refactor: 移除前端 Mock API，新增共享组件，优化认证流程

- 删除 mock_api_client、mock_calendar_service、mock_history_service
- 新增 fixed_length_code_input、link_button、message_composer 共享组件
- 优化登录/注册/密码重置页面使用新组件
- 简化 injection.dart 移除 mock 分支
- 更新 env.dart 配置（BACKEND_URL 替换 API_URL）
- 后端 agentscope 工具和测试更新
- 重构 AGENTS.md 文档结构
- 新增 deploy/ 目录和 protocol 文档

backend/src/v1/agent/router.py

@@ -68,12 +68,12 @@ def _verified_access_token_for_user(
     *,
     authorization: str | None,
     current_user: CurrentUser,
-) -> str | None:
+) -> str:
     if not isinstance(authorization, str):
-        return None
+        raise HTTPException(status_code=401, detail="Unauthorized")
     normalized = authorization.strip()
     if not normalized:
-        return None
+        raise HTTPException(status_code=401, detail="Unauthorized")
     if not normalized.lower().startswith("bearer "):
         raise HTTPException(status_code=401, detail="Unauthorized")
     token = normalized[7:].strip()

backend/src/v1/auth/schemas.py

@@ -15,12 +15,7 @@ class VerificationCreateRequest(BaseModel):
     email: EmailStr
     password: str = Field(min_length=SUPABASE_PASSWORD_MIN_LENGTH)
     redirect_to: str | None = None
-    invite_code: str | None = Field(
-        default=None,
-        min_length=8,
-        max_length=8,
-        pattern=r"^[ABCDEFGHJKMNPQRSTUVWXYZ23456789]{8}$",
-    )
+    invite_code: str | None = None
 
 
 class VerificationResendRequest(BaseModel):

backend/src/v1/auth/service.py

@@ -1,5 +1,6 @@
 from __future__ import annotations
 
+import re
 from typing import Protocol
 
 from v1.auth.schemas import (
@@ -56,7 +57,11 @@ class AuthService:
     async def create_verification(
         self, request: VerificationCreateRequest
     ) -> VerificationCreateResponse:
-        return await self._gateway.create_verification(request)
+        normalized_invite_code = _normalize_invite_code(request.invite_code)
+        normalized_request = request.model_copy(
+            update={"invite_code": normalized_invite_code}
+        )
+        return await self._gateway.create_verification(normalized_request)
 
     async def verify_verification(
         self, request: VerificationVerifyRequest
@@ -82,3 +87,17 @@ class AuthService:
         self, request: PasswordResetConfirmRequest
     ) -> None:
         await self._gateway.confirm_password_reset(request)
+
+
+_INVITE_CODE_PATTERN = re.compile(r"^[ABCDEFGHJKMNPQRSTUVWXYZ23456789]{4}$")
+
+
+def _normalize_invite_code(value: str | None) -> str | None:
+    if value is None:
+        return None
+
+    normalized = value.strip().upper()
+    if not normalized:
+        return None
+
+    return normalized if _INVITE_CODE_PATTERN.fullmatch(normalized) else None