feat(admin): Complete Phase 3.5.1-3.5.4 Prompt Management System (83%)

Summary:
- Implement Prompt management infrastructure and core services
- Build admin portal frontend with light theme
- Integrate CodeMirror 6 editor for non-technical users

Phase 3.5.1: Infrastructure Setup
- Create capability_schema for Prompt storage
- Add prompt_templates and prompt_versions tables
- Add prompt:view/edit/debug/publish permissions
- Migrate RVW prompts to database (RVW_EDITORIAL, RVW_METHODOLOGY)

Phase 3.5.2: PromptService Core
- Implement gray preview logic (DRAFT for debuggers, ACTIVE for users)
- Module-level debug control (setDebugMode)
- Handlebars template rendering
- Variable extraction and validation (extractVariables, validateVariables)
- Three-level disaster recovery (database -> cache -> hardcoded fallback)

Phase 3.5.3: Management API
- 8 RESTful endpoints (/api/admin/prompts/*)
- Permission control (PROMPT_ENGINEER can edit, SUPER_ADMIN can publish)

Phase 3.5.4: Frontend Management UI
- Build admin portal architecture (AdminLayout, OrgLayout)
- Add route system (/admin/*, /org/*)
- Implement PromptListPage (filter, search, debug switch)
- Implement PromptEditor (CodeMirror 6 simplified for clinical users)
- Implement PromptEditorPage (edit, save, publish, test, version history)

Technical Details:
- Backend: 6 files, ~2044 lines (prompt.service.ts 596 lines)
- Frontend: 9 files, ~1735 lines (PromptEditorPage.tsx 399 lines)
- CodeMirror 6: Line numbers, auto-wrap, variable highlight, search, undo/redo
- Chinese-friendly: 15px font, 1.8 line-height, system fonts

Next Step: Phase 3.5.5 - Integrate RVW module with PromptService

Tested: Backend API tests passed (8/8), Frontend pending user testing
Status: Ready for Phase 3.5.5 RVW integration

frontend-v2/src/framework/router/RouteGuard.tsx

@@ -1,5 +1,6 @@
 import { ReactNode } from 'react'
-import { Navigate } from 'react-router-dom'
+import { Navigate, useLocation } from 'react-router-dom'
+import { useAuth } from '../auth'
 import { usePermission } from '../permission'
 import PermissionDenied from './PermissionDenied'
 import type { UserVersion } from '../permission'
@@ -9,28 +10,11 @@ import type { UserVersion } from '../permission'
  * 
  * @description
  * 保护需要特定权限的路由，防止用户通过URL直接访问无权限页面
- * 这是权限控制的"第二道防线"（第一道是TopNavigation的过滤）
  * 
- * @version Week 2 Day 7 - 任务17
- * 
- * @example
- * ```tsx
- * <Route
- *   path="/literature/*"
- *   element={
- *     <RouteGuard requiredVersion="advanced" moduleName="AI智能文献">
- *       <ASLModule />
- *     </RouteGuard>
- *   }
- * />
- * ```
- * 
- * 工作原理：
- * 1. 用户访问 /literature 路由
- * 2. RouteGuard 检查用户权限
- * 3. 如果有权限 → 渲染子组件
- * 4. 如果无权限 → 显示 PermissionDenied 页面
- * 5. 如果未登录 → 重定向到登录页（后续实现）
+ * 检查顺序：
+ * 1. 检查是否已登录（未登录→重定向到登录页）
+ * 2. 检查权限等级（无权限→显示PermissionDenied）
+ * 3. 有权限→渲染子组件
  */
 
 interface RouteGuardProps {
@@ -50,21 +34,25 @@ const RouteGuard = ({
   moduleName,
   redirectToHome = false,
 }: RouteGuardProps) => {
-  const { user, isAuthenticated, checkModulePermission } = usePermission()
+  const location = useLocation()
+  const { isAuthenticated, isLoading } = useAuth()
+  const { user, checkModulePermission } = usePermission()
 
-  // 1. 检查是否登录（后续实现真实认证）
+  // 加载中显示空白（或可以显示loading）
+  if (isLoading) {
+    return null
+  }
+
+  // 1. 检查是否登录
   if (!isAuthenticated) {
-    // TODO: 后续实现真实的登录流程
-    // 当前阶段：用户默认已登录（MOCK_USER）
-    console.warn('用户未登录，应该重定向到登录页')
-    // return <Navigate to="/login" replace />
+    // 保存当前路径，登录后跳转回来
+    return <Navigate to="/login" state={{ from: location }} replace />
   }
 
   // 2. 检查权限等级
   const hasPermission = checkModulePermission(requiredVersion)
 
   if (!hasPermission) {
-    // 记录无权限访问尝试（用于后续分析和转化优化）
     console.log('🔒 权限不足：', {
       module: moduleName,
       requiredVersion,
@@ -73,12 +61,10 @@ const RouteGuard = ({
       timestamp: new Date().toISOString(),
     })
 
-    // 如果配置了重定向，直接返回首页
     if (redirectToHome) {
       return <Navigate to="/" replace />
     }
 
-    // 显示无权限页面（推荐，引导用户升级）
     return (
       <PermissionDenied
         moduleName={moduleName}