-    quotaLimitTokens: toNullableNumber(source.quotaLimitTokens ?? source.quota_limit_tokens),
-    protocol: asString(source.protocolType ?? source.protocol_type) || "openai_compat",
-    clientType: asString(source.clientType ?? source.client_type),
-    authScheme: asString(source.authScheme ?? source.auth_scheme),
-    upstreamBaseUrl: asString(source.upstreamBaseUrl ?? source.upstream_base_url),
-    staticHeadersJson: asString(source.staticHeadersJson ?? source.static_headers_json),
-    status: asString(source.status) || "enabled",
-    createdAt: toNullableNumber(source.createdAt ?? source.created_at),
-    lastUsedAt: toNullableNumber(source.lastUsedAt ?? source.last_used_at),
-  };
+	const source = asObject(item);
+	const id = asString(source.id);
+	if (!id) return null;
+
+	return {
+		id,
+		name: asString(source.name),
+		model: asString(source.modelSlug ?? source.model_slug),
+		modelSlug: asString(source.modelSlug ?? source.model_slug),
+		reasoningEffort: asString(
+			source.reasoningEffort ?? source.reasoning_effort,
+		),
+		serviceTier: asString(source.serviceTier ?? source.service_tier),
+		rotationStrategy:
+			asString(source.rotationStrategy ?? source.rotation_strategy) ||
+			"account_rotation",
+		aggregateApiId:
+			asString(source.aggregateApiId ?? source.aggregate_api_id) || null,
+		accountPlanFilter:
+			asString(source.accountPlanFilter ?? source.account_plan_filter) || null,
+		aggregateApiUrl:
+			asString(source.aggregateApiUrl ?? source.aggregate_api_url) || null,
+		quotaLimitTokens: toNullableNumber(
+			source.quotaLimitTokens ?? source.quota_limit_tokens,
+		),
+		protocol:
+			asString(source.protocolType ?? source.protocol_type) || "openai_compat",
+		clientType: asString(source.clientType ?? source.client_type),
+		authScheme: asString(source.authScheme ?? source.auth_scheme),
+		upstreamBaseUrl: asString(
+			source.upstreamBaseUrl ?? source.upstream_base_url,
+		),
+		staticHeadersJson: asString(
+			source.staticHeadersJson ?? source.static_headers_json,
+		),
+		status: asString(source.status) || "enabled",
+		createdAt: toNullableNumber(source.createdAt ?? source.created_at),
+		lastUsedAt: toNullableNumber(source.lastUsedAt ?? source.last_used_at),
+	};
 }
 
 /**
@@ -821,11 +886,11 @@ export function normalizeApiKey(item: unknown): ApiKey | null {
  * 返回函数执行结果
  */
 export function normalizeApiKeyList(payload: unknown): ApiKey[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizeApiKey(item))
-    .filter((item): item is ApiKey => Boolean(item));
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizeApiKey(item))
+		.filter((item): item is ApiKey => Boolean(item));
 }
 
 /**
@@ -841,12 +906,14 @@ export function normalizeApiKeyList(payload: unknown): ApiKey[] {
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeApiKeyCreateResult(payload: unknown): ApiKeyCreateResult {
-  const source = asObject(payload);
-  return {
-    id: asString(source.id),
-    key: asString(source.key),
-  };
+export function normalizeApiKeyCreateResult(
+	payload: unknown,
+): ApiKeyCreateResult {
+	const source = asObject(payload);
+	return {
+		id: asString(source.id),
+		key: asString(source.key),
+	};
 }
 
 /**
@@ -863,58 +930,66 @@ export function normalizeApiKeyCreateResult(payload: unknown): ApiKeyCreateResul
  * 返回函数执行结果
  */
 export function normalizeAggregateApi(item: unknown): AggregateApi | null {
-  const source = asObject(item);
-  const id = asString(source.id);
-  if (!id) return null;
-
-  return {
-    id,
-    providerType: asString(source.providerType ?? source.provider_type) || "codex",
-    supplierName: asString(source.supplierName ?? source.supplier_name) || null,
-    sort: asInteger(source.sort ?? source.priority, 0, 0),
-    url: asString(source.url),
-    authType: asString(source.authType ?? source.auth_type) || "apikey",
-    authParams:
-      source.authParams && typeof source.authParams === "object"
-        ? asObject(source.authParams)
-        : source.auth_params && typeof source.auth_params === "object"
-          ? asObject(source.auth_params)
-          : null,
-    action:
-      typeof source.action === "string"
-        ? source.action
-        : asString(source.action) || null,
-    modelOverride:
-      asString(source.modelOverride ?? source.model_override) || null,
-    status: asString(source.status) || "active",
-    createdAt: toNullableNumber(source.createdAt ?? source.created_at),
-    updatedAt: toNullableNumber(source.updatedAt ?? source.updated_at),
-    lastTestAt: toNullableNumber(source.lastTestAt ?? source.last_test_at),
-    lastTestStatus: asString(source.lastTestStatus ?? source.last_test_status) || null,
-    lastTestError: asString(source.lastTestError ?? source.last_test_error) || null,
-    balanceQueryEnabled: asBoolean(
-      source.balanceQueryEnabled ?? source.balance_query_enabled,
-      false
-    ),
-    balanceQueryTemplate:
-      asString(source.balanceQueryTemplate ?? source.balance_query_template) || null,
-    balanceQueryBaseUrl:
-      asString(source.balanceQueryBaseUrl ?? source.balance_query_base_url) || null,
-    balanceQueryUserId:
-      asString(source.balanceQueryUserId ?? source.balance_query_user_id) || null,
-    balanceQueryConfigJson:
-      asString(
-        source.balanceQueryConfigJson ?? source.balance_query_config_json
-      ) || null,
-    lastBalanceAt: toNullableNumber(source.lastBalanceAt ?? source.last_balance_at),
-    lastBalanceStatus:
-      asString(source.lastBalanceStatus ?? source.last_balance_status) || null,
-    lastBalanceError:
-      asString(source.lastBalanceError ?? source.last_balance_error) || null,
-    lastBalanceJson:
-      asString(source.lastBalanceJson ?? source.last_balance_json) || null,
-    modelSlugs: asStringArray(source.modelSlugs ?? source.model_slugs),
-  };
+	const source = asObject(item);
+	const id = asString(source.id);
+	if (!id) return null;
+
+	return {
+		id,
+		providerType:
+			asString(source.providerType ?? source.provider_type) || "codex",
+		supplierName: asString(source.supplierName ?? source.supplier_name) || null,
+		sort: asInteger(source.sort ?? source.priority, 0, 0),
+		url: asString(source.url),
+		authType: asString(source.authType ?? source.auth_type) || "apikey",
+		authParams:
+			source.authParams && typeof source.authParams === "object"
+				? asObject(source.authParams)
+				: source.auth_params && typeof source.auth_params === "object"
+					? asObject(source.auth_params)
+					: null,
+		action:
+			typeof source.action === "string"
+				? source.action
+				: asString(source.action) || null,
+		modelOverride:
+			asString(source.modelOverride ?? source.model_override) || null,
+		status: asString(source.status) || "active",
+		createdAt: toNullableNumber(source.createdAt ?? source.created_at),
+		updatedAt: toNullableNumber(source.updatedAt ?? source.updated_at),
+		lastTestAt: toNullableNumber(source.lastTestAt ?? source.last_test_at),
+		lastTestStatus:
+			asString(source.lastTestStatus ?? source.last_test_status) || null,
+		lastTestError:
+			asString(source.lastTestError ?? source.last_test_error) || null,
+		balanceQueryEnabled: asBoolean(
+			source.balanceQueryEnabled ?? source.balance_query_enabled,
+			false,
+		),
+		balanceQueryTemplate:
+			asString(source.balanceQueryTemplate ?? source.balance_query_template) ||
+			null,
+		balanceQueryBaseUrl:
+			asString(source.balanceQueryBaseUrl ?? source.balance_query_base_url) ||
+			null,
+		balanceQueryUserId:
+			asString(source.balanceQueryUserId ?? source.balance_query_user_id) ||
+			null,
+		balanceQueryConfigJson:
+			asString(
+				source.balanceQueryConfigJson ?? source.balance_query_config_json,
+			) || null,
+		lastBalanceAt: toNullableNumber(
+			source.lastBalanceAt ?? source.last_balance_at,
+		),
+		lastBalanceStatus:
+			asString(source.lastBalanceStatus ?? source.last_balance_status) || null,
+		lastBalanceError:
+			asString(source.lastBalanceError ?? source.last_balance_error) || null,
+		lastBalanceJson:
+			asString(source.lastBalanceJson ?? source.last_balance_json) || null,
+		modelSlugs: asStringArray(source.modelSlugs ?? source.model_slugs),
+	};
 }
 
 /**
@@ -931,11 +1006,11 @@ export function normalizeAggregateApi(item: unknown): AggregateApi | null {
  * 返回函数执行结果
  */
 export function normalizeAggregateApiList(payload: unknown): AggregateApi[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizeAggregateApi(item))
-    .filter((item): item is AggregateApi => Boolean(item));
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizeAggregateApi(item))
+		.filter((item): item is AggregateApi => Boolean(item));
 }
 
 /**
@@ -951,23 +1026,27 @@ export function normalizeAggregateApiList(payload: unknown): AggregateApi[] {
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeAggregateApiCreateResult(payload: unknown): AggregateApiCreateResult {
-  const source = asObject(payload);
-  return {
-    id: asString(source.id),
-    key: asString(source.key),
-  };
-}
-
-export function normalizeAggregateApiSecretResult(payload: unknown): AggregateApiSecretResult {
-  const source = asObject(payload);
-  return {
-    id: asString(source.id),
-    key: asString(source.key),
-    authType: asString(source.authType ?? source.auth_type) || "apikey",
-    username: asString(source.username) || null,
-    password: asString(source.password) || null,
-  };
+export function normalizeAggregateApiCreateResult(
+	payload: unknown,
+): AggregateApiCreateResult {
+	const source = asObject(payload);
+	return {
+		id: asString(source.id),
+		key: asString(source.key),
+	};
+}
+
+export function normalizeAggregateApiSecretResult(
+	payload: unknown,
+): AggregateApiSecretResult {
+	const source = asObject(payload);
+	return {
+		id: asString(source.id),
+		key: asString(source.key),
+		authType: asString(source.authType ?? source.auth_type) || "apikey",
+		username: asString(source.username) || null,
+		password: asString(source.password) || null,
+	};
 }
 
 /**
@@ -983,95 +1062,97 @@ export function normalizeAggregateApiSecretResult(payload: unknown): AggregateAp
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeAggregateApiTestResult(payload: unknown): AggregateApiTestResult {
-  const source = asObject(payload);
-  return {
-    id: asString(source.id),
-    ok: asBoolean(source.ok),
-    statusCode: toNullableNumber(source.statusCode ?? source.status_code),
-    message: asString(source.message) || null,
-    testedAt: asInteger(source.testedAt ?? source.tested_at, 0, 0),
-    latencyMs: asInteger(source.latencyMs ?? source.latency_ms, 0, 0),
-  };
+export function normalizeAggregateApiTestResult(
+	payload: unknown,
+): AggregateApiTestResult {
+	const source = asObject(payload);
+	return {
+		id: asString(source.id),
+		ok: asBoolean(source.ok),
+		statusCode: toNullableNumber(source.statusCode ?? source.status_code),
+		message: asString(source.message) || null,
+		testedAt: asInteger(source.testedAt ?? source.tested_at, 0, 0),
+		latencyMs: asInteger(source.latencyMs ?? source.latency_ms, 0, 0),
+	};
 }
 
 export function normalizeAggregateApiBalanceSnapshot(
-  payload: unknown
+	payload: unknown,
 ): AggregateApiBalanceSnapshot | null {
-  const source = asObject(payload);
-  const hasBalanceFields =
-    "remaining" in source ||
-    "used" in source ||
-    "total" in source ||
-    "isValid" in source ||
-    "is_valid" in source;
-  if (!hasBalanceFields) return null;
-  return {
-    isValid: asBoolean(source.isValid ?? source.is_valid, true),
-    invalidMessage:
-      asString(source.invalidMessage ?? source.invalid_message) || null,
-    remaining: toNullableNumber(source.remaining),
-    unit: asString(source.unit) || null,
-    planName: asString(source.planName ?? source.plan_name) || null,
-    total: toNullableNumber(source.total),
-    used: toNullableNumber(source.used),
-    extra: toNullableObject(source.extra),
-  };
+	const source = asObject(payload);
+	const hasBalanceFields =
+		"remaining" in source ||
+		"used" in source ||
+		"total" in source ||
+		"isValid" in source ||
+		"is_valid" in source;
+	if (!hasBalanceFields) return null;
+	return {
+		isValid: asBoolean(source.isValid ?? source.is_valid, true),
+		invalidMessage:
+			asString(source.invalidMessage ?? source.invalid_message) || null,
+		remaining: toNullableNumber(source.remaining),
+		unit: asString(source.unit) || null,
+		planName: asString(source.planName ?? source.plan_name) || null,
+		total: toNullableNumber(source.total),
+		used: toNullableNumber(source.used),
+		extra: toNullableObject(source.extra),
+	};
 }
 
 export function normalizeAggregateApiBalanceRefreshResult(
-  payload: unknown
+	payload: unknown,
 ): AggregateApiBalanceRefreshResult {
-  const source = asObject(payload);
-  return {
-    id: asString(source.id),
-    ok: asBoolean(source.ok),
-    balance: normalizeAggregateApiBalanceSnapshot(source.balance),
-    message: asString(source.message) || null,
-    queriedAt: asInteger(source.queriedAt ?? source.queried_at, 0, 0),
-    latencyMs: asInteger(source.latencyMs ?? source.latency_ms, 0, 0),
-  };
+	const source = asObject(payload);
+	return {
+		id: asString(source.id),
+		ok: asBoolean(source.ok),
+		balance: normalizeAggregateApiBalanceSnapshot(source.balance),
+		message: asString(source.message) || null,
+		queriedAt: asInteger(source.queriedAt ?? source.queried_at, 0, 0),
+		latencyMs: asInteger(source.latencyMs ?? source.latency_ms, 0, 0),
+	};
 }
 
 export function normalizeAggregateApiSupplierModel(
-  payload: unknown
+	payload: unknown,
 ): AggregateApiSupplierModel | null {
-  const source = asObject(payload);
-  const supplierKey = asString(source.supplierKey ?? source.supplier_key);
-  const providerType = asString(source.providerType ?? source.provider_type);
-  const upstreamModel = asString(source.upstreamModel ?? source.upstream_model);
-  if (!supplierKey || !providerType || !upstreamModel) return null;
-  return {
-    supplierKey,
-    providerType,
-    upstreamModel,
-    displayName: asString(source.displayName ?? source.display_name) || null,
-    status: asString(source.status) || "available",
-    createdAt: asInteger(source.createdAt ?? source.created_at, 0, 0),
-    updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
-  };
+	const source = asObject(payload);
+	const supplierKey = asString(source.supplierKey ?? source.supplier_key);
+	const providerType = asString(source.providerType ?? source.provider_type);
+	const upstreamModel = asString(source.upstreamModel ?? source.upstream_model);
+	if (!supplierKey || !providerType || !upstreamModel) return null;
+	return {
+		supplierKey,
+		providerType,
+		upstreamModel,
+		displayName: asString(source.displayName ?? source.display_name) || null,
+		status: asString(source.status) || "available",
+		createdAt: asInteger(source.createdAt ?? source.created_at, 0, 0),
+		updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
+	};
 }
 
 export function normalizeAggregateApiSupplierModelList(
-  payload: unknown
+	payload: unknown,
 ): AggregateApiSupplierModel[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizeAggregateApiSupplierModel(item))
-    .filter((item): item is AggregateApiSupplierModel => Boolean(item));
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizeAggregateApiSupplierModel(item))
+		.filter((item): item is AggregateApiSupplierModel => Boolean(item));
 }
 
 export function normalizeAggregateApiSupplierModelImportResult(
-  payload: unknown
+	payload: unknown,
 ): AggregateApiSupplierModelImportResult {
-  const source = asObject(payload);
-  return {
-    imported: asInteger(source.imported, 0, 0),
-    items: asArray(source.items)
-      .map((item) => normalizeManagedModelSourceModel(item))
-      .filter((item): item is ManagedModelSourceModel => Boolean(item)),
-  };
+	const source = asObject(payload);
+	return {
+		imported: asInteger(source.imported, 0, 0),
+		items: asArray(source.items)
+			.map((item) => normalizeManagedModelSourceModel(item))
+			.filter((item): item is ManagedModelSourceModel => Boolean(item)),
+	};
 }
 
 /**
@@ -1088,23 +1169,29 @@ export function normalizeAggregateApiSupplierModelImportResult(
  * 返回函数执行结果
  */
 export function normalizeApiKeyUsageStats(payload: unknown): ApiKeyUsageStat[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => {
-      const current = asObject(item);
-      const keyId = asString(current.keyId ?? current.key_id);
-      if (!keyId) return null;
-      return {
-        keyId,
-        totalTokens: asInteger(current.totalTokens ?? current.total_tokens, 0, 0),
-        estimatedCostUsd: Math.max(
-          0,
-          toNullableNumber(current.estimatedCostUsd ?? current.estimated_cost_usd) ?? 0
-        ),
-      };
-    })
-    .filter((item): item is ApiKeyUsageStat => Boolean(item));
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => {
+			const current = asObject(item);
+			const keyId = asString(current.keyId ?? current.key_id);
+			if (!keyId) return null;
+			return {
+				keyId,
+				totalTokens: asInteger(
+					current.totalTokens ?? current.total_tokens,
+					0,
+					0,
+				),
+				estimatedCostUsd: Math.max(
+					0,
+					toNullableNumber(
+						current.estimatedCostUsd ?? current.estimated_cost_usd,
+					) ?? 0,
+				),
+			};
+		})
+		.filter((item): item is ApiKeyUsageStat => Boolean(item));
 }
 
 /**
@@ -1120,20 +1207,25 @@ export function normalizeApiKeyUsageStats(payload: unknown): ApiKeyUsageStat[] {
  * # 返回
  * 返回函数执行结果
  */
-export function normalizePluginCatalogTask(payload: unknown): PluginCatalogTask | null {
-  const source = asObject(payload);
-  const id = asString(source.id);
-  if (!id) return null;
-
-  return {
-    id,
-    name: asString(source.name) || id,
-    description: asString(source.description) || null,
-    entrypoint: asString(source.entrypoint) || "run",
-    scheduleKind: asString(source.scheduleKind ?? source.schedule_kind) || "manual",
-    intervalSeconds: toNullableNumber(source.intervalSeconds ?? source.interval_seconds),
-    enabled: asBoolean(source.enabled, true),
-  };
+export function normalizePluginCatalogTask(
+	payload: unknown,
+): PluginCatalogTask | null {
+	const source = asObject(payload);
+	const id = asString(source.id);
+	if (!id) return null;
+
+	return {
+		id,
+		name: asString(source.name) || id,
+		description: asString(source.description) || null,
+		entrypoint: asString(source.entrypoint) || "run",
+		scheduleKind:
+			asString(source.scheduleKind ?? source.schedule_kind) || "manual",
+		intervalSeconds: toNullableNumber(
+			source.intervalSeconds ?? source.interval_seconds,
+		),
+		enabled: asBoolean(source.enabled, true),
+	};
 }
 
 /**
@@ -1149,29 +1241,36 @@ export function normalizePluginCatalogTask(payload: unknown): PluginCatalogTask
  * # 返回
  * 返回函数执行结果
  */
-export function normalizePluginCatalogEntry(payload: unknown): PluginCatalogEntry | null {
-  const source = asObject(payload);
-  const id = asString(source.id);
-  if (!id) return null;
-  return {
-    id,
-    name: asString(source.name) || id,
-    version: asString(source.version) || "0.0.0",
-    description: asString(source.description) || null,
-    author: asString(source.author) || null,
-    homepageUrl: asString(source.homepageUrl ?? source.homepage_url) || null,
-    scriptUrl: asString(source.scriptUrl ?? source.script_url) || null,
-    scriptBody: asString(source.scriptBody ?? source.script_body) || null,
-    permissions: asArray(source.permissions).map((item) => asString(item)).filter(Boolean),
-    tasks: asArray(source.tasks)
-      .map((item) => normalizePluginCatalogTask(item))
-      .filter((item): item is PluginCatalogTask => Boolean(item)),
-    manifestVersion: asString(source.manifestVersion ?? source.manifest_version) || "1",
-    category: asString(source.category) || null,
-    runtimeKind: asString(source.runtimeKind ?? source.runtime_kind) || "rhai",
-    tags: asArray(source.tags).map((item) => asString(item)).filter(Boolean),
-    sourceUrl: asString(source.sourceUrl ?? source.source_url) || null,
-  };
+export function normalizePluginCatalogEntry(
+	payload: unknown,
+): PluginCatalogEntry | null {
+	const source = asObject(payload);
+	const id = asString(source.id);
+	if (!id) return null;
+	return {
+		id,
+		name: asString(source.name) || id,
+		version: asString(source.version) || "0.0.0",
+		description: asString(source.description) || null,
+		author: asString(source.author) || null,
+		homepageUrl: asString(source.homepageUrl ?? source.homepage_url) || null,
+		scriptUrl: asString(source.scriptUrl ?? source.script_url) || null,
+		scriptBody: asString(source.scriptBody ?? source.script_body) || null,
+		permissions: asArray(source.permissions)
+			.map((item) => asString(item))
+			.filter(Boolean),
+		tasks: asArray(source.tasks)
+			.map((item) => normalizePluginCatalogTask(item))
+			.filter((item): item is PluginCatalogTask => Boolean(item)),
+		manifestVersion:
+			asString(source.manifestVersion ?? source.manifest_version) || "1",
+		category: asString(source.category) || null,
+		runtimeKind: asString(source.runtimeKind ?? source.runtime_kind) || "rhai",
+		tags: asArray(source.tags)
+			.map((item) => asString(item))
+			.filter(Boolean),
+		sourceUrl: asString(source.sourceUrl ?? source.source_url) || null,
+	};
 }
 
 /**
@@ -1187,15 +1286,17 @@ export function normalizePluginCatalogEntry(payload: unknown): PluginCatalogEntr
  * # 返回
  * 返回函数执行结果
  */
-export function normalizePluginCatalogResult(payload: unknown): PluginCatalogResult {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload)
-    .map((item) => normalizePluginCatalogEntry(item))
-    .filter((item): item is PluginCatalogEntry => Boolean(item));
-  return {
-    sourceUrl: asString(source.sourceUrl ?? source.source_url),
-    items,
-  };
+export function normalizePluginCatalogResult(
+	payload: unknown,
+): PluginCatalogResult {
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload)
+		.map((item) => normalizePluginCatalogEntry(item))
+		.filter((item): item is PluginCatalogEntry => Boolean(item));
+	return {
+		sourceUrl: asString(source.sourceUrl ?? source.source_url),
+		items,
+	};
 }
 
 /**
@@ -1211,33 +1312,44 @@ export function normalizePluginCatalogResult(payload: unknown): PluginCatalogRes
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeInstalledPlugin(payload: unknown): InstalledPluginSummary | null {
-  const source = asObject(payload);
-  const pluginId = asString(source.pluginId ?? source.plugin_id);
-  if (!pluginId) return null;
-
-  return {
-    pluginId,
-    sourceUrl: asString(source.sourceUrl ?? source.source_url) || null,
-    name: asString(source.name) || pluginId,
-    version: asString(source.version) || "0.0.0",
-    description: asString(source.description) || null,
-    author: asString(source.author) || null,
-    homepageUrl: asString(source.homepageUrl ?? source.homepage_url) || null,
-    scriptUrl: asString(source.scriptUrl ?? source.script_url) || null,
-    permissions: asArray(source.permissions).map((item) => asString(item)).filter(Boolean),
-    status: asString(source.status) || "disabled",
-    installedAt: asInteger(source.installedAt ?? source.installed_at, 0, 0),
-    updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
-    lastRunAt: toNullableNumber(source.lastRunAt ?? source.last_run_at),
-    lastError: asString(source.lastError ?? source.last_error) || null,
-    taskCount: asInteger(source.taskCount ?? source.task_count, 0, 0),
-    enabledTaskCount: asInteger(source.enabledTaskCount ?? source.enabled_task_count, 0, 0),
-    manifestVersion: asString(source.manifestVersion ?? source.manifest_version) || "1",
-    category: asString(source.category) || null,
-    runtimeKind: asString(source.runtimeKind ?? source.runtime_kind) || "rhai",
-    tags: asArray(source.tags).map((item) => asString(item)).filter(Boolean),
-  };
+export function normalizeInstalledPlugin(
+	payload: unknown,
+): InstalledPluginSummary | null {
+	const source = asObject(payload);
+	const pluginId = asString(source.pluginId ?? source.plugin_id);
+	if (!pluginId) return null;
+
+	return {
+		pluginId,
+		sourceUrl: asString(source.sourceUrl ?? source.source_url) || null,
+		name: asString(source.name) || pluginId,
+		version: asString(source.version) || "0.0.0",
+		description: asString(source.description) || null,
+		author: asString(source.author) || null,
+		homepageUrl: asString(source.homepageUrl ?? source.homepage_url) || null,
+		scriptUrl: asString(source.scriptUrl ?? source.script_url) || null,
+		permissions: asArray(source.permissions)
+			.map((item) => asString(item))
+			.filter(Boolean),
+		status: asString(source.status) || "disabled",
+		installedAt: asInteger(source.installedAt ?? source.installed_at, 0, 0),
+		updatedAt: asInteger(source.updatedAt ?? source.updated_at, 0, 0),
+		lastRunAt: toNullableNumber(source.lastRunAt ?? source.last_run_at),
+		lastError: asString(source.lastError ?? source.last_error) || null,
+		taskCount: asInteger(source.taskCount ?? source.task_count, 0, 0),
+		enabledTaskCount: asInteger(
+			source.enabledTaskCount ?? source.enabled_task_count,
+			0,
+			0,
+		),
+		manifestVersion:
+			asString(source.manifestVersion ?? source.manifest_version) || "1",
+		category: asString(source.category) || null,
+		runtimeKind: asString(source.runtimeKind ?? source.runtime_kind) || "rhai",
+		tags: asArray(source.tags)
+			.map((item) => asString(item))
+			.filter(Boolean),
+	};
 }
 
 /**
@@ -1253,12 +1365,14 @@ export function normalizeInstalledPlugin(payload: unknown): InstalledPluginSumma
  * # 返回
  * 返回函数执行结果
  */
-export function normalizePluginInstalledList(payload: unknown): InstalledPluginSummary[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizeInstalledPlugin(item))
-    .filter((item): item is InstalledPluginSummary => Boolean(item));
+export function normalizePluginInstalledList(
+	payload: unknown,
+): InstalledPluginSummary[] {
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizeInstalledPlugin(item))
+		.filter((item): item is InstalledPluginSummary => Boolean(item));
 }
 
 /**
@@ -1274,26 +1388,31 @@ export function normalizePluginInstalledList(payload: unknown): InstalledPluginS
  * # 返回
  * 返回函数执行结果
  */
-export function normalizePluginTask(payload: unknown): PluginTaskSummary | null {
-  const source = asObject(payload);
-  const id = asString(source.id);
-  const pluginId = asString(source.pluginId ?? source.plugin_id);
-  if (!id || !pluginId) return null;
-  return {
-    id,
-    pluginId,
-    pluginName: asString(source.pluginName ?? source.plugin_name) || pluginId,
-    name: asString(source.name) || id,
-    description: asString(source.description) || null,
-    entrypoint: asString(source.entrypoint) || "run",
-    scheduleKind: asString(source.scheduleKind ?? source.schedule_kind) || "manual",
-    intervalSeconds: toNullableNumber(source.intervalSeconds ?? source.interval_seconds),
-    enabled: asBoolean(source.enabled, true),
-    nextRunAt: toNullableNumber(source.nextRunAt ?? source.next_run_at),
-    lastRunAt: toNullableNumber(source.lastRunAt ?? source.last_run_at),
-    lastStatus: asString(source.lastStatus ?? source.last_status) || null,
-    lastError: asString(source.lastError ?? source.last_error) || null,
-  };
+export function normalizePluginTask(
+	payload: unknown,
+): PluginTaskSummary | null {
+	const source = asObject(payload);
+	const id = asString(source.id);
+	const pluginId = asString(source.pluginId ?? source.plugin_id);
+	if (!id || !pluginId) return null;
+	return {
+		id,
+		pluginId,
+		pluginName: asString(source.pluginName ?? source.plugin_name) || pluginId,
+		name: asString(source.name) || id,
+		description: asString(source.description) || null,
+		entrypoint: asString(source.entrypoint) || "run",
+		scheduleKind:
+			asString(source.scheduleKind ?? source.schedule_kind) || "manual",
+		intervalSeconds: toNullableNumber(
+			source.intervalSeconds ?? source.interval_seconds,
+		),
+		enabled: asBoolean(source.enabled, true),
+		nextRunAt: toNullableNumber(source.nextRunAt ?? source.next_run_at),
+		lastRunAt: toNullableNumber(source.lastRunAt ?? source.last_run_at),
+		lastStatus: asString(source.lastStatus ?? source.last_status) || null,
+		lastError: asString(source.lastError ?? source.last_error) || null,
+	};
 }
 
 /**
@@ -1310,11 +1429,11 @@ export function normalizePluginTask(payload: unknown): PluginTaskSummary | null
  * 返回函数执行结果
  */
 export function normalizePluginTaskList(payload: unknown): PluginTaskSummary[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizePluginTask(item))
-    .filter((item): item is PluginTaskSummary => Boolean(item));
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizePluginTask(item))
+		.filter((item): item is PluginTaskSummary => Boolean(item));
 }
 
 /**
@@ -1330,24 +1449,26 @@ export function normalizePluginTaskList(payload: unknown): PluginTaskSummary[] {
  * # 返回
  * 返回函数执行结果
  */
-export function normalizePluginRunLog(payload: unknown): PluginRunLogSummary | null {
-  const source = asObject(payload);
-  const id = asInteger(source.id, 0, 0);
-  if (!id) return null;
-  return {
-    id,
-    pluginId: asString(source.pluginId ?? source.plugin_id),
-    pluginName: asString(source.pluginName ?? source.plugin_name) || null,
-    taskId: asString(source.taskId ?? source.task_id) || null,
-    taskName: asString(source.taskName ?? source.task_name) || null,
-    runType: asString(source.runType ?? source.run_type) || "manual",
-    status: asString(source.status) || "ok",
-    startedAt: asInteger(source.startedAt ?? source.started_at, 0, 0),
-    finishedAt: toNullableNumber(source.finishedAt ?? source.finished_at),
-    durationMs: toNullableNumber(source.durationMs ?? source.duration_ms),
-    output: source.output ?? null,
-    error: asString(source.error) || null,
-  };
+export function normalizePluginRunLog(
+	payload: unknown,
+): PluginRunLogSummary | null {
+	const source = asObject(payload);
+	const id = asInteger(source.id, 0, 0);
+	if (!id) return null;
+	return {
+		id,
+		pluginId: asString(source.pluginId ?? source.plugin_id),
+		pluginName: asString(source.pluginName ?? source.plugin_name) || null,
+		taskId: asString(source.taskId ?? source.task_id) || null,
+		taskName: asString(source.taskName ?? source.task_name) || null,
+		runType: asString(source.runType ?? source.run_type) || "manual",
+		status: asString(source.status) || "ok",
+		startedAt: asInteger(source.startedAt ?? source.started_at, 0, 0),
+		finishedAt: toNullableNumber(source.finishedAt ?? source.finished_at),
+		durationMs: toNullableNumber(source.durationMs ?? source.duration_ms),
+		output: source.output ?? null,
+		error: asString(source.error) || null,
+	};
 }
 
 /**
@@ -1363,12 +1484,14 @@ export function normalizePluginRunLog(payload: unknown): PluginRunLogSummary | n
  * # 返回
  * 返回函数执行结果
  */
-export function normalizePluginRunLogList(payload: unknown): PluginRunLogSummary[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizePluginRunLog(item))
-    .filter((item): item is PluginRunLogSummary => Boolean(item));
+export function normalizePluginRunLogList(
+	payload: unknown,
+): PluginRunLogSummary[] {
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizePluginRunLog(item))
+		.filter((item): item is PluginRunLogSummary => Boolean(item));
 }
 
 /**
@@ -1384,17 +1507,21 @@ export function normalizePluginRunLogList(payload: unknown): PluginRunLogSummary
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeDeviceAuthInfo(payload: unknown): DeviceAuthInfo | null {
-  const source = asObject(payload);
-  const verificationUrl = asString(source.verificationUrl ?? source.verification_url);
-  if (!verificationUrl) return null;
-
-  return {
-    userCodeUrl: asString(source.userCodeUrl ?? source.user_code_url),
-    tokenUrl: asString(source.tokenUrl ?? source.token_url),
-    verificationUrl,
-    redirectUri: asString(source.redirectUri ?? source.redirect_uri),
-  };
+export function normalizeDeviceAuthInfo(
+	payload: unknown,
+): DeviceAuthInfo | null {
+	const source = asObject(payload);
+	const verificationUrl = asString(
+		source.verificationUrl ?? source.verification_url,
+	);
+	if (!verificationUrl) return null;
+
+	return {
+		userCodeUrl: asString(source.userCodeUrl ?? source.user_code_url),
+		tokenUrl: asString(source.tokenUrl ?? source.token_url),
+		verificationUrl,
+		redirectUri: asString(source.redirectUri ?? source.redirect_uri),
+	};
 }
 
 /**
@@ -1411,15 +1538,17 @@ export function normalizeDeviceAuthInfo(payload: unknown): DeviceAuthInfo | null
  * 返回函数执行结果
  */
 export function normalizeLoginStartResult(payload: unknown): LoginStartResult {
-  const source = asObject(payload);
-  const verificationUrl = asString(source.verificationUrl ?? source.verification_url);
-  return {
-    type: asString(source.type ?? source.loginType ?? source.login_type),
-    authUrl: asString(source.authUrl ?? source.auth_url ?? verificationUrl),
-    loginId: asString(source.loginId ?? source.login_id),
-    verificationUrl: verificationUrl || null,
-    userCode: asString(source.userCode ?? source.user_code) || null,
-  };
+	const source = asObject(payload);
+	const verificationUrl = asString(
+		source.verificationUrl ?? source.verification_url,
+	);
+	return {
+		type: asString(source.type ?? source.loginType ?? source.login_type),
+		authUrl: asString(source.authUrl ?? source.auth_url ?? verificationUrl),
+		loginId: asString(source.loginId ?? source.login_id),
+		verificationUrl: verificationUrl || null,
+		userCode: asString(source.userCode ?? source.user_code) || null,
+	};
 }
 
 /**
@@ -1436,110 +1565,112 @@ export function normalizeLoginStartResult(payload: unknown): LoginStartResult {
  * 返回函数执行结果
  */
 export function normalizeRequestLog(item: unknown): RequestLog | null {
-  const source = asObject(item);
-  const createdAt = toNullableNumber(source.createdAt ?? source.created_at);
-  const traceId = asString(source.traceId ?? source.trace_id);
-  const keyId = asString(source.keyId ?? source.key_id);
-  const accountId = asString(source.accountId ?? source.account_id);
-  const requestPath = asString(source.requestPath ?? source.request_path);
-  const method = asString(source.method);
-  const id = traceId || [createdAt ?? "", method, requestPath, accountId, keyId].join("|");
-  if (!id) return null;
-  const durationMs = toNullableNumber(
-    source.durationMs ??
-      source.duration_ms ??
-      source.latencyMs ??
-      source.latency_ms ??
-      source.elapsedMs ??
-      source.elapsed_ms ??
-      source.responseTimeMs ??
-      source.response_time_ms
-  );
-  const firstResponseMs = toNullableNumber(
-    source.firstResponseMs ??
-      source.first_response_ms ??
-      source.firstTokenMs ??
-      source.first_token_ms ??
-      source.ttftMs ??
-      source.ttft_ms
-  );
-
-  return {
-    id,
-    traceId,
-    keyId,
-    accountId,
-    initialAccountId: asString(source.initialAccountId ?? source.initial_account_id),
-    attemptedAccountIds: asArray(source.attemptedAccountIds ?? source.attempted_account_ids)
-      .map((value) => asString(value))
-      .filter((value) => value.length > 0),
-    initialAggregateApiId: asString(
-      source.initialAggregateApiId ?? source.initial_aggregate_api_id
-    ),
-    attemptedAggregateApiIds: asArray(
-      source.attemptedAggregateApiIds ?? source.attempted_aggregate_api_ids
-    )
-      .map((value) => asString(value))
-      .filter((value) => value.length > 0),
-    requestPath,
-    originalPath: asString(source.originalPath ?? source.original_path),
-    adaptedPath: asString(source.adaptedPath ?? source.adapted_path),
-    method,
-    requestType: asString(source.requestType ?? source.request_type) || "http",
-    gatewayMode: asString(source.gatewayMode ?? source.gateway_mode),
-    routeStrategy: asString(source.routeStrategy ?? source.route_strategy),
-    routeSource: asString(source.routeSource ?? source.route_source),
-    path: requestPath,
-    clientModel: asString(source.clientModel ?? source.client_model),
-    model: asString(source.model),
-    modelSource: asString(source.modelSource ?? source.model_source),
-    upstreamModel: asString(source.upstreamModel ?? source.upstream_model),
-    actualSourceKind: asString(
-      source.actualSourceKind ?? source.actual_source_kind
-    ),
-    actualSourceId: asString(source.actualSourceId ?? source.actual_source_id),
-    clientReasoningEffort: asString(
-      source.clientReasoningEffort ?? source.client_reasoning_effort
-    ),
-    reasoningEffort: asString(source.reasoningEffort ?? source.reasoning_effort),
-    reasoningSource: asString(source.reasoningSource ?? source.reasoning_source),
-    serviceTier: asString(source.serviceTier ?? source.service_tier),
-    effectiveServiceTier: asString(
-      source.effectiveServiceTier ?? source.effective_service_tier
-    ),
-    serviceTierSource: asString(
-      source.serviceTierSource ?? source.service_tier_source
-    ),
-    responseAdapter: asString(source.responseAdapter ?? source.response_adapter),
-    canonicalSource:
-      asString(source.canonicalSource ?? source.canonical_source) || "native_codex",
-    sizeRejectStage:
-      asString(source.sizeRejectStage ?? source.size_reject_stage) || "-",
-    upstreamUrl: asString(source.upstreamUrl ?? source.upstream_url),
-    aggregateApiSupplierName:
-      asString(
-        source.aggregateApiSupplierName ?? source.aggregate_api_supplier_name
-      ) || null,
-    aggregateApiUrl:
-      asString(source.aggregateApiUrl ?? source.aggregate_api_url) || null,
-    statusCode: toNullableNumber(source.statusCode ?? source.status_code),
-    inputTokens: toNullableNumber(source.inputTokens ?? source.input_tokens),
-    cachedInputTokens: toNullableNumber(
-      source.cachedInputTokens ?? source.cached_input_tokens
-    ),
-    outputTokens: toNullableNumber(source.outputTokens ?? source.output_tokens),
-    totalTokens: toNullableNumber(source.totalTokens ?? source.total_tokens),
-    reasoningOutputTokens: toNullableNumber(
-      source.reasoningOutputTokens ?? source.reasoning_output_tokens
-    ),
-    estimatedCostUsd: toNullableNumber(
-      source.estimatedCostUsd ?? source.estimated_cost_usd
-    ),
-    durationMs,
-    firstResponseMs,
-    error: asString(source.error),
-    createdAt,
-  };
+	const source = asObject(item);
+	const createdAt = toNullableNumber(source.createdAt ?? source.created_at);
+	const traceId = asString(source.traceId ?? source.trace_id);
+	const keyId = asString(source.keyId ?? source.key_id);
+	const accountId = asString(source.accountId ?? source.account_id);
+	const requestPath = asString(source.requestPath ?? source.request_path);
+	const method = asString(source.method);
+	const id =
+		traceId ||
+		[createdAt ?? "", method, requestPath, accountId, keyId].join("|");
+	if (!id) return null;
+	const durationMs = toNullableNumber(
+		source.durationMs ??
+			source.duration_ms ??
+			source.latencyMs ??
+			source.latency_ms ??
+			source.elapsedMs ??
+			source.elapsed_ms ??
+			source.responseTimeMs ??
+			source.response_time_ms,
+	);
+	const firstResponseMs = toNullableNumber(
+		source.firstResponseMs ??
+			source.first_response_ms ??
+			source.firstTokenMs ??
+			source.first_token_ms ??
+			source.ttftMs ??
+			source.ttft_ms,
+	);
+
+	return {
+		id,
+		traceId,
+		keyId,
+		accountId,
+		initialAccountId: asString(source.initialAccountId ?? source.initial_account_id),
+		attemptedAccountIds: asArray(source.attemptedAccountIds ?? source.attempted_account_ids)
+			.map((value) => asString(value))
+			.filter((value) => value.length > 0),
+		initialAggregateApiId: asString(
+			source.initialAggregateApiId ?? source.initial_aggregate_api_id,
+		),
+		attemptedAggregateApiIds: asArray(
+			source.attemptedAggregateApiIds ?? source.attempted_aggregate_api_ids,
+		)
+			.map((value) => asString(value))
+			.filter((value) => value.length > 0),
+		requestPath,
+		originalPath: asString(source.originalPath ?? source.original_path),
+		adaptedPath: asString(source.adaptedPath ?? source.adapted_path),
+		method,
+		requestType: asString(source.requestType ?? source.request_type) || "http",
+		gatewayMode: asString(source.gatewayMode ?? source.gateway_mode),
+		routeStrategy: asString(source.routeStrategy ?? source.route_strategy),
+		routeSource: asString(source.routeSource ?? source.route_source),
+		path: requestPath,
+		clientModel: asString(source.clientModel ?? source.client_model),
+		model: asString(source.model),
+		modelSource: asString(source.modelSource ?? source.model_source),
+		upstreamModel: asString(source.upstreamModel ?? source.upstream_model),
+		actualSourceKind: asString(
+			source.actualSourceKind ?? source.actual_source_kind,
+		),
+		actualSourceId: asString(source.actualSourceId ?? source.actual_source_id),
+		clientReasoningEffort: asString(
+			source.clientReasoningEffort ?? source.client_reasoning_effort,
+		),
+		reasoningEffort: asString(source.reasoningEffort ?? source.reasoning_effort),
+		reasoningSource: asString(source.reasoningSource ?? source.reasoning_source),
+		serviceTier: asString(source.serviceTier ?? source.service_tier),
+		effectiveServiceTier: asString(
+			source.effectiveServiceTier ?? source.effective_service_tier,
+		),
+		serviceTierSource: asString(
+			source.serviceTierSource ?? source.service_tier_source,
+		),
+		responseAdapter: asString(source.responseAdapter ?? source.response_adapter),
+		canonicalSource:
+			asString(source.canonicalSource ?? source.canonical_source) || "native_codex",
+		sizeRejectStage:
+			asString(source.sizeRejectStage ?? source.size_reject_stage) || "-",
+		upstreamUrl: asString(source.upstreamUrl ?? source.upstream_url),
+		aggregateApiSupplierName:
+			asString(
+				source.aggregateApiSupplierName ?? source.aggregate_api_supplier_name,
+			) || null,
+		aggregateApiUrl:
+			asString(source.aggregateApiUrl ?? source.aggregate_api_url) || null,
+		statusCode: toNullableNumber(source.statusCode ?? source.status_code),
+		inputTokens: toNullableNumber(source.inputTokens ?? source.input_tokens),
+		cachedInputTokens: toNullableNumber(
+			source.cachedInputTokens ?? source.cached_input_tokens,
+		),
+		outputTokens: toNullableNumber(source.outputTokens ?? source.output_tokens),
+		totalTokens: toNullableNumber(source.totalTokens ?? source.total_tokens),
+		reasoningOutputTokens: toNullableNumber(
+			source.reasoningOutputTokens ?? source.reasoning_output_tokens,
+		),
+		estimatedCostUsd: toNullableNumber(
+			source.estimatedCostUsd ?? source.estimated_cost_usd,
+		),
+		durationMs,
+		firstResponseMs,
+		error: asString(source.error),
+		createdAt,
+	};
 }
 
 /**
@@ -1556,11 +1687,11 @@ export function normalizeRequestLog(item: unknown): RequestLog | null {
  * 返回函数执行结果
  */
 export function normalizeRequestLogs(payload: unknown): RequestLog[] {
-  const source = asObject(payload);
-  const items = asArray(source.items ?? payload);
-  return items
-    .map((item) => normalizeRequestLog(item))
-    .filter((item): item is RequestLog => Boolean(item));
+	const source = asObject(payload);
+	const items = asArray(source.items ?? payload);
+	return items
+		.map((item) => normalizeRequestLog(item))
+		.filter((item): item is RequestLog => Boolean(item));
 }
 
 /**
@@ -1576,15 +1707,17 @@ export function normalizeRequestLogs(payload: unknown): RequestLog[] {
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeRequestLogListResult(payload: unknown): RequestLogListResult {
-  const source = asObject(payload);
-  const items = normalizeRequestLogs(source.items ?? payload);
-  return {
-    items,
-    total: asInteger(source.total, items.length, 0),
-    page: asInteger(source.page, 1, 1),
-    pageSize: asInteger(source.pageSize, items.length || 20, 1),
-  };
+export function normalizeRequestLogListResult(
+	payload: unknown,
+): RequestLogListResult {
+	const source = asObject(payload);
+	const items = normalizeRequestLogs(source.items ?? payload);
+	return {
+		items,
+		total: asInteger(source.total, items.length, 0),
+		page: asInteger(source.page, 1, 1),
+		pageSize: asInteger(source.pageSize, items.length || 20, 1),
+	};
 }
 
 /**
@@ -1601,17 +1734,17 @@ export function normalizeRequestLogListResult(payload: unknown): RequestLogListR
  * 返回函数执行结果
  */
 export function normalizeRequestLogFilterSummary(
-  payload: unknown
+	payload: unknown,
 ): RequestLogFilterSummary {
-  const source = asObject(payload);
-  return {
-    totalCount: asInteger(source.totalCount, 0, 0),
-    filteredCount: asInteger(source.filteredCount, 0, 0),
-    successCount: asInteger(source.successCount, 0, 0),
-    errorCount: asInteger(source.errorCount, 0, 0),
-    totalTokens: asInteger(source.totalTokens, 0, 0),
-    totalCostUsd: Math.max(0, toNullableNumber(source.totalCostUsd) ?? 0),
-  };
+	const source = asObject(payload);
+	return {
+		totalCount: asInteger(source.totalCount, 0, 0),
+		filteredCount: asInteger(source.filteredCount, 0, 0),
+		successCount: asInteger(source.successCount, 0, 0),
+		errorCount: asInteger(source.errorCount, 0, 0),
+		totalTokens: asInteger(source.totalTokens, 0, 0),
+		totalCostUsd: Math.max(0, toNullableNumber(source.totalCostUsd) ?? 0),
+	};
 }
 
 /**
@@ -1627,70 +1760,72 @@ export function normalizeRequestLogFilterSummary(
  * # 返回
  * 返回函数执行结果
  */
-export function normalizeBackgroundTasks(payload: unknown): BackgroundTaskSettings {
-  const source = asObject(payload);
-  return {
-    usagePollingEnabled: asBoolean(
-      source.usagePollingEnabled,
-      DEFAULT_BACKGROUND_TASKS.usagePollingEnabled
-    ),
-    usagePollIntervalSecs: asInteger(
-      source.usagePollIntervalSecs,
-      DEFAULT_BACKGROUND_TASKS.usagePollIntervalSecs,
-      1
-    ),
-    gatewayKeepaliveEnabled: asBoolean(
-      source.gatewayKeepaliveEnabled,
-      DEFAULT_BACKGROUND_TASKS.gatewayKeepaliveEnabled
-    ),
-    gatewayKeepaliveIntervalSecs: asInteger(
-      source.gatewayKeepaliveIntervalSecs,
-      DEFAULT_BACKGROUND_TASKS.gatewayKeepaliveIntervalSecs,
-      1
-    ),
-    tokenRefreshPollingEnabled: asBoolean(
-      source.tokenRefreshPollingEnabled,
-      DEFAULT_BACKGROUND_TASKS.tokenRefreshPollingEnabled
-    ),
-    tokenRefreshPollIntervalSecs: asInteger(
-      source.tokenRefreshPollIntervalSecs,
-      DEFAULT_BACKGROUND_TASKS.tokenRefreshPollIntervalSecs,
-      1
-    ),
-    warmupCronEnabled: asBoolean(
-      source.warmupCronEnabled,
-      DEFAULT_BACKGROUND_TASKS.warmupCronEnabled
-    ),
-    warmupCronExpression: asString(
-      source.warmupCronExpression,
-      DEFAULT_BACKGROUND_TASKS.warmupCronExpression
-    ),
-    usageRefreshWorkers: asInteger(
-      source.usageRefreshWorkers,
-      DEFAULT_BACKGROUND_TASKS.usageRefreshWorkers,
-      1
-    ),
-    httpWorkerFactor: asInteger(
-      source.httpWorkerFactor,
-      DEFAULT_BACKGROUND_TASKS.httpWorkerFactor,
-      1
-    ),
-    httpWorkerMin: asInteger(
-      source.httpWorkerMin,
-      DEFAULT_BACKGROUND_TASKS.httpWorkerMin,
-      1
-    ),
-    httpStreamWorkerFactor: asInteger(
-      source.httpStreamWorkerFactor,
-      DEFAULT_BACKGROUND_TASKS.httpStreamWorkerFactor,
-      1
-    ),
-    httpStreamWorkerMin: asInteger(
-      source.httpStreamWorkerMin,
-      DEFAULT_BACKGROUND_TASKS.httpStreamWorkerMin,
-      1
-    ),
-  };
+export function normalizeBackgroundTasks(
+	payload: unknown,
+): BackgroundTaskSettings {
+	const source = asObject(payload);
+	return {
+		usagePollingEnabled: asBoolean(
+			source.usagePollingEnabled,
+			DEFAULT_BACKGROUND_TASKS.usagePollingEnabled,
+		),
+		usagePollIntervalSecs: asInteger(
+			source.usagePollIntervalSecs,
+			DEFAULT_BACKGROUND_TASKS.usagePollIntervalSecs,
+			1,
+		),
+		gatewayKeepaliveEnabled: asBoolean(
+			source.gatewayKeepaliveEnabled,
+			DEFAULT_BACKGROUND_TASKS.gatewayKeepaliveEnabled,
+		),
+		gatewayKeepaliveIntervalSecs: asInteger(
+			source.gatewayKeepaliveIntervalSecs,
+			DEFAULT_BACKGROUND_TASKS.gatewayKeepaliveIntervalSecs,
+			1,
+		),
+		tokenRefreshPollingEnabled: asBoolean(
+			source.tokenRefreshPollingEnabled,
+			DEFAULT_BACKGROUND_TASKS.tokenRefreshPollingEnabled,
+		),
+		tokenRefreshPollIntervalSecs: asInteger(
+			source.tokenRefreshPollIntervalSecs,
+			DEFAULT_BACKGROUND_TASKS.tokenRefreshPollIntervalSecs,
+			1,
+		),
+		warmupCronEnabled: asBoolean(
+			source.warmupCronEnabled,
+			DEFAULT_BACKGROUND_TASKS.warmupCronEnabled,
+		),
+		warmupCronExpression: asString(
+			source.warmupCronExpression,
+			DEFAULT_BACKGROUND_TASKS.warmupCronExpression,
+		),
+		usageRefreshWorkers: asInteger(
+			source.usageRefreshWorkers,
+			DEFAULT_BACKGROUND_TASKS.usageRefreshWorkers,
+			1,
+		),
+		httpWorkerFactor: asInteger(
+			source.httpWorkerFactor,
+			DEFAULT_BACKGROUND_TASKS.httpWorkerFactor,
+			1,
+		),
+		httpWorkerMin: asInteger(
+			source.httpWorkerMin,
+			DEFAULT_BACKGROUND_TASKS.httpWorkerMin,
+			1,
+		),
+		httpStreamWorkerFactor: asInteger(
+			source.httpStreamWorkerFactor,
+			DEFAULT_BACKGROUND_TASKS.httpStreamWorkerFactor,
+			1,
+		),
+		httpStreamWorkerMin: asInteger(
+			source.httpStreamWorkerMin,
+			DEFAULT_BACKGROUND_TASKS.httpStreamWorkerMin,
+			1,
+		),
+	};
 }
 
 /**
@@ -1706,64 +1841,69 @@ export function normalizeBackgroundTasks(payload: unknown): BackgroundTaskSettin
  * # 返回
  * 返回函数执行结果
  */
-function clampPercent(value: number | null | undefined, fallback: number): number {
-  const parsed = toNullableNumber(value);
-  if (parsed == null) return fallback;
-  return Math.max(0, Math.min(100, parsed));
+function clampPercent(
+	value: number | null | undefined,
+	fallback: number,
+): number {
+	const parsed = toNullableNumber(value);
+	if (parsed == null) return fallback;
+	return Math.max(0, Math.min(100, parsed));
 }
 
 export function normalizeQuotaGuard(payload: unknown): QuotaGuardSettings {
-  const source = asObject(payload);
-  return {
-    enabled: asBoolean(source.enabled, DEFAULT_QUOTA_GUARD.enabled),
-    primaryMinRemainingPercent: clampPercent(
-      toNullableNumber(
-        source.primaryMinRemainingPercent ??
-          source.primary_min_remaining_percent
-      ),
-      DEFAULT_QUOTA_GUARD.primaryMinRemainingPercent
-    ),
-    secondaryMinRemainingPercent: clampPercent(
-      toNullableNumber(
-        source.secondaryMinRemainingPercent ??
-          source.secondary_min_remaining_percent
-      ),
-      DEFAULT_QUOTA_GUARD.secondaryMinRemainingPercent
-    ),
-    allowAllLowQuotaFallback: asBoolean(
-      source.allowAllLowQuotaFallback ?? source.allow_all_low_quota_fallback,
-      DEFAULT_QUOTA_GUARD.allowAllLowQuotaFallback
-    ),
-  };
+	const source = asObject(payload);
+	return {
+		enabled: asBoolean(source.enabled, DEFAULT_QUOTA_GUARD.enabled),
+		primaryMinRemainingPercent: clampPercent(
+			toNullableNumber(
+				source.primaryMinRemainingPercent ??
+					source.primary_min_remaining_percent,
+			),
+			DEFAULT_QUOTA_GUARD.primaryMinRemainingPercent,
+		),
+		secondaryMinRemainingPercent: clampPercent(
+			toNullableNumber(
+				source.secondaryMinRemainingPercent ??
+					source.secondary_min_remaining_percent,
+			),
+			DEFAULT_QUOTA_GUARD.secondaryMinRemainingPercent,
+		),
+		allowAllLowQuotaFallback: asBoolean(
+			source.allowAllLowQuotaFallback ?? source.allow_all_low_quota_fallback,
+			DEFAULT_QUOTA_GUARD.allowAllLowQuotaFallback,
+		),
+	};
 }
 
 export function normalizeRuntimeTimeZone(payload: unknown): RuntimeTimeZone {
-  const source = asObject(payload);
-  return {
-    name: asString(source.name) || DEFAULT_RUNTIME_TIME_ZONE.name,
-    offset: asString(source.offset),
-    source: asString(source.source) || DEFAULT_RUNTIME_TIME_ZONE.source,
-  };
-}
-
-export function normalizeEnvOverrideCatalog(payload: unknown): EnvOverrideCatalogItem[] {
-  return asArray(payload).reduce<EnvOverrideCatalogItem[]>((result, item) => {
-    const source = asObject(item);
-    const key = asString(source.key);
-    if (!key) return result;
-    result.push({
-      key,
-      label: asString(source.label) || key,
-      defaultValue: asString(source.defaultValue ?? source.default_value),
-      scope: asString(source.scope),
-      applyMode: asString(source.applyMode ?? source.apply_mode),
-      riskLevel: asString(source.riskLevel ?? source.risk_level) || "medium",
-      effectScope:
-        asString(source.effectScope ?? source.effect_scope) || "runtime-global",
-      safetyNote: asString(source.safetyNote ?? source.safety_note),
-    });
-    return result;
-  }, []);
+	const source = asObject(payload);
+	return {
+		name: asString(source.name) || DEFAULT_RUNTIME_TIME_ZONE.name,
+		offset: asString(source.offset),
+		source: asString(source.source) || DEFAULT_RUNTIME_TIME_ZONE.source,
+	};
+}
+
+export function normalizeEnvOverrideCatalog(
+	payload: unknown,
+): EnvOverrideCatalogItem[] {
+	return asArray(payload).reduce<EnvOverrideCatalogItem[]>((result, item) => {
+		const source = asObject(item);
+		const key = asString(source.key);
+		if (!key) return result;
+		result.push({
+			key,
+			label: asString(source.label) || key,
+			defaultValue: asString(source.defaultValue ?? source.default_value),
+			scope: asString(source.scope),
+			applyMode: asString(source.applyMode ?? source.apply_mode),
+			riskLevel: asString(source.riskLevel ?? source.risk_level) || "medium",
+			effectScope:
+				asString(source.effectScope ?? source.effect_scope) || "runtime-global",
+			safetyNote: asString(source.safetyNote ?? source.safety_note),
+		});
+		return result;
+	}, []);
 }
 
 /**
@@ -1780,90 +1920,103 @@ export function normalizeEnvOverrideCatalog(payload: unknown): EnvOverrideCatalo
  * 返回函数执行结果
  */
 export function normalizeAppSettings(payload: unknown): AppSettings {
-  const source = asObject(payload);
-  return {
-    updateAutoCheck: asBoolean(source.updateAutoCheck, true),
-    closeToTrayOnClose: asBoolean(source.closeToTrayOnClose, false),
-    closeToTraySupported: asBoolean(source.closeToTraySupported, false),
-    lowTransparency: asBoolean(source.lowTransparency, false),
-    lightweightModeOnCloseToTray: asBoolean(
-      source.lightweightModeOnCloseToTray,
-      false
-    ),
-    codexCliGuideDismissed: asBoolean(source.codexCliGuideDismissed, false),
-    webAccessPasswordConfigured: asBoolean(
-      source.webAccessPasswordConfigured,
-      false
-    ),
-    webAuthMode: asString(source.webAuthMode) || "none",
-    webAuthModeOptions: asArray(source.webAuthModeOptions)
-      .map((item) => asString(item))
-      .filter(Boolean),
-    distributionEnabled: asBoolean(source.distributionEnabled, false),
-    billingModeLock: readBillingModeLock(source.billingModeLock),
-    appUsersConfigured: asBoolean(source.appUsersConfigured, false),
-    appUserCount: asInteger(source.appUserCount, 0, 0),
-    locale: asString(source.locale) || "zh-CN",
-    localeOptions: asArray(source.localeOptions).map((item) => asString(item)).filter(Boolean),
-    serviceAddr: asString(source.serviceAddr) || "localhost:48760",
-    serviceListenMode: asString(source.serviceListenMode) || "loopback",
-    serviceListenModeOptions: asArray(source.serviceListenModeOptions).map((item) =>
-      asString(item)
-    ),
-    routeStrategy: asString(source.routeStrategy) || "ordered",
-    routeStrategyOptions: asArray(source.routeStrategyOptions).map((item) =>
-      asString(item)
-    ),
-    freeAccountMaxModel: asString(source.freeAccountMaxModel) || "auto",
-    freeAccountMaxModelOptions: asArray(source.freeAccountMaxModelOptions).map((item) =>
-      asString(item)
-    ),
-    modelForwardRules: asString(source.modelForwardRules ?? source.model_forward_rules),
-    compactModelForwardRules: asString(
-      source.compactModelForwardRules ?? source.compact_model_forward_rules
-    ),
-    accountMaxInflight: asInteger(source.accountMaxInflight, 1, 0),
-    quotaGuard: normalizeQuotaGuard(source.quotaGuard ?? source.quota_guard),
-    gatewayOriginator:
-      asString(source.gatewayOriginator) || DEFAULT_CODEX_ORIGINATOR,
-    gatewayOriginatorDefault:
-      asString(source.gatewayOriginatorDefault) || DEFAULT_CODEX_ORIGINATOR,
-    gatewayUserAgentVersion:
-      asString(source.gatewayUserAgentVersion) || DEFAULT_CODEX_USER_AGENT_VERSION,
-    gatewayUserAgentVersionDefault:
-      asString(source.gatewayUserAgentVersionDefault) ||
-      DEFAULT_CODEX_USER_AGENT_VERSION,
-    gatewayResidencyRequirement: asString(source.gatewayResidencyRequirement),
-    gatewayResidencyRequirementOptions: asArray(
-      source.gatewayResidencyRequirementOptions
-    ).map((item) => asString(item)),
-    pluginMarketMode: asString(source.pluginMarketMode ?? source.plugin_market_mode) || "builtin",
-    pluginMarketSourceUrl: asString(source.pluginMarketSourceUrl ?? source.plugin_market_source_url),
-    authorSponsors: normalizeSponsorLinkItems(
-      source.authorSponsors,
-      DEFAULT_AUTHOR_SPONSORS
-    ),
-    authorServerRecommendations: normalizeSponsorLinkItems(
-      source.authorServerRecommendations,
-      DEFAULT_AUTHOR_SERVER_RECOMMENDATIONS
-    ),
-    upstreamProxyUrl: asString(source.upstreamProxyUrl),
-    upstreamStreamTimeoutMs: asInteger(source.upstreamStreamTimeoutMs, 300_000, 0),
-    upstreamTotalTimeoutMs: asInteger(source.upstreamTotalTimeoutMs, 0, 0),
-    sseKeepaliveIntervalMs: asInteger(source.sseKeepaliveIntervalMs, 15_000, 1),
-    backgroundTasks: normalizeBackgroundTasks(source.backgroundTasks),
-    runtimeTimeZone: normalizeRuntimeTimeZone(source.runtimeTimeZone),
-    envOverrides: normalizeStringRecord(source.envOverrides),
-    envOverrideCatalog: normalizeEnvOverrideCatalog(source.envOverrideCatalog),
-    envOverrideReservedKeys: asArray(source.envOverrideReservedKeys).map((item) =>
-      asString(item)
-    ),
-    envOverrideUnsupportedKeys: asArray(source.envOverrideUnsupportedKeys).map((item) =>
-      asString(item)
-    ),
-    theme: asString(source.theme) || "tech",
-    appearancePreset: asString(source.appearancePreset) || "classic",
-  };
+	const source = asObject(payload);
+	return {
+		updateAutoCheck: asBoolean(source.updateAutoCheck, true),
+		closeToTrayOnClose: asBoolean(source.closeToTrayOnClose, false),
+		closeToTraySupported: asBoolean(source.closeToTraySupported, false),
+		lowTransparency: asBoolean(source.lowTransparency, false),
+		lightweightModeOnCloseToTray: asBoolean(
+			source.lightweightModeOnCloseToTray,
+			false,
+		),
+		codexCliGuideDismissed: asBoolean(source.codexCliGuideDismissed, false),
+		webAccessPasswordConfigured: asBoolean(
+			source.webAccessPasswordConfigured,
+			false,
+		),
+		webAuthMode: asString(source.webAuthMode) || "none",
+		webAuthModeOptions: asArray(source.webAuthModeOptions)
+			.map((item) => asString(item))
+			.filter(Boolean),
+		distributionEnabled: asBoolean(source.distributionEnabled, false),
+		billingModeLock: readBillingModeLock(source.billingModeLock),
+		appUsersConfigured: asBoolean(source.appUsersConfigured, false),
+		appUserCount: asInteger(source.appUserCount, 0, 0),
+		locale: asString(source.locale) || "zh-CN",
+		localeOptions: asArray(source.localeOptions)
+			.map((item) => asString(item))
+			.filter(Boolean),
+		serviceAddr: asString(source.serviceAddr) || "localhost:48760",
+		serviceListenMode: asString(source.serviceListenMode) || "loopback",
+		serviceListenModeOptions: asArray(source.serviceListenModeOptions).map(
+			(item) => asString(item),
+		),
+		routeStrategy: asString(source.routeStrategy) || "ordered",
+		routeStrategyOptions: asArray(source.routeStrategyOptions).map((item) =>
+			asString(item),
+		),
+		freeAccountMaxModel: asString(source.freeAccountMaxModel) || "auto",
+		freeAccountMaxModelOptions: asArray(source.freeAccountMaxModelOptions).map(
+			(item) => asString(item),
+		),
+		modelForwardRules: asString(
+			source.modelForwardRules ?? source.model_forward_rules,
+		),
+		compactModelForwardRules: asString(
+			source.compactModelForwardRules ?? source.compact_model_forward_rules,
+		),
+		accountMaxInflight: asInteger(source.accountMaxInflight, 1, 0),
+		quotaGuard: normalizeQuotaGuard(source.quotaGuard ?? source.quota_guard),
+		gatewayOriginator:
+			asString(source.gatewayOriginator) || DEFAULT_CODEX_ORIGINATOR,
+		gatewayOriginatorDefault:
+			asString(source.gatewayOriginatorDefault) || DEFAULT_CODEX_ORIGINATOR,
+		gatewayUserAgentVersion:
+			asString(source.gatewayUserAgentVersion) ||
+			DEFAULT_CODEX_USER_AGENT_VERSION,
+		gatewayUserAgentVersionDefault:
+			asString(source.gatewayUserAgentVersionDefault) ||
+			DEFAULT_CODEX_USER_AGENT_VERSION,
+		gatewayResidencyRequirement: asString(source.gatewayResidencyRequirement),
+		gatewayResidencyRequirementOptions: asArray(
+			source.gatewayResidencyRequirementOptions,
+		).map((item) => asString(item)),
+		pluginMarketMode:
+			asString(source.pluginMarketMode ?? source.plugin_market_mode) ||
+			"builtin",
+		pluginMarketSourceUrl: asString(
+			source.pluginMarketSourceUrl ?? source.plugin_market_source_url,
+		),
+		authorSponsors: normalizeSponsorLinkItems(
+			source.authorSponsors,
+			DEFAULT_AUTHOR_SPONSORS,
+		),
+		authorServerRecommendations: normalizeSponsorLinkItems(
+			source.authorServerRecommendations,
+			DEFAULT_AUTHOR_SERVER_RECOMMENDATIONS,
+		),
+		upstreamProxyUrl: asString(source.upstreamProxyUrl),
+		upstreamStreamTimeoutMs: asInteger(
+			source.upstreamStreamTimeoutMs,
+			300_000,
+			0,
+		),
+		upstreamTotalTimeoutMs: asInteger(source.upstreamTotalTimeoutMs, 0, 0),
+		sseKeepaliveIntervalMs: asInteger(source.sseKeepaliveIntervalMs, 15_000, 1),
+		backgroundTasks: normalizeBackgroundTasks(source.backgroundTasks),
+		runtimeTimeZone: normalizeRuntimeTimeZone(source.runtimeTimeZone),
+		envOverrides: normalizeStringRecord(source.envOverrides),
+		envOverrideCatalog: normalizeEnvOverrideCatalog(source.envOverrideCatalog),
+		envOverrideReservedKeys: asArray(source.envOverrideReservedKeys).map(
+			(item) => asString(item),
+		),
+		envOverrideUnsupportedKeys: asArray(source.envOverrideUnsupportedKeys).map(
+			(item) => asString(item),
+		),
+		theme: asString(source.theme) || "tech",
+		appearancePreset: asString(source.appearancePreset) || "classic",
+	};
 }
 
 /**
@@ -1880,21 +2033,29 @@ export function normalizeAppSettings(payload: unknown): AppSettings {
  * 返回函数执行结果
  */
 export function normalizeStartupSnapshot(payload: unknown): StartupSnapshot {
-  const source = asObject(payload);
-  const usageSnapshots = normalizeUsageList(source.usageSnapshots);
-  const usageMap = buildUsageMap(usageSnapshots);
-  const accounts = asArray(source.accounts)
-    .map((item) => normalizeAccount(item, usageMap.get(asString(asObject(item).id))))
-    .filter((item): item is Account => Boolean(item));
-
-  return {
-    accounts,
-    usageSnapshots,
-    usageAggregateSummary: normalizeUsageAggregateSummary(source.usageAggregateSummary),
-    apiKeys: normalizeApiKeyList(source.apiKeys),
-    apiModels: normalizeModelCatalog(source.apiModels ?? { models: source.apiModelOptions }),
-    manualPreferredAccountId: asString(source.manualPreferredAccountId),
-    requestLogTodaySummary: normalizeTodaySummary(source.requestLogTodaySummary),
-    requestLogs: normalizeRequestLogs(source.requestLogs),
-  };
+	const source = asObject(payload);
+	const usageSnapshots = normalizeUsageList(source.usageSnapshots);
+	const usageMap = buildUsageMap(usageSnapshots);
+	const accounts = asArray(source.accounts)
+		.map((item) =>
+			normalizeAccount(item, usageMap.get(asString(asObject(item).id))),
+		)
+		.filter((item): item is Account => Boolean(item));
+
+	return {
+		accounts,
+		usageSnapshots,
+		usageAggregateSummary: normalizeUsageAggregateSummary(
+			source.usageAggregateSummary,
+		),
+		apiKeys: normalizeApiKeyList(source.apiKeys),
+		apiModels: normalizeModelCatalog(
+			source.apiModels ?? { models: source.apiModelOptions },
+		),
+		manualPreferredAccountId: asString(source.manualPreferredAccountId),
+		requestLogTodaySummary: normalizeTodaySummary(
+			source.requestLogTodaySummary,
+		),
+		requestLogs: normalizeRequestLogs(source.requestLogs),
+	};
 }
diff --git a/apps/src/lib/i18n/messages/ru.ts b/apps/src/lib/i18n/messages/ru.ts
index 3e5e2cd1a..75167d6d8 100644
--- a/apps/src/lib/i18n/messages/ru.ts
+++ b/apps/src/lib/i18n/messages/ru.ts
@@ -553,7 +553,7 @@ export const RU_MESSAGES: MessageCatalog = {
 	转发地址: "Путь пересылки",
 	适配器: "Адаптер",
 	上游: "Апстрим",
-	标准模型窗口: "Окно стандартной модели",
+	标准模型窗口: "Стандартное окно",
 	长周期窗口: "Длинное окно",
 	剩余: "Осталось",
 	系统推导已应用: "Системная рекомендация применена",
diff --git a/apps/src/lib/i18n/messages/sections/en-accounts.ts b/apps/src/lib/i18n/messages/sections/en-accounts.ts
index a15e95462..fde4901f6 100644
--- a/apps/src/lib/i18n/messages/sections/en-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/en-accounts.ts
@@ -3,123 +3,142 @@
 import type { MessageCatalog } from "../types";
 
 export const EN_ACCOUNTS_MESSAGES: MessageCatalog = {
-"5h 容量覆盖（Token）": "5h capacity override (tokens)",
-  "7d 容量覆盖（Token）": "7d capacity override (tokens)",
-  "AT/RT 刷新中...": "Refreshing AT/RT...",
-  "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
-    "AT/RT refresh completed: {success} succeeded, {failed} failed, {skipped} skipped",
-  "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}":
-    "AT/RT refresh completed: {success} succeeded, {failed} failed, {skipped} skipped. First failure: {message}",
-  "AT/RT 刷新完成：成功{success}个，跳过{skipped}个":
-    "AT/RT refresh completed: {success} succeeded, {skipped} skipped",
-  "AT/RT 过期、用量接口 401/403 等不可用账号":
-    "Unavailable accounts such as expired AT/RT or usage API 401/403",
-  "Refresh Token 失效，需要重新登录": "Refresh token is invalid. Log in again.",
-  "Refresh Token 已被撤销，需要重新登录": "Refresh token was revoked. Log in again.",
-  "Refresh Token 已被重复使用，需要重新登录":
-    "Refresh token was reused. Log in again.",
-  "Refresh Token 已过期，需要重新登录": "Refresh token expired. Log in again.",
-  "Refresh Token 授权无效，需要重新登录":
-    "Refresh token authorization is invalid. Log in again.",
-  "仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。":
-    "Only used for quota pool ownership statistics. Leave blank to make this account effective for all API-available models.",
-  "代理地区不受支持，已暂停账号刷新":
-    "The proxy region is not supported. Account refresh has been paused.",
-  "保存账号代理": "Save account proxy",
-  "保存账号代理失败": "Failed to save account proxy",
-  "测试账号代理": "Test account proxy",
-  "测试账号代理失败": "Failed to test account proxy",
-  "测试": "Test",
-  "测试中": "Testing",
-  "未测试": "Untested",
-  "测试失败": "Test failed",
-  "测试状态": "Test status",
-  "可用": "Available",
-  "运行时错误": "Runtime error",
-  "从未检查": "Never checked",
-  "代理地址": "Proxy URL",
-  "地址无效": "Invalid URL",
-  "未配置": "Not configured",
-  "刷新 AT/RT": "Refresh AT/RT",
-  "刷新 AT/RT 失败": "Failed to refresh AT/RT",
-  "刷新全部 AT/RT": "Refresh all AT/RT",
-  "刷新用量": "Refresh usage",
-  "刷新登录凭证返回 401，需要重新登录":
-    "Refreshing login credentials returned 401. Log in again.",
-  "读取账号代理": "Read account proxy",
-  "读取账号代理失败": "Failed to read account proxy",
-  "服务未连接，暂时无法读取账号代理":
-    "Service is not connected, account proxy cannot be read yet",
-  "保存": "Save",
-  "默认路由": "Default route",
-  "当前模式": "Current mode",
-  "清除": "Clear",
-  "错误": "Error",
-  "启用后，该账号会优先使用这里的代理地址。":
-    "When enabled, this account uses this proxy URL before other routing.",
-  "启用账号代理": "Enable account proxy",
-  "清除账号代理": "Clear account proxy",
-  "清除账号代理失败": "Failed to clear account proxy",
-  "为单个 OpenAI 账号配置本地代理。":
-    "Configure a local proxy for one OpenAI account.",
-  "延迟": "Latency",
-  "原因码": "Reason code",
-  "容量覆盖": "Capacity override",
-  "当前没有匹配所选状态的账号": "No accounts match the selected statuses",
-  "当前没有可清理的账号": "No accounts available to clean",
-  "工作区已停用": "Workspace deactivated",
-  "将删除所有匹配所选状态的账号，不再额外限制账号套餐。":
-    "All accounts matching the selected statuses will be deleted without additionally filtering by account plan.",
-  "已清理 {count} 个账号": "Cleaned {count} accounts",
-  "手动停用或旧版本标记的账号":
-    "Accounts manually deactivated or marked by older versions",
-  "手动禁用的账号": "Manually disabled accounts",
-  "批量刷新 AT/RT 失败": "Batch AT/RT refresh failed",
-  "按状态清理账号": "Clean accounts by status",
-  "明确触发 usage_limit_reached 的账号，不包含低额度账号":
-    "Accounts that explicitly triggered usage_limit_reached, excluding low-quota accounts",
-  "更多账号操作": "More account actions",
-  "未发现可清理的账号": "No cleanable accounts found",
-  "未设置账号容量覆盖": "No account capacity override set",
-  "状态原因": "Status reason",
-  "用量接口返回 401，账号授权失效":
-    "Usage API returned 401. Account authorization is invalid.",
-  "用量接口返回 403，账号权限不足或被限制":
-    "Usage API returned 403. Account lacks permission or is restricted.",
-  "用量接口返回 HTTP {status}": "Usage API returned HTTP {status}",
-  "用量限制": "Usage limit",
-  "留空使用计划模板": "Leave blank to use the plan template",
-  "的名称、标签、备注、排序与额度池配置。":
-    "'s name, tags, notes, sort order, and quota pool configuration.",
-  "确认清理": "Confirm cleanup",
-  "缺少授权 Token": "Missing auth token",
-  "账号 AT/RT 已刷新": "Account AT/RT refreshed",
-  "账号代理": "Account proxy",
-  "账号代理测试通过": "Account proxy test passed",
-  "账号代理测试未通过": "Account proxy test did not pass",
-  "账号代理已保存": "Account proxy saved",
-  "账号代理已关闭": "Account proxy disabled",
-  "账号代理已清除": "Account proxy cleared",
-  "账号已停用": "Account deactivated",
-  "账号或工作区被停用的账号": "Accounts or workspaces that were deactivated",
-  "状态字段为 unknown 的账号": "Accounts whose status field is unknown",
-  "该账号只有用量快照，当前不能参与模型刷新或网关转发。请重新登录或刷新 AT/RT 后再使用。":
-    "This account only has a usage snapshot and cannot participate in model refresh or gateway forwarding right now. Log in again or refresh AT/RT before using it.",
-  "请选择至少一种账号状态": "Select at least one account status",
-  "请至少选择一种账号状态": "Select at least one account status",
-  "选择导出方式；如果已勾选账号，则只导出当前选中项。":
-    "Choose an export mode. If accounts are selected, only the selected items will be exported.",
-  "选择要删除的账号状态；删除后不可恢复。":
-    "Choose the account statuses to delete. Deletion cannot be undone.",
-  "建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
-    "Use the same proxy and region for login, refresh, usage, and API requests to reduce account risk controls and state drift.",
-  "支持 http、https、socks5、socks5h；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
-    "Supports http, https, socks5, and socks5h. For sing-box mixed inbound, usually enter http://127.0.0.1:port.",
-  "最近检查": "Last check",
-  "这里展示账号套餐接口同步回来的套餐状态与时间信息。":
-    "This shows plan status and time information synced from the account plan API.",
-  "额度容量必须是大于 0 的数字，留空表示未覆盖":
-    "Quota capacity must be a number greater than 0. Leave blank for no override.",
-  "额度已耗尽": "Quota exhausted",
-  "预计删除": "Estimated delete",
+	"5h 容量覆盖（Token）": "5h capacity override (tokens)",
+	"7d 容量覆盖（Token）": "7d capacity override (tokens)",
+	"AT/RT 刷新中...": "Refreshing AT/RT...",
+	"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
+		"AT/RT refresh completed: {success} succeeded, {failed} failed, {skipped} skipped",
+	"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}":
+		"AT/RT refresh completed: {success} succeeded, {failed} failed, {skipped} skipped. First failure: {message}",
+	"AT/RT 刷新完成：成功{success}个，跳过{skipped}个":
+		"AT/RT refresh completed: {success} succeeded, {skipped} skipped",
+	"AT/RT 过期、用量接口 401/403 等不可用账号":
+		"Unavailable accounts such as expired AT/RT or usage API 401/403",
+	"Refresh Token 失效，需要重新登录": "Refresh token is invalid. Log in again.",
+	"Refresh Token 已被撤销，需要重新登录":
+		"Refresh token was revoked. Log in again.",
+	"Refresh Token 已被重复使用，需要重新登录":
+		"Refresh token was reused. Log in again.",
+	"Refresh Token 已过期，需要重新登录": "Refresh token expired. Log in again.",
+	"Refresh Token 授权无效，需要重新登录":
+		"Refresh token authorization is invalid. Log in again.",
+	"仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。":
+		"Only used for quota pool ownership statistics. Leave blank to make this account effective for all API-available models.",
+	"代理地区不受支持，已暂停账号刷新":
+		"The proxy region is not supported. Account refresh has been paused.",
+	保存账号代理: "Save account proxy",
+	保存账号代理失败: "Failed to save account proxy",
+	测试账号代理: "Test account proxy",
+	测试账号代理失败: "Failed to test account proxy",
+	测试: "Test",
+	代理信息: "Proxy info",
+	测试中: "Testing",
+	未测试: "Untested",
+	测试失败: "Test failed",
+	测试状态: "Test status",
+	可用: "Available",
+	运行时错误: "Runtime error",
+	从未检查: "Never checked",
+	代理地址: "Proxy URL",
+	地址无效: "Invalid URL",
+	未配置: "Not configured",
+	"刷新 AT/RT": "Refresh AT/RT",
+	"刷新 AT/RT 失败": "Failed to refresh AT/RT",
+	"刷新全部 AT/RT": "Refresh all AT/RT",
+	刷新用量: "Refresh usage",
+	"刷新登录凭证返回 401，需要重新登录":
+		"Refreshing login credentials returned 401. Log in again.",
+	读取账号代理: "Read account proxy",
+	读取账号代理失败: "Failed to read account proxy",
+	"服务未连接，暂时无法读取账号代理":
+		"Service is not connected, account proxy cannot be read yet",
+	保存: "Save",
+	默认路由: "Default route",
+	当前模式: "Current mode",
+	清除: "Clear",
+	错误: "Error",
+	"启用后，该账号对 OpenAI API 的请求将通过指定的代理发送。":
+		"When enabled, this account uses this proxy URL before other routing.",
+	启用代理: "Enable proxy",
+	启用账号代理: "Enable account proxy",
+	清除账号代理: "Clear account proxy",
+	清除账号代理失败: "Failed to clear account proxy",
+	"为单个 OpenAI 账号配置本地代理。":
+		"Configure a local proxy for one OpenAI account.",
+	延迟: "Latency",
+	原因码: "Reason code",
+	容量覆盖: "Capacity override",
+	当前没有匹配所选状态的账号: "No accounts match the selected statuses",
+	当前没有可清理的账号: "No accounts available to clean",
+	工作区已停用: "Workspace deactivated",
+	"将删除所有匹配所选状态的账号，不再额外限制账号套餐。":
+		"All accounts matching the selected statuses will be deleted without additionally filtering by account plan.",
+	"已清理 {count} 个账号": "Cleaned {count} accounts",
+	手动停用或旧版本标记的账号:
+		"Accounts manually deactivated or marked by older versions",
+	手动禁用的账号: "Manually disabled accounts",
+	"批量刷新 AT/RT 失败": "Batch AT/RT refresh failed",
+	按状态清理账号: "Clean accounts by status",
+	"明确触发 usage_limit_reached 的账号，不包含低额度账号":
+		"Accounts that explicitly triggered usage_limit_reached, excluding low-quota accounts",
+	更多账号操作: "More account actions",
+	未发现可清理的账号: "No cleanable accounts found",
+	未设置账号容量覆盖: "No account capacity override set",
+	状态原因: "Status reason",
+	"用量接口返回 401，账号授权失效":
+		"Usage API returned 401. Account authorization is invalid.",
+	"用量接口返回 403，账号权限不足或被限制":
+		"Usage API returned 403. Account lacks permission or is restricted.",
+	"用量接口返回 HTTP {status}": "Usage API returned HTTP {status}",
+	用量限制: "Usage limit",
+	留空使用计划模板: "Leave blank to use the plan template",
+	"的名称、标签、备注、排序与额度池配置。":
+		"'s name, tags, notes, sort order, and quota pool configuration.",
+	确认清理: "Confirm cleanup",
+	"缺少授权 Token": "Missing auth token",
+	"账号 AT/RT 已刷新": "Account AT/RT refreshed",
+	账号代理: "Account proxy",
+	账号代理测试通过: "Account proxy test passed",
+	账号代理测试未通过: "Account proxy test did not pass",
+	账号代理已保存: "Account proxy saved",
+	账号代理已关闭: "Account proxy disabled",
+	账号代理已清除: "Account proxy cleared",
+	账号已停用: "Account deactivated",
+	账号或工作区被停用的账号: "Accounts or workspaces that were deactivated",
+	"状态字段为 unknown 的账号": "Accounts whose status field is unknown",
+	"该账号只有用量快照，当前不能参与模型刷新或网关转发。请重新登录或刷新 AT/RT 后再使用。":
+		"This account only has a usage snapshot and cannot participate in model refresh or gateway forwarding right now. Log in again or refresh AT/RT before using it.",
+	请选择至少一种账号状态: "Select at least one account status",
+	请至少选择一种账号状态: "Select at least one account status",
+	"选择导出方式；如果已勾选账号，则只导出当前选中项。":
+		"Choose an export mode. If accounts are selected, only the selected items will be exported.",
+	"选择要删除的账号状态；删除后不可恢复。":
+		"Choose the account statuses to delete. Deletion cannot be undone.",
+	"建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
+		"Use the same proxy and region for login, refresh, usage, and API requests to reduce account risk controls and state drift.",
+	"支持 http、https、socks4、socks5；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
+		"Supports http, https, socks4 and socks5. For sing-box mixed inbound, usually enter http://127.0.0.1:port.",
+	最近检查: "Last check",
+	"这里展示账号套餐接口同步回来的套餐状态与时间信息。":
+		"This shows plan status and time information synced from the account plan API.",
+	"额度容量必须是大于 0 的数字，留空表示未覆盖":
+		"Quota capacity must be a number greater than 0. Leave blank for no override.",
+	额度已耗尽: "Quota exhausted",
+	预计删除: "Estimated delete",
+	代理: "Proxy",
+	国家: "Country",
+	国家名称: "Country Name",
+	城市: "City",
+	地区: "Region",
+	地理位置错误: "Geolocation error",
+	"模型白名单 / 额度管理": "Model Allowlist / Limit Management",
+	未找到符合条件的账号: "No accounts found",
+	未知: "Unknown",
+	未知代理位置: "Unknown proxy location",
+	未检查: "Unchecked",
+	"Provider domain": "Provider domain",
+	Provider: "Provider",
+	ms: "ms",
+	Timezone: "Timezone",
+	IP: "IP",
 };
diff --git a/apps/src/lib/i18n/messages/sections/ko-accounts.ts b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
index 84b0097ec..f6d02a276 100644
--- a/apps/src/lib/i18n/messages/sections/ko-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/ko-accounts.ts
@@ -3,123 +3,143 @@
 import type { MessageCatalog } from "../types";
 
 export const KO_ACCOUNTS_MESSAGES: MessageCatalog = {
-"5h 容量覆盖（Token）": "5h 용량 오버라이드(Token)",
-  "7d 容量覆盖（Token）": "7d 용량 오버라이드(Token)",
-  "AT/RT 刷新中...": "AT/RT 새로고침 중...",
-  "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
-    "AT/RT 새로고침 완료: 성공 {success}개, 실패 {failed}개, 건너뜀 {skipped}개",
-  "AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}":
-    "AT/RT 새로고침 완료: 성공 {success}개, 실패 {failed}개, 건너뜀 {skipped}개. 첫 실패: {message}",
-  "AT/RT 刷新完成：成功{success}个，跳过{skipped}个":
-    "AT/RT 새로고침 완료: 성공 {success}개, 건너뜀 {skipped}개",
-  "AT/RT 过期、用量接口 401/403 等不可用账号":
-    "AT/RT 만료, 사용량 API 401/403 등으로 사용할 수 없는 계정",
-  "Refresh Token 失效，需要重新登录": "Refresh Token이 유효하지 않습니다. 다시 로그인하세요.",
-  "Refresh Token 已被撤销，需要重新登录": "Refresh Token이 취소되었습니다. 다시 로그인하세요.",
-  "Refresh Token 已被重复使用，需要重新登录":
-    "Refresh Token이 재사용되었습니다. 다시 로그인하세요.",
-  "Refresh Token 已过期，需要重新登录": "Refresh Token이 만료되었습니다. 다시 로그인하세요.",
-  "Refresh Token 授权无效，需要重新登录":
-    "Refresh Token 권한이 유효하지 않습니다. 다시 로그인하세요.",
-  "仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。":
-    "한도 풀 귀속 통계에만 사용됩니다. 비워 두면 이 계정이 모든 API 사용 가능 모델에 적용됩니다.",
-  "代理地区不受支持，已暂停账号刷新":
-    "프록시 지역이 지원되지 않아 계정 새로고침을 일시 중지했습니다.",
-  "保存账号代理": "계정 프록시 저장",
-  "保存账号代理失败": "계정 프록시 저장 실패",
-  "测试账号代理": "계정 프록시 테스트",
-  "测试账号代理失败": "계정 프록시 테스트 실패",
-  "测试": "테스트",
-  "测试中": "테스트 중",
-  "未测试": "미테스트",
-  "测试失败": "테스트 실패",
-  "测试状态": "테스트 상태",
-  "可用": "사용 가능",
-  "运行时错误": "런타임 오류",
-  "从未检查": "아직 확인하지 않음",
-  "代理地址": "프록시 주소",
-  "地址无效": "주소가 유효하지 않음",
-  "未配置": "설정되지 않음",
-  "刷新 AT/RT": "AT/RT 새로고침",
-  "刷新 AT/RT 失败": "AT/RT 새로고침 실패",
-  "刷新全部 AT/RT": "전체 AT/RT 새로고침",
-  "刷新用量": "사용량 새로고침",
-  "刷新登录凭证返回 401，需要重新登录":
-    "로그인 자격 증명 새로고침이 401을 반환했습니다. 다시 로그인하세요.",
-  "读取账号代理": "계정 프록시 읽기",
-  "读取账号代理失败": "계정 프록시 읽기 실패",
-  "服务未连接，暂时无法读取账号代理":
-    "서비스가 연결되지 않아 아직 계정 프록시를 읽을 수 없습니다",
-  "保存": "저장",
-  "默认路由": "기본 라우트",
-  "当前模式": "현재 모드",
-  "清除": "지우기",
-  "错误": "오류",
-  "启用后，该账号会优先使用这里的代理地址。":
-    "활성화하면 이 계정은 이 프록시 주소를 우선 사용합니다.",
-  "启用账号代理": "계정 프록시 활성화",
-  "清除账号代理": "계정 프록시 지우기",
-  "清除账号代理失败": "계정 프록시 지우기 실패",
-  "为单个 OpenAI 账号配置本地代理。":
-    "단일 OpenAI 계정에 로컬 프록시를 설정합니다.",
-  "延迟": "지연 시간",
-  "原因码": "원인 코드",
-  "容量覆盖": "용량 오버라이드",
-  "当前没有匹配所选状态的账号": "선택한 상태와 일치하는 계정이 없습니다",
-  "当前没有可清理的账号": "정리할 수 있는 계정이 없습니다",
-  "工作区已停用": "워크스페이스가 비활성화되었습니다",
-  "将删除所有匹配所选状态的账号，不再额外限制账号套餐。":
-    "선택한 상태와 일치하는 모든 계정을 삭제하며, 계정 요금제로 추가 제한하지 않습니다.",
-  "已清理 {count} 个账号": "{count}개 계정을 정리했습니다",
-  "手动停用或旧版本标记的账号":
-    "수동으로 비활성화되었거나 이전 버전에서 표시된 계정",
-  "手动禁用的账号": "수동으로 비활성화한 계정",
-  "批量刷新 AT/RT 失败": "AT/RT 일괄 새로고침 실패",
-  "按状态清理账号": "상태별 계정 정리",
-  "明确触发 usage_limit_reached 的账号，不包含低额度账号":
-    "usage_limit_reached를 명확히 트리거한 계정이며, 낮은 한도 계정은 포함하지 않습니다",
-  "更多账号操作": "더 많은 계정 작업",
-  "未发现可清理的账号": "정리할 수 있는 계정을 찾지 못했습니다",
-  "未设置账号容量覆盖": "계정 용량 오버라이드가 설정되지 않았습니다",
-  "状态原因": "상태 원인",
-  "用量接口返回 401，账号授权失效":
-    "사용량 API가 401을 반환했습니다. 계정 권한이 유효하지 않습니다.",
-  "用量接口返回 403，账号权限不足或被限制":
-    "사용량 API가 403을 반환했습니다. 계정 권한이 부족하거나 제한되었습니다.",
-  "用量接口返回 HTTP {status}": "사용량 API가 HTTP {status}를 반환했습니다",
-  "用量限制": "사용량 제한",
-  "留空使用计划模板": "비워 두면 플랜 템플릿을 사용합니다",
-  "的名称、标签、备注、排序与额度池配置。":
-    "의 이름, 태그, 메모, 정렬 및 한도 풀 설정입니다.",
-  "确认清理": "정리 확인",
-  "缺少授权 Token": "인증 Token이 없습니다",
-  "账号 AT/RT 已刷新": "계정 AT/RT가 새로고침되었습니다",
-  "账号代理": "계정 프록시",
-  "账号代理测试通过": "계정 프록시 테스트 통과",
-  "账号代理测试未通过": "계정 프록시 테스트 미통과",
-  "账号代理已保存": "계정 프록시가 저장되었습니다",
-  "账号代理已关闭": "계정 프록시가 꺼졌습니다",
-  "账号代理已清除": "계정 프록시가 지워졌습니다",
-  "账号已停用": "계정이 비활성화되었습니다",
-  "账号或工作区被停用的账号": "계정 또는 워크스페이스가 비활성화된 계정",
-  "状态字段为 unknown 的账号": "상태 필드가 unknown인 계정",
-  "该账号只有用量快照，当前不能参与模型刷新或网关转发。请重新登录或刷新 AT/RT 后再使用。":
-    "이 계정은 사용량 스냅샷만 있어 현재 모델 새로고침이나 게이트웨이 전달에 참여할 수 없습니다. 다시 로그인하거나 AT/RT를 새로고침한 뒤 사용하세요.",
-  "请选择至少一种账号状态": "계정 상태를 하나 이상 선택하세요",
-  "请至少选择一种账号状态": "계정 상태를 하나 이상 선택하세요",
-  "选择导出方式；如果已勾选账号，则只导出当前选中项。":
-    "내보내기 방식을 선택하세요. 계정을 선택했다면 현재 선택 항목만 내보냅니다.",
-  "选择要删除的账号状态；删除后不可恢复。":
-    "삭제할 계정 상태를 선택하세요. 삭제 후에는 복구할 수 없습니다.",
-  "建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
-    "로그인, 새로고침, 사용량, API 요청은 동일한 프록시와 지역을 유지해 계정 리스크 제어와 상태 드리프트를 줄이는 것이 좋습니다.",
-  "支持 http、https、socks5、socks5h；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
-    "http, https, socks5, socks5h를 지원합니다. sing-box mixed inbound는 보통 http://127.0.0.1:포트 를 입력합니다.",
-  "最近检查": "최근 확인",
-  "这里展示账号套餐接口同步回来的套餐状态与时间信息。":
-    "계정 플랜 API에서 동기화된 플랜 상태와 시간 정보를 표시합니다.",
-  "额度容量必须是大于 0 的数字，留空表示未覆盖":
-    "한도 용량은 0보다 큰 숫자여야 합니다. 비워 두면 오버라이드하지 않습니다.",
-  "额度已耗尽": "한도가 소진되었습니다",
-  "预计删除": "예상 삭제",
+	"5h 容量覆盖（Token）": "5h 용량 오버라이드(Token)",
+	"7d 容量覆盖（Token）": "7d 용량 오버라이드(Token)",
+	"AT/RT 刷新中...": "AT/RT 새로고침 중...",
+	"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个":
+		"AT/RT 새로고침 완료: 성공 {success}개, 실패 {failed}개, 건너뜀 {skipped}개",
+	"AT/RT 刷新完成：成功{success}个，失败{failed}个，跳过{skipped}个；首个失败：{message}":
+		"AT/RT 새로고침 완료: 성공 {success}개, 실패 {failed}개, 건너뜀 {skipped}개. 첫 실패: {message}",
+	"AT/RT 刷新完成：成功{success}个，跳过{skipped}个":
+		"AT/RT 새로고침 완료: 성공 {success}개, 건너뜀 {skipped}개",
+	"AT/RT 过期、用量接口 401/403 等不可用账号":
+		"AT/RT 만료, 사용량 API 401/403 등으로 사용할 수 없는 계정",
+	"Refresh Token 失效，需要重新登录":
+		"Refresh Token이 유효하지 않습니다. 다시 로그인하세요.",
+	"Refresh Token 已被撤销，需要重新登录":
+		"Refresh Token이 취소되었습니다. 다시 로그인하세요.",
+	"Refresh Token 已被重复使用，需要重新登录":
+		"Refresh Token이 재사용되었습니다. 다시 로그인하세요.",
+	"Refresh Token 已过期，需要重新登录":
+		"Refresh Token이 만료되었습니다. 다시 로그인하세요.",
+	"Refresh Token 授权无效，需要重新登录":
+		"Refresh Token 권한이 유효하지 않습니다. 다시 로그인하세요.",
+	"仅用于额度池统计归属；留空表示该账号对全部 API 可用模型生效。":
+		"한도 풀 귀속 통계에만 사용됩니다. 비워 두면 이 계정이 모든 API 사용 가능 모델에 적용됩니다.",
+	"代理地区不受支持，已暂停账号刷新":
+		"프록시 지역이 지원되지 않아 계정 새로고침을 일시 중지했습니다.",
+	保存账号代理: "계정 프록시 저장",
+	保存账号代理失败: "계정 프록시 저장 실패",
+	测试账号代理: "계정 프록시 테스트",
+	测试账号代理失败: "계정 프록시 테스트 실패",
+	测试: "테스트",
+	代理信息: "프록시 정보",
+	测试中: "테스트 중",
+	未测试: "미테스트",
+	测试失败: "테스트 실패",
+	测试状态: "테스트 상태",
+	可用: "사용 가능",
+	运行时错误: "런타임 오류",
+	从未检查: "아직 확인하지 않음",
+	代理地址: "프록시 주소",
+	地址无效: "주소가 유효하지 않음",
+	未配置: "설정되지 않음",
+	"刷新 AT/RT": "AT/RT 새로고침",
+	"刷新 AT/RT 失败": "AT/RT 새로고침 실패",
+	"刷新全部 AT/RT": "전체 AT/RT 새로고침",
+	刷新用量: "사용량 새로고침",
+	"刷新登录凭证返回 401，需要重新登录":
+		"로그인 자격 증명 새로고침이 401을 반환했습니다. 다시 로그인하세요.",
+	读取账号代理: "계정 프록시 읽기",
+	读取账号代理失败: "계정 프록시 읽기 실패",
+	"服务未连接，暂时无法读取账号代理":
+		"서비스가 연결되지 않아 아직 계정 프록시를 읽을 수 없습니다",
+	保存: "저장",
+	默认路由: "기본 라우트",
+	当前模式: "현재 모드",
+	清除: "지우기",
+	错误: "오류",
+	"启用后，该账号对 OpenAI API 的请求将通过指定的代理发送。":
+		"활성화하면 이 계정은 이 프록시 주소를 우선 사용합니다.",
+	启用账号代理: "계정 프록시 활성화",
+	清除账号代理: "계정 프록시 지우기",
+	清除账号代理失败: "계정 프록시 지우기 실패",
+	"为单个 OpenAI 账号配置本地代理。":
+		"단일 OpenAI 계정에 로컬 프록시를 설정합니다.",
+	延迟: "지연 시간",
+	原因码: "원인 코드",
+	容量覆盖: "용량 오버라이드",
+	当前没有匹配所选状态的账号: "선택한 상태와 일치하는 계정이 없습니다",
+	当前没有可清理的账号: "정리할 수 있는 계정이 없습니다",
+	工作区已停用: "워크스페이스가 비활성화되었습니다",
+	"将删除所有匹配所选状态的账号，不再额外限制账号套餐。":
+		"선택한 상태와 일치하는 모든 계정을 삭제하며, 계정 요금제로 추가 제한하지 않습니다.",
+	"已清理 {count} 个账号": "{count}개 계정을 정리했습니다",
+	手动停用或旧版本标记的账号:
+		"수동으로 비활성화되었거나 이전 버전에서 표시된 계정",
+	手动禁用的账号: "수동으로 비활성화한 계정",
+	"批量刷新 AT/RT 失败": "AT/RT 일괄 새로고침 실패",
+	按状态清理账号: "상태별 계정 정리",
+	"明确触发 usage_limit_reached 的账号，不包含低额度账号":
+		"usage_limit_reached를 명확히 트리거한 계정이며, 낮은 한도 계정은 포함하지 않습니다",
+	更多账号操作: "더 많은 계정 작업",
+	未发现可清理的账号: "정리할 수 있는 계정을 찾지 못했습니다",
+	未设置账号容量覆盖: "계정 용량 오버라이드가 설정되지 않았습니다",
+	状态原因: "상태 원인",
+	"用量接口返回 401，账号授权失效":
+		"사용량 API가 401을 반환했습니다. 계정 권한이 유효하지 않습니다.",
+	"用量接口返回 403，账号权限不足或被限制":
+		"사용량 API가 403을 반환했습니다. 계정 권한이 부족하거나 제한되었습니다.",
+	"用量接口返回 HTTP {status}": "사용량 API가 HTTP {status}를 반환했습니다",
+	用量限制: "사용량 제한",
+	留空使用计划模板: "비워 두면 플랜 템플릿을 사용합니다",
+	"的名称、标签、备注、排序与额度池配置。":
+		"의 이름, 태그, 메모, 정렬 및 한도 풀 설정입니다.",
+	确认清理: "정리 확인",
+	"缺少授权 Token": "인증 Token이 없습니다",
+	"账号 AT/RT 已刷新": "계정 AT/RT가 새로고침되었습니다",
+	账号代理: "계정 프록시",
+	账号代理测试通过: "계정 프록시 테스트 통과",
+	账号代理测试未通过: "계정 프록시 테스트 미통과",
+	账号代理已保存: "계정 프록시가 저장되었습니다",
+	账号代理已关闭: "계정 프록시가 꺼졌습니다",
+	账号代理已清除: "계정 프록시가 지워졌습니다",
+	账号已停用: "계정이 비활성화되었습니다",
+	账号或工作区被停用的账号: "계정 또는 워크스페이스가 비활성화된 계정",
+	"状态字段为 unknown 的账号": "상태 필드가 unknown인 계정",
+	"该账号只有用量快照，当前不能参与模型刷新或网关转发。请重新登录或刷新 AT/RT 后再使用。":
+		"이 계정은 사용량 스냅샷만 있어 현재 모델 새로고침이나 게이트웨이 전달에 참여할 수 없습니다. 다시 로그인하거나 AT/RT를 새로고침한 뒤 사용하세요.",
+	请选择至少一种账号状态: "계정 상태를 하나 이상 선택하세요",
+	请至少选择一种账号状态: "계정 상태를 하나 이상 선택하세요",
+	"选择导出方式；如果已勾选账号，则只导出当前选中项。":
+		"내보내기 방식을 선택하세요. 계정을 선택했다면 현재 선택 항목만 내보냅니다.",
+	"选择要删除的账号状态；删除后不可恢复。":
+		"삭제할 계정 상태를 선택하세요. 삭제 후에는 복구할 수 없습니다.",
+	"建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
+		"로그인, 새로고침, 사용량, API 요청은 동일한 프록시와 지역을 유지해 계정 리스크 제어와 상태 드리프트를 줄이는 것이 좋습니다.",
+	"支持 http、https、socks4、socks5；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
+		"http, https, socks4, socks5를 지원합니다. sing-box mixed inbound는 보통 http://127.0.0.1:포트 를 입력합니다.",
+	最近检查: "최근 확인",
+	"这里展示账号套餐接口同步回来的套餐状态与时间信息。":
+		"계정 플랜 API에서 동기화된 플랜 상태와 시간 정보를 표시합니다.",
+	"额度容量必须是大于 0 的数字，留空表示未覆盖":
+		"한도 용량은 0보다 큰 숫자여야 합니다. 비워 두면 오버라이드하지 않습니다.",
+	额度已耗尽: "한도가 소진되었습니다",
+	预计删除: "예상 삭제",
+	代理: "프록시",
+	国家: "국가",
+	国家名称: "국가명",
+	城市: "도시",
+	地区: "지역",
+	地理位置错误: "지리적 위치 오류",
+	"模型白名单 / 额度管理": "모델 허용 목록 / 한도 관리",
+	未找到符合条件的账号: "계정을 찾을 수 없습니다",
+	未知: "알 수 없음",
+	未知代理位置: "알 수 없는 프록시 위치",
+	未检查: "미확인",
+	"Provider domain": "제공자 도메인",
+	Provider: "제공자",
+	ms: "ms",
+	Timezone: "시간대",
+	IP: "IP",
 };
diff --git a/apps/src/lib/i18n/messages/sections/ru-accounts.ts b/apps/src/lib/i18n/messages/sections/ru-accounts.ts
index a573b6af8..43c64d375 100644
--- a/apps/src/lib/i18n/messages/sections/ru-accounts.ts
+++ b/apps/src/lib/i18n/messages/sections/ru-accounts.ts
@@ -32,7 +32,7 @@ export const RU_ACCOUNTS_MESSAGES: MessageCatalog = {
 	测试账号代理: "Проверить прокси аккаунта",
 	测试账号代理失败: "Не удалось проверить прокси аккаунта",
 	测试: "Проверить",
-
+	代理信息: "Информация о прокси",
 	测试中: "Проверяется",
 	未测试: "Не проверено",
 	测试失败: "Проверка не пройдена",
@@ -60,6 +60,7 @@ export const RU_ACCOUNTS_MESSAGES: MessageCatalog = {
 	错误: "Ошибка",
 	"启用后，该账号会优先使用这里的代理地址。":
 		"Если включено, этот аккаунт будет сначала использовать этот адрес прокси.",
+	启用代理: "Включить прокси",
 	启用账号代理: "Включить прокси аккаунта",
 	清除账号代理: "Очистить прокси аккаунта",
 	清除账号代理失败: "Не удалось очистить прокси аккаунта",
@@ -118,7 +119,7 @@ export const RU_ACCOUNTS_MESSAGES: MessageCatalog = {
 	"建议登录、刷新、用量和 API 请求保持同一代理与地区，以降低账号风控和状态漂移。":
 		"Рекомендуется использовать один и тот же прокси и регион для входа, refresh, usage и API-запросов, чтобы снизить риск блокировок и рассинхронизации состояния аккаунта.",
 	"支持 http、https、socks4、socks5；sing-box mixed inbound 通常填写 http://127.0.0.1:端口。":
-		"Поддерживаются http, https, socks4 и socks5. Для sing-box mixed inbound обычно указывают http://127.0.0.1:port.",
+		"Поддерживаются http, https, socks4, socks5 и socks5h. Для sing-box mixed inbound обычно указывают http://127.0.0.1:port.",
 	最近检查: "Последняя проверка",
 	"这里展示账号套餐接口同步回来的套餐状态与时间信息。":
 		"Здесь показаны статус тарифа и время, синхронизированные из API тарифов аккаунта.",
@@ -126,4 +127,21 @@ export const RU_ACCOUNTS_MESSAGES: MessageCatalog = {
 		"Емкость квоты должна быть числом больше 0. Оставьте пустым, чтобы не переопределять.",
 	额度已耗尽: "Квота исчерпана",
 	预计删除: "Ожидается удалить",
+	代理: "Прокси",
+	国家: "Страна",
+	国家名称: "Название страны",
+	城市: "Город",
+	地区: "Регион",
+	地理位置错误: "Ошибка геолокации",
+	账号额度: "Лимиты аккаунта",
+	未找到符合条件的账号: "Аккаунты не найдены",
+	未知: "Неизвестно",
+	未知代理位置: "Неизвестное местоположение прокси",
+	未检查: "Не проверено",
+	"模型白名单 / 额度管理": "Управление лимитами",
+	"Provider domain": "Домен провайдера",
+	Provider: "Провайдер",
+	ms: "мс",
+	Timezone: "Часовой пояс",
+	IP: "IP",
 };
diff --git a/apps/src/lib/utils/usage.ts b/apps/src/lib/utils/usage.ts
index 9608f09f6..fb51df5ea 100644
--- a/apps/src/lib/utils/usage.ts
+++ b/apps/src/lib/utils/usage.ts
@@ -80,10 +80,27 @@ export function formatRemainingDurationFromSeconds(
   timestamp: number | null | undefined,
   mode: "hours" | "days" = "hours",
   emptyLabel = "未知",
+  locale = "zh-CN",
 ): string {
   if (!timestamp) return emptyLabel;
   const diffSeconds = Math.max(0, timestamp - Math.floor(Date.now() / 1000));
   const totalMinutes = Math.ceil(diffSeconds / 60);
+  const normalizedLocale = String(locale || "")
+    .trim()
+    .toLowerCase();
+  const unitLabels =
+    normalizedLocale === "ru" || normalizedLocale === "ru-ru"
+      ? { day: "д", hour: "ч", minute: "мин", second: "с" }
+      : normalizedLocale === "en" || normalizedLocale === "en-us" || normalizedLocale === "en-gb"
+        ? { day: "d", hour: "h", minute: "min", second: "s" }
+        : normalizedLocale === "ko" || normalizedLocale === "ko-kr"
+          ? { day: "일", hour: "시간", minute: "분", second: "초" }
+          : { day: "天", hour: "时", minute: "分", second: "秒" };
+  const formatUnit = (
+    value: number,
+    unit: keyof typeof unitLabels,
+    pad = false,
+  ) => `${pad ? String(value).padStart(2, "0") : String(value)} ${unitLabels[unit]}`;
 
   if (diffSeconds < 10 * 60) {
     const minutes = Math.floor(diffSeconds / 60);
@@ -92,20 +109,24 @@ export function formatRemainingDurationFromSeconds(
       const hours = Math.floor(minutes / MINUTES_PER_HOUR);
       const remainMinutes = minutes % MINUTES_PER_HOUR;
       if (hours > 0) {
-        return `${hours}h${remainMinutes}min${seconds}s`;
+        return [
+          formatUnit(hours, "hour"),
+          formatUnit(remainMinutes, "minute", true),
+          formatUnit(seconds, "second", true),
+        ].join(" ");
       }
-      return `${remainMinutes}min${seconds}s`;
+      return [formatUnit(remainMinutes, "minute"), formatUnit(seconds, "second", true)].join(" ");
     }
     if (minutes > 0) {
-      return `${minutes}min${seconds}s`;
+      return [formatUnit(minutes, "minute"), formatUnit(seconds, "second", true)].join(" ");
     }
-    return `${seconds}s`;
+    return formatUnit(seconds, "second");
   }
 
   if (mode === "hours") {
     const hours = Math.floor(totalMinutes / MINUTES_PER_HOUR);
     const minutes = totalMinutes % MINUTES_PER_HOUR;
-    return `${hours}h${String(minutes).padStart(2, "0")}min`;
+    return [formatUnit(hours, "hour"), formatUnit(minutes, "minute", true)].join(" ");
   }
 
   const days = Math.floor(totalMinutes / MINUTES_PER_DAY);
@@ -114,18 +135,18 @@ export function formatRemainingDurationFromSeconds(
   const parts: string[] = [];
 
   if (days > 0) {
-    parts.push(`${days}d`);
+    parts.push(formatUnit(days, "day"));
   }
   if (hours > 0) {
-    parts.push(`${hours}h`);
+    parts.push(formatUnit(hours, "hour", days > 0));
   }
   if (parts.length > 0) {
-    parts.push(`${String(minutes).padStart(2, "0")}min`);
+    parts.push(formatUnit(minutes, "minute", true));
   } else {
-    parts.push(`${minutes}min`);
+    parts.push(formatUnit(minutes, "minute"));
   }
 
-  return parts.join("");
+  return parts.join(" ");
 }
 
 /**
diff --git a/apps/tests/account-list-cache.test.mjs b/apps/tests/account-list-cache.test.mjs
index 5601c9132..301204b50 100644
--- a/apps/tests/account-list-cache.test.mjs
+++ b/apps/tests/account-list-cache.test.mjs
@@ -12,9 +12,9 @@ async function readSource(relativePath) {
 function readConstFunctionBody(source, functionName) {
   const start = source.indexOf(`const ${functionName} = async () => {`);
   assert.notEqual(start, -1, `${functionName} not found`);
-  const end = source.indexOf("\n  };\n", start);
+  const end = source.slice(start).search(/\r?\n[\t ]*\};\r?\n/);
   assert.notEqual(end, -1, `${functionName} body end not found`);
-  return source.slice(start, end);
+  return source.slice(start, start + end);
 }
 
 test("账号实体列表不会被用量刷新路径自动打空", async () => {
diff --git a/apps/tests/codex-profile-cache.test.mjs b/apps/tests/codex-profile-cache.test.mjs
index c004eb797..a6bdc1061 100644
--- a/apps/tests/codex-profile-cache.test.mjs
+++ b/apps/tests/codex-profile-cache.test.mjs
@@ -12,9 +12,9 @@ async function readSource(relativePath) {
 function readConstFunctionBody(source, functionName) {
   const start = source.indexOf(`const ${functionName} = async () => {`);
   assert.notEqual(start, -1, `${functionName} not found`);
-  const end = source.indexOf("\n  };\n", start);
+  const end = source.slice(start).search(/\r?\n[\t ]*\};\r?\n/);
   assert.notEqual(end, -1, `${functionName} body end not found`);
-  return source.slice(start, end);
+  return source.slice(start, start + end);
 }
 
 test("账号登录和导入会刷新 Codex profile 候选账号", async () => {
@@ -22,7 +22,7 @@ test("账号登录和导入会刷新 Codex profile 候选账号", async () => {
   assert.match(source, /CODEX_PROFILE_CANDIDATES_QUERY_KEY/);
   assert.match(
     source,
-    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY\s*\}\)/s,
+    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY,?\s*\}\)/s,
   );
 });
 
@@ -32,7 +32,7 @@ test("账号池页面变更会刷新 Codex profile 候选账号", async () => {
   assert.match(source, /CODEX_PROFILE_CANDIDATES_QUERY_KEY/);
   assert.match(
     invalidateUsageBody,
-    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY\s*\}\)/,
+    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY,?\s*\}\)/,
   );
 });
 
@@ -67,7 +67,7 @@ test("平台密钥变更会刷新 Codex profile 候选密钥", async () => {
   assert.match(source, /CODEX_PROFILE_CANDIDATES_QUERY_KEY/);
   assert.match(
     source,
-    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY\s*\}\)/s,
+    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY,?\s*\}\)/s,
   );
 });
 
@@ -76,6 +76,6 @@ test("平台密钥弹窗创建和编辑会刷新 Codex profile 候选密钥", as
   assert.match(source, /CODEX_PROFILE_CANDIDATES_QUERY_KEY/);
   assert.match(
     source,
-    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY\s*\}\)/s,
+    /queryClient\.invalidateQueries\(\{\s*queryKey:\s*CODEX_PROFILE_CANDIDATES_QUERY_KEY,?\s*\}\)/s,
   );
 });
diff --git a/crates/core/tests/storage.rs b/crates/core/tests/storage.rs
index 0b27a6ad5..b73ace3f8 100644
--- a/crates/core/tests/storage.rs
+++ b/crates/core/tests/storage.rs
@@ -225,6 +225,8 @@ fn storage_can_update_and_clear_account_proxy_settings() {
             None,
             None,
             None,
+            None,
+            None,
         )
         .expect("seed proxy settings");
     storage
diff --git a/crates/service/src/gateway/core/tests/runtime_config_tests.rs b/crates/service/src/gateway/core/tests/runtime_config_tests.rs
index bf543196b..1b1b65029 100644
--- a/crates/service/src/gateway/core/tests/runtime_config_tests.rs
+++ b/crates/service/src/gateway/core/tests/runtime_config_tests.rs
@@ -451,6 +451,16 @@ fn account_proxy_set_and_clear_invalidate_gateway_cache() {
         "acc-cache",
         true,
         Some("http://127.0.0.1:7101"),
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
     )
     .expect("set first proxy");
     assert_eq!(
@@ -462,6 +472,16 @@ fn account_proxy_set_and_clear_invalidate_gateway_cache() {
         "acc-cache",
         true,
         Some("http://127.0.0.1:7102"),
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
+        None,
     )
     .expect("set second proxy");
     assert_eq!(
@@ -748,6 +768,22 @@ fn seed_account_proxy(dir: &PathBuf, account_id: &str, enabled: bool, proxy_url:
             None,
             None,
             None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
+            None,
         )
         .expect("insert account proxy settings");
 }
diff --git a/crates/service/src/usage/tests/usage_http_tests.rs b/crates/service/src/usage/tests/usage_http_tests.rs
index cd477c2ac..442e0245f 100644
--- a/crates/service/src/usage/tests/usage_http_tests.rs
+++ b/crates/service/src/usage/tests/usage_http_tests.rs
@@ -132,18 +132,6 @@ fn seed_account_proxy(db_path: &PathBuf, account_id: &str, enabled: bool, proxy_
             None,
             None,
             None,
-            None,
-            None,
-            None,
-            None,
-            None,
-            None,
-            None,
-            None,
-            None,
-            None,
-            None,
-            None,
         )
         .expect("seed account proxy");
     crate::gateway::invalidate_account_proxy_cache(account_id);

From d6e1c359f166baf7c1ba60881b991659004d1aa9 Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Thu, 11 Jun 2026 19:09:31 +0300
Subject: [PATCH 8/9] feat(accounts): cache proxy flag metadata

---
 apps/src/lib/i18n/messages/en.ts              |  12 ++
 apps/src/lib/i18n/messages/ko.ts              |  12 ++
 apps/src/lib/i18n/messages/ru.ts              |  14 +++
 .../src/storage/account_proxy_settings.rs     |  94 +++++++++++++--
 crates/core/src/storage/mod.rs                |   1 -
 crates/service/src/account/account_proxy.rs   | 113 +++++++++++++-----
 .../src/account/account_proxy_health.rs       |  61 ++++++++--
 .../request/tests/request_rewrite_tests.rs    |   1 +
 .../upstream/attempt_flow/postprocess.rs      |  49 ++++++++
 crates/service/src/rpc_dispatch/account.rs    |  26 ++--
 10 files changed, 320 insertions(+), 63 deletions(-)

diff --git a/apps/src/lib/i18n/messages/en.ts b/apps/src/lib/i18n/messages/en.ts
index 889dc3d80..74e782f0f 100644
--- a/apps/src/lib/i18n/messages/en.ts
+++ b/apps/src/lib/i18n/messages/en.ts
@@ -55,6 +55,15 @@ export const EN_MESSAGES: MessageCatalog = {
   模型组: "Model Groups",
   插件中心: "Plugins",
   请求日志: "Request Logs",
+  路由策略: "Route strategy",
+  路由来源: "Route source",
+  客户端模型: "Client model",
+  最终平台模型: "Final platform model",
+  模型来源: "Model source",
+  客户端推理: "Client reasoning",
+  最终推理: "Final reasoning",
+  推理来源: "Reasoning source",
+  服务等级来源: "Service tier source",
   应用设置: "Settings",
   系统设置: "System settings",
   设置: "Settings",
@@ -91,6 +100,9 @@ export const EN_MESSAGES: MessageCatalog = {
   账号池剩余: "Pool remaining quota",
   "5小时内": "Within 5 hours",
   "7天内": "Within 7 days",
+  天: "d",
+  时: "h",
+  分: "min",
   条: "items",
   今日Token: "Today's Token",
   缓存Token: "Cached Token",
diff --git a/apps/src/lib/i18n/messages/ko.ts b/apps/src/lib/i18n/messages/ko.ts
index dab32693f..4ea8795b9 100644
--- a/apps/src/lib/i18n/messages/ko.ts
+++ b/apps/src/lib/i18n/messages/ko.ts
@@ -56,6 +56,15 @@ export const KO_MESSAGES: MessageCatalog = {
   模型组: "모델 그룹",
   插件中心: "플러그인",
   请求日志: "요청 로그",
+  路由策略: "라우트 전략",
+  路由来源: "라우트 출처",
+  客户端模型: "클라이언트 모델",
+  最终平台模型: "최종 플랫폼 모델",
+  模型来源: "모델 출처",
+  客户端推理: "클라이언트 추론",
+  最终推理: "최종 추론",
+  推理来源: "추론 출처",
+  服务等级来源: "서비스 등급 출처",
   应用设置: "설정",
   设置: "설정",
   "赞助与推荐": "후원 및 추천",
@@ -91,6 +100,9 @@ export const KO_MESSAGES: MessageCatalog = {
   账号池剩余: "계정 풀 잔여량",
   "5小时内": "5시간 이내",
   "7天内": "7일 이내",
+  天: "일",
+  时: "시간",
+  分: "분",
   条: "건",
   今日Token: "오늘의 Token",
   缓存Token: "캐시 Token",
diff --git a/apps/src/lib/i18n/messages/ru.ts b/apps/src/lib/i18n/messages/ru.ts
index 75167d6d8..cc92dcb2e 100644
--- a/apps/src/lib/i18n/messages/ru.ts
+++ b/apps/src/lib/i18n/messages/ru.ts
@@ -49,12 +49,23 @@ export const RU_MESSAGES: MessageCatalog = {
 	模型组: "Группы моделей",
 	插件中心: "Плагины",
 	请求日志: "Журнал запросов",
+	路由策略: "Стратегия маршрута",
+	路由来源: "Источник маршрута",
+	客户端模型: "Модель клиента",
+	最终平台模型: "Итоговая модель платформы",
+	模型来源: "Источник модели",
+	客户端推理: "Рассуждение клиента",
+	最终推理: "Итоговое рассуждение",
+	推理来源: "Источник рассуждения",
+	服务等级来源: "Источник уровня сервиса",
 	应用设置: "Настройки",
 	设置: "Настройки",
 	赞助与推荐: "Поддержка",
 	访问控制: "Доступ",
 	退出登录: "Выйти",
 	账号系统: "Система аккаунтов",
+	"启用后，该账号对 OpenAI API 的请求将通过指定的代理发送。":
+		"После включения запросы этого аккаунта к OpenAI API будут отправляться через указанный прокси.",
 	公开访问: "Открытый доступ",
 	保存访问控制: "Сохранить доступ",
 	可分发成员: "Участники с квотой",
@@ -84,6 +95,9 @@ export const RU_MESSAGES: MessageCatalog = {
 	账号池剩余: "Остаток пула",
 	"5小时内": "За 5 часов",
 	"7天内": "За 7 дней",
+	天: "д",
+	时: "ч",
+	分: "мин",
 	条: "зап.",
 	今日Token: "Токены сегодня",
 	缓存Token: "Токены кэша",
diff --git a/crates/core/src/storage/account_proxy_settings.rs b/crates/core/src/storage/account_proxy_settings.rs
index 8f2064fa0..0ed521031 100644
--- a/crates/core/src/storage/account_proxy_settings.rs
+++ b/crates/core/src/storage/account_proxy_settings.rs
@@ -249,6 +249,22 @@ impl Storage {
         }
     }
 
+    pub fn find_cached_proxy_flag_by_country(&self, country_code: &str) -> Result<Option<String>> {
+        let mut stmt = self.conn.prepare(
+            "SELECT flag_img_url
+             FROM account_proxy_settings
+             WHERE country_code = ?1
+               AND flag_img_url LIKE 'data:image/%'
+             LIMIT 1",
+        )?;
+        let mut rows = stmt.query([country_code])?;
+        if let Some(row) = rows.next()? {
+            Ok(row.get(0)?)
+        } else {
+            Ok(None)
+        }
+    }
+
     pub fn list_account_proxy_settings(&self) -> Result<Vec<AccountProxySettings>> {
         let mut stmt = self.conn.prepare(
             "SELECT
@@ -356,18 +372,72 @@ impl Storage {
         self.ensure_column("account_proxy_settings", "isp", "TEXT")?;
         self.ensure_column("account_proxy_settings", "as_domain", "TEXT")?;
         self.ensure_column("account_proxy_settings", "timezone_id", "TEXT")?;
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN is_proxy", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN geo_provider", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN continent_code", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN continent_name", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN region_code", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN latitude", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN longitude", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN is_eu", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN postal", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN timezone_abbr", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN timezone_is_dst", []).ok();
-        self.conn.execute("ALTER TABLE account_proxy_settings DROP COLUMN flag_emoji_unicode", []).ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN is_proxy",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN geo_provider",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN continent_code",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN continent_name",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN region_code",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN latitude",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN longitude",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute("ALTER TABLE account_proxy_settings DROP COLUMN is_eu", [])
+            .ok();
+        self.conn
+            .execute("ALTER TABLE account_proxy_settings DROP COLUMN postal", [])
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN timezone_abbr",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN timezone_is_dst",
+                [],
+            )
+            .ok();
+        self.conn
+            .execute(
+                "ALTER TABLE account_proxy_settings DROP COLUMN flag_emoji_unicode",
+                [],
+            )
+            .ok();
         self.ensure_column("account_proxy_settings", "timezone_offset", "INTEGER")?;
         self.ensure_column("account_proxy_settings", "timezone_utc", "TEXT")?;
         self.ensure_column("account_proxy_settings", "flag_img_url", "TEXT")?;
diff --git a/crates/core/src/storage/mod.rs b/crates/core/src/storage/mod.rs
index d09d4a041..6886c3831 100644
--- a/crates/core/src/storage/mod.rs
+++ b/crates/core/src/storage/mod.rs
@@ -89,7 +89,6 @@ pub struct AccountProxySettings {
     pub updated_at: i64,
 }
 
-
 #[derive(Debug, Clone)]
 pub struct QuotaSourceModelAssignment {
     pub source_kind: String,
diff --git a/crates/service/src/account/account_proxy.rs b/crates/service/src/account/account_proxy.rs
index 9ad12f485..8736422c9 100644
--- a/crates/service/src/account/account_proxy.rs
+++ b/crates/service/src/account/account_proxy.rs
@@ -9,8 +9,6 @@ pub(crate) const STATUS_UNCHECKED: &str = "unchecked";
 pub(crate) const STATUS_CHECKING: &str = "checking";
 pub(crate) const STATUS_INVALID_URL: &str = "invalid_url";
 pub(crate) const ENV_ACCOUNT_PROXY_DEBUG: &str = "CODEXMANAGER_ACCOUNT_PROXY_DEBUG";
-#[cfg(test)]
-pub(crate) const STATUS_RUNTIME_ERROR: &str = "runtime_error";
 const LOCAL_PROXY_EXPECTED_MESSAGE: &str = "Codex-Manager supports HTTP, HTTPS, SOCKS4, and SOCKS5 proxy URLs, for example http://host:port or socks5://host:port. For sing-box, paste the local mixed inbound address, e.g. http://127.0.0.1:7891.";
 
 #[derive(Debug, Clone, PartialEq, Eq)]
@@ -110,33 +108,69 @@ pub(crate) fn set_account_proxy_settings(
     };
 
     let (
-        final_status, final_latency, final_last_error,
-        final_ip, final_country_code, final_country_name, final_region_name, final_city_name,
-        final_geo_checked_at, final_geo_error,
-        final_asn, final_as_org, final_isp, final_as_domain,
-        final_timezone_id, final_timezone_offset, final_timezone_utc,
-        final_flag_img_url, final_flag_emoji,
-    ) =
-    if proxy_url_changed {
+        final_status,
+        final_latency,
+        final_last_error,
+        final_ip,
+        final_country_code,
+        final_country_name,
+        final_region_name,
+        final_city_name,
+        final_geo_checked_at,
+        final_geo_error,
+        final_asn,
+        final_as_org,
+        final_isp,
+        final_as_domain,
+        final_timezone_id,
+        final_timezone_offset,
+        final_timezone_utc,
+        final_flag_img_url,
+        final_flag_emoji,
+    ) = if proxy_url_changed {
         if status.is_some() {
             (
                 status.unwrap_or(default_status),
-                latency_ms, last_error,
-                ip, country_code, country_name, region_name, city_name,
-                geo_checked_at, geo_error,
-                None, None, None, None,
-                None, None, None,
-                None, None,
+                latency_ms,
+                last_error,
+                ip,
+                country_code,
+                country_name,
+                region_name,
+                city_name,
+                geo_checked_at,
+                geo_error,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
             )
         } else {
             (
                 default_status,
-                None, None,
-                None, None, None, None, None,
-                None, None,
-                None, None, None, None,
-                None, None, None,
-                None, None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
+                None,
             )
         }
     } else {
@@ -164,11 +198,12 @@ pub(crate) fn set_account_proxy_settings(
         )
     };
 
-    let final_last_check_at = if final_status == STATUS_UNCHECKED || final_status == STATUS_NOT_CONFIGURED {
-        None
-    } else {
-        Some(now_ts())
-    };
+    let final_last_check_at =
+        if final_status == STATUS_UNCHECKED || final_status == STATUS_NOT_CONFIGURED {
+            None
+        } else {
+            Some(now_ts())
+        };
 
     storage
         .upsert_account_proxy_settings(
@@ -204,7 +239,11 @@ pub(crate) fn set_account_proxy_settings(
         let account_id_clone = account_id.to_string();
         std::thread::spawn(move || {
             if let Err(err) = test_account_proxy_settings(&account_id_clone, None, None) {
-                log::error!("background proxy check failed for account {}: {}", account_id_clone, err);
+                log::error!(
+                    "background proxy check failed for account {}: {}",
+                    account_id_clone,
+                    err
+                );
             }
         });
     }
@@ -236,17 +275,29 @@ pub(crate) fn test_account_proxy_settings(
     match (enabled, proxy_url) {
         (Some(enabled), proxy_url) => {
             test_account_proxy_draft_with_checker(account_id, enabled, proxy_url, |proxy_url| {
-                crate::account::proxy_health::check_account_proxy(proxy_url)
+                crate::account::proxy_health::check_account_proxy(proxy_url, |country_code| {
+                    storage
+                        .find_cached_proxy_flag_by_country(country_code)
+                        .unwrap_or(None)
+                })
             })
         }
         (None, None) => {
             test_account_proxy_settings_with_checker(&storage, account_id, |proxy_url| {
-                crate::account::proxy_health::check_account_proxy(proxy_url)
+                crate::account::proxy_health::check_account_proxy(proxy_url, |country_code| {
+                    storage
+                        .find_cached_proxy_flag_by_country(country_code)
+                        .unwrap_or(None)
+                })
             })
         }
         (None, Some(proxy_url)) => {
             test_account_proxy_draft_with_checker(account_id, true, Some(proxy_url), |proxy_url| {
-                crate::account::proxy_health::check_account_proxy(proxy_url)
+                crate::account::proxy_health::check_account_proxy(proxy_url, |country_code| {
+                    storage
+                        .find_cached_proxy_flag_by_country(country_code)
+                        .unwrap_or(None)
+                })
             })
         }
     }
diff --git a/crates/service/src/account/account_proxy_health.rs b/crates/service/src/account/account_proxy_health.rs
index ec90b95f3..19d971a24 100644
--- a/crates/service/src/account/account_proxy_health.rs
+++ b/crates/service/src/account/account_proxy_health.rs
@@ -112,14 +112,23 @@ pub(crate) struct ProxyHealthCheckResult {
     pub geo: Option<ProxyGeoInfo>,
 }
 
-pub(crate) fn check_account_proxy(proxy_url: &str) -> ProxyHealthCheckResult {
-    check_account_proxy_with_options(proxy_url, DEFAULT_PROXY_TEST_TARGETS, false)
+pub(crate) fn check_account_proxy<'a>(
+    proxy_url: &str,
+    cached_flag_lookup: impl Fn(&str) -> Option<String> + 'a,
+) -> ProxyHealthCheckResult {
+    check_account_proxy_with_options(
+        proxy_url,
+        DEFAULT_PROXY_TEST_TARGETS,
+        false,
+        &cached_flag_lookup,
+    )
 }
 
-fn check_account_proxy_with_options(
+fn check_account_proxy_with_options<'a>(
     proxy_url: &str,
     targets: &[&str],
     accept_invalid_certs: bool,
+    cached_flag_lookup: &(dyn Fn(&str) -> Option<String> + 'a),
 ) -> ProxyHealthCheckResult {
     let (client, parsed_proxy_url) = match build_proxy_test_client(proxy_url, accept_invalid_certs)
     {
@@ -134,7 +143,7 @@ fn check_account_proxy_with_options(
         }
     };
 
-    let mut geo_error = match check_proxy_geo(&client) {
+    let mut geo_error = match check_proxy_geo(&client, cached_flag_lookup) {
         Ok((geo, latency_ms)) => {
             return ProxyHealthCheckResult {
                 status: STATUS_OK,
@@ -213,14 +222,20 @@ fn proxy_geo_endpoint() -> String {
         .unwrap_or_else(|| IPWHOIS_ENDPOINT.to_string())
 }
 
-fn check_proxy_geo(client: &Client) -> Result<(ProxyGeoInfo, i64), String> {
+fn check_proxy_geo<'a>(
+    client: &Client,
+    cached_flag_lookup: &(dyn Fn(&str) -> Option<String> + 'a),
+) -> Result<(ProxyGeoInfo, i64), String> {
     match proxy_geo_provider().as_str() {
-        "ipwhois" => check_ipwhois_geo(client),
+        "ipwhois" => check_ipwhois_geo(client, cached_flag_lookup),
         other => Err(format!("unsupported proxy geo provider: {other}")),
     }
 }
 
-fn check_ipwhois_geo(client: &Client) -> Result<(ProxyGeoInfo, i64), String> {
+fn check_ipwhois_geo<'a>(
+    client: &Client,
+    cached_flag_lookup: &(dyn Fn(&str) -> Option<String> + 'a),
+) -> Result<(ProxyGeoInfo, i64), String> {
     let started_at = Instant::now();
     let response = client
         .get(proxy_geo_endpoint())
@@ -254,11 +269,36 @@ fn check_ipwhois_geo(client: &Client) -> Result<(ProxyGeoInfo, i64), String> {
     let timezone = payload.timezone.as_ref();
     let flag = payload.flag.as_ref();
 
+    let country_code =
+        normalize_optional_text(payload.country_code).map(|value| value.to_ascii_uppercase());
+
+    let flag_img_url = if let Some(code) = &country_code {
+        if let Some(cached) = cached_flag_lookup(code) {
+            Some(cached)
+        } else if let Some(url) = flag.and_then(|f| normalize_optional_text(f.img.clone())) {
+            match client.get(&url).send() {
+                Ok(res) if res.status().is_success() => {
+                    if let Ok(bytes) = res.bytes() {
+                        use base64::{engine::general_purpose, Engine as _};
+                        let b64 = general_purpose::STANDARD.encode(&bytes);
+                        Some(format!("data:image/svg+xml;base64,{}", b64))
+                    } else {
+                        Some(url)
+                    }
+                }
+                _ => Some(url),
+            }
+        } else {
+            None
+        }
+    } else {
+        flag.and_then(|f| normalize_optional_text(f.img.clone()))
+    };
+
     Ok((
         ProxyGeoInfo {
             ip,
-            country_code: normalize_optional_text(payload.country_code)
-                .map(|value| value.to_ascii_uppercase()),
+            country_code,
             country_name: normalize_optional_text(payload.country),
             region_name: normalize_optional_text(payload.region),
             city_name: normalize_optional_text(payload.city),
@@ -274,7 +314,7 @@ fn check_ipwhois_geo(client: &Client) -> Result<(ProxyGeoInfo, i64), String> {
             timezone_offset: timezone.and_then(|tz| tz.offset),
             timezone_utc: timezone.and_then(|tz| normalize_optional_text(tz.utc.clone())),
 
-            flag_img_url: flag.and_then(|f| normalize_optional_text(f.img.clone())),
+            flag_img_url,
             flag_emoji: flag.and_then(|f| normalize_optional_text(f.emoji.clone())),
         },
         latency_ms,
@@ -344,6 +384,7 @@ mod tests {
             &proxy_url,
             &["https://www.gstatic.com/generate_204"],
             true,
+            &|_| None,
         );
 
         assert_eq!(result.status, STATUS_RUNTIME_ERROR);
diff --git a/crates/service/src/gateway/request/tests/request_rewrite_tests.rs b/crates/service/src/gateway/request/tests/request_rewrite_tests.rs
index a84b0bf9e..abd0e9760 100644
--- a/crates/service/src/gateway/request/tests/request_rewrite_tests.rs
+++ b/crates/service/src/gateway/request/tests/request_rewrite_tests.rs
@@ -1220,6 +1220,7 @@ fn responses_official_allowlist_drops_stream_passthrough() {
 #[test]
 fn responses_dynamic_tools_are_mapped_to_tools_for_codex_backend() {
     let _guard = crate::test_env_guard();
+    let _inject_guard = RuntimeEnvGuard::set(CODEX_IMAGE_GENERATION_AUTO_INJECT_TOOL_ENV, "1");
     let body = json!({
         "model": "gpt-5.3-codex",
         "input": "hello",
diff --git a/crates/service/src/gateway/upstream/attempt_flow/postprocess.rs b/crates/service/src/gateway/upstream/attempt_flow/postprocess.rs
index f5e875d22..8af5dbf88 100644
--- a/crates/service/src/gateway/upstream/attempt_flow/postprocess.rs
+++ b/crates/service/src/gateway/upstream/attempt_flow/postprocess.rs
@@ -607,6 +607,37 @@ mod tests {
     use std::time::Duration;
     use tiny_http::{Response, Server, StatusCode};
 
+    struct EnvGuard {
+        key: &'static str,
+        original: Option<std::ffi::OsString>,
+    }
+
+    impl EnvGuard {
+        fn set(key: &'static str, value: &str) -> Self {
+            let original = std::env::var_os(key);
+            std::env::set_var(key, value);
+            Self { key, original }
+        }
+    }
+
+    impl Drop for EnvGuard {
+        fn drop(&mut self) {
+            if let Some(value) = &self.original {
+                std::env::set_var(self.key, value);
+            } else {
+                std::env::remove_var(self.key);
+            }
+        }
+    }
+
+    struct RuntimeConfigReloadGuard;
+
+    impl Drop for RuntimeConfigReloadGuard {
+        fn drop(&mut self) {
+            let _ = std::panic::catch_unwind(crate::gateway::reload_runtime_config_from_env);
+        }
+    }
+
     /// 函数 `build_account`
     ///
     /// 作者: gaohongshun
@@ -771,6 +802,12 @@ mod tests {
 
     #[test]
     fn chatgpt_challenge_on_last_candidate_retries_without_same_account_failover() {
+        let _env_lock = crate::test_env_guard();
+        let _reload_guard = RuntimeConfigReloadGuard;
+        let _proxy_guard = EnvGuard::set("CODEXMANAGER_UPSTREAM_PROXY_URL", "");
+        let _proxy_list_guard = EnvGuard::set("CODEXMANAGER_PROXY_LIST", "");
+        crate::gateway::reload_runtime_config_from_env();
+
         let storage = Storage::open_in_memory().expect("open storage");
         storage.init().expect("init storage");
         let now = now_ts();
@@ -871,6 +908,12 @@ mod tests {
 
     #[test]
     fn chatgpt_cloudflare_challenge_directly_failovers_without_same_account_retry() {
+        let _env_lock = crate::test_env_guard();
+        let _reload_guard = RuntimeConfigReloadGuard;
+        let _proxy_guard = EnvGuard::set("CODEXMANAGER_UPSTREAM_PROXY_URL", "");
+        let _proxy_list_guard = EnvGuard::set("CODEXMANAGER_PROXY_LIST", "");
+        crate::gateway::reload_runtime_config_from_env();
+
         let storage = Storage::open_in_memory().expect("open storage");
         storage.init().expect("init storage");
         let now = now_ts();
@@ -964,6 +1007,12 @@ mod tests {
 
     #[test]
     fn cloudflare_cf_ray_directly_failovers_without_same_account_retry() {
+        let _env_lock = crate::test_env_guard();
+        let _reload_guard = RuntimeConfigReloadGuard;
+        let _proxy_guard = EnvGuard::set("CODEXMANAGER_UPSTREAM_PROXY_URL", "");
+        let _proxy_list_guard = EnvGuard::set("CODEXMANAGER_PROXY_LIST", "");
+        crate::gateway::reload_runtime_config_from_env();
+
         let storage = Storage::open_in_memory().expect("open storage");
         storage.init().expect("init storage");
         let now = now_ts();
diff --git a/crates/service/src/rpc_dispatch/account.rs b/crates/service/src/rpc_dispatch/account.rs
index 3ef9a6ca1..274ab6dc3 100644
--- a/crates/service/src/rpc_dispatch/account.rs
+++ b/crates/service/src/rpc_dispatch/account.rs
@@ -114,17 +114,25 @@ pub(super) fn try_handle(req: &JsonRpcRequest) -> Option<JsonRpcResponse> {
             let account_id = first_str_param(req, &["accountId", "account_id"]).unwrap_or("");
             let enabled = super::bool_param(req, "enabled").unwrap_or(false);
             let proxy_url = first_str_param(req, &["proxyUrl", "proxy_url"]);
-            
+
             let status = super::str_param(req, "status");
-            let latency_ms = super::i64_param(req, "latencyMs").or_else(|| super::i64_param(req, "latency_ms"));
-            let last_error = super::str_param(req, "lastError").or_else(|| super::str_param(req, "last_error"));
+            let latency_ms =
+                super::i64_param(req, "latencyMs").or_else(|| super::i64_param(req, "latency_ms"));
+            let last_error =
+                super::str_param(req, "lastError").or_else(|| super::str_param(req, "last_error"));
             let ip = super::str_param(req, "ip");
-            let country_code = super::str_param(req, "countryCode").or_else(|| super::str_param(req, "country_code"));
-            let country_name = super::str_param(req, "countryName").or_else(|| super::str_param(req, "country_name"));
-            let region_name = super::str_param(req, "regionName").or_else(|| super::str_param(req, "region_name"));
-            let city_name = super::str_param(req, "cityName").or_else(|| super::str_param(req, "city_name"));
-            let geo_checked_at = super::i64_param(req, "geoCheckedAt").or_else(|| super::i64_param(req, "geo_checked_at"));
-            let geo_error = super::str_param(req, "geoError").or_else(|| super::str_param(req, "geo_error"));
+            let country_code = super::str_param(req, "countryCode")
+                .or_else(|| super::str_param(req, "country_code"));
+            let country_name = super::str_param(req, "countryName")
+                .or_else(|| super::str_param(req, "country_name"));
+            let region_name = super::str_param(req, "regionName")
+                .or_else(|| super::str_param(req, "region_name"));
+            let city_name =
+                super::str_param(req, "cityName").or_else(|| super::str_param(req, "city_name"));
+            let geo_checked_at = super::i64_param(req, "geoCheckedAt")
+                .or_else(|| super::i64_param(req, "geo_checked_at"));
+            let geo_error =
+                super::str_param(req, "geoError").or_else(|| super::str_param(req, "geo_error"));
 
             super::value_or_error(account_proxy::set_account_proxy_settings(
                 account_id,

From 1c7503b52fbeae1e80da9dffd510748f5ddf62da Mon Sep 17 00:00:00 2001
From: baltic-tea <yes.tea@protonmail.com>
Date: Thu, 11 Jun 2026 20:41:27 +0300
Subject: [PATCH 9/9] test(apps): stabilize e2e and runtime loaders

---
 apps/tests/accounts-toolbar.spec.ts            | 16 +++++++++++++---
 apps/tests/accounts-usage-auto-refresh.spec.ts | 14 ++++++++++++--
 apps/tests/api-keys-model-prefix.spec.ts       |  2 +-
 apps/tests/ccswitch.test.mjs                   |  7 ++++++-
 apps/tests/models-management.spec.ts           | 14 ++++++++++++--
 apps/tests/transport-web-commands.test.mjs     |  5 +++++
 6 files changed, 49 insertions(+), 9 deletions(-)

diff --git a/apps/tests/accounts-toolbar.spec.ts b/apps/tests/accounts-toolbar.spec.ts
index 109da6356..7a6a555f3 100644
--- a/apps/tests/accounts-toolbar.spec.ts
+++ b/apps/tests/accounts-toolbar.spec.ts
@@ -56,7 +56,7 @@ test("accounts toolbar shows warmup button and tooltip", async ({ page }) => {
   const rtRefreshPayloads: Record<string, unknown>[] = [];
   let refreshAllRtCount = 0;
 
-  await page.route("**/api/runtime", async (route) => {
+  await page.route("**/api/runtime**", async (route) => {
     await route.fulfill({
       contentType: "application/json; charset=utf-8",
       body: JSON.stringify({
@@ -72,7 +72,7 @@ test("accounts toolbar shows warmup button and tooltip", async ({ page }) => {
     });
   });
 
-  await page.route("**/api/rpc", async (route) => {
+  await page.route("**/api/rpc**", async (route) => {
     const payload = route.request().postDataJSON();
     const method = typeof payload?.method === "string" ? payload.method : "";
     const id = payload?.id ?? 1;
@@ -100,6 +100,16 @@ test("accounts toolbar shows warmup button and tooltip", async ({ page }) => {
       });
       return;
     }
+    if (method === "accountManager/session/current") {
+      await ok({
+        mode: "none",
+        currentUser: null,
+        role: "system_admin",
+        permissions: ["system:admin"],
+        billingModeLock: { locked: false, reason: null },
+      });
+      return;
+    }
     if (method === "account/list") {
       await ok({
         items: [
@@ -181,7 +191,7 @@ test("accounts toolbar shows warmup button and tooltip", async ({ page }) => {
 
   await page.goto("/accounts/");
 
-  await expect(page.getByRole("heading", { name: "账号管理" })).toBeVisible();
+  await expect(page.getByRole("heading", { name: "OpenAI 账号池" })).toBeVisible();
 
   const warmupButton = page.getByRole("button", { name: "预热" });
   await expect(warmupButton).toBeVisible();
diff --git a/apps/tests/accounts-usage-auto-refresh.spec.ts b/apps/tests/accounts-usage-auto-refresh.spec.ts
index 505aabc74..b64a48595 100644
--- a/apps/tests/accounts-usage-auto-refresh.spec.ts
+++ b/apps/tests/accounts-usage-auto-refresh.spec.ts
@@ -90,7 +90,7 @@ test("accounts page refreshes usage after backend polling writes a new snapshot"
   let usageListCount = 0;
   let newSnapshotAvailable = false;
 
-  await page.route("**/api/runtime", async (route) => {
+  await page.route("**/api/runtime**", async (route) => {
     await route.fulfill({
       contentType: "application/json; charset=utf-8",
       body: JSON.stringify({
@@ -106,7 +106,7 @@ test("accounts page refreshes usage after backend polling writes a new snapshot"
     });
   });
 
-  await page.route("**/api/rpc", async (route) => {
+  await page.route("**/api/rpc**", async (route) => {
     const payload = route.request().postDataJSON();
     const method = typeof payload?.method === "string" ? payload.method : "";
     const id = payload?.id ?? 1;
@@ -134,6 +134,16 @@ test("accounts page refreshes usage after backend polling writes a new snapshot"
       });
       return;
     }
+    if (method === "accountManager/session/current") {
+      await ok({
+        mode: "none",
+        currentUser: null,
+        role: "system_admin",
+        permissions: ["system:admin"],
+        billingModeLock: { locked: false, reason: null },
+      });
+      return;
+    }
     if (method === "account/list") {
       await ok({
         items: [
diff --git a/apps/tests/api-keys-model-prefix.spec.ts b/apps/tests/api-keys-model-prefix.spec.ts
index cd5201ea3..efc1a5017 100644
--- a/apps/tests/api-keys-model-prefix.spec.ts
+++ b/apps/tests/api-keys-model-prefix.spec.ts
@@ -190,7 +190,7 @@ test("api key modal reuses prefix model metadata for long model slugs", async ({
   const dialog = page.getByRole("dialog");
   await expect(dialog.getByRole("heading", { name: "编辑平台密钥" })).toBeVisible();
   await dialog.getByText("GPT-5.3 Codex", { exact: true }).click();
-  await expect(page.getByText("GPT-5.3 Codex", { exact: true })).toBeVisible();
+  await expect(dialog.getByText("GPT-5.3 Codex", { exact: true }).first()).toBeVisible();
 });
 
 test("api key modal displays and submits hybrid rotation", async ({ page }) => {
diff --git a/apps/tests/ccswitch.test.mjs b/apps/tests/ccswitch.test.mjs
index fa1cfc6b5..7b50982a2 100644
--- a/apps/tests/ccswitch.test.mjs
+++ b/apps/tests/ccswitch.test.mjs
@@ -35,6 +35,11 @@ async function writeCompiledModule(inputPath, outputPath) {
 
 async function loadCcSwitchModule() {
   const tempDir = await fs.mkdtemp(path.join(os.tmpdir(), "codexmanager-ccswitch-"));
+  await fs.writeFile(
+    path.join(tempDir, "package.json"),
+    '{"type":"module"}\n',
+    "utf8",
+  );
   const tempFile = path.join(tempDir, "lib", "utils", "ccswitch.mjs");
   const endpointTempFile = path.join(tempDir, "lib", "gateway", "endpoints.js");
   await writeCompiledModule(sourcePath, tempFile);
@@ -119,4 +124,4 @@ test("buildCcSwitchProviderName keeps existing CodexManager prefix", () => {
     ccswitch.buildCcSwitchProviderName("CodexManager Shared", "key-1"),
     "CodexManager Shared",
   );
-});
\ No newline at end of file
+});
diff --git a/apps/tests/models-management.spec.ts b/apps/tests/models-management.spec.ts
index f3d297064..3250a3f13 100644
--- a/apps/tests/models-management.spec.ts
+++ b/apps/tests/models-management.spec.ts
@@ -77,7 +77,7 @@ test("models page supports creating and deleting a managed model", async ({ page
     },
   ];
 
-  await page.route("**/api/runtime", async (route) => {
+  await page.route("**/api/runtime**", async (route) => {
     await route.fulfill({
       contentType: "application/json; charset=utf-8",
       body: JSON.stringify({
@@ -93,7 +93,7 @@ test("models page supports creating and deleting a managed model", async ({ page
     });
   });
 
-  await page.route("**/api/rpc", async (route) => {
+  await page.route("**/api/rpc**", async (route) => {
     const payload = route.request().postDataJSON();
     const method = typeof payload?.method === "string" ? payload.method : "";
     const id = payload?.id ?? 1;
@@ -123,6 +123,16 @@ test("models page supports creating and deleting a managed model", async ({ page
       });
       return;
     }
+    if (method === "accountManager/session/current") {
+      await ok({
+        mode: "none",
+        currentUser: null,
+        role: "system_admin",
+        permissions: ["system:admin"],
+        billingModeLock: { locked: false, reason: null },
+      });
+      return;
+    }
     if (method === "gateway/concurrencyRecommendation/get") {
       await ok({
         usageRefreshWorkers: 4,
diff --git a/apps/tests/transport-web-commands.test.mjs b/apps/tests/transport-web-commands.test.mjs
index 350fb4830..964759fe7 100644
--- a/apps/tests/transport-web-commands.test.mjs
+++ b/apps/tests/transport-web-commands.test.mjs
@@ -63,6 +63,11 @@ async function ensureRequestUtils(tempDir) {
 
 async function loadTransportWebCommandsModule() {
   const tempDir = await fs.mkdtemp(path.join(os.tmpdir(), "codexmanager-transport-web-commands-"));
+  await fs.writeFile(
+    path.join(tempDir, "package.json"),
+    '{"type":"module"}\n',
+    "utf8",
+  );
   const tempFile = path.join(tempDir, "transport-web-commands.mjs");
   await writeCompiledModule(sourcePath, tempFile);
   for (const modulePath of modulePaths) {