test: add comprehensive test coverage and improve code quality

- Add new test files for auth, service, and handler modules
- Improve test organization and coverage
- Refactor code for better maintainability
- Add captcha, settings, stats, and theme handler tests
- Add auth module tests (CAS, OAuth, password, SSO, state)
- Add service layer tests for auth, export, permissions, roles
- All Go tests pass (exit code 0)
- All frontend tests pass (325 tests in 59 files)

internal/e2e/e2e_test.go

@@ -44,7 +44,6 @@ func setupRealServer(t *testing.T) (*httptest.Server, func()) {
 	}), &gorm.Config{
 		Logger: logger.Default.LogMode(logger.Silent),
 	})
-
 	if err != nil {
 		t.Skipf("跳过 E2E 测试（SQLite 不可用）: %v", err)
 	}
@@ -121,7 +120,7 @@ func setupRealServer(t *testing.T) (*httptest.Server, func()) {
 	captchaH := handler.NewCaptchaHandler(captchaSvc)
 	totpH := handler.NewTOTPHandler(authSvc, totpSvc)
 	webhookH := handler.NewWebhookHandler(webhookSvc)
-	smsH := handler.NewSMSHandler()
+	smsH := handler.NewSMSHandler(authSvc, nil)
 	exportH := handler.NewExportHandler(exportSvc)
 	statsH := handler.NewStatsHandler(statsSvc)
 	customFieldH := handler.NewCustomFieldHandler(customFieldSvc)
@@ -133,7 +132,7 @@ func setupRealServer(t *testing.T) (*httptest.Server, func()) {
 	ssoH := handler.NewSSOHandler(ssoManager, ssoClientsStore)
 
 	rateLimitMW := middleware.NewRateLimitMiddleware(config.RateLimitConfig{})
-	authMW := middleware.NewAuthMiddleware(jwtManager, userRepo, userRoleRepo, roleRepo, rolePermissionRepo, permissionRepo, l1Cache)
+	authMW := middleware.NewAuthMiddleware(jwtManager, userRepo, userRoleRepo, l1Cache)
 	authMW.SetCacheManager(cacheManager)
 	opLogMW := middleware.NewOperationLogMiddleware(operationLogRepo)
 	ipFilterMW := middleware.NewIPFilterMiddleware(security.NewIPFilter(), middleware.IPFilterConfig{})