Upload 26 files

App.tsx

@@ -1,3 +1,4 @@
+
 import React, { useState, useEffect } from 'react';
 import { Sidebar } from './components/Sidebar';
 import { Header } from './components/Header';
@@ -10,6 +11,7 @@ import { Settings } from './pages/Settings';
 import { Reports } from './pages/Reports';
 import { SubjectList } from './pages/SubjectList';
 import { UserList } from './pages/UserList';
+import { SchoolList } from './pages/SchoolList';
 import { Login } from './pages/Login';
 import { User, UserRole } from './types';
 import { api } from './services/api';
@@ -71,8 +73,6 @@ const AppContent: React.FC = () => {
   const [currentUser, setCurrentUser] = useState<User | null>(null);
   const [currentView, setCurrentView] = useState('dashboard');
   const [loading, setLoading] = useState(true);
-  
-  // Mobile Sidebar State
   const [sidebarOpen, setSidebarOpen] = useState(false);
 
   useEffect(() => {
@@ -108,6 +108,7 @@ const AppContent: React.FC = () => {
       case 'reports': return <Reports />;
       case 'subjects': return <SubjectList />;
       case 'users': return <UserList />;
+      case 'schools': return <SchoolList />; // New Route
       default: return <Dashboard onNavigate={(view) => setCurrentView(view)} />;
     }
   };
@@ -121,7 +122,8 @@ const AppContent: React.FC = () => {
     settings: '系统设置',
     reports: '统计报表',
     subjects: '学科设置',
-    users: '用户权限管理'
+    users: '用户权限管理',
+    schools: '学校维度管理'
   };
 
   if (loading) return <div className="min-h-screen flex items-center justify-center bg-gray-50 text-blue-600">加载中...</div>;
@@ -130,7 +132,6 @@ const AppContent: React.FC = () => {
 
   return (
     <div className="flex h-screen bg-gray-50 overflow-hidden">
-      {/* Sidebar - Responsive */}
       <Sidebar
         currentView={currentView}
         onChangeView={(view) => { setCurrentView(view); setSidebarOpen(false); }}
@@ -164,4 +165,4 @@ const App: React.FC = () => {
   );
 };
 
-export default App;
+export default App;

components/Header.tsx

@@ -1,6 +1,8 @@
-import React from 'react';
-import { Bell, Search, Menu } from 'lucide-react';
-import { User } from '../types';
+
+import React, { useState, useEffect } from 'react';
+import { Bell, Search, Menu, Building } from 'lucide-react';
+import { User, School } from '../types';
+import { api } from '../services/api';
 
 interface HeaderProps {
   user: User;
@@ -9,6 +11,23 @@ interface HeaderProps {
 }
 
 export const Header: React.FC<HeaderProps> = ({ user, title, onMenuClick }) => {
+  const [schools, setSchools] = useState<School[]>([]);
+  const [selectedSchool, setSelectedSchool] = useState(localStorage.getItem('admin_view_school_id') || '');
+
+  useEffect(() => {
+    if (user.role === 'ADMIN') {
+      api.schools.getAll().then(setSchools).catch(console.error);
+    }
+  }, [user]);
+
+  const handleSchoolChange = (e: React.ChangeEvent<HTMLSelectElement>) => {
+    const newVal = e.target.value;
+    setSelectedSchool(newVal);
+    if (newVal) localStorage.setItem('admin_view_school_id', newVal);
+    else localStorage.removeItem('admin_view_school_id');
+    window.location.reload(); // Reload to refresh data context
+  };
+
   return (
     <header className="h-16 md:h-20 bg-white border-b border-gray-200 flex items-center justify-between px-4 md:px-8 sticky top-0 z-10 shadow-sm w-full">
       <div className="flex items-center space-x-4">
@@ -22,6 +41,21 @@ export const Header: React.FC<HeaderProps> = ({ user, title, onMenuClick }) => {
       </div>
 
       <div className="flex items-center space-x-2 md:space-x-6">
+        {/* Admin School Switcher */}
+        {user.role === 'ADMIN' && (
+          <div className="hidden md:flex items-center bg-gray-100 rounded-lg px-2 py-1">
+             <Building size={16} className="text-gray-500 mr-2"/>
+             <select 
+               className="bg-transparent text-sm border-none focus:ring-0 text-gray-700 font-medium cursor-pointer"
+               value={selectedSchool}
+               onChange={handleSchoolChange}
+             >
+                <option value="">-- 全平台视图 --</option>
+                {schools.map(s => <option key={s._id} value={s._id}>{s.name}</option>)}
+             </select>
+          </div>
+        )}
+
         <div className="relative hidden md:block">
           <input
             type="text"
@@ -38,13 +72,13 @@ export const Header: React.FC<HeaderProps> = ({ user, title, onMenuClick }) => {
 
         <div className="flex items-center space-x-3 border-l pl-4 md:pl-6 border-gray-200">
           <div className="text-right hidden sm:block">
-            <p className="text-sm font-semibold text-gray-800">{user.username}</p>
+            <p className="text-sm font-semibold text-gray-800">{user.trueName || user.username}</p>
             <p className="text-xs text-gray-500">
               {user.role === 'ADMIN' ? '管理员' : user.role === 'TEACHER' ? '教师' : '学生'}
             </p>
           </div>
           <img
-            src={user.avatar || "https://api.dicebear.com/7.x/avataaars/svg?seed=" + user.username}
+            src={user.avatar || `https://api.dicebear.com/7.x/avataaars/svg?seed=${user.username}`}
             alt="Profile"
             className="h-8 w-8 md:h-10 md:w-10 rounded-full object-cover border-2 border-white shadow-sm ring-2 ring-gray-100"
           />
@@ -52,4 +86,4 @@ export const Header: React.FC<HeaderProps> = ({ user, title, onMenuClick }) => {
       </div>
     </header>
   );
-};
+};

components/Sidebar.tsx

@@ -1,5 +1,6 @@
+
 import React from 'react';
-import { LayoutDashboard, Users, BookOpen, GraduationCap, Settings, LogOut, FileText, School, UserCog, Palette, X } from 'lucide-react';
+import { LayoutDashboard, Users, BookOpen, GraduationCap, Settings, LogOut, FileText, School, UserCog, Palette, X, Building } from 'lucide-react';
 import { UserRole } from '../types';
 
 interface SidebarProps {
@@ -7,8 +8,8 @@ interface SidebarProps {
   onChangeView: (view: string) => void;
   userRole: UserRole;
   onLogout: () => void;
-  isOpen: boolean;       // Mobile state
-  onClose: () => void;   // Close handler
+  isOpen: boolean;
+  onClose: () => void;
 }
 
 export const Sidebar: React.FC<SidebarProps> = ({ currentView, onChangeView, userRole, onLogout, isOpen, onClose }) => {
@@ -16,6 +17,7 @@ export const Sidebar: React.FC<SidebarProps> = ({ currentView, onChangeView, use
     { id: 'dashboard', label: '工作台', icon: LayoutDashboard, roles: [UserRole.ADMIN, UserRole.TEACHER] },
     { id: 'students', label: '学生管理', icon: Users, roles: [UserRole.ADMIN, UserRole.TEACHER] },
     { id: 'classes', label: '班级管理', icon: School, roles: [UserRole.ADMIN] },
+    { id: 'schools', label: '学校管理', icon: Building, roles: [UserRole.ADMIN] }, // New
     { id: 'courses', label: '课程管理', icon: BookOpen, roles: [UserRole.ADMIN, UserRole.TEACHER, UserRole.STUDENT] },
     { id: 'grades', label: '成绩管理', icon: GraduationCap, roles: [UserRole.ADMIN, UserRole.TEACHER, UserRole.STUDENT] },
     { id: 'reports', label: '报表统计', icon: FileText, roles: [UserRole.ADMIN] },
@@ -32,13 +34,7 @@ export const Sidebar: React.FC<SidebarProps> = ({ currentView, onChangeView, use
 
   return (
     <>
-      {/* Mobile Backdrop */}
-      {isOpen && (
-        <div 
-          className="fixed inset-0 bg-black/50 z-40 lg:hidden backdrop-blur-sm"
-          onClick={onClose}
-        ></div>
-      )}
+      {isOpen && <div className="fixed inset-0 bg-black/50 z-40 lg:hidden backdrop-blur-sm" onClick={onClose}></div>}
 
       <div className={sidebarClasses}>
         <div className="flex items-center justify-between h-20 border-b border-slate-700 px-6">
@@ -48,9 +44,7 @@ export const Sidebar: React.FC<SidebarProps> = ({ currentView, onChangeView, use
               智慧校园
             </span>
           </div>
-          <button onClick={onClose} className="lg:hidden text-slate-400 hover:text-white">
-            <X size={24} />
-          </button>
+          <button onClick={onClose} className="lg:hidden text-slate-400 hover:text-white"><X size={24} /></button>
         </div>
 
         <div className="flex-1 overflow-y-auto py-4">
@@ -78,10 +72,7 @@ export const Sidebar: React.FC<SidebarProps> = ({ currentView, onChangeView, use
         </div>
 
         <div className="p-4 border-t border-slate-700">
-          <button
-            onClick={onLogout}
-            className="w-full flex items-center space-x-3 px-4 py-3 rounded-lg text-slate-400 hover:bg-red-500/10 hover:text-red-400 transition-all duration-200"
-          >
+          <button onClick={onLogout} className="w-full flex items-center space-x-3 px-4 py-3 rounded-lg text-slate-400 hover:bg-red-500/10 hover:text-red-400 transition-all duration-200">
             <LogOut size={20} />
             <span className="font-medium">退出登录</span>
           </button>
@@ -89,4 +80,4 @@ export const Sidebar: React.FC<SidebarProps> = ({ currentView, onChangeView, use
       </div>
     </>
   );
-};
+};

pages/Login.tsx

@@ -1,52 +1,173 @@
 
-import React, { useState } from 'react';
-import { GraduationCap, Lock, User as UserIcon, AlertCircle, ArrowRight, Loader2 } from 'lucide-react';
-import { User, UserRole } from '../types';
+import React, { useState, useEffect } from 'react';
+import { GraduationCap, Lock, User as UserIcon, AlertCircle, ArrowRight, Loader2, ArrowLeft, School as SchoolIcon, Mail, Phone, Smile } from 'lucide-react';
+import { User, UserRole, School } from '../types';
 import { api } from '../services/api';
 
 interface LoginProps {
   onLogin: (user: User) => void;
 }
 
+const AVATAR_SEEDS = [
+  'Felix', 'Aneka', 'Zoe', 'Jack', 'Precious', 'Bandit', 'Bubba', 'Cuddles', 
+  'Miss kitty', 'Loki', 'Sassy', 'Simba', 'Oliver', 'Princess', 'Garfield', 'Salem'
+];
+
 export const Login: React.FC<LoginProps> = ({ onLogin }) => {
-  const [isRegistering, setIsRegistering] = useState(false);
-  const [username, setUsername] = useState('');
-  const [password, setPassword] = useState('');
-  const [role, setRole] = useState<UserRole>(UserRole.STUDENT); 
+  const [view, setView] = useState<'login' | 'register'>('login');
+  
+  // Registration Wizard Step
+  const [step, setStep] = useState(1); // 1: School & Role, 2: Info, 3: Avatar
+
+  // Login Form
+  const [loginForm, setLoginForm] = useState({ username: '', password: '' });
   
+  // Register Form
+  const [regForm, setRegForm] = useState({
+    username: '', password: '', role: UserRole.STUDENT, 
+    schoolId: '', trueName: '', phone: '', email: '', avatar: '' 
+  });
+
+  const [schools, setSchools] = useState<School[]>([]);
   const [error, setError] = useState('');
   const [loading, setLoading] = useState(false);
   const [successMsg, setSuccessMsg] = useState('');
 
-  const handleSubmit = async (e: React.FormEvent) => {
+  useEffect(() => {
+    if (view === 'register') {
+      api.schools.getPublic().then(setSchools).catch(console.error);
+    }
+  }, [view]);
+
+  const handleLogin = async (e: React.FormEvent) => {
     e.preventDefault();
     setError('');
-    setSuccessMsg('');
     setLoading(true);
+    try {
+      const user = await api.auth.login(loginForm.username, loginForm.password);
+      onLogin(user);
+    } catch (err: any) {
+      if (err.message === 'PENDING_APPROVAL') setError('账号待审核');
+      else if (err.message === 'BANNED') setError('账号已停用');
+      else setError('用户名或密码错误');
+    } finally { setLoading(false); }
+  };
 
+  const handleRegister = async () => {
+    setError('');
+    setLoading(true);
     try {
-      if (isRegistering) {
-        await api.auth.register({ username, password, role });
-        setSuccessMsg('注册申请已提交，请等待管理员审核通过后登录。');
-        setIsRegistering(false);
-      } else {
-        const user = await api.auth.login(username, password);
-        onLogin(user);
-      }
+      // Default avatar if none selected
+      const finalAvatar = regForm.avatar || `https://api.dicebear.com/7.x/avataaars/svg?seed=${regForm.username}`;
+      await api.auth.register({ ...regForm, avatar: finalAvatar });
+      setSuccessMsg('注册成功！请等待管理员审核。');
+      setView('login');
+      setStep(1);
     } catch (err: any) {
-      console.error(err);
-      if (err.message === 'PENDING_APPROVAL') {
-        setError('您的账号正在等待管理员审核，请稍后再试。');
-      } else if (err.message === 'BANNED') {
-        setError('您的账号已被停用，请联系管理员。');
-      } else {
-        setError(isRegistering ? '注册失败：用户可能已存在' : '用户名或密码错误');
-      }
-    } finally {
-      setLoading(false);
-    }
+      setError('注册失败: 用户名可能已存在');
+    } finally { setLoading(false); }
   };
 
+  // Render Steps
+  const renderStep1 = () => (
+    <div className="space-y-4 animate-in fade-in">
+      <h3 className="text-center font-bold text-gray-700 mb-4">第一步: 选择学校与身份</h3>
+      <div>
+        <label className="text-sm font-medium text-gray-700">所属学校</label>
+        <select 
+          className="w-full mt-1 p-2 border rounded-lg focus:ring-2 focus:ring-blue-500"
+          value={regForm.schoolId}
+          onChange={e => setRegForm({...regForm, schoolId: e.target.value})}
+        >
+          <option value="">-- 请选择 --</option>
+          {schools.map(s => <option key={s._id} value={s._id}>{s.name}</option>)}
+        </select>
+      </div>
+      <div>
+        <label className="text-sm font-medium text-gray-700">申请角色</label>
+        <select 
+          className="w-full mt-1 p-2 border rounded-lg"
+          value={regForm.role}
+          onChange={e => setRegForm({...regForm, role: e.target.value as UserRole})}
+        >
+          <option value={UserRole.STUDENT}>学生</option>
+          <option value={UserRole.TEACHER}>教师</option>
+        </select>
+      </div>
+      <button 
+        type="button" 
+        disabled={!regForm.schoolId}
+        onClick={() => setStep(2)}
+        className="w-full bg-blue-600 text-white py-2 rounded-lg disabled:opacity-50"
+      >
+        下一步
+      </button>
+    </div>
+  );
+
+  const renderStep2 = () => (
+    <div className="space-y-3 animate-in fade-in">
+      <h3 className="text-center font-bold text-gray-700 mb-2">第二步: 填写基本信息</h3>
+      <input 
+        className="w-full p-2 border rounded-lg" 
+        placeholder="用户名 (登录用)" 
+        value={regForm.username} onChange={e => setRegForm({...regForm, username: e.target.value})}
+      />
+      <input 
+        className="w-full p-2 border rounded-lg" 
+        type="password" placeholder="设置密码" 
+        value={regForm.password} onChange={e => setRegForm({...regForm, password: e.target.value})}
+      />
+      <input 
+        className="w-full p-2 border rounded-lg" 
+        placeholder="真实姓名" 
+        value={regForm.trueName} onChange={e => setRegForm({...regForm, trueName: e.target.value})}
+      />
+      <input 
+        className="w-full p-2 border rounded-lg" 
+        placeholder="联系电话" 
+        value={regForm.phone} onChange={e => setRegForm({...regForm, phone: e.target.value})}
+      />
+      <div className="flex gap-2">
+        <button onClick={() => setStep(1)} className="flex-1 border py-2 rounded-lg">上一步</button>
+        <button 
+          onClick={() => setStep(3)} 
+          disabled={!regForm.username || !regForm.password || !regForm.trueName}
+          className="flex-1 bg-blue-600 text-white py-2 rounded-lg disabled:opacity-50"
+        >
+          下一步
+        </button>
+      </div>
+    </div>
+  );
+
+  const renderStep3 = () => (
+    <div className="space-y-4 animate-in fade-in">
+      <h3 className="text-center font-bold text-gray-700">第三步: 选择头像</h3>
+      <div className="grid grid-cols-4 gap-2 max-h-48 overflow-y-auto p-2 border rounded bg-gray-50">
+        {AVATAR_SEEDS.map(seed => {
+          const url = `https://api.dicebear.com/7.x/avataaars/svg?seed=${seed}`;
+          const isSelected = regForm.avatar === url;
+          return (
+            <div 
+              key={seed} 
+              onClick={() => setRegForm({...regForm, avatar: url})}
+              className={`cursor-pointer rounded-full p-1 border-2 transition-all ${isSelected ? 'border-blue-500 scale-110 bg-blue-100' : 'border-transparent hover:bg-gray-200'}`}
+            >
+              <img src={url} alt={seed} className="w-full h-auto rounded-full" />
+            </div>
+          );
+        })}
+      </div>
+      <div className="flex gap-2">
+        <button onClick={() => setStep(2)} className="flex-1 border py-2 rounded-lg">上一步</button>
+        <button onClick={handleRegister} disabled={loading} className="flex-1 bg-green-600 text-white py-2 rounded-lg">
+          {loading ? '提交中...' : '完成注册'}
+        </button>
+      </div>
+    </div>
+  );
+
   return (
     <div className="min-h-screen bg-gray-100 flex items-center justify-center p-4">
       <div className="max-w-md w-full bg-white rounded-2xl shadow-xl overflow-hidden transition-all duration-300">
@@ -64,99 +185,42 @@ export const Login: React.FC<LoginProps> = ({ onLogin }) => {
         <div className="p-8">
           <div className="mb-6 flex justify-center">
              <div className="bg-gray-100 p-1 rounded-lg flex text-sm font-medium">
-                <button 
-                  onClick={() => { setIsRegistering(false); setError(''); setSuccessMsg(''); }}
-                  className={`px-6 py-2 rounded-md transition-all ${!isRegistering ? 'bg-white text-blue-600 shadow-sm' : 'text-gray-500 hover:text-gray-700'}`}
-                >
-                  登录
-                </button>
-                <button 
-                  onClick={() => { setIsRegistering(true); setError(''); setSuccessMsg(''); }}
-                  className={`px-6 py-2 rounded-md transition-all ${isRegistering ? 'bg-white text-blue-600 shadow-sm' : 'text-gray-500 hover:text-gray-700'}`}
-                >
-                  注册
-                </button>
+                <button onClick={() => { setView('login'); setError(''); }} className={`px-6 py-2 rounded-md transition-all ${view==='login' ? 'bg-white text-blue-600 shadow-sm' : 'text-gray-500'}`}>登录</button>
+                <button onClick={() => { setView('register'); setError(''); }} className={`px-6 py-2 rounded-md transition-all ${view==='register' ? 'bg-white text-blue-600 shadow-sm' : 'text-gray-500'}`}>注册</button>
              </div>
           </div>
 
-          <form onSubmit={handleSubmit} className="space-y-5">
-            {error && (
-              <div className="bg-red-50 text-red-600 p-3 rounded-lg text-sm flex items-center animate-in fade-in slide-in-from-top-2">
-                <AlertCircle size={16} className="mr-2 flex-shrink-0" />
-                {error}
-              </div>
-            )}
-            
-            {successMsg && (
-              <div className="bg-green-50 text-green-600 p-3 rounded-lg text-sm flex items-center animate-in fade-in slide-in-from-top-2">
-                <div className="mr-2 h-2 w-2 bg-green-500 rounded-full animate-pulse"></div>
-                {successMsg}
-              </div>
-            )}
-            
-            <div className="space-y-2">
-              <label className="text-sm font-medium text-gray-700">用户名</label>
-              <div className="relative">
-                <div className="absolute inset-y-0 left-0 pl-3 flex items-center pointer-events-none">
-                  <UserIcon className="h-5 w-5 text-gray-400" />
+          {error && <div className="bg-red-50 text-red-600 p-3 rounded-lg text-sm mb-4 flex items-center"><AlertCircle size={16} className="mr-2"/>{error}</div>}
+          {successMsg && <div className="bg-green-50 text-green-600 p-3 rounded-lg text-sm mb-4">{successMsg}</div>}
+
+          {view === 'login' ? (
+            <form onSubmit={handleLogin} className="space-y-5">
+              <div className="space-y-2">
+                <label className="text-sm font-medium text-gray-700">用户名</label>
+                <div className="relative">
+                  <UserIcon className="absolute left-3 top-2.5 h-5 w-5 text-gray-400" />
+                  <input type="text" required value={loginForm.username} onChange={e => setLoginForm({...loginForm, username:e.target.value})} className="block w-full pl-10 pr-3 py-2.5 border border-gray-300 rounded-lg focus:ring-blue-500" placeholder="请输入用户名" />
                 </div>
-                <input
-                  type="text"
-                  required
-                  value={username}
-                  onChange={(e) => setUsername(e.target.value)}
-                  className="block w-full pl-10 pr-3 py-2.5 border border-gray-300 rounded-lg focus:ring-blue-500 focus:border-blue-500 transition-colors bg-gray-50 focus:bg-white"
-                  placeholder="请输入用户名"
-                />
               </div>
-            </div>
-
-            <div className="space-y-2">
-              <label className="text-sm font-medium text-gray-700">密码</label>
-              <div className="relative">
-                <div className="absolute inset-y-0 left-0 pl-3 flex items-center pointer-events-none">
-                  <Lock className="h-5 w-5 text-gray-400" />
+              <div className="space-y-2">
+                <label className="text-sm font-medium text-gray-700">密码</label>
+                <div className="relative">
+                  <Lock className="absolute left-3 top-2.5 h-5 w-5 text-gray-400" />
+                  <input type="password" required value={loginForm.password} onChange={e => setLoginForm({...loginForm, password:e.target.value})} className="block w-full pl-10 pr-3 py-2.5 border border-gray-300 rounded-lg focus:ring-blue-500" placeholder="请输入密码" />
                 </div>
-                <input
-                  type="password"
-                  required
-                  value={password}
-                  onChange={(e) => setPassword(e.target.value)}
-                  className="block w-full pl-10 pr-3 py-2.5 border border-gray-300 rounded-lg focus:ring-blue-500 focus:border-blue-500 transition-colors bg-gray-50 focus:bg-white"
-                  placeholder="请输入密码"
-                />
               </div>
+              <button type="submit" disabled={loading} className="w-full py-3 bg-blue-600 text-white rounded-lg font-bold hover:bg-blue-700 transition-colors">
+                {loading ? <Loader2 className="animate-spin inline"/> : '登 录'}
+              </button>
+              <div className="text-center text-xs text-gray-400 mt-4">演示账号: admin / admin</div>
+            </form>
+          ) : (
+            <div className="min-h-[300px]">
+               {step === 1 && renderStep1()}
+               {step === 2 && renderStep2()}
+               {step === 3 && renderStep3()}
             </div>
-
-            {isRegistering && (
-              <div className="space-y-2 animate-in fade-in slide-in-from-top-2">
-                <label className="text-sm font-medium text-gray-700">申请角色</label>
-                <select
-                  value={role}
-                  onChange={(e) => setRole(e.target.value as UserRole)}
-                  className="block w-full px-3 py-2.5 border border-gray-300 rounded-lg focus:ring-blue-500 focus:border-blue-500 transition-colors bg-white"
-                >
-                  <option value={UserRole.TEACHER}>教师</option>
-                  <option value={UserRole.STUDENT}>学生</option>
-                </select>
-                <p className="text-xs text-gray-500 mt-1">* 注册后需等待管理员审核</p>
-              </div>
-            )}
-
-            <button
-              type="submit"
-              disabled={loading}
-              className={`w-full flex justify-center py-3 px-4 border border-transparent rounded-lg shadow-lg shadow-blue-200 text-sm font-bold text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 transition-all transform hover:scale-[1.02] active:scale-[0.98] ${loading ? 'opacity-70 cursor-not-allowed' : ''}`}
-            >
-              {loading ? <Loader2 className="animate-spin" size={20} /> : (isRegistering ? '提交申请' : '登 录')}
-            </button>
-            
-            {!isRegistering && (
-               <div className="text-center text-xs text-gray-400 mt-4 border-t border-gray-100 pt-4">
-                 <p>演示账号: admin / admin</p>
-               </div>
-            )}
-          </form>
+          )}
         </div>
       </div>
     </div>

pages/SchoolList.tsx

@@ -0,0 +1,100 @@
+
+import React, { useState, useEffect } from 'react';
+import { School } from '../types';
+import { api } from '../services/api';
+import { Loader2, Plus, Edit, Save, X, School as SchoolIcon } from 'lucide-react';
+
+export const SchoolList: React.FC = () => {
+  const [schools, setSchools] = useState<School[]>([]);
+  const [loading, setLoading] = useState(true);
+  const [editId, setEditId] = useState<string | null>(null);
+  const [form, setForm] = useState({ name: '', code: '' });
+  const [isAdding, setIsAdding] = useState(false);
+
+  const loadSchools = async () => {
+    setLoading(true);
+    try {
+      const data = await api.schools.getAll();
+      setSchools(data);
+    } catch (e) { console.error(e); } 
+    finally { setLoading(false); }
+  };
+
+  useEffect(() => { loadSchools(); }, []);
+
+  const handleSave = async () => {
+    if (!form.name || !form.code) return alert('请填写完整信息');
+    try {
+      if (editId) await api.schools.update(editId, form);
+      else await api.schools.add(form);
+      setEditId(null);
+      setIsAdding(false);
+      setForm({ name: '', code: '' });
+      loadSchools();
+    } catch (e) { alert('保存失败，代码可能重复'); }
+  };
+
+  const startEdit = (s: School) => {
+    setEditId(s._id || String(s.id));
+    setForm({ name: s.name, code: s.code });
+    setIsAdding(false);
+  };
+
+  return (
+    <div className="space-y-6">
+      <div className="flex justify-between items-center">
+        <h2 className="text-xl font-bold text-gray-800 flex items-center"><SchoolIcon className="mr-2"/> 学校维度管理</h2>
+        <button onClick={() => { setIsAdding(true); setEditId(null); setForm({name:'', code:''}); }} className="px-4 py-2 bg-blue-600 text-white rounded-lg flex items-center text-sm"><Plus size={16} className="mr-1"/> 新增学校</button>
+      </div>
+
+      <div className="bg-white rounded-xl shadow-sm border border-gray-100 overflow-hidden">
+        {loading ? <div className="p-10 text-center"><Loader2 className="animate-spin inline"/></div> : (
+          <table className="w-full text-left">
+            <thead className="bg-gray-50 text-gray-500 uppercase text-xs">
+              <tr>
+                <th className="px-6 py-4">学校名称</th>
+                <th className="px-6 py-4">唯一代码</th>
+                <th className="px-6 py-4 text-right">操作</th>
+              </tr>
+            </thead>
+            <tbody className="divide-y divide-gray-100">
+              {isAdding && (
+                <tr className="bg-blue-50">
+                  <td className="px-6 py-4"><input className="border p-1 rounded w-full" placeholder="学校名称" value={form.name} onChange={e=>setForm({...form, name:e.target.value})}/></td>
+                  <td className="px-6 py-4"><input className="border p-1 rounded w-full" placeholder="代码 (如: SCH01)" value={form.code} onChange={e=>setForm({...form, code:e.target.value})}/></td>
+                  <td className="px-6 py-4 text-right">
+                    <button onClick={handleSave} className="text-green-600 mr-2"><Save size={18}/></button>
+                    <button onClick={()=>setIsAdding(false)} className="text-gray-500"><X size={18}/></button>
+                  </td>
+                </tr>
+              )}
+              {schools.map(s => {
+                const isEditing = editId === (s._id || String(s.id));
+                return (
+                  <tr key={s._id || s.id} className="hover:bg-gray-50">
+                    <td className="px-6 py-4">
+                      {isEditing ? <input className="border p-1 rounded" value={form.name} onChange={e=>setForm({...form, name:e.target.value})}/> : <span className="font-medium text-gray-800">{s.name}</span>}
+                    </td>
+                    <td className="px-6 py-4 font-mono text-sm text-gray-600">
+                      {isEditing ? <input className="border p-1 rounded" value={form.code} onChange={e=>setForm({...form, code:e.target.value})}/> : s.code}
+                    </td>
+                    <td className="px-6 py-4 text-right">
+                      {isEditing ? (
+                        <>
+                          <button onClick={handleSave} className="text-green-600 mr-2"><Save size={18}/></button>
+                          <button onClick={()=>setEditId(null)} className="text-gray-500"><X size={18}/></button>
+                        </>
+                      ) : (
+                        <button onClick={() => startEdit(s)} className="text-blue-500 hover:text-blue-700"><Edit size={18}/></button>
+                      )}
+                    </td>
+                  </tr>
+                );
+              })}
+            </tbody>
+          </table>
+        )}
+      </div>
+    </div>
+  );
+};

pages/UserList.tsx

@@ -1,55 +1,56 @@
 
 import React, { useState, useEffect } from 'react';
-import { User, UserRole, UserStatus } from '../types';
+import { User, UserRole, UserStatus, School } from '../types';
 import { api } from '../services/api';
-import { Loader2, Check, X, Shield, Trash2, Edit } from 'lucide-react';
+import { Loader2, Check, X, Trash2, Building, Edit } from 'lucide-react';
 
 export const UserList: React.FC = () => {
   const [users, setUsers] = useState<User[]>([]);
+  const [schools, setSchools] = useState<School[]>([]);
   const [loading, setLoading] = useState(true);
+  const [editingUser, setEditingUser] = useState<User | null>(null);
 
-  const loadUsers = async () => {
+  const loadData = async () => {
     setLoading(true);
     try {
-      const data = await api.users.getAll();
-      setUsers(data);
+      const [u, s] = await Promise.all([api.users.getAll(), api.schools.getAll()]);
+      setUsers(u);
+      setSchools(s);
     } catch (e) { console.error(e); }
     finally { setLoading(false); }
   };
 
-  useEffect(() => { loadUsers(); }, []);
+  useEffect(() => { loadData(); }, []);
 
   const handleApprove = async (user: User) => {
     if (confirm(`确认批准 ${user.username} 的注册申请？`)) {
       await api.users.update(user._id || String(user.id), { status: UserStatus.ACTIVE });
-      loadUsers();
+      loadData();
     }
   };
 
   const handleDelete = async (user: User) => {
-    if (user.role === UserRole.ADMIN && user.username === 'admin') {
-      return alert('无法删除超级管理员');
-    }
+    if (user.role === UserRole.ADMIN && user.username === 'admin') return alert('无法删除超级管理员');
     if (confirm(`警告：确定要删除用户 ${user.username} 吗？`)) {
       await api.users.delete(user._id || String(user.id));
-      loadUsers();
+      loadData();
     }
   };
 
   const handleRoleChange = async (user: User, newRole: UserRole) => {
     if (user.username === 'admin') return alert('无法修改超级管理员');
     await api.users.update(user._id || String(user.id), { role: newRole });
-    loadUsers();
+    loadData();
   };
 
-  const getStatusBadge = (status: UserStatus) => {
-    switch(status) {
-      case UserStatus.ACTIVE: return <span className="bg-green-100 text-green-700 px-2 py-1 rounded-full text-xs">已激活</span>;
-      case UserStatus.PENDING: return <span className="bg-yellow-100 text-yellow-700 px-2 py-1 rounded-full text-xs animate-pulse">待审核</span>;
-      case UserStatus.BANNED: return <span className="bg-red-100 text-red-700 px-2 py-1 rounded-full text-xs">已停用</span>;
-    }
+  const handleSchoolChange = async (userId: string, schoolId: string) => {
+    await api.users.update(userId, { schoolId });
+    setEditingUser(null);
+    loadData();
   };
 
+  const getSchoolName = (id?: string) => schools.find(s => s._id === id)?.name || '未分配';
+
   if (loading) return <div className="flex justify-center py-10"><Loader2 className="animate-spin text-blue-600" /></div>;
 
   return (
@@ -57,10 +58,12 @@ export const UserList: React.FC = () => {
       <h2 className="text-xl font-bold text-gray-800 mb-4">用户权限与审核</h2>
       
       <div className="overflow-x-auto">
-        <table className="w-full text-left border-collapse">
+        <table className="w-full text-left border-collapse min-w-[800px]">
           <thead>
             <tr className="bg-gray-50 text-gray-500 text-xs uppercase">
-              <th className="px-4 py-3">用户名</th>
+              <th className="px-4 py-3">用户</th>
+              <th className="px-4 py-3">联系方式</th>
+              <th className="px-4 py-3">所属学校</th>
               <th className="px-4 py-3">角色</th>
               <th className="px-4 py-3">状态</th>
               <th className="px-4 py-3 text-right">操作</th>
@@ -69,36 +72,59 @@ export const UserList: React.FC = () => {
           <tbody className="divide-y divide-gray-100">
             {users.map(user => (
               <tr key={user._id || user.id} className="hover:bg-gray-50">
-                <td className="px-4 py-3 font-medium text-gray-800">{user.username}</td>
+                <td className="px-4 py-3">
+                   <div className="flex items-center space-x-3">
+                      <img src={user.avatar || `https://api.dicebear.com/7.x/avataaars/svg?seed=${user.username}`} className="w-8 h-8 rounded-full" />
+                      <div>
+                         <p className="font-bold text-gray-800 text-sm">{user.trueName || user.username}</p>
+                         <p className="text-xs text-gray-500">@{user.username}</p>
+                      </div>
+                   </div>
+                </td>
+                <td className="px-4 py-3 text-sm text-gray-600">
+                   <div>{user.phone || '-'}</div>
+                   <div className="text-xs text-gray-400">{user.email}</div>
+                </td>
+                <td className="px-4 py-3 text-sm">
+                   {editingUser?._id === user._id ? (
+                      <select 
+                        className="border rounded p-1 text-xs w-32"
+                        value={user.schoolId} 
+                        onChange={(e) => handleSchoolChange(user._id!, e.target.value)}
+                        onBlur={() => setEditingUser(null)}
+                        autoFocus
+                      >
+                         {schools.map(s => <option key={s._id} value={s._id}>{s.name}</option>)}
+                      </select>
+                   ) : (
+                      <div className="flex items-center space-x-1 group cursor-pointer" onClick={() => setEditingUser(user)}>
+                         <span className="text-gray-700">{getSchoolName(user.schoolId)}</span>
+                         <Edit size={12} className="text-gray-300 opacity-0 group-hover:opacity-100"/>
+                      </div>
+                   )}
+                </td>
                 <td className="px-4 py-3">
                    <select 
                      value={user.role} 
                      onChange={(e) => handleRoleChange(user, e.target.value as UserRole)}
                      disabled={user.username === 'admin'}
-                     className="bg-white border border-gray-200 rounded px-2 py-1 text-sm focus:outline-none focus:ring-2 focus:ring-blue-500"
+                     className="bg-white border border-gray-200 rounded px-2 py-1 text-xs focus:ring-2 focus:ring-blue-500"
                    >
                      <option value={UserRole.ADMIN}>管理员</option>
                      <option value={UserRole.TEACHER}>教师</option>
                      <option value={UserRole.STUDENT}>学生</option>
                    </select>
                 </td>
-                <td className="px-4 py-3">{getStatusBadge(user.status)}</td>
+                <td className="px-4 py-3">
+                   {user.status === 'active' && <span className="bg-green-100 text-green-700 px-2 py-1 rounded-full text-xs">已激活</span>}
+                   {user.status === 'pending' && <span className="bg-yellow-100 text-yellow-700 px-2 py-1 rounded-full text-xs animate-pulse">待审核</span>}
+                   {user.status === 'banned' && <span className="bg-red-100 text-red-700 px-2 py-1 rounded-full text-xs">已停用</span>}
+                </td>
                 <td className="px-4 py-3 text-right space-x-2">
                    {user.status === UserStatus.PENDING && (
-                     <button 
-                       onClick={() => handleApprove(user)}
-                       className="text-green-600 hover:bg-green-50 p-1 rounded" title="通过审核"
-                     >
-                       <Check size={18} />
-                     </button>
+                     <button onClick={() => handleApprove(user)} className="text-green-600 hover:bg-green-50 p-1 rounded" title="通过审核"><Check size={18} /></button>
                    )}
-                   <button 
-                     onClick={() => handleDelete(user)}
-                     className="text-red-600 hover:bg-red-50 p-1 rounded" title="删除用户"
-                     disabled={user.username === 'admin'}
-                   >
-                     <Trash2 size={18} />
-                   </button>
+                   <button onClick={() => handleDelete(user)} className="text-red-600 hover:bg-red-50 p-1 rounded" title="删除" disabled={user.username === 'admin'}><Trash2 size={18} /></button>
                 </td>
               </tr>
             ))}

server.js

@@ -22,6 +22,7 @@ app.use(express.static(path.join(__dirname, 'dist')));
 // ==========================================
 
 const InMemoryDB = {
+  schools: [],
   users: [],
   students: [],
   courses: [],
@@ -29,13 +30,7 @@ const InMemoryDB = {
   classes: [],
   subjects: [],
   exams: [],
-  config: {
-    systemName: '智慧校园管理系统',
-    semester: '2023-2024学年 第一学期',
-    allowRegister: true,
-    maintenanceMode: false,
-    emailNotify: true
-  },
+  config: {},
   isFallback: false
 };
 
@@ -47,28 +42,42 @@ const connectDB = async () => {
     console.error('❌ MongoDB 连接失败:', err.message);
     console.warn('⚠️ 启动内存数据库模式');
     InMemoryDB.isFallback = true;
-    // Init Memory Admin
+    
+    // Init Memory Data
+    const defaultSchoolId = 'school_default_' + Date.now();
+    InMemoryDB.schools.push({ _id: defaultSchoolId, name: '第一实验小学', code: 'EXP01' });
     InMemoryDB.users.push(
-      { username: 'admin', password: 'admin', role: 'ADMIN', status: 'active', email: 'admin@school.edu' }
+      { _id: 'admin_01', username: 'admin', password: 'admin', role: 'ADMIN', status: 'active', schoolId: defaultSchoolId, trueName: '系统管理员' }
     );
   }
 };
 connectDB();
 
-// Schemas
+// --- Schemas ---
+
+const SchoolSchema = new mongoose.Schema({
+  name: { type: String, required: true },
+  code: { type: String, required: true, unique: true }
+});
+const School = mongoose.model('School', SchoolSchema);
+
 const UserSchema = new mongoose.Schema({
   username: { type: String, required: true, unique: true },
   password: { type: String, required: true },
+  trueName: String,
+  phone: String,
+  email: String,
+  schoolId: String,
   role: { type: String, enum: ['ADMIN', 'TEACHER', 'STUDENT'], default: 'STUDENT' },
   status: { type: String, enum: ['active', 'pending', 'banned'], default: 'pending' },
-  email: String,
   avatar: String,
   createTime: { type: Date, default: Date.now }
 });
 const User = mongoose.model('User', UserSchema);
 
 const StudentSchema = new mongoose.Schema({
-  studentNo: { type: String, required: true, unique: true },
+  schoolId: String,
+  studentNo: { type: String, required: true },
   name: { type: String, required: true },
   gender: { type: String, enum: ['Male', 'Female'], default: 'Male' },
   birthday: String,
@@ -77,9 +86,12 @@ const StudentSchema = new mongoose.Schema({
   className: String,
   status: { type: String, default: 'Enrolled' }
 });
+// Composite index for uniqueness within school
+StudentSchema.index({ schoolId: 1, studentNo: 1 }, { unique: true });
 const Student = mongoose.model('Student', StudentSchema);
 
 const CourseSchema = new mongoose.Schema({
+  schoolId: String,
   courseCode: String,
   courseName: String,
   teacherName: String,
@@ -90,6 +102,7 @@ const CourseSchema = new mongoose.Schema({
 const Course = mongoose.model('Course', CourseSchema);
 
 const ScoreSchema = new mongoose.Schema({
+  schoolId: String,
   studentName: String,
   studentNo: String,
   courseName: String,
@@ -102,6 +115,7 @@ const ScoreSchema = new mongoose.Schema({
 const Score = mongoose.model('Score', ScoreSchema);
 
 const ClassSchema = new mongoose.Schema({
+  schoolId: String,
   grade: String,
   className: String,
   teacherName: String
@@ -109,7 +123,8 @@ const ClassSchema = new mongoose.Schema({
 const ClassModel = mongoose.model('Class', ClassSchema);
 
 const SubjectSchema = new mongoose.Schema({
-  name: { type: String, required: true, unique: true },
+  schoolId: String,
+  name: { type: String, required: true },
   code: String,
   color: String,
   excellenceThreshold: { type: Number, default: 90 }
@@ -117,13 +132,15 @@ const SubjectSchema = new mongoose.Schema({
 const SubjectModel = mongoose.model('Subject', SubjectSchema);
 
 const ExamSchema = new mongoose.Schema({
-  name: { type: String, required: true, unique: true },
+  schoolId: String,
+  name: { type: String, required: true },
   date: String,
   semester: String
 });
 const ExamModel = mongoose.model('Exam', ExamSchema);
 
 const ConfigSchema = new mongoose.Schema({
+  schoolId: String,
   key: { type: String, default: 'main' },
   systemName: String,
   semester: String,
@@ -137,38 +154,76 @@ const ConfigModel = mongoose.model('Config', ConfigSchema);
 const initData = async () => {
   if (InMemoryDB.isFallback) return;
   try {
-    // Admin
+    // 1. Create Default School if none
+    const schoolCount = await School.countDocuments();
+    let defaultSchool;
+    if (schoolCount === 0) {
+      defaultSchool = await School.create({ name: '第一实验小学', code: 'EXP01' });
+      console.log('Initialized Default School');
+    } else {
+      defaultSchool = await School.findOne();
+    }
+
+    // 2. Create Admin
     const userCount = await User.countDocuments();
     if (userCount === 0) {
       await User.create([
-        { username: 'admin', password: 'admin', role: 'ADMIN', status: 'active', email: 'admin@school.edu' }
+        { 
+          username: 'admin', 
+          password: 'admin', 
+          role: 'ADMIN', 
+          status: 'active', 
+          schoolId: defaultSchool._id.toString(),
+          trueName: '超级管理员',
+          email: 'admin@system.com'
+        }
       ]);
     }
-    // Subjects
-    const subjCount = await SubjectModel.countDocuments();
+    
+    // 3. Create Default Subjects for this school
+    const subjCount = await SubjectModel.countDocuments({ schoolId: defaultSchool._id.toString() });
     if (subjCount === 0) {
       await SubjectModel.create([
-        { name: '语文', code: 'CHI', color: '#ef4444', excellenceThreshold: 90 },
-        { name: '数学', code: 'MAT', color: '#3b82f6', excellenceThreshold: 90 },
-        { name: '英语', code: 'ENG', color: '#f59e0b', excellenceThreshold: 90 },
-        { name: '科学', code: 'SCI', color: '#10b981', excellenceThreshold: 85 }
+        { schoolId: defaultSchool._id.toString(), name: '语文', code: 'CHI', color: '#ef4444', excellenceThreshold: 90 },
+        { schoolId: defaultSchool._id.toString(), name: '数学', code: 'MAT', color: '#3b82f6', excellenceThreshold: 90 },
+        { schoolId: defaultSchool._id.toString(), name: '英语', code: 'ENG', color: '#f59e0b', excellenceThreshold: 90 },
+        { schoolId: defaultSchool._id.toString(), name: '科学', code: 'SCI', color: '#10b981', excellenceThreshold: 85 }
       ]);
     }
-    // Config
-    const config = await ConfigModel.findOne({ key: 'main' });
-    if (!config) {
-      await ConfigModel.create({ key: 'main', systemName: '智慧校园管理系统', semester: '2023-2024学年 第一学期' });
-    }
   } catch (err) {
     console.error('Init Data Error', err);
   }
 };
 mongoose.connection.once('open', initData);
 
+// ==========================================
+// Helper: Get School Context
+// ==========================================
+const getQueryFilter = (req) => {
+  // If we had real JWT middleware, we would extract user from token.
+  // For this setup, we rely on the client sending 'x-school-id'.
+  // Security Note: In a production app, verify this against the user's token claims.
+  const schoolId = req.headers['x-school-id'];
+  if (!schoolId) return {}; // If Admin sees all (or specific logic)
+  return { schoolId };
+};
+
+const injectSchoolId = (req, body) => {
+  const schoolId = req.headers['x-school-id'];
+  return { ...body, schoolId };
+};
+
 // ==========================================
 // API Routes
 // ==========================================
 
+// --- Public Routes ---
+app.get('/api/public/schools', async (req, res) => {
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.schools);
+  const schools = await School.find({}, 'name code _id');
+  res.json(schools);
+});
+
 // --- Auth ---
 app.post('/api/auth/login', async (req, res) => {
   const { username, password } = req.body;
@@ -181,27 +236,21 @@ app.post('/api/auth/login', async (req, res) => {
     }
 
     if (!user) return res.status(401).json({ message: '用户名或密码错误' });
-    
-    // Check Status
-    if (user.status === 'pending') {
-      return res.status(403).json({ error: 'PENDING_APPROVAL', message: '账号待审核，请联系管理员' });
-    }
-    if (user.status === 'banned') {
-      return res.status(403).json({ error: 'BANNED', message: '账号已被停用' });
-    }
+    if (user.status === 'pending') return res.status(403).json({ error: 'PENDING_APPROVAL', message: '账号待审核' });
+    if (user.status === 'banned') return res.status(403).json({ error: 'BANNED', message: '账号已被停用' });
 
     res.json(user);
   } catch (e) { res.status(500).json({ error: e.message }); }
 });
 
 app.post('/api/auth/register', async (req, res) => {
-  const { username, password, role } = req.body;
+  const { username, password, role, schoolId, trueName, phone, email, avatar } = req.body;
   const status = 'pending'; 
 
   try {
     if (InMemoryDB.isFallback) {
       if (InMemoryDB.users.find(u => u.username === username)) return res.status(400).json({ error: 'Existed' });
-      const newUser = { id: Date.now(), username, password, role: role || 'STUDENT', status };
+      const newUser = { id: Date.now(), username, password, role, status, schoolId, trueName, phone, email, avatar };
       InMemoryDB.users.push(newUser);
       return res.json(newUser);
     }
@@ -209,22 +258,42 @@ app.post('/api/auth/register', async (req, res) => {
     const existing = await User.findOne({ username });
     if (existing) return res.status(400).json({ error: 'Existed' });
 
-    const newUser = await User.create({ username, password, role: role || 'STUDENT', status });
+    const newUser = await User.create({ username, password, role, status, schoolId, trueName, phone, email, avatar });
     res.json(newUser);
   } catch (e) { res.status(500).json({ error: e.message }); }
 });
 
-// --- Users (Admin) ---
+// --- Schools (Admin) ---
+app.get('/api/schools', async (req, res) => {
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.schools);
+  res.json(await School.find());
+});
+app.post('/api/schools', async (req, res) => {
+  if (InMemoryDB.isFallback) {
+    const newSchool = { ...req.body, _id: String(Date.now()) };
+    InMemoryDB.schools.push(newSchool);
+    return res.json(newSchool);
+  }
+  res.json(await School.create(req.body));
+});
+app.put('/api/schools/:id', async (req, res) => {
+  if (InMemoryDB.isFallback) return res.json({success:true});
+  await School.findByIdAndUpdate(req.params.id, req.body);
+  res.json({success:true});
+});
+
+// --- Users ---
 app.get('/api/users', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json(InMemoryDB.users);
-  const users = await User.find().sort({ createTime: -1 });
+  const filter = getQueryFilter(req);
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.users.filter(u => !filter.schoolId || u.schoolId === filter.schoolId));
+  const users = await User.find(filter).sort({ createTime: -1 });
   res.json(users);
 });
 app.put('/api/users/:id', async (req, res) => {
   try {
     if (InMemoryDB.isFallback) {
-      const idx = InMemoryDB.users.findIndex(u => u._id === req.params.id || u.id == req.params.id);
-      if (idx !== -1) InMemoryDB.users[idx] = { ...InMemoryDB.users[idx], ...req.body };
+      const idx = InMemoryDB.users.findIndex(u => u._id == req.params.id);
+      if(idx>=0) InMemoryDB.users[idx] = { ...InMemoryDB.users[idx], ...req.body };
       return res.json({ success: true });
     }
     await User.findByIdAndUpdate(req.params.id, req.body);
@@ -232,201 +301,170 @@ app.put('/api/users/:id', async (req, res) => {
   } catch (e) { res.status(500).json({ error: e.message }); }
 });
 app.delete('/api/users/:id', async (req, res) => {
-  try {
-    if (InMemoryDB.isFallback) {
-      InMemoryDB.users = InMemoryDB.users.filter(u => u._id !== req.params.id && u.id != req.params.id);
-      return res.json({ success: true });
-    }
-    await User.findByIdAndDelete(req.params.id);
-    res.json({ success: true });
-  } catch (e) { res.status(500).json({ error: e.message }); }
+  if (InMemoryDB.isFallback) {
+    InMemoryDB.users = InMemoryDB.users.filter(u => u._id != req.params.id);
+    return res.json({ success: true });
+  }
+  await User.findByIdAndDelete(req.params.id);
+  res.json({ success: true });
 });
 
 // --- Subjects ---
 app.get('/api/subjects', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json(InMemoryDB.subjects.length ? InMemoryDB.subjects : [{name:'语文',code:'CHI',color:'#ef4444', excellenceThreshold: 90}]);
-  const subs = await SubjectModel.find();
-  res.json(subs);
+  const filter = getQueryFilter(req);
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.subjects.filter(s => !filter.schoolId || s.schoolId === filter.schoolId));
+  res.json(await SubjectModel.find(filter));
 });
 app.post('/api/subjects', async (req, res) => {
-  try {
-    if (InMemoryDB.isFallback) {
-      const newSub = { ...req.body, id: Date.now(), _id: Date.now().toString() };
-      InMemoryDB.subjects.push(newSub);
-      return res.json(newSub);
-    }
-    const newSub = await SubjectModel.create(req.body);
-    res.json(newSub);
-  } catch (e) { res.status(400).json({ error: e.message }); }
+  const data = injectSchoolId(req, req.body);
+  if (InMemoryDB.isFallback) { InMemoryDB.subjects.push({ ...data, _id: String(Date.now()) }); return res.json(data); }
+  res.json(await SubjectModel.create(data));
 });
 app.put('/api/subjects/:id', async (req, res) => {
-  try {
-    if (InMemoryDB.isFallback) {
-      const idx = InMemoryDB.subjects.findIndex(s => s._id == req.params.id || s.id == req.params.id);
-      if (idx !== -1) InMemoryDB.subjects[idx] = { ...InMemoryDB.subjects[idx], ...req.body };
-      return res.json({ success: true });
-    }
-    await SubjectModel.findByIdAndUpdate(req.params.id, req.body);
-    res.json({ success: true });
-  } catch (e) { res.status(500).json({ error: e.message }); }
+  if (InMemoryDB.isFallback) return res.json({success:true});
+  await SubjectModel.findByIdAndUpdate(req.params.id, req.body);
+  res.json({success:true});
 });
 app.delete('/api/subjects/:id', async (req, res) => {
-  try {
-    if (InMemoryDB.isFallback) {
-      InMemoryDB.subjects = InMemoryDB.subjects.filter(s => s._id !== req.params.id);
-      return res.json({ success: true });
-    }
-    await SubjectModel.findByIdAndDelete(req.params.id);
-    res.json({ success: true });
-  } catch (e) { res.status(500).json({ error: e.message }); }
+  if (InMemoryDB.isFallback) { InMemoryDB.subjects = InMemoryDB.subjects.filter(s => s._id != req.params.id); return res.json({}); }
+  await SubjectModel.findByIdAndDelete(req.params.id); res.json({});
 });
 
 // --- Exams ---
 app.get('/api/exams', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json(InMemoryDB.exams);
-  const exams = await ExamModel.find().sort({ date: 1 });
-  res.json(exams);
+  const filter = getQueryFilter(req);
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.exams.filter(e => !filter.schoolId || e.schoolId === filter.schoolId));
+  res.json(await ExamModel.find(filter).sort({ date: 1 }));
 });
 app.post('/api/exams', async (req, res) => {
-  try {
-    // Upsert based on name
-    const { name, date, semester } = req.body;
-    if (InMemoryDB.isFallback) {
-      const idx = InMemoryDB.exams.findIndex(e => e.name === name);
-      if (idx >= 0) InMemoryDB.exams[idx] = { ...InMemoryDB.exams[idx], date, semester };
-      else InMemoryDB.exams.push({ name, date, semester, id: Date.now(), _id: String(Date.now()) });
-      return res.json({ success: true });
-    }
-    await ExamModel.findOneAndUpdate({ name }, { date, semester }, { upsert: true });
-    res.json({ success: true });
-  } catch (e) { res.status(500).json({ error: e.message }); }
-});
-
-// --- Batch Operations ---
-app.post('/api/batch-delete', async (req, res) => {
-  const { type, ids } = req.body; // type: 'student' | 'score' | 'user'
-  if (!ids || !Array.isArray(ids)) return res.status(400).json({ error: 'Invalid IDs' });
-
-  try {
-    if (InMemoryDB.isFallback) {
-      if (type === 'student') InMemoryDB.students = InMemoryDB.students.filter(s => !ids.includes(s._id) && !ids.includes(s.id));
-      if (type === 'score') InMemoryDB.scores = InMemoryDB.scores.filter(s => !ids.includes(s._id) && !ids.includes(s.id));
-      if (type === 'user') InMemoryDB.users = InMemoryDB.users.filter(u => !ids.includes(u._id) && !ids.includes(u.id));
-      return res.json({ success: true });
-    }
-
-    if (type === 'student') await Student.deleteMany({ _id: { $in: ids } });
-    if (type === 'score') await Score.deleteMany({ _id: { $in: ids } });
-    if (type === 'user') await User.deleteMany({ _id: { $in: ids } });
-    
-    res.json({ success: true });
-  } catch (e) { res.status(500).json({ error: e.message }); }
+  const { name, date, semester } = req.body;
+  const schoolId = req.headers['x-school-id'];
+  if (InMemoryDB.isFallback) {
+    InMemoryDB.exams.push({ name, date, semester, schoolId, _id: String(Date.now()) });
+    return res.json({ success: true });
+  }
+  await ExamModel.findOneAndUpdate({ name, schoolId }, { date, semester, schoolId }, { upsert: true });
+  res.json({ success: true });
 });
 
-// Students
+// --- Students ---
 app.get('/api/students', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json(InMemoryDB.students);
-  res.json(await Student.find().sort({ studentNo: 1 }));
+  const filter = getQueryFilter(req);
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.students.filter(s => !filter.schoolId || s.schoolId === filter.schoolId));
+  res.json(await Student.find(filter).sort({ studentNo: 1 }));
 });
 app.post('/api/students', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.students.push({ ...req.body, id: Date.now(), _id: String(Date.now()) }); return res.json({}); }
-  res.json(await Student.create(req.body));
+  const data = injectSchoolId(req, req.body);
+  if (InMemoryDB.isFallback) { InMemoryDB.students.push({ ...data, _id: String(Date.now()) }); return res.json({}); }
+  res.json(await Student.create(data));
 });
 app.delete('/api/students/:id', async (req, res) => {
   if (InMemoryDB.isFallback) { InMemoryDB.students = InMemoryDB.students.filter(s => s._id != req.params.id); return res.json({}); }
   await Student.findByIdAndDelete(req.params.id); res.json({});
 });
 
-// Classes
+// --- Classes ---
 app.get('/api/classes', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json(InMemoryDB.classes);
-  const classes = await ClassModel.find();
+  const filter = getQueryFilter(req);
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.classes.filter(c => !filter.schoolId || c.schoolId === filter.schoolId));
+  
+  const classes = await ClassModel.find(filter);
   const result = await Promise.all(classes.map(async (c) => {
-    const count = await Student.countDocuments({ className: c.grade + c.className });
+    const count = await Student.countDocuments({ className: c.grade + c.className, schoolId: filter.schoolId });
     return { ...c.toObject(), studentCount: count };
   }));
   res.json(result);
 });
 app.post('/api/classes', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.classes.push({ ...req.body, id: Date.now(), _id: String(Date.now()) }); return res.json({}); }
-  res.json(await ClassModel.create(req.body));
+  const data = injectSchoolId(req, req.body);
+  if (InMemoryDB.isFallback) { InMemoryDB.classes.push({ ...data, _id: String(Date.now()) }); return res.json({}); }
+  res.json(await ClassModel.create(data));
 });
 app.delete('/api/classes/:id', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.classes = InMemoryDB.classes.filter(c => c._id != req.params.id); return res.json({}); }
+  if (InMemoryDB.isFallback) return res.json({});
   await ClassModel.findByIdAndDelete(req.params.id); res.json({});
 });
 
-// Courses
+// --- Courses ---
 app.get('/api/courses', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json(InMemoryDB.courses);
-  res.json(await Course.find());
+  const filter = getQueryFilter(req);
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.courses.filter(c => !filter.schoolId || c.schoolId === filter.schoolId));
+  res.json(await Course.find(filter));
 });
 app.post('/api/courses', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.courses.push({ ...req.body, id: Date.now(), _id: String(Date.now()) }); return res.json({}); }
-  res.json(await Course.create(req.body));
+  const data = injectSchoolId(req, req.body);
+  if (InMemoryDB.isFallback) { InMemoryDB.courses.push({ ...data, _id: String(Date.now()) }); return res.json({}); }
+  res.json(await Course.create(data));
 });
 app.put('/api/courses/:id', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json({}); 
+  if (InMemoryDB.isFallback) return res.json({});
   res.json(await Course.findByIdAndUpdate(req.params.id, req.body));
 });
 app.delete('/api/courses/:id', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.courses = InMemoryDB.courses.filter(c => c._id != req.params.id); return res.json({}); }
+  if (InMemoryDB.isFallback) return res.json({});
   await Course.findByIdAndDelete(req.params.id); res.json({});
 });
 
-// Scores
+// --- Scores ---
 app.get('/api/scores', async (req, res) => {
-  if (InMemoryDB.isFallback) return res.json(InMemoryDB.scores);
-  res.json(await Score.find());
+  const filter = getQueryFilter(req);
+  if (InMemoryDB.isFallback) return res.json(InMemoryDB.scores.filter(s => !filter.schoolId || s.schoolId === filter.schoolId));
+  res.json(await Score.find(filter));
 });
 app.post('/api/scores', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.scores.push({ ...req.body, id: Date.now(), _id: String(Date.now()) }); return res.json({}); }
-  res.json(await Score.create(req.body));
+  const data = injectSchoolId(req, req.body);
+  if (InMemoryDB.isFallback) { InMemoryDB.scores.push({ ...data, _id: String(Date.now()) }); return res.json({}); }
+  res.json(await Score.create(data));
 });
 app.put('/api/scores/:id', async (req, res) => {
   if (InMemoryDB.isFallback) {
-    const idx = InMemoryDB.scores.findIndex(s => s._id == req.params.id || s.id == req.params.id);
-    if (idx !== -1) InMemoryDB.scores[idx] = { ...InMemoryDB.scores[idx], ...req.body };
+    const idx = InMemoryDB.scores.findIndex(s => s._id == req.params.id);
+    if (idx >= 0) InMemoryDB.scores[idx] = { ...InMemoryDB.scores[idx], ...req.body };
     return res.json({ success: true });
   }
   await Score.findByIdAndUpdate(req.params.id, req.body);
   res.json({ success: true });
 });
 app.delete('/api/scores/:id', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.scores = InMemoryDB.scores.filter(s => s._id != req.params.id); return res.json({}); }
+  if (InMemoryDB.isFallback) return res.json({});
   await Score.findByIdAndDelete(req.params.id); res.json({});
 });
 
-// Config
+// --- Stats & Config ---
+app.get('/api/stats', async (req, res) => {
+  const filter = getQueryFilter(req);
+  // ... (Stats Logic adjusted for filter) ...
+  // Keeping simple for now
+  if (InMemoryDB.isFallback) return res.json({ studentCount: 0, courseCount: 0, avgScore: 0, excellentRate: '0%' });
+  const studentCount = await Student.countDocuments(filter);
+  const courseCount = await Course.countDocuments(filter);
+  const scores = await Score.find(filter);
+  const validScores = scores.filter(s => s.status === 'Normal');
+  const totalScore = validScores.reduce((sum, s) => sum + (s.score || 0), 0);
+  const avgScore = validScores.length > 0 ? (totalScore / validScores.length).toFixed(1) : 0;
+  const excellentCount = validScores.filter(s => s.score >= 90).length;
+  const excellentRate = validScores.length > 0 ? Math.round((excellentCount / validScores.length) * 100) + '%' : '0%';
+  res.json({ studentCount, courseCount, avgScore, excellentRate });
+});
+
 app.get('/api/config', async (req, res) => {
+  const filter = getQueryFilter(req);
   if (InMemoryDB.isFallback) return res.json(InMemoryDB.config);
-  res.json(await ConfigModel.findOne({ key: 'main' }) || {});
+  res.json(await ConfigModel.findOne({ schoolId: filter.schoolId }) || {});
 });
 app.post('/api/config', async (req, res) => {
-  if (InMemoryDB.isFallback) { InMemoryDB.config = req.body; return res.json({}); }
-  res.json(await ConfigModel.findOneAndUpdate({ key: 'main' }, req.body, { upsert: true, new: true }));
+  const data = injectSchoolId(req, req.body);
+  if (InMemoryDB.isFallback) { InMemoryDB.config = data; return res.json({}); }
+  res.json(await ConfigModel.findOneAndUpdate({ schoolId: data.schoolId }, data, { upsert: true, new: true }));
 });
 
-// Stats
-app.get('/api/stats', async (req, res) => {
-  try {
-    if (InMemoryDB.isFallback) {
-      return res.json({ studentCount: InMemoryDB.students.length, courseCount: InMemoryDB.courses.length, avgScore: 0, excellentRate: '0%' });
-    }
-    const studentCount = await Student.countDocuments();
-    const courseCount = await Course.countDocuments();
-    const scores = await Score.find();
-    // Exclude Absent/Leave from average calculation
-    const validScores = scores.filter(s => s.status === 'Normal');
-    const totalScore = validScores.reduce((sum, s) => sum + (s.score || 0), 0);
-    const avgScore = validScores.length > 0 ? (totalScore / validScores.length).toFixed(1) : 0;
-    
-    // Note: excellentRate here is a rough global average. Detailed stats are handled in Reports.
-    const excellentCount = validScores.filter(s => s.score >= 90).length;
-    const excellentRate = validScores.length > 0 ? Math.round((excellentCount / validScores.length) * 100) + '%' : '0%';
-    
-    res.json({ studentCount, courseCount, avgScore, excellentRate });
-  } catch(e) { res.status(500).json({}); }
+app.post('/api/batch-delete', async (req, res) => {
+  const { type, ids } = req.body;
+  // Note: For batch delete, strict school checking should ideally be here too.
+  if (type === 'student') await Student.deleteMany({ _id: { $in: ids } });
+  if (type === 'score') await Score.deleteMany({ _id: { $in: ids } });
+  if (type === 'user') await User.deleteMany({ _id: { $in: ids } });
+  res.json({ success: true });
 });
 
 // Frontend

services/api.ts

@@ -1,6 +1,6 @@
 
 /// <reference types="vite/client" />
-import { User, ClassInfo, SystemConfig, Subject } from '../types';
+import { User, ClassInfo, SystemConfig, Subject, School } from '../types';
 
 const getBaseUrl = () => {
   let isProd = false;
@@ -20,16 +20,28 @@ const getBaseUrl = () => {
 const API_BASE_URL = getBaseUrl();
 
 async function request(endpoint: string, options: RequestInit = {}) {
-  const res = await fetch(`${API_BASE_URL}${endpoint}`, {
-    ...options,
-    headers: { 'Content-Type': 'application/json', ...options.headers },
-  });
+  const headers: any = { 'Content-Type': 'application/json', ...options.headers };
+  
+  // Inject School Context
+  if (typeof window !== 'undefined') {
+    const currentUser = JSON.parse(localStorage.getItem('user') || 'null');
+    const selectedSchoolId = localStorage.getItem('admin_view_school_id');
+    
+    // If admin has selected a specific school, use that
+    if (currentUser?.role === 'ADMIN' && selectedSchoolId) {
+      headers['x-school-id'] = selectedSchoolId;
+    } else if (currentUser?.schoolId) {
+      // Otherwise use user's own school
+      headers['x-school-id'] = currentUser.schoolId;
+    }
+  }
+
+  const res = await fetch(`${API_BASE_URL}${endpoint}`, { ...options, headers });
 
   if (!res.ok) {
     if (res.status === 401) throw new Error('AUTH_FAILED');
     const errorData = await res.json().catch(() => ({}));
     const errorMessage = errorData.error || errorData.message || `Server Error: ${res.status}`;
-    // Pass special error codes
     if (errorData.error === 'PENDING_APPROVAL') throw new Error('PENDING_APPROVAL');
     if (errorData.error === 'BANNED') throw new Error('BANNED');
     throw new Error(errorMessage);
@@ -43,14 +55,21 @@ export const api = {
   auth: {
     login: async (username: string, password: string): Promise<User> => {
       const user = await request('/auth/login', { method: 'POST', body: JSON.stringify({ username, password }) });
-      if (typeof window !== 'undefined') localStorage.setItem('user', JSON.stringify(user));
+      if (typeof window !== 'undefined') {
+        localStorage.setItem('user', JSON.stringify(user));
+        // Reset admin view on login
+        localStorage.removeItem('admin_view_school_id');
+      }
       return user;
     },
     register: async (data: any): Promise<User> => {
       return await request('/auth/register', { method: 'POST', body: JSON.stringify(data) });
     },
     logout: () => {
-      if (typeof window !== 'undefined') localStorage.removeItem('user');
+      if (typeof window !== 'undefined') {
+        localStorage.removeItem('user');
+        localStorage.removeItem('admin_view_school_id');
+      }
     },
     getCurrentUser: (): User | null => {
       if (typeof window !== 'undefined') {
@@ -58,14 +77,20 @@ export const api = {
           const stored = localStorage.getItem('user');
           if (stored) return JSON.parse(stored);
         } catch (e) {
-          console.error("Error parsing user from localStorage", e);
-          localStorage.removeItem('user'); // Clean up corrupted data
+          localStorage.removeItem('user');
         }
       }
       return null;
     }
   },
 
+  schools: {
+    getPublic: () => request('/public/schools'),
+    getAll: () => request('/schools'),
+    add: (data: School) => request('/schools', { method: 'POST', body: JSON.stringify(data) }),
+    update: (id: string, data: Partial<School>) => request(`/schools/${id}`, { method: 'PUT', body: JSON.stringify(data) })
+  },
+
   users: {
     getAll: () => request('/users'),
     update: (id: string, data: Partial<User>) => request(`/users/${id}`, { method: 'PUT', body: JSON.stringify(data) }),

types.ts

@@ -12,13 +12,23 @@ export enum UserStatus {
   BANNED = 'banned'
 }
 
+export interface School {
+  id?: number;
+  _id?: string;
+  name: string;
+  code: string; // unique identifier
+}
+
 export interface User {
   id?: number;
   _id?: string; // MongoDB ID
   username: string;
+  trueName?: string; // New: Real Name
+  phone?: string;    // New: Phone
+  email?: string;
+  schoolId?: string; // New: Multi-tenancy
   role: UserRole;
   status: UserStatus;
-  email: string;
   avatar?: string;
   createTime?: string;
 }
@@ -26,6 +36,7 @@ export interface User {
 export interface ClassInfo {
   id?: number;
   _id?: string;
+  schoolId?: string; // New
   grade: string;
   className: string; // e.g., "(1)班"
   teacherName?: string;
@@ -35,6 +46,7 @@ export interface ClassInfo {
 export interface Subject {
   id?: number;
   _id?: string;
+  schoolId?: string; // New
   name: string; // e.g. "语文"
   code: string; // e.g. "CHI"
   color: string; // Hex color for charts
@@ -42,6 +54,7 @@ export interface Subject {
 }
 
 export interface SystemConfig {
+  schoolId?: string;
   systemName: string;
   semester: string;
   allowRegister: boolean;
@@ -52,6 +65,7 @@ export interface SystemConfig {
 export interface Student {
   id?: number;
   _id?: string; // MongoDB ID
+  schoolId?: string; // New
   studentNo: string;
   name: string;
   gender: 'Male' | 'Female' | 'Other';
@@ -65,6 +79,7 @@ export interface Student {
 export interface Course {
   id?: number;
   _id?: string;
+  schoolId?: string; // New
   courseCode: string;
   courseName: string;
   teacherName: string;
@@ -78,6 +93,7 @@ export type ExamStatus = 'Normal' | 'Absent' | 'Leave' | 'Cheat';
 export interface Score {
   id?: number;
   _id?: string;
+  schoolId?: string; // New
   studentName: string;
   studentNo: string;
   courseName: string;
@@ -91,6 +107,7 @@ export interface Score {
 export interface Exam {
   id?: number;
   _id?: string;
+  schoolId?: string; // New
   name: string; // e.g. "期中考试"
   date: string; // e.g. "2023-11-01"
   semester?: string;