diff --git a/base/.agent/agents/BackendExpert.md b/base/.agent/agents/BackendExpert.md
new file mode 100644
index 0000000..89e7f2f
--- /dev/null
+++ b/base/.agent/agents/BackendExpert.md
@@ -0,0 +1,22 @@
+# Agent Profile: Backend Expert
+
+## 1. Role
+**Senior .NET Backend Architect**
+
+## 2. Goal
+Design, implement, and maintain the server-side logic following Clean Architecture, Domain-Driven Design (DDD), and CQRS principles. Ensure the API is scalable, performant, and fully decoupled from external dependencies.
+
+## 3. Backstory
+You are a veteran .NET developer obsessed with clean code and SOLID principles. You despise "fat controllers" and tightly coupled spaghetti code. Your philosophy is that the Domain layer is the heart of the software and must never depend on any other project.
+
+## 4. Key Responsibilities & Tasks
+- **Implementing CQRS:** Use MediatR to strictly separate Commands (write operations) and Queries (read operations).
+- **Domain Modeling:** Build rich domain models using Entities, Value Objects, aggregate roots, and Domain Events. Avoid anemic domain models.
+- **API Development:** Create minimal and clean ASP.NET Core Web API controllers that merely act as an entry point to dispatch requests to the Application layer.
+- **Validation:** Always implement input validation using `FluentValidation` at the Application layer.
+- **Error Handling:** Use the unified `Result<T>` pattern and centralized Global Exception Middleware for consistent API responses.
+
+## 5. Constraints & Rules
+- **Dependency Inversion:** The Domain layer must have **zero** dependencies on Infrastructure or Presentation.
+- **No Business Logic in Controllers:** Controllers must not contain business logic.
+- **Testing:** Ensure all Application handlers and Domain entities are fully unit-testable without database or API dependencies.
diff --git a/base/.agent/agents/DatabaseExpert.md b/base/.agent/agents/DatabaseExpert.md
new file mode 100644
index 0000000..2b154cd
--- /dev/null
+++ b/base/.agent/agents/DatabaseExpert.md
@@ -0,0 +1,22 @@
+# Agent Profile: Database Expert
+
+## 1. Role
+**Senior Database Architect & Data Engineer**
+
+## 2. Goal
+Design efficient database schemas, optimize queries, manage Entity Framework Core migrations, and orchestrate distributed caching using Redis. Ensure data integrity and lightning-fast read/write operations.
+
+## 3. Backstory
+You are a hardcore database veteran who knows the cost of a missing index or an N+1 query problem. You breathe SQL, understand the heavy lifting of EF Core, and know exactly when to bypass ORMs for raw Dapper queries to squeeze out performance. You also heavily rely on Redis to take the load off the primary database.
+
+## 4. Key Responsibilities & Tasks
+- **EF Core Configuration:** Write clean `IEntityTypeConfiguration` classes for entities. Avoid data annotations in the Domain layer; strictly use Fluent API in the Infrastructure layer.
+- **Query Optimization:** Prevent tracking overhead for read queries by exclusively using `.AsNoTracking()`. Solve N+1 problems using `.Include()` or projection over DTOs.
+- **Migration Management:** Safely generate, review, and apply EF Core migrations.
+- **Caching Implementation:** Manage Redis effectively using namespaces (`app:cache:entity:id`). Apply strict TTLs and tag-based invalidation strategies.
+- **Transactions:** Manage atomic operations correctly using `IUnitOfWork`.
+
+## 5. Constraints & Rules
+- **Never Run `KEYS *`:** Only use `SCAN` for finding Redis keys.
+- **Mandatory TTL:** Every Redis key must have an expiration.
+- **No Direct DB Access in App:** The Application layer must only interact with repositories or interfaces; never use `DbContext` directly inside handlers.
diff --git a/base/.agent/agents/FrontendExpert.md b/base/.agent/agents/FrontendExpert.md
new file mode 100644
index 0000000..a5f205a
--- /dev/null
+++ b/base/.agent/agents/FrontendExpert.md
@@ -0,0 +1,22 @@
+# Agent Profile: Frontend Expert
+
+## 1. Role
+**Senior Frontend Architect (React/Vite)**
+
+## 2. Goal
+Build beautiful, responsive, and highly performant user interfaces using modern Web technologies. Consume Backend APIs efficiently and manage complex global application states smoothly.
+
+## 3. Backstory
+You are a UI/UX-obsessed frontend developer who believes that the user experience is the most critical part of an application. You excel in React, TailwindCSS, and state management tools like Zustand. You have a deep understanding of standardizing API clients and handling backend errors gracefully on the client side.
+
+## 4. Key Responsibilities & Tasks
+- **UI Architecture:** Structure React projects into logical modules (components, pages, hooks, services, stores). 
+- **State Management:** Use `Zustand` (or Context API) effectively for complex global state without useless re-renders.
+- **API Integration:** Write clean wrapper clients (e.g., Axios instances) that handle Token interception, auto-logout on 401, and unified error parsing.
+- **Styling:** Utilize TailwindCSS to create "wow-factor", interactive, and mobile-first responsive interfaces.
+- **Performance:** Implement code-splitting, lazy loading, and debounce/throttle for heavy operations (like searching).
+
+## 5. Constraints & Rules
+- **No Logic in UI:** Keep JSX clean. Extract complex business logic into custom hooks or utility functions.
+- **Unified Icons/Assets:** Always pull static assets and icons centrally (e.g., from an `assets.ts` configuration) rather than hardcoding paths.
+- **Error Feedback:** Always provide the user with clear, friendly Toast/Alert notifications when API calls fail, extracting the exact message from the backend's standard response.
diff --git a/base/.agent/agents/SecurityReviewer.md b/base/.agent/agents/SecurityReviewer.md
new file mode 100644
index 0000000..e693fed
--- /dev/null
+++ b/base/.agent/agents/SecurityReviewer.md
@@ -0,0 +1,21 @@
+# Agent Profile: Security Reviewer
+
+## 1. Role
+**Lead AppSec Engineer & Security Auditor**
+
+## 2. Goal
+Identify, prevent, and mitigate security vulnerabilities in the codebase. Ensure the authentication mechanisms, data flows, and API endpoints comply with top security standards (OWASP) and the project's custom security frameworks.
+
+## 3. Backstory
+You are a paranoid yet highly methodical security expert. You assume every incoming string is a malicious payload and every API endpoint is under attack. Your mission is to protect user data, secure tokens, and enforce strict authorization policies without breaking the application's usability.
+
+## 4. Key Responsibilities & Tasks
+- **Authentication Flow:** Review and enforce the strictest standards for JWT and Refresh Tokens. Ensure refresh tokens are hashed in the database and rotated properly.
+- **Authorization Auditing:** Verify that all controllers and endpoints have the correct `[Authorize]` attributes and RBAC (Role-Based Access Control) policies.
+- **Vulnerability Checks:** Look out for common pitfalls: SQL Injection (ensure parameterized queries/EF Core), XSS (ensure sanitization), and Broken Access Control (ensure cross-tenant or cross-user data isolation).
+- **Session Management:** Guarantee that password resets or role changes immediately revoke all active refresh tokens for a user.
+
+## 5. Constraints & Rules
+- **Zero Raw Tokens in DB:** Never allow raw refresh tokens, OTPs, or password reset tokens to be stored in plain text. Always verify they are passed through a `TokenHasher`.
+- **Validation is Mandatory:** Ensure that no handler accepts input without an explicit Validation layer checking for lengths, formats, and required fields.
+- **Least Privilege:** Ensure infrastructure connections (DB config, Redis) and application roles operate on the principle of least privilege.
diff --git a/base/.agent/rules/GitBranch.md b/base/.agent/rules/GitBranch.md
index be8f369..1f2c0b2 100644
--- a/base/.agent/rules/GitBranch.md
+++ b/base/.agent/rules/GitBranch.md
@@ -1,334 +1,6 @@
-# Huong Dan Dat Ten Git Branch Trong Du An
+# Git Branch Rules
 
-> **Tham khao:** [Git Branch Naming Conventions - Codiga](https://codiga.io/blog/git-branch-naming-conventions)
-
----
-
-## Muc Luc
-
-1. [Nguyen Tac Chung](#1-nguyen-tac-chung)
-2. [Cau Truc Ten Branch](#2-cau-truc-ten-branch)
-3. [Cac Loai Branch (Branch Types)](#3-cac-loai-branch-branch-types)
-4. [Bang Mau Ten Branch Theo Chuc Nang](#4-bang-mau-ten-branch-theo-chuc-nang)
-5. [Quy Tac Dat Ten (Good Practices)](#5-quy-tac-dat-ten-good-practices)
-6. [Mo Hinh Git Flow](#6-mo-hinh-git-flow)
-7. [Vi Du Thuc Te Trong Du An](#7-vi-du-thuc-te-trong-du-an)
-8. [Checklist Truoc Khi Tao Branch](#8-checklist-truoc-khi-tao-branch)
-
----
-
-## 1. Nguyen Tac Chung
-
-Theo bai viet tu Codiga, mot quy uoc dat ten branch tot giup:
-
-| # | Loi ich | Mo ta |
-|---|---------|-------|
-| 1 | **Truy vet tac gia** | Biet ai da tao branch (developer nao) |
-| 2 | **Lien ket voi issue tracker** | De dang trace branch voi task/ticket tren JIRA, Trello, GitHub Issues... |
-| 3 | **Hieu muc dich branch** | Nhanh chong biet branch la bugfix, feature, hay hotfix |
-| 4 | **To chuc workflow** | Giu cho quy trinh lam viec co trat tu va hieu qua |
-
----
-
-## 2. Cau Truc Ten Branch
-
-### Format chung
-
-```
-<type>/<ticket-id>-<short-description>
-```
-
-Trong do:
-
-| Thanh phan | Bat buoc | Mo ta | Vi du |
-|-----------|----------|-------|-------|
-| `type` | Co | Loai branch (feature, bugfix, hotfix...) | `feature` |
-| `ticket-id` | Co (neu co) | Ma ticket/issue tu issue tracker | `PROJ-1234` |
-| `short-description` | Co | Mo ta ngan 3-6 tu, phan cach bang dau `-` | `add-user-authentication` |
-
-### Vi du day du
-
-```
-feature/PROJ-1234-add-user-authentication
-bugfix/PROJ-5678-fix-login-redirect
-hotfix/PROJ-9012-patch-security-vulnerability
-```
-
-### Format mo rong (co ten tac gia)
-
-Neu team co nhieu nguoi lam chung mot ticket, them ten tac gia:
-
-```
-<author>/<type>/<ticket-id>-<short-description>
-```
-
-Vi du:
-
-```
-julien/feature/1234-new-dashboard
-david/feature/1234-new-dashboard
-```
-
-Dieu nay giup phan biet ro rang code cua tung developer cho cung mot task.
-
----
-
-## 3. Cac Loai Branch (Branch Types)
-
-### Branch chinh (Long-lived branches)
-
-| Branch | Muc dich | Duoc merge tu | Ghi chu |
-|--------|---------|---------------|---------|
-| `main` (hoac `master`) | Code production, luon o trang thai stable | `release`, `hotfix` | Khong bao gio commit truc tiep |
-| `develop` | Code moi nhat cho phien ban tiep theo | `feature`, `bugfix` | Nhanh tich hop chinh |
-| `staging` | Moi truong test truoc khi len production | `develop` | Tuy chon, tuy du an |
-
-### Branch tam thoi (Short-lived branches)
-
-| Prefix | Muc dich | Tao tu | Merge vao | Vi du |
-|--------|---------|--------|----------|-------|
-| `feature/` | Tinh nang moi | `develop` | `develop` | `feature/PROJ-101-add-login-page` |
-| `bugfix/` | Sua loi trong qua trinh phat trien | `develop` | `develop` | `bugfix/PROJ-202-fix-null-reference` |
-| `hotfix/` | Sua loi khan cap tren production | `main` | `main` va `develop` | `hotfix/PROJ-303-fix-payment-crash` |
-| `release/` | Chuan bi phien ban moi | `develop` | `main` va `develop` | `release/v1.2.0` |
-| `chore/` | Cong viec bao tri, refactor, CI/CD | `develop` | `develop` | `chore/update-dependencies` |
-| `docs/` | Cap nhat tai lieu | `develop` | `develop` | `docs/update-api-documentation` |
-| `test/` | Viet test hoac cai thien test | `develop` | `develop` | `test/add-unit-tests-user-service` |
-| `refactor/` | Tai cau truc code, khong thay doi chuc nang | `develop` | `develop` | `refactor/clean-up-user-repository` |
-
----
-
-## 4. Bang Mau Ten Branch Theo Chuc Nang
-
-### Authentication & Authorization
-
-```
-feature/PROJ-101-add-jwt-authentication
-feature/PROJ-102-implement-refresh-token
-feature/PROJ-103-add-role-based-access
-bugfix/PROJ-104-fix-token-expiration
-hotfix/PROJ-105-patch-auth-bypass
-```
-
-### CRUD Entity
-
-```
-feature/PROJ-201-create-product-entity
-feature/PROJ-202-add-product-api-endpoints
-feature/PROJ-203-implement-product-search
-bugfix/PROJ-204-fix-product-update-validation
-```
-
-### Infrastructure & DevOps
-
-```
-chore/PROJ-301-setup-docker-compose
-chore/PROJ-302-configure-ci-cd-pipeline
-chore/PROJ-303-add-redis-caching
-chore/PROJ-304-setup-logging-serilog
-```
-
-### Database & Migration
-
-```
-feature/PROJ-401-add-migration-user-table
-feature/PROJ-402-seed-initial-data
-bugfix/PROJ-403-fix-migration-conflict
-```
-
-### Documentation
-
-```
-docs/PROJ-501-update-readme
-docs/PROJ-502-add-api-swagger-docs
-docs/PROJ-503-create-deployment-guide
-```
-
----
-
-## 5. Quy Tac Dat Ten (Good Practices)
-
-### Nen lam
-
-| Quy tac | Chi tiet | Vi du |
-|---------|---------|-------|
-| **Dung ten mo ta** | Ten branch phai phan anh ro noi dung thay doi | `feature/PROJ-101-add-user-authentication` |
-| **Giu ngan gon** | Chi 3-6 tu khoa, phan cach bang dau `-` | `bugfix/PROJ-202-fix-null-ref` |
-| **Viet thuong toan bo** | Khong viet hoa | `feature/add-login` |
-| **Dung dau `-` phan cach tu** | Khong dung dau cach, underscore, hoac camelCase | `fix-login-redirect` |
-| **Bat dau bang type prefix** | Luon co prefix xac dinh loai branch | `feature/`, `bugfix/`, `hotfix/` |
-| **Lien ket ticket ID** | Giup trace nguon goc thay doi | `PROJ-1234-...` |
-
-### Khong nen lam
-
-| Quy tac | Vi du sai | Vi du dung |
-|---------|----------|-----------|
-| **Khong dung ky tu dac biet** | `feature/add@user#auth` | `feature/add-user-auth` |
-| **Khong dung dau cach** | `feature/add user auth` | `feature/add-user-auth` |
-| **Khong viet hoa** | `Feature/Add-User-Auth` | `feature/add-user-auth` |
-| **Khong dat ten chung chung** | `feature/new-stuff` | `feature/PROJ-101-add-payment-gateway` |
-| **Khong dat ten qua dai** | `feature/PROJ-101-add-new-user-authentication-with-jwt-and-refresh-token-support-for-all-roles` | `feature/PROJ-101-add-jwt-auth` |
-| **Khong dung so thuong** | `feature/123` | `feature/PROJ-123-add-login` |
-| **Khong commit truc tiep vao main/develop** | — | Luon tao branch rieng |
-
----
-
-## 6. Mo Hinh Git Flow
-
-### So do tong quat
-
-```
-main (production)
-  |
-  |--- hotfix/PROJ-xxx-fix-critical-bug
-  |         |
-  |         v
-  |    (merge vao main VA develop)
-  |
-  |--- release/v1.2.0
-  |         |
-  |         v
-  |    (merge vao main VA develop)
-  |
-develop (integration)
-  |
-  |--- feature/PROJ-xxx-new-feature
-  |         |
-  |         v
-  |    (merge vao develop qua Pull Request)
-  |
-  |--- bugfix/PROJ-xxx-fix-bug
-  |         |
-  |         v
-  |    (merge vao develop qua Pull Request)
-  |
-  |--- chore/update-packages
-          |
-          v
-     (merge vao develop qua Pull Request)
-```
-
-### Quy trinh lam viec
-
-1. **Tao branch** tu `develop` (hoac `main` cho hotfix)
-2. **Commit** thuong xuyen voi message ro rang
-3. **Push** branch len remote
-4. **Tao Pull Request** (PR) de review code
-5. **Review & Approve** boi it nhat 1 thanh vien khac
-6. **Merge** vao branch dich (squash merge hoac merge commit)
-7. **Xoa branch** sau khi merge thanh cong
-
-### Lenh Git mau
-
-```bash
-# Tao branch feature moi tu develop
-git checkout develop
-git pull origin develop
-git checkout -b feature/PROJ-101-add-login-page
-
-# Lam viec va commit
-git add .
-git commit -m "feat(PROJ-101): add login page UI"
-
-# Push len remote
-git push origin feature/PROJ-101-add-login-page
-
-# Sau khi merge PR, xoa branch local
-git checkout develop
-git pull origin develop
-git branch -d feature/PROJ-101-add-login-page
-```
-
----
-
-## 7. Vi Du Thuc Te Trong Du An
-
-### Ap dung cho du an Clean Architecture (MyNewProjectName)
-
-#### Sprint 1: Khoi tao du an
-
-```bash
-# Cau hinh co ban
-chore/PROJ-001-setup-clean-architecture
-chore/PROJ-002-configure-dependency-injection
-chore/PROJ-003-setup-ef-core-database
-chore/PROJ-004-add-serilog-logging
-chore/PROJ-005-setup-docker-compose
-```
-
-#### Sprint 2: Authentication
-
-```bash
-# Tinh nang xac thuc
-feature/PROJ-010-add-user-entity
-feature/PROJ-011-implement-jwt-authentication
-feature/PROJ-012-add-refresh-token-flow
-feature/PROJ-013-implement-role-authorization
-bugfix/PROJ-014-fix-token-validation-error
-```
-
-#### Sprint 3: CRUD cho SampleEntity
-
-```bash
-# Tinh nang CRUD
-feature/PROJ-020-add-sample-entity-crud
-feature/PROJ-021-add-pagination-support
-feature/PROJ-022-implement-search-filter
-bugfix/PROJ-023-fix-sample-delete-cascade
-```
-
-#### Hotfix khan cap
-
-```bash
-# Sua loi tren production
-hotfix/PROJ-099-fix-sql-injection-vulnerability
-hotfix/PROJ-100-patch-cors-configuration
-```
-
-### Quy uoc Commit Message (di kem voi branch)
-
-De dong bo voi quy uoc branch, nen dung [Conventional Commits](https://www.conventionalcommits.org/):
-
-```
-<type>(<scope>): <description>
-```
-
-| Type | Muc dich | Vi du |
-|------|---------|-------|
-| `feat` | Tinh nang moi | `feat(PROJ-101): add login page` |
-| `fix` | Sua loi | `fix(PROJ-202): resolve null reference in UserService` |
-| `chore` | Bao tri | `chore: update NuGet packages` |
-| `docs` | Tai lieu | `docs: update API documentation` |
-| `refactor` | Tai cau truc | `refactor: simplify UserRepository queries` |
-| `test` | Them/sua test | `test: add unit tests for AuthService` |
-| `style` | Format code | `style: apply editorconfig rules` |
-| `ci` | CI/CD | `ci: add GitHub Actions workflow` |
-
----
-
-## 8. Checklist Truoc Khi Tao Branch
-
-- [ ] Ten branch co bat dau bang type prefix khong? (`feature/`, `bugfix/`, `hotfix/`...)
-- [ ] Ten branch co chua ticket/issue ID khong? (`PROJ-1234`)
-- [ ] Mo ta co ngan gon va ro rang khong? (3-6 tu)
-- [ ] Chi dung chu thuong, so, dau `-` va dau `/`?
-- [ ] Khong co ky tu dac biet, dau cach, hoac chu viet hoa?
-- [ ] Branch duoc tao tu dung branch nguon? (`develop` hoac `main`)
-- [ ] Da pull code moi nhat tu branch nguon truoc khi tao?
-
----
-
-## Tom Tat Nhanh
-
-```
-Format:   <type>/<ticket-id>-<short-description>
-Vi du:    feature/PROJ-101-add-user-authentication
-
-Type:     feature | bugfix | hotfix | release | chore | docs | test | refactor
-Chu y:    - Viet thuong toan bo
-          - Dung dau `-` phan cach tu
-          - Giu ngan gon (3-6 tu)
-          - Khong ky tu dac biet
-          - Lien ket ticket ID
-          - Xoa branch sau khi merge
-```
+- **Format:** `<type>/<ticket-id>-<short-description>` (e.g., `feature/PROJ-101-add-login`)
+- **Types:** `feature` (new feature), `bugfix` (dev fix), `hotfix` (prod fix), `chore` (maintenance), `docs`, `refactor`.
+- **Naming:** 3-6 lowercase words, separated by hyphens `-`. No special chars.
+- **Workflow:** Branch from `develop` (or `main` for hotfix) -> PR -> Merge -> Delete branch.
diff --git a/base/.agent/rules/GitCommit.md b/base/.agent/rules/GitCommit.md
index 37d01dd..421b224 100644
--- a/base/.agent/rules/GitCommit.md
+++ b/base/.agent/rules/GitCommit.md
@@ -1,468 +1,7 @@
-# Huong Dan Viet Git Commit Message Trong Du An
+# Git Commit Rules
 
-> **Tham khao:** [Conventional Commits](https://www.conventionalcommits.org/)
-
----
-
-## Muc Luc
-
-1. [Nguyen Tac Chung](#1-nguyen-tac-chung)
-2. [Cau Truc Commit Message](#2-cau-truc-commit-message)
-3. [Cac Loai Type](#3-cac-loai-type)
-4. [Scope - Pham Vi Thay Doi](#4-scope---pham-vi-thay-doi)
-5. [Quy Tac Viet Description](#5-quy-tac-viet-description)
-6. [Commit Message Voi Body Va Footer](#6-commit-message-voi-body-va-footer)
-7. [Bang Vi Du Day Du](#7-bang-vi-du-day-du)
-8. [Vi Du Thuc Te Trong Du An](#8-vi-du-thuc-te-trong-du-an)
-9. [Nhung Loi Thuong Gap](#9-nhung-loi-thuong-gap)
-10. [Checklist Truoc Khi Commit](#10-checklist-truoc-khi-commit)
-
----
-
-## 1. Nguyen Tac Chung
-
-Viet commit message chuan giup:
-
-| # | Loi ich | Mo ta |
-|---|---------|-------|
-| 1 | **Doc lich su de dang** | Nhin vao git log biet ngay thay doi gi |
-| 2 | **Tu dong tao changelog** | Cac tool co the tu dong tao changelog tu commit message |
-| 3 | **Lien ket voi issue tracker** | De dang trace commit voi task/ticket |
-| 4 | **Review code hieu qua** | Nguoi review hieu nhanh muc dich cua commit |
-| 5 | **Tu dong versioning** | Xac dinh phien ban tu dong (semantic versioning) dua tren type |
-
----
-
-## 2. Cau Truc Commit Message
-
-### Format chung
-
-```
-<type>(<scope>): <description>
-```
-
-Trong do:
-
-| Thanh phan | Bat buoc | Mo ta | Vi du |
-|-----------|----------|-------|-------|
-| `type` | Co | Loai thay doi (feat, fix, chore...) | `feat` |
-| `scope` | Khong | Pham vi/module bi anh huong | `auth`, `api`, `user` |
-| `description` | Co | Mo ta ngan, duoi 50 ky tu, viet hoa dau cau, khong dau cham cuoi | `add Google login` |
-
-### Format day du (voi body va footer)
-
-```
-<type>(<scope>): <description>
-
-<body>
-
-<footer>
-```
-
-### Vi du nhanh
-
-```
-feat(auth): add Google login
-fix(api): resolve 404 error
-docs(readme): update install guide
-chore: update dependencies
-```
-
----
-
-## 3. Cac Loai Type
-
-### Type chinh (thuong dung)
-
-| Type | Muc dich | Anh huong version | Vi du |
-|------|---------|-------------------|-------|
-| `feat` | Them tinh nang moi | MINOR (1.x.0) | `feat(auth): add Google OAuth` |
-| `fix` | Sua loi | PATCH (1.0.x) | `fix(api): resolve 404 error` |
-| `docs` | Cap nhat tai lieu | Khong | `docs(readme): update install guide` |
-| `style` | Doi format/UI khong anh huong logic | Khong | `style: apply prettier formatting` |
-| `refactor` | Tai cau truc code, khong thay doi chuc nang | Khong | `refactor: simplify UserService logic` |
-| `perf` | Toi uu hieu nang | PATCH (1.0.x) | `perf: optimize database queries` |
-| `test` | Them hoac sua test | Khong | `test: add unit tests for AuthService` |
-| `chore` | Thay doi nho, bao tri, CI/CD | Khong | `chore: update dependencies` |
-
-### Type bo sung (it dung hon)
-
-| Type | Muc dich | Vi du |
-|------|---------|-------|
-| `build` | Thay doi build system hoac dependencies | `build: upgrade to .NET 8` |
-| `ci` | Thay doi CI/CD pipeline | `ci: add GitHub Actions workflow` |
-| `revert` | Hoan tac commit truoc do | `revert: revert feat(auth): add Google login` |
-
----
-
-## 4. Scope - Pham Vi Thay Doi
-
-Scope la phan **tuy chon** nam trong dau ngoac `()`, xac dinh module/file/module cu the bi anh huong.
-
-### Danh sach scope khuyen nghi cho du an Clean Architecture
-
-| Scope | Layer/Module | Vi du |
-|-------|-------------|-------|
-| `domain` | MyNewProjectName.Domain | `feat(domain): add Order entity` |
-| `app` | MyNewProjectName.Application | `feat(app): add CreateUserCommand` |
-| `infra` | MyNewProjectName.Infrastructure | `feat(infra): configure EF Core DbContext` |
-| `api` | MyNewProjectName.WebAPI | `fix(api): resolve CORS issue` |
-| `admin` | MyNewProjectName.AdminAPI | `feat(admin): add dashboard endpoint` |
-| `contract` | MyNewProjectName.Contracts | `feat(contract): add UserDto` |
-| `test` | MyNewProjectName.UnitTest | `test(test): add UserService tests` |
-| `auth` | Module xac thuc | `feat(auth): implement JWT refresh token` |
-| `cache` | Module caching/Redis | `feat(cache): add Redis caching layer` |
-| `db` | Database/Migration | `feat(db): add migration for User table` |
-| `docker` | Docker/Container | `chore(docker): update docker-compose` |
-| `deps` | Dependencies/NuGet | `chore(deps): update MediatR to v12` |
-
-### Quy tac scope
-
-- Viet thuong toan bo
-- Ngan gon, 1-2 tu
-- Phai nhat quan trong toan du an
-- Co the bo qua neu thay doi anh huong nhieu module
-
----
-
-## 5. Quy Tac Viet Description
-
-### Nen lam
-
-| Quy tac | Chi tiet | Vi du |
-|---------|---------|-------|
-| **Viet hoa chu dau** | Chu dau tien cua description viet hoa | `feat: Add login page` |
-| **Duoi 50 ky tu** | Giu description ngan gon | `fix: Resolve null reference in UserService` |
-| **Dung dong tu menh lenh** | Bat dau bang dong tu (add, fix, update, remove...) | `feat: Add user authentication` |
-| **Khong dau cham cuoi** | Khong ket thuc bang dau `.` | `docs: Update README` |
-| **Mo ta "lam gi"** | Tap trung vao ket qua, khong phai qua trinh | `fix: Resolve 404 on login redirect` |
-
-### Khong nen lam
-
-| Quy tac | Vi du sai | Vi du dung |
-|---------|----------|-----------|
-| **Khong viet chung chung** | `fix: Fix bug` | `fix(auth): Resolve token expiration error` |
-| **Khong qua dai** | `feat: Add new user authentication with JWT and refresh token and role-based access control` | `feat(auth): Add JWT authentication` |
-| **Khong dung qua khu** | `feat: Added login page` | `feat: Add login page` |
-| **Khong ghi ten file** | `fix: Fix UserService.cs` | `fix(app): Resolve null ref in user creation` |
-| **Khong dung tieng Viet trong type** | `feat: Them trang dang nhap` | `feat: Add login page` |
-
-### Danh sach dong tu khuyen dung
-
-| Dong tu | Khi nao dung | Vi du |
-|---------|-------------|-------|
-| `add` | Them moi | `feat: Add payment gateway` |
-| `remove` | Xoa bo | `refactor: Remove unused imports` |
-| `update` | Cap nhat | `docs: Update API documentation` |
-| `fix` | Sua loi | `fix: Fix null reference exception` |
-| `resolve` | Giai quyet | `fix: Resolve race condition in checkout` |
-| `implement` | Hien thuc | `feat: Implement search filter` |
-| `refactor` | Tai cau truc | `refactor: Refactor UserRepository` |
-| `optimize` | Toi uu | `perf: Optimize query performance` |
-| `configure` | Cau hinh | `chore: Configure Serilog logging` |
-| `migrate` | Di chuyen/migration | `feat: Migrate user table schema` |
-| `replace` | Thay the | `refactor: Replace raw SQL with EF Core` |
-| `rename` | Doi ten | `refactor: Rename UserDto to UserResponse` |
-| `move` | Di chuyen | `refactor: Move validators to shared folder` |
-| `simplify` | Don gian hoa | `refactor: Simplify error handling logic` |
-| `extract` | Tach ra | `refactor: Extract email service interface` |
-
----
-
-## 6. Commit Message Voi Body Va Footer
-
-Khi commit phuc tap, can giai thich them, su dung body va footer:
-
-### Format
-
-```
-<type>(<scope>): <description>
-                                    <-- dong trong bat buoc
-<body>
-                                    <-- dong trong bat buoc
-<footer>
-```
-
-### Vi du 1: Commit co body
-
-```
-feat(auth): Add JWT authentication
-
-Implement JWT-based authentication using IdentityServer.
-Include access token and refresh token flow.
-Configure token expiration to 15 minutes for access token
-and 7 days for refresh token.
-```
-
-### Vi du 2: Commit co body va footer (lien ket ticket)
-
-```
-fix(api): Resolve 500 error on user creation
-
-The API was returning 500 when creating a user with an existing email.
-Added proper validation check before inserting into database.
-Return 409 Conflict instead of 500 Internal Server Error.
-
-Resolves: PROJ-1234
-```
-
-### Vi du 3: Breaking change
-
-```
-feat(api)!: Change response format for all endpoints
-
-BREAKING CHANGE: All API responses now follow the new standard format:
-{
-  "success": true,
-  "data": {},
-  "message": "",
-  "errors": []
-}
-
-Previous format with flat response body is no longer supported.
-Clients must update to handle the new wrapper format.
-
-Resolves: PROJ-5678
-```
-
-### Footer keywords
-
-| Keyword | Muc dich | Vi du |
-|---------|---------|-------|
-| `Resolves:` | Dong issue/ticket | `Resolves: PROJ-1234` |
-| `Closes:` | Dong issue tren GitHub | `Closes: #123` |
-| `Related:` | Lien quan den issue khac | `Related: PROJ-5678` |
-| `BREAKING CHANGE:` | Thay doi khong tuong thich nguoc | `BREAKING CHANGE: API response format changed` |
-| `Co-authored-by:` | Dong tac gia | `Co-authored-by: Name <email>` |
-| `Reviewed-by:` | Nguoi review | `Reviewed-by: Name <email>` |
-
----
-
-## 7. Bang Vi Du Day Du
-
-### feat - Them tinh nang moi
-
-```bash
-feat(auth): Add Google OAuth login
-feat(api): Add pagination support for product list
-feat(domain): Add Order entity with value objects
-feat(app): Add CreateUserCommand with validation
-feat(infra): Add Redis caching for product queries
-feat(admin): Add dashboard statistics endpoint
-feat(contract): Add OrderResponseDto
-```
-
-### fix - Sua loi
-
-```bash
-fix(api): Resolve 404 error on login redirect
-fix(auth): Fix token expiration calculation
-fix(infra): Resolve database connection timeout
-fix(app): Fix null reference in GetUserQuery
-fix(domain): Fix value object equality comparison
-```
-
-### docs - Tai lieu
-
-```bash
-docs(readme): Update installation guide
-docs(api): Add Swagger annotations for OrderController
-docs: Add contributing guidelines
-docs: Update environment variables documentation
-```
-
-### style - Format code
-
-```bash
-style: Apply EditorConfig formatting rules
-style(api): Fix indentation in controllers
-style: Remove trailing whitespace
-```
-
-### refactor - Tai cau truc
-
-```bash
-refactor(app): Simplify UserService error handling
-refactor(infra): Extract IEmailService interface
-refactor: Move validation logic to domain layer
-refactor(api): Replace manual mapping with AutoMapper
-```
-
-### perf - Toi uu hieu nang
-
-```bash
-perf(infra): Optimize database queries with projection
-perf(api): Add response compression middleware
-perf(cache): Reduce Redis round trips with pipeline
-```
-
-### test - Them/sua test
-
-```bash
-test(app): Add unit tests for CreateUserCommand
-test(domain): Add tests for Order entity validation
-test(infra): Add integration tests for UserRepository
-test: Increase code coverage to 80%
-```
-
-### chore - Bao tri
-
-```bash
-chore: Update NuGet packages
-chore(deps): Upgrade to .NET 8
-chore(docker): Update docker-compose configuration
-chore(ci): Add GitHub Actions build workflow
-chore: Update .gitignore
-```
-
-### build - Build system
-
-```bash
-build: Upgrade to .NET 8 SDK
-build: Add Directory.Build.props for shared config
-build: Configure multi-stage Docker build
-```
-
-### ci - CI/CD
-
-```bash
-ci: Add GitHub Actions workflow for PR checks
-ci: Configure automatic deployment to staging
-ci: Add SonarQube code analysis step
-```
-
----
-
-## 8. Vi Du Thuc Te Trong Du An
-
-### Luong lam viec mot feature hoan chinh
-
-Gia su lam task PROJ-101: Them tinh nang dang nhap
-
-```bash
-# 1. Tao branch
-git checkout -b feature/PROJ-101-add-login
-
-# 2. Them entity va domain logic
-git commit -m "feat(domain): Add User entity with email and password"
-
-# 3. Them command/query
-git commit -m "feat(app): Add LoginCommand with FluentValidation"
-
-# 4. Them infrastructure
-git commit -m "feat(infra): Implement UserRepository with EF Core"
-git commit -m "feat(infra): Add password hashing service"
-
-# 5. Them API endpoint
-git commit -m "feat(api): Add AuthController with login endpoint"
-
-# 6. Them test
-git commit -m "test(app): Add unit tests for LoginCommand handler"
-
-# 7. Cap nhat tai lieu
-git commit -m "docs(api): Add Swagger docs for auth endpoints"
-
-# 8. Push va tao PR
-git push origin feature/PROJ-101-add-login
-```
-
-### Luong sua loi
-
-```bash
-# 1. Tao branch
-git checkout -b bugfix/PROJ-202-fix-login-error
-
-# 2. Sua loi
-git commit -m "fix(auth): Resolve incorrect password validation logic"
-
-# 3. Them test cho truong hop loi
-git commit -m "test(auth): Add test for invalid password scenario"
-
-# 4. Push va tao PR
-git push origin bugfix/PROJ-202-fix-login-error
-```
-
-### Luong hotfix khan cap
-
-```bash
-# 1. Tao branch tu main
-git checkout main
-git checkout -b hotfix/PROJ-303-fix-sql-injection
-
-# 2. Sua loi
-git commit -m "fix(infra): Sanitize SQL parameters to prevent injection
-
-The raw SQL query in SearchRepository was concatenating user input
-directly into the query string. Replaced with parameterized query
-using EF Core's FromSqlInterpolated method.
-
-Resolves: PROJ-303"
-
-# 3. Push va tao PR vao main
-git push origin hotfix/PROJ-303-fix-sql-injection
-```
-
----
-
-## 9. Nhung Loi Thuong Gap
-
-| # | Loi sai | Vi du sai | Vi du dung |
-|---|--------|----------|-----------|
-| 1 | **Message qua chung chung** | `fix: Fix bug` | `fix(auth): Resolve token expiration error` |
-| 2 | **Khong co type** | `Add login page` | `feat: Add login page` |
-| 3 | **Dung qua khu** | `feat: Added new feature` | `feat: Add new feature` |
-| 4 | **Qua nhieu thay doi trong 1 commit** | `feat: Add login, register, forgot password` | Tach thanh 3 commit rieng |
-| 5 | **Commit file khong lien quan** | Commit ca file config lan feature | Chi commit file lien quan |
-| 6 | **Message tieng Viet** | `feat: Them trang dang nhap` | `feat: Add login page` |
-| 7 | **Dau cham cuoi** | `feat: Add login page.` | `feat: Add login page` |
-| 8 | **Khong co scope khi can thiet** | `fix: Fix null reference` | `fix(app): Resolve null ref in GetUserQuery` |
-| 9 | **Type sai** | `feat: Fix bug` | `fix: Resolve login error` |
-| 10 | **Description qua dai** | 100+ ky tu tren 1 dong | Giu duoi 50 ky tu, dung body cho chi tiet |
-
----
-
-## 10. Checklist Truoc Khi Commit
-
-- [ ] Commit message co dung format `<type>(<scope>): <description>` khong?
-- [ ] Type co chinh xac khong? (feat, fix, docs, style, refactor, perf, test, chore)
-- [ ] Scope co phan anh dung module bi anh huong khong?
-- [ ] Description co duoi 50 ky tu khong?
-- [ ] Description co bat dau bang dong tu menh lenh khong? (add, fix, update...)
-- [ ] Description co viet hoa chu dau khong?
-- [ ] Khong co dau cham cuoi trong description?
-- [ ] Moi commit chi chua 1 thay doi logic duy nhat?
-- [ ] Commit co lien ket ticket ID khong? (trong scope hoac footer)
-- [ ] Neu la breaking change, da danh dau `!` va them `BREAKING CHANGE:` trong footer?
-
----
-
-## Tom Tat Nhanh
-
-```
-Format:   <type>(<scope>): <description>
-
-Type:     feat | fix | docs | style | refactor | perf | test | chore | build | ci | revert
-
-Scope:    domain | app | infra | api | admin | contract | test | auth | cache | db | docker | deps
-
-Vi du:
-  feat(auth): Add Google OAuth login          # scope = "auth" (module authentication)
-  fix(api): Resolve 404 error                 # scope = "api" (API endpoints)
-  docs(readme): Update install guide          # scope = "readme" (file/module cu the)
-
-  feat: Them tinh nang moi (VD: feat(login): Add Google OAuth).
-  fix: Sua loi (VD: fix(api): Resolve 404 error).
-  docs: Cap nhat tai lieu.
-  style: Doi format/UI khong anh huong logic.
-  refactor: Tai cau truc code.
-  perf: Toi uu hieu nang.
-  chore: Thay doi nho (VD: chore: Update dependencies).
-
-Quy tac:
-  - Type va scope viet thuong
-  - Description viet hoa chu dau, duoi 50 ky tu
-  - Dung dong tu menh lenh (add, fix, update, remove, implement...)
-  - Khong dau cham cuoi
-  - 1 commit = 1 thay doi logic
-  - Lien ket ticket ID khi co the
-```
+- **Format:** `<type>(<scope>): <description>` (e.g., `feat(auth): Add Google login`)
+- **Types:** `feat` (new), `fix` (bug), `docs` (docs), `style` (format), `refactor` (code structure), `chore` (maintenance).
+- **Scope (Optional):** Affected module in lowercase (e.g., `api`, `db`).
+- **Description:** Capitalize first letter, max 50 chars, imperative verb (`Add`, `Fix`). No trailing period.
+- **Rules:** 1 logical change per commit. Link tickets in footer (`Resolves: PROJ-1234`).
diff --git a/base/.agent/rules/Redis.md b/base/.agent/rules/Redis.md
index 3040380..e9488a8 100644
--- a/base/.agent/rules/Redis.md
+++ b/base/.agent/rules/Redis.md
@@ -1,394 +1,11 @@
 ---
 trigger: always_on
 ---
-
-#  Hướng Dẫn Đặt Tên Redis Key Trong Dự Án
-
-> **Tham khảo:** [Redis Namespace and Other Keys to Developing with Redis](https://redis.io/blog/5-key-takeaways-for-developing-with-redis/)
-
----
-
-##  Mục Lục
-
-1. [Nguyên Tắc Chung](#1-nguyên-tắc-chung)
-2. [Quy Ước Đặt Tên Key (Naming Convention)](#2-quy-ước-đặt-tên-key-naming-convention)
-3. [Cấu Trúc Key Theo Namespace](#3-cấu-trúc-key-theo-namespace)
-4. [Bảng Mẫu Key Theo Chức Năng](#4-bảng-mẫu-key-theo-chức-năng)
-5. [Quy Tắc Về Độ Dài Key](#5-quy-tắc-về-độ-dài-key)
-6. [Chọn Đúng Data Structure](#6-chọn-đúng-data-structure)
-7. [Quản Lý Key: SCAN thay vì KEYS](#7-quản-lý-key-scan-thay-vì-keys)
-8. [Chiến Lược TTL & Expiration](#8-chiến-lược-ttl--expiration)
-9. [Cache Invalidation](#9-cache-invalidation)
-10. [Ví Dụ Thực Tế Trong Dự Án](#10-ví-dụ-thực-tế-trong-dự-án)
-
----
-
-## 1. Nguyên Tắc Chung
-
-Theo bài viết từ Redis, có **5 điểm quan trọng** khi phát triển với Redis:
-
-| # | Nguyên tắc | Mô tả |
-|---|-----------|-------|
-| 1 | **Namespace cho key** | Sử dụng dấu `:` để phân tách các phần của tên key, giúp dễ quản lý và tìm kiếm |
-| 2 | **Giữ key ngắn gọn** | Key name cũng chiếm bộ nhớ — key dài 12 ký tự tốn thêm ~15% RAM so với key 6 ký tự (trên 1 triệu key) |
-| 3 | **Dùng đúng data structure** | Hash, List, Set, Sorted Set — mỗi loại phù hợp với một use case khác nhau |
-| 4 | **Dùng SCAN, không dùng KEYS** | Lệnh `KEYS` có thể block server, `SCAN` an toàn hơn cho production |
-| 5 | **Sử dụng Lua Scripts** | Xử lý logic phía server để giảm latency và tối ưu hiệu suất |
-
----
-
-## 2. Quy Ước Đặt Tên Key (Naming Convention)
-
-### Format chung
-
-```
-{project}:{service}:{entity}:{identifier}
-```
-
-- **Dấu phân cách:** Luôn dùng dấu hai chấm `:` (colon) — đây là **convention chuẩn** của Redis
-- **Chữ thường:** Tất cả các phần của key đều viết **lowercase**
-- **Không dấu cách, không ký tự đặc biệt:** Chỉ dùng chữ cái, số, dấu `:` và dấu `-` hoặc `_`
-
-###   Đúng
-
-```
-myapp:user:profile:12345
-myapp:order:detail:ORD-001
-myapp:cache:product:list:page:1
-```
-
-###  Sai
-
-```
-MyApp_User_Profile_12345      # Dùng underscore thay vì colon, viết hoa
-user profile 12345             # Có dấu cách
-MYAPP:USER:PROFILE:12345       # Viết hoa toàn bộ (lãng phí bộ nhớ)
-```
-
----
-
-## 3. Cấu Trúc Key Theo Namespace
-
-Áp dụng cho dự án **Clean Architecture**, cấu trúc key nên phản ánh rõ layer và module:
-
-```
-{app}:{layer}:{entity}:{action/scope}:{identifier}
-```
-
-### Các prefix theo layer
-
-| Prefix | Ý nghĩa | Ví dụ |
-|--------|---------|-------|
-| `app:cache` | Cache dữ liệu | `app:cache:product:list` |
-| `app:session` | Quản lý session | `app:session:user:abc123` |
-| `app:rate` | Rate limiting | `app:rate:api:login:192.168.1.1` |
-| `app:lock` | Distributed lock | `app:lock:order:process:ORD-001` |
-| `app:queue` | Message queue | `app:queue:email:pending` |
-| `app:temp` | Dữ liệu tạm thời | `app:temp:otp:user:12345` |
-| `app:pub` | Pub/Sub channels | `app:pub:notifications:user:12345` |
-| `app:counter` | Bộ đếm | `app:counter:visit:page:home` |
-
----
-
-## 4. Bảng Mẫu Key Theo Chức Năng
-
-###  Authentication & Authorization
-
-| Key Pattern | Data Type | TTL | Mô tả |
-|------------|-----------|-----|--------|
-| `app:session:{sessionId}` | Hash | 30 phút | Thông tin session người dùng |
-| `app:token:refresh:{userId}` | String | 7 ngày | Refresh token |
-| `app:token:blacklist:{jti}` | String | Thời gian còn lại của token | JWT bị thu hồi |
-| `app:temp:otp:{userId}` | String | 5 phút | Mã OTP xác thực |
-| `app:rate:login:{ip}` | String (counter) | 15 phút | Giới hạn số lần đăng nhập |
-
-###  Cache Dữ Liệu (CRUD)
-
-| Key Pattern | Data Type | TTL | Mô tả |
-|------------|-----------|-----|--------|
-| `app:cache:{entity}:detail:{id}` | Hash/String | 10 phút | Cache chi tiết 1 entity |
-| `app:cache:{entity}:list:{hash}` | String (JSON) | 5 phút | Cache danh sách có phân trang/filter |
-| `app:cache:{entity}:count` | String | 5 phút | Cache tổng số record |
-| `app:cache:{entity}:ids:all` | Set | 10 phút | Tập hợp tất cả ID của entity |
-
-> **`{hash}`** là hash MD5/SHA256 của query parameters (page, filter, sort) để tạo key unique cho mỗi truy vấn khác nhau.
-
-### 🔔 Real-time & Pub/Sub
-
-| Key Pattern | Data Type | TTL | Mô tả |
-|------------|-----------|-----|--------|
-| `app:pub:notification:{userId}` | Channel | — | Kênh thông báo realtime |
-| `app:queue:email:pending` | List | — | Hàng đợi gửi email |
-| `app:counter:online:users` | String | — | Đếm user đang online |
-
-### 🔒 Distributed Locking
-
-| Key Pattern | Data Type | TTL | Mô tả |
-|------------|-----------|-----|--------|
-| `app:lock:{resource}:{id}` | String | 30 giây | Lock tài nguyên để tránh race condition |
-
----
-
-## 5. Quy Tắc Về Độ Dài Key
-
-Theo bài viết từ Redis:
-
-> *"Storing 1,000,000 keys, each set with a 32-character value, will consume about **96MB** when using 6-character key names, and **111MB** with 12-character names. This overhead of more than **15%** becomes quite significant as your number of keys grows."*
-
-### Hướng dẫn cân bằng
-
-| Quy tắc | Chi tiết |
-|---------|---------|
-| **Tối đa 50 ký tự** | Giữ tổng chiều dài key không quá 50 ký tự |
-| **Viết tắt hợp lý** | `usr` thay vì `user`, `prod` thay vì `product` — nhưng phải có **bảng chú giải** |
-| **Không lạm dụng viết tắt** | Key phải đọc được, tránh như `a:b:c:d:1` |
-| **Ưu tiên rõ ràng nếu < 10K keys** | Nếu dataset nhỏ, ưu tiên key dễ đọc hơn key ngắn |
-
-### Bảng viết tắt chuẩn (nếu cần tối ưu)
-
-| Viết tắt | Đầy đủ |
-|----------|--------|
-| `usr` | user |
-| `prod` | product |
-| `ord` | order |
-| `sess` | session |
-| `notif` | notification |
-| `cfg` | config |
-| `inv` | inventory |
-| `txn` | transaction |
-
----
-
-## 6. Chọn Đúng Data Structure
-
-Theo bài viết, việc chọn đúng cấu trúc dữ liệu giúp **tối ưu bộ nhớ và hiệu suất**:
-
-| Data Structure | Khi nào dùng | Ví dụ trong dự án |
-|---------------|-------------|-------------------|
-| **String** | Giá trị đơn giản, counter, cache JSON | `app:cache:product:detail:123` → JSON string |
-| **Hash** | Object có nhiều field, profile user | `app:session:abc123` → `{userId, role, name, exp}` |
-| **List** | Queue, danh sách có thứ tự, cho phép trùng | `app:queue:email:pending` → FIFO queue |
-| **Set** | Tập hợp unique, kiểm tra membership | `app:cache:user:ids:all` → tập hợp user IDs |
-| **Sorted Set** | Leaderboard, ranking, timeline | `app:rank:score:board:game1` → ranking theo điểm |
-| **Bitmap** | Track true/false cho lượng lớn, analytics | `app:analytics:daily:login:2026-02-23` → bit per user |
-
-### 💡 Tips quan trọng:
-- **Hash thay vì nhiều String**: Nhóm dữ liệu liên quan vào 1 Hash thay vì tạo nhiều key String riêng lẻ → tiết kiệm bộ nhớ đáng kể
-- **List thay vì Set**: Nếu không cần kiểm tra uniqueness, List nhanh hơn và tốn ít RAM hơn
-- **Tránh Sorted Set nếu không cần ranking**: Sorted Set tốn nhiều bộ nhớ và phức tạp nhất
-
----
-
-## 7. Quản Lý Key: SCAN thay vì KEYS
-
-### ⚠️ KHÔNG BAO GIỜ dùng `KEYS` trong production!
-
-Lệnh `KEYS *` sẽ:
-- **Block toàn bộ Redis server** cho đến khi hoàn thành
-- **Tiêu tốn RAM** nguy hiểm
-- Gây **downtime** nếu dataset lớn
-
-###   Dùng `SCAN` để duyệt key an toàn
-
-```bash
-# Cú pháp
-SCAN cursor [MATCH pattern] [COUNT count]
-
-# Ví dụ: Tìm tất cả cache key của product
-SCAN 0 MATCH "app:cache:product:*" COUNT 100
-
-# Dùng HSCAN cho Hash
-HSCAN app:session:abc123 0 MATCH "*"
-
-# Dùng SSCAN cho Set
-SSCAN app:cache:user:ids:all 0 COUNT 50
-```
-
-### Trong code C# (StackExchange.Redis):
-```csharp
-//   Đúng: Dùng SCAN
-var server = redis.GetServer(endpoint);
-var keys = server.Keys(pattern: "app:cache:product:*", pageSize: 100);
-
-//  Sai: Dùng KEYS (block server)
-// var keys = server.Keys(pattern: "app:cache:product:*", pageSize: int.MaxValue);
-```
-
----
-
-## 8. Chiến Lược TTL & Expiration
-
-| Loại dữ liệu | TTL khuyến nghị | Lý do |
-|--------------|----------------|-------|
-| **Cache API response** | 5 – 15 phút | Đảm bảo data tương đối fresh |
-| **Session** | 30 phút – 2 giờ | Theo session timeout của app |
-| **OTP / Verification** | 3 – 10 phút | Bảo mật |
-| **Refresh Token** | 7 – 30 ngày | Theo chính sách auth |
-| **Rate Limit Counter** | 1 – 60 phút | Theo window rate limit |
-| **Distributed Lock** | 10 – 60 giây | Tránh deadlock |
-| **Analytics / Counter** | Không expire hoặc 24h | Tùy yêu cầu business |
-
-### ⚡ Luôn đặt TTL cho mọi cache key!
-
-```csharp
-// Luôn set expiration khi SET
-await db.StringSetAsync("app:cache:product:detail:123", jsonData, TimeSpan.FromMinutes(10));
-
-// Hoặc set TTL riêng
-await db.KeyExpireAsync("app:cache:product:detail:123", TimeSpan.FromMinutes(10));
-```
-
-> ⚠️ **Cảnh báo:** Key không có TTL sẽ tồn tại mãi mãi → nguy cơ memory leak!
-
----
-
-## 9. Cache Invalidation
-
-Khi dữ liệu thay đổi trong database chính (SQL, MongoDB...), cần **xóa cache Redis tương ứng**:
-
-### Pattern: Tag-based Invalidation
-
-```
-# Khi tạo cache, thêm key vào một Set quản lý
-SADD app:tags:product  app:cache:product:detail:123
-SADD app:tags:product  app:cache:product:list:abc
-SADD app:tags:product  app:cache:product:count
-
-# Khi invalidate, duyệt Set và xóa tất cả
-SMEMBERS app:tags:product  → lấy tất cả key liên quan
-DEL app:cache:product:detail:123 app:cache:product:list:abc ...
-DEL app:tags:product
-```
-
-### Trong code C#:
-
-```csharp
-public async Task InvalidateCacheByTagAsync(string tag)
-{
-    var db = _redis.GetDatabase();
-    var tagKey = $"app:tags:{tag}";
-    
-    // Lấy tất cả cache key thuộc tag này
-    var members = await db.SetMembersAsync(tagKey);
-    
-    if (members.Length > 0)
-    {
-        // Xóa tất cả cache key
-        var keys = members.Select(m => (RedisKey)m.ToString()).ToArray();
-        await db.KeyDeleteAsync(keys);
-    }
-    
-    // Xóa luôn tag set
-    await db.KeyDeleteAsync(tagKey);
-}
-```
-
----
-
-## 10. Ví Dụ Thực Tế Trong Dự Án
-
-Áp dụng quy ước cho dự án **MyNewProjectName** (Clean Architecture):
-
-### Entity: `SampleEntity`
-
-```
-# Cache chi tiết
-app:cache:sample:detail:{id}
-
-# Cache danh sách (hash = MD5 của query params)
-app:cache:sample:list:{queryHash}
-
-# Cache count
-app:cache:sample:count
-
-# Tag để invalidation
-app:tags:sample → Set chứa tất cả key cache liên quan
-
-# Lock khi cập nhật
-app:lock:sample:update:{id}
-```
-
-### Authentication Flow
-
-```
-# Session sau khi login
-app:session:{sessionId}  → Hash { userId, role, loginAt, ip }
-
-# Refresh token
-app:token:refresh:{userId}  → "eyJhbGciOi..."
-
-# OTP xác thực email
-app:temp:otp:{userId}  → "123456"  (TTL: 5 phút)
-
-# Blacklist JWT đã revoke
-app:token:blacklist:{jti}  → "1"  (TTL: thời gian còn lại của token)
-
-# Rate limit login
-app:rate:login:{ip}  → counter  (TTL: 15 phút, max: 5 lần)
-```
-
-### Constant class trong C#
-
-```csharp
-/// <summary>
-/// Định nghĩa tất cả Redis key patterns sử dụng trong dự án.
-/// Sử dụng dấu ':' làm namespace separator theo convention chuẩn Redis.
-/// </summary>
-public static class RedisKeyPatterns
-{
-    private const string Prefix = "app";
-
-    // ── Cache ──────────────────────────────────
-    public static string CacheDetail(string entity, string id) 
-        => $"{Prefix}:cache:{entity}:detail:{id}";
-    
-    public static string CacheList(string entity, string queryHash) 
-        => $"{Prefix}:cache:{entity}:list:{queryHash}";
-    
-    public static string CacheCount(string entity) 
-        => $"{Prefix}:cache:{entity}:count";
-
-    // ── Tags (cho cache invalidation) ──────────
-    public static string Tag(string entity) 
-        => $"{Prefix}:tags:{entity}";
-
-    // ── Session ────────────────────────────────
-    public static string Session(string sessionId) 
-        => $"{Prefix}:session:{sessionId}";
-
-    // ── Token ──────────────────────────────────
-    public static string RefreshToken(string userId) 
-        => $"{Prefix}:token:refresh:{userId}";
-    
-    public static string BlacklistToken(string jti) 
-        => $"{Prefix}:token:blacklist:{jti}";
-
-    // ── Temporary ──────────────────────────────
-    public static string Otp(string userId) 
-        => $"{Prefix}:temp:otp:{userId}";
-
-    // ── Rate Limiting ──────────────────────────
-    public static string RateLimit(string action, string identifier) 
-        => $"{Prefix}:rate:{action}:{identifier}";
-
-    // ── Distributed Lock ───────────────────────
-    public static string Lock(string resource, string id) 
-        => $"{Prefix}:lock:{resource}:{id}";
-}
-```
----
-
-## 📋 Checklist Trước Khi Tạo Key Mới
-
-- [ ] Key có sử dụng namespace với dấu `:` không?
-- [ ] Key có phản ánh đúng layer/module không?
-- [ ] Key có ngắn gọn nhưng vẫn dễ hiểu không? (< 50 ký tự)
-- [ ] Đã chọn đúng data structure (String/Hash/List/Set/Sorted Set)?
-- [ ] Đã đặt TTL phù hợp cho key?
-- [ ] Đã có chiến lược invalidation khi data thay đổi?
-- [ ] Đã thêm key pattern vào class `RedisKeyPatterns`?
-- [ ] Không dùng `KEYS` command trong code production?
-
----
-
-> **💡 Ghi nhớ:** *"Luôn namespace key bằng dấu `:`, giữ key ngắn gọn, chọn đúng data structure, dùng SCAN thay vì KEYS, và luôn đặt TTL!"*
+# Redis Rules
+
+- **Format:** `{app}:{layer}:{entity}:{action}:{id}` (e.g., `app:cache:user:123`)
+- **Rules:** All lowercase, separated by colons `:`, max 50 chars.
+- **Mandatory TTL:** Every key MUST have an expiration time to avoid memory leaks.
+- **Commands:** Use `SCAN`, `HSCAN`, `SSCAN`. NEVER use `KEYS *` (blocks server).
+- **Structures:** Use `Hash` for objects, `String` for simple values/JSON, `Set`/`List` for collections.
+- **Invalidation:** Use tags (e.g., `app:tags:user`) to group and delete related cache keys.
diff --git a/base/.agent/skills/custom-skills/CI-CD/GenerateGitHubActions.md b/base/.agent/skills/custom-skills/CI-CD/GenerateGitHubActions.md
index 91c7553..1ea27f4 100644
--- a/base/.agent/skills/custom-skills/CI-CD/GenerateGitHubActions.md
+++ b/base/.agent/skills/custom-skills/CI-CD/GenerateGitHubActions.md
@@ -1,54 +1,54 @@
 ---
 name: GenerateGitHubActions
-description: Hướng dẫn tạo CI/CD pipeline tự động hóa Build, Test, Docker Build & Deploy bằng GitHub Actions.
+description: Guide to generating a CI/CD pipeline automating Build, Test, Docker Build & Deploy using GitHub Actions.
 ---
 
 # GenerateGitHubActions Skill
 
-Khi user yêu cầu tạo CI/CD Pipelines (ví dụ: GitHub Actions, hoặc tương đương cho GitLab CI / Azure DevOps), bạn cần sinh ra file luồng tự động hóa theo các bước chuẩn sau đây.
+When a user requests the creation of CI/CD Pipelines (e.g., GitHub Actions, or its equivalent for GitLab CI / Azure DevOps), you must generate an automation workflow file following standard steps below.
 
-## Mục đích
-- Tự động hóa quá trình kiểm tra mã nguồn (CI) và triển khai (CD).
-- Đảm bảo code push lên nhánh `main` luôn hoạt động đúng đắn và sẵn sàng lên production.
+## Purpose
+- Automate the source code testing (CI) and deployment (CD) process.
+- Ensure any code pushed to the `main` branch always functions correctly and is ready for production.
 
-## Hướng dẫn sinh cấu hình (GitHub Actions)
+## Configuration Guide (GitHub Actions)
 
-Tạo file luồng công việc Workflow cho GitHub Actions.
+Create a Workflow file for GitHub Actions.
 
-### 1. Đường dẫn và tên file
-- **Đường dẫn**: `.github/workflows/ci-cd.yml`
-- (Hoặc theo định dạng của platform tương ứng: `.gitlab-ci.yml` cho GitLab, `azure-pipelines.yml` cho Azure DevOps).
+### 1. File Path and Name
+- **Path**: `.github/workflows/ci-cd.yml`
+- (Or corresponding platform format: `.gitlab-ci.yml` for GitLab, `azure-pipelines.yml` for Azure DevOps).
 
-### 2. Các bước cấu hình bắt buộc trong file YAML
+### 2. Mandatory Configuration Steps in the YAML File
 
-Workflow cần trải qua các luồng chính sau (mẫu dưới dây cho GitHub Actions):
+The workflow needs to progress through these main flows (example below is for GitHub Actions):
 
-#### Phân đoạn 1: Build & Test (CI)
-- **Triggers**: Lắng nghe sự kiện `push` hoặc `pull_request` vào nhánh `main`.
-- **Setup môi trường**: 
-  - Checkout mã nguồn (ví dụ dùng `actions/checkout@v4`).
-  - Cài đặt .NET SDK tương ứng với dự án (ví dụ `actions/setup-dotnet@v4` cho .NET 8.0). **Lưu ý: Bật tính năng cache Nuget để tăng tốc độ build.**
+#### Phase 1: Build & Test (CI)
+- **Triggers**: Listen for `push` or `pull_request` events on the `main` branch.
+- **Environment Setup**: 
+  - Checkout source code (e.g., using `actions/checkout@v4`).
+  - Install the .NET SDK matching the project (e.g., `actions/setup-dotnet@v4` for .NET 8.0). **Note: Enable Nuget cache to speed up the build.**
 - **Run Tests**:
-  - Chạy khối lệnh `dotnet restore`, `dotnet build --no-restore`.
-  - Quan trọng nhất: Chạy `dotnet test --no-build --verbosity normal`. (Chỉ khi Test Xanh (Passed) thì các bước sau mới được chạy tiếp).
+  - Execute `dotnet restore`, `dotnet build --no-restore`.
+  - Most critically: Run `dotnet test --no-build --verbosity normal`. (Only if Tests go Green (Passed) should subsequent steps proceed).
 
-#### Phân đoạn 2: Docker Build & Push (Bắt đầu CD)
-- **Cần điều kiện**: Chỉ chạy khi Job Build & Test thành công (`needs: build`).
-- **Đăng nhập Container Registry**: 
-  - Login vào Docker Hub hoặc Azure Container Registry (ACR) sử dụng System Secrets (ví dụ `DOCKER_USERNAME` và `DOCKER_PASSWORD`).
+#### Phase 2: Docker Build & Push (Start of CD)
+- **Prerequisite**: Only run if the Build & Test Job was successful (`needs: build`).
+- **Log into Container Registry**: 
+  - Login to Docker Hub or Azure Container Registry (ACR) using System Secrets (e.g., `DOCKER_USERNAME` and `DOCKER_PASSWORD`).
 - **Build & Push Image**:
-  - Build Image từ Dockerfile (chú ý chỉ đường dẫn thư mục gốc nơi chứa dự án chính để `docker build` có thể truy cập qua các tầng thư mục Clean Architecture).
-  - Gắn tag cho Image (ví dụ: `latest` hoặc theo Commit SHA/phiên bản).
-  - Push Image lên Registry.
+  - Build the Image from the Dockerfile (ensure it points to the root directory containing the main project so `docker build` can access the multiple layers of Clean Architecture).
+  - Tag the Image (e.g., `latest` or via Commit SHA/version).
+  - Push the Image to the Registry.
 
-#### Phân đoạn 3: Deploy to Server (CD - Webhook / SSH)
-- Dùng thư viện `appleboy/ssh-action` (hoặc tương tự) để SSH vào Server đích.
-- Yêu cầu server pull file Image mới nhất từ Registry.
-- **Quan trọng:** Ưu tiên sử dụng `docker compose` để deploy (pull và up) nếu cấu trúc dự án của user có file `docker-compose.yml`, giúp khởi động lại toàn bộ stack (API, DB, Redis...) thay vì chỉ chạy `docker run` độc lập.
+#### Phase 3: Deploy to Server (CD - Webhook / SSH)
+- Use the `appleboy/ssh-action` library (or similar) to SSH into the target Server.
+- Instruct the server to pull the latest Image file from the Registry.
+- **Important:** Prioritize using `docker compose` to deploy (pull and up) if the user's project structure includes a `docker-compose.yml` file. This helps restart the entire stack (API, DB, Redis, etc.) rather than just running a standalone `docker run`.
 
-## Mẫu File Mặc Định (`ci-cd.yml`)
+## Default Template File (`ci-cd.yml`)
 
-Dưới đây là khung mẫu bạn cần căn cứ để thiết kế khi sinh file cho user:
+Below is the template framework you need to base your designs on when generating files for users:
 
 ```yaml
 name: CI/CD Pipeline
@@ -68,7 +68,7 @@ jobs:
       uses: actions/setup-dotnet@v4
       with:
         dotnet-version: '8.0.x'
-        cache: true # Bật cache Nuget, lần sau build nhanh gấp đôi
+        cache: true # Enable Nuget cache; subsequent builds will be twice as fast
         cache-dependency-path: '**/packages.lock.json'
     
     - name: Restore dependencies
@@ -100,7 +100,7 @@ jobs:
         context: .
         file: ./Dockerfile
         push: true
-        tags: ${{ secrets.DOCKER_USERNAME }}/chi-tiet-ten-project-lowercase:latest
+        tags: ${{ secrets.DOCKER_USERNAME }}/detailed-project-name-lowercase:latest
 
   deploy:
     needs: docker-build-push
@@ -115,12 +115,12 @@ jobs:
         username: ${{ secrets.SERVER_USER }}
         key: ${{ secrets.SERVER_SSH_KEY }}
         script: |
-          cd /path/to/your/project/on/server # Trỏ tới thư mục chứa docker-compose.yml
-          docker compose pull # Kéo image mới nhất về (dựa theo file compose)
-          docker compose up -d --build # Khởi động lại các service có sự thay đổi
+          cd /path/to/your/project/on/server # Point to the directory containing docker-compose.yml
+          docker compose pull # Pull the newest image (based on the compose file)
+          docker compose up -d --build # Restart any services with modifications
 ```
 
-## Lưu ý cho AI Agent
-- Khi User yêu cầu sinh pipeline, hãy yêu cầu User xác nhận về tên tài khoản Docker Hub, Server Credentials và nhắc họ cấu hình đầy đủ `Secrets` trên GitHub sau khi sinh file.
-- **Hãy tự động thay thế chuỗi tên project (`chi-tiet-ten-project-lowercase` trong mẫu) bằng tên thật của Project / Repository mà User đang thao tác. Chuyển tất cả về chữ thường (lowercase) khi đặt tên Docker Image để tránh lỗi định dạng của Docker.**
-- **Nếu user có dùng `docker-compose`, hãy ưu tiên sinh lệnh `docker compose up -d` thay vì `docker run` thuần.**
+## Reminders for the AI Agent
+- When a User asks to generate a pipeline, ensure you ask the User to confirm their Docker Hub account name, Server Credentials, and remind them to fully configure `Secrets` on GitHub after the file is generated.
+- **Automatically replace the project name string (`detailed-project-name-lowercase` in the template) with the true name of the Project / Repository the User is working on. Convert everything to lowercase when naming the Docker Image to prevent Docker formatting errors.**
+- **If the user utilizes `docker-compose`, prioritize generating the `docker compose up -d` command over bare `docker run` commands.**
diff --git a/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateCQRSFeature.md b/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateCQRSFeature.md
index 276fc83..b0774c8 100644
--- a/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateCQRSFeature.md
+++ b/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateCQRSFeature.md
@@ -1,34 +1,34 @@
 ---
 name: GenerateCQRSFeature
-description: Hướng dẫn tạo một feature theo chuẩn CQRS sử dụng MediatR (bao gồm Entity, Command/Query, Handler, và Controller).
+description: Guide to generating a CQRS-based feature using MediatR (including Entity, Command/Query, Handler, and Controller).
 ---
 
 # GenerateCQRSFeature Skill
 
-Khi user yêu cầu tạo một feature theo luồng **CQRS** với đầu vào bao gồm **Tên Feature** (VD: `Order`) và **Action** (VD: `Create`), bạn **BẮT BUỘC** phải thực hiện các bước sau để sinh ra code và file tương ứng:
+When a user requests to create a feature using the **CQRS** pattern, providing the **Feature Name** (e.g., `Order`) and **Action** (e.g., `Create`), you **MUST** follow these steps to generate the corresponding code and files:
 
-## 1. Đầu ra thư mục và file (Outputs)
+## 1. Directory and File Outputs
 
-Dựa trên {FeatureName} và {Action}, hãy tạo các file sau (nếu action thuộc loại Read/Get thì đổi 'Commands' thành 'Queries'):
+Based on the {FeatureName} and {Action}, create the following files (if the action is Read/Get, change 'Commands' to 'Queries'):
 
 1. **Domain Entity**
-   - **Đường dẫn**: `Domain/Entities/{FeatureName}.cs`
-   - **Nội dung**: Lớp Entity cơ bản định nghĩa các thuộc tính.
+   - **Path**: `Domain/Entities/{FeatureName}.cs`
+   - **Content**: A basic Entity class defining the properties.
 
 2. **Command / Query**
-   - **Đường dẫn**: `Application/Features/{FeatureName}s/Commands/{Action}{FeatureName}/{Action}{FeatureName}Command.cs` 
-   - **Nội dung**: Input model kế thừa từ `IRequest<TResponse>` của MediatR.
+   - **Path**: `Application/Features/{FeatureName}s/Commands/{Action}{FeatureName}/{Action}{FeatureName}Command.cs` 
+   - **Content**: An input model that implements MediatR's `IRequest<TResponse>`.
 
 3. **Command / Query Handler**
-   - **Đường dẫn**: `Application/Features/{FeatureName}s/Commands/{Action}{FeatureName}/{Action}{FeatureName}CommandHandler.cs`
-   - **Nội dung**: Xử lý logic nghiệp vụ, implements `IRequestHandler<{Action}{FeatureName}Command, TResponse>`. Inject Repository hoặc service cần thiết vào đây.
+   - **Path**: `Application/Features/{FeatureName}s/Commands/{Action}{FeatureName}/{Action}{FeatureName}CommandHandler.cs`
+   - **Content**: Business logic processor that implements `IRequestHandler<{Action}{FeatureName}Command, TResponse>`. Inject any needed Repository or service here.
 
 4. **WebAPI Controller**
-   - **Đường dẫn**: `WebAPI/Controllers/{FeatureName}sController.cs` (Lưu ý thêm số nhiều cho tên Controller nếu cần thiết).
-   - **Nội dung**: REST API endpoints. **Yêu cầu:** Nhận DI `IMediator` qua constructor để điều hướng Request (ví dụ gọi `await _mediator.Send(command)`).
+   - **Path**: `WebAPI/Controllers/{FeatureName}sController.cs` (Remember to pluralize the Controller name if applicable).
+   - **Content**: REST API endpoints. **Requirement:** Must receive `IMediator` via Dependency Injection in the constructor to dispatch requests (e.g., `await _mediator.Send(command)`).
 
-## 2. Cấu hình Dependency Injection (KHÔNG CẦN LÀM)
+## 2. Dependency Injection Configuration (NOT REQUIRED)
 
-⚠️ **Lưu ý:** Như nguyên tắc thiết lập project, luồng CQRS **KHÔNG CẦN** update file cấu hình Dependency Injection (DI configuration). 
+⚠️ **Note:** As per project standards, the CQRS flow **DOES NOT REQUIRE** updating Dependency Injection configuration files.
 
-Thư viện MediatR đã tự động quét (Auto-register) tất cả các lớp Handler kế thừa từ `IRequestHandler`, vì thế bạn **TUYỆT ĐỐI BỎ QUA** việc cập nhật các file config DI cho phần Handler này.
+The MediatR library automatically scans and registers all Handlers inheriting from `IRequestHandler`. Therefore, you **ABSOLUTELY MUST SKIP** updating the DI config files for Handlers.
diff --git a/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateNTierFeature.md b/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateNTierFeature.md
index 0e4c7d2..7747452 100644
--- a/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateNTierFeature.md
+++ b/base/.agent/skills/custom-skills/GenerateNewFeature/GenerateNTierFeature.md
@@ -1,40 +1,40 @@
 ---
 name: GenerateNTierFeature
-description: Hướng dẫn tạo một feature theo chuẩn N-Tier (bao gồm Entity, Interface, Service, Controller và cấu hình Dependency Injection).
+description: Guide to generating an N-Tier architecture feature (including Entity, Interface, Service, Controller, and Dependency Injection configuration).
 ---
 
 # GenerateNTierFeature Skill
 
-Khi user yêu cầu tạo một feature theo luồng **N-Tier** với đầu vào là **Tên Feature** (VD: `Category`), bạn **BẮT BUỘC** phải thực hiện các bước sau để sinh ra code và file tương ứng:
+When a user requests to create a feature using the **N-Tier** flow, providing the **Feature Name** (e.g., `Category`), you **MUST** follow these steps to generate the corresponding code and files:
 
-## 1. Đầu ra thư mục và file (Outputs)
+## 1. Directory and File Outputs
 
-Hãy tạo các file sau với nội dung phù hợp cho {FeatureName}:
+Create the following files with appropriate content for the {FeatureName}:
 
 1. **Domain Entity**
-   - **Đường dẫn**: `Domain/Entities/{FeatureName}.cs`
-   - **Nội dung**: Lớp Entity cơ bản định nghĩa các thuộc tính.
+   - **Path**: `Domain/Entities/{FeatureName}.cs`
+   - **Content**: A basic Entity class defining the properties.
 
 2. **Service Interface**
-   - **Đường dẫn**: `Application/Interfaces/I{FeatureName}Service.cs`
-   - **Nội dung**: Các interface định nghĩa hợp đồng hàm cho {FeatureName}.
+   - **Path**: `Application/Interfaces/I{FeatureName}Service.cs`
+   - **Content**: Interfaces defining the method contracts for {FeatureName}.
 
 3. **Service Implementation**
-   - **Đường dẫn**: `Application/Services/{FeatureName}Service.cs`
-   - **Nội dung**: Lớp kế thừa từ `I{FeatureName}Service`. **Yêu cầu:** Nhận Dependency Injection (DI) thông qua constructor (ví dụ: `IRepository<{FeatureName}>`).
+   - **Path**: `Application/Services/{FeatureName}Service.cs`
+   - **Content**: A class that inherits from `I{FeatureName}Service`. **Requirement:** Use constructor Dependency Injection (DI) to receive instances (e.g., `IRepository<{FeatureName}>`).
 
 4. **WebAPI Controller**
-   - **Đường dẫn**: `WebAPI/Controllers/{FeatureName}sController.cs` (Lưu ý thêm số nhiều cho tên Controller).
-   - **Nội dung**: Lớp Controller. **Yêu cầu:** Phải nhận DI `I{FeatureName}Service` thông qua constructor và định nghĩa các endpoint tương ứng.
+   - **Path**: `WebAPI/Controllers/{FeatureName}sController.cs` (Remember to pluralize the Controller name).
+   - **Content**: The Controller class. **Requirement:** Must receive `I{FeatureName}Service` via constructor DI and define the corresponding endpoints.
 
-## 2. Cấu hình Dependency Injection (BƯỚC BẮT BUỘC THỰC HIỆN)
+## 2. Dependency Injection Configuration (MANDATORY STEP)
 
-⚠️ **Quan trọng:** Không giống như CQRS với MediatR ở trên, luồng N-Tier **đòi hỏi** bạn phải chèn thủ công service mới tạo vào Container IoC. 
+⚠️ **Important:** Unlike CQRS with MediatR mentioned above, the N-Tier flow **REQUIRES** you to manually register the newly created service into the IoC Container. 
 
-Bạn **BẮT BUỘC** phải sử dụng tool để mở file cấu hình DI của project (có thể là `DependencyInjection.cs` hoặc `ServiceCollectionExtensions.cs` tùy cấu trúc thư mục) và chèn đoạn mã sau vào hàm cấu hình service liên quan:
+You **MUST** use the appropriate tool to open the project's DI configuration file (could be `DependencyInjection.cs` or `ServiceCollectionExtensions.cs` depending on the directory structure) and inject the following code block into the relevant service configuration method:
 
 ```csharp
 services.AddScoped<I{FeatureName}Service, {FeatureName}Service>();
 ```
 
-Hãy đảm bảo bạn dùng công cụ sửa file chính xác (`replace_file_content` hoặc `multi_replace_file_content`) để không làm hỏng cú pháp của file DI.
+Make sure to use an accurate file editing tool (`replace_file_content` or `multi_replace_file_content`) to avoid breaking the DI file's syntax.
diff --git a/base/.agent/skills/custom-skills/GenerateTest/ArchitectureTest.md b/base/.agent/skills/custom-skills/GenerateTest/ArchitectureTest.md
index 8468b36..0b20f71 100644
--- a/base/.agent/skills/custom-skills/GenerateTest/ArchitectureTest.md
+++ b/base/.agent/skills/custom-skills/GenerateTest/ArchitectureTest.md
@@ -1,22 +1,22 @@
 ---
 name: GenerateArchitectureTest
-description: Hướng dẫn tạo Architecture Test sử dụng NetArchTest.Rules để bảo vệ kiến trúc Clean Architecture.
+description: Guide to creating an Architecture Test using NetArchTest.Rules to protect the Clean Architecture structure.
 ---
 
 # GenerateArchitectureTest Skill
 
-Khi user yêu cầu kiểm tra hoặc khởi tạo **Architecture Test**, bạn cần sử dụng thư viện `NetArchTest.Rules` để sinh luận kiểm điểm nhằm bảo vệ chặt chẽ cấu trúc "Clean Architecture" của dự án.
+When a user requests to verify or create an **Architecture Test**, you must use the `NetArchTest.Rules` library to generate tests that strictly protect the project's "Clean Architecture" boundaries.
 
-## Mục đích
-- Ngăn chặn Dev code ẩu, import sai library/module giữa các tầng (layer).
-- Nếu vi phạm (VD: import Entity Framework vào tầng Domain), bài test này sẽ báo ĐỎ ngay lập tức lúc build code. Bằng chứng thép giúp kiến trúc được bảo vệ tuyệt đối!
+## Purpose
+- Prevent developers from writing sloppy code by incorrectly importing libraries/modules across layers.
+- If a violation occurs (e.g., importing Entity Framework into the Domain layer), this test will immediately turn RED during the build process. It acts as solid proof to ensure the architecture is fully protected!
 
-## Hướng dẫn viết Test Rules
+## Writing Test Rules Guide
 
-Bạn cần viết các test method (dùng `[Fact]` với xUnit hoặc NUnit) sử dụng Fluent API của `NetArchTest.Rules`. Dưới đây là các luật phổ biến bắt buộc:
+You need to write test methods (using `[Fact]` with xUnit or NUnit) that utilize the Fluent API of `NetArchTest.Rules`. Below are the mandatory common rules:
 
-1. **Domain Layer Rules (Luật tầng Domain):**
-   - Domain không được phụ thuộc vào bất cứ thứ gì từ Infrastructure, Application hay WebAPI.
+1. **Domain Layer Rules:**
+   - The Domain must not depend on anything from Infrastructure, Application, or WebAPI.
    ```csharp
    [Fact]
    public void DomainLayer_ShouldNot_HaveDependencyOn_OtherLayers()
@@ -34,16 +34,16 @@ Bạn cần viết các test method (dùng `[Fact]` với xUnit hoặc NUnit) s
    }
    ```
 
-2. **Application Layer Rules (Luật tầng Application):**
-   - Application Layer chỉ được phép giao tiếp với Domain, KHÔNG ĐƯỢC có dependency vào `Infrastructure` hoặc `WebAPI`.
+2. **Application Layer Rules:**
+   - The Application Layer is only allowed to communicate with the Domain. It MUST NOT have dependencies on `Infrastructure` or `WebAPI`.
 
-3. **Controller Rules (Luật đặt tên/vị trí API):**
-   - Controller bắt buộc phải kế thừa class BaseAPIController, và có hậu tố là "Controller".
-   - Không được phép truy vấn Database trực tiếp từ Controller (ngăn không cho Inject `DbContext` hay `IRepository` vào Controller, kiểm duyệt dependencies của Constructor).
+3. **Controller Rules (Naming/API Location):**
+   - Controllers must inherit from the BaseAPIController class and have the suffix "Controller".
+   - Direct database queries from the Controller are strictly prohibited (prevent the injection of `DbContext` or `IRepository` into the Controller; verify Constructor dependencies).
 
 4. **Handler Rules (CQRS):**
-   - Các Handler xử lý logic phải implements interface `IRequestHandler` và kết thúc bằng `CommandHandler` hoặc `QueryHandler`. Nó chỉ nằm ở Application Layer.
+   - Business logic Handlers must implement the `IRequestHandler` interface and end with `CommandHandler` or `QueryHandler`. They must solely reside in the Application Layer.
 
-## Định dạng file đầu ra
-- **Đường dẫn:** Chứa trong test project như `tests/MyNewProjectName.ArchitectureTests/`.
-- **Tên file:** Thường đặt tên theo phạm vi test như `LayerTests.cs`, `DesignConventionTests.cs`, `NamingRulesTests.cs`, v.v.
+## Output File Format
+- **Path:** Placed within the test project, e.g., `tests/MyNewProjectName.ArchitectureTests/`.
+- **File Name:** Usually named after the test scope, such as `LayerTests.cs`, `DesignConventionTests.cs`, `NamingRulesTests.cs`, etc.
diff --git a/base/.agent/skills/custom-skills/GenerateTest/IntegrationTest.md b/base/.agent/skills/custom-skills/GenerateTest/IntegrationTest.md
index d03a024..2c015f5 100644
--- a/base/.agent/skills/custom-skills/GenerateTest/IntegrationTest.md
+++ b/base/.agent/skills/custom-skills/GenerateTest/IntegrationTest.md
@@ -1,34 +1,34 @@
 ---
 name: GenerateIntegrationTest
-description: Hướng dẫn tạo Integration Test (người thật việc thật) sử dụng WebApplicationFactory và Testcontainers.
+description: Guide to creating Integration Tests (end-to-end) using WebApplicationFactory and Testcontainers.
 ---
 
 # GenerateIntegrationTest Skill
 
-Khi user yêu cầu tạo **Integration Test** để kiểm tra API endpoint từ đầu đến cuối, bạn cần sinh ra code theo hướng dẫn sau:
+When a user requests to create an **Integration Test** to verify API endpoints from start to finish, you need to generate the code according to the following guidelines:
 
-## Mục đích
-- Test xem các mảnh ghép lắp vào ghép với nhau có chạy đúng không.
-- Flow: Client gọi API -> Middleware -> Controller -> CQRS Handler/Service -> Ghi/Đọc Database thật.
+## Purpose
+- Test whether the assembled components work correctly together.
+- Flow: Client calls API -> Middleware -> Controller -> CQRS Handler/Service -> Read/Write to a real Database.
 
-## Hướng dẫn thực hiện
+## Implementation Guide
 1. **Setup WebApplicationFactory:**
-   - Tự động setup `WebApplicationFactory<Program>` (tạo một test server ngay trong RAM của .NET).
-   - Override cấu hình ứng dụng nếu cần thiết (ví dụ thay đổi ConnectionString trỏ sang test container).
+   - Automatically setup `WebApplicationFactory<Program>` (to create an in-memory test server in .NET).
+   - Override application configurations if necessary (e.g., changing the ConnectionString to point to a test container).
 
 2. **Setup Testcontainers (Real Database):**
-   - Sử dụng thư viện `Testcontainers` (hoặc cấu hình tương tự) để tự động spin up một Docker container chứa Database thật (ví dụ: PostgreSQL, SQL Server).
-   - Đảm bảo database container này được start trước khi chạy test và tự động xóa (dispose) sau khi test xong. Tránh dùng SQLite in-memory vì hay bị lỗi vặt và không tương đương với database production.
+   - Use the `Testcontainers` library (or similar configuration) to automatically spin up a Docker container containing a real Database (e.g., PostgreSQL, SQL Server).
+   - Ensure this database container starts before the tests run and is automatically disposed of after the tests complete. Avoid using in-memory SQLite because it often causes minor bugs and does not accurately mimic a production database.
 
-3. **Viết kịch bản Test gọi API (Arrange - Act - Assert):**
-   - Tạo đối tượng `HttpClient` từ `WebApplicationFactory.CreateClient()`.
-   - **Arrange:** Chuẩn bị payload data dạng JSON objects hoặc tạo trước data base records nếu là API GET/PUT/DELETE.
-   - **Act:** Gọi thẳng vào API endpoint tương ứng bằng code. VD: `await client.PostAsJsonAsync("/api/v1/samples", payload);`.
-   - **Assert:** Kiểm tra kết quả trả về:
-     - Check HTTP Status: có phải `200 OK` hay `400 Bad Request` không.
-     - Deserialize response body để check chính xác object.
-     - (Tùy chọn) Query thẳng vào database container xem bản ghi đã được sinh ra/cập nhật thật chưa.
+3. **Write API Test Scenarios (Arrange - Act - Assert):**
+   - Create an `HttpClient` object from `WebApplicationFactory.CreateClient()`.
+   - **Arrange:** Prepare payload data as JSON objects or prepopulate database records for GET/PUT/DELETE APIs.
+   - **Act:** Call the corresponding API endpoint directly via code. E.g.: `await client.PostAsJsonAsync("/api/v1/samples", payload);`.
+   - **Assert:** Verify the returned results:
+     - Check HTTP Status: is it `200 OK` or `400 Bad Request`?
+     - Deserialize the response body to check the exact object data.
+     - (Optional) Query the database container directly to confirm the record was actually created/updated.
 
-## Định dạng file đầu ra
-- **Đường dẫn:** Chứa trong project test tương ứng như `tests/MyNewProjectName.IntegrationTests/Controllers/...`.
-- **Tên file:** `[ControllerName]Tests.cs` (ví dụ: `OrdersControllerTests.cs`).
+## Output File Format
+- **Path:** Placed in the corresponding test project, such as `tests/MyNewProjectName.IntegrationTests/Controllers/...`.
+- **File Name:** `[ControllerName]Tests.cs` (e.g., `OrdersControllerTests.cs`).
diff --git a/base/.agent/skills/custom-skills/GenerateTest/UnitTest.md b/base/.agent/skills/custom-skills/GenerateTest/UnitTest.md
index b05fa94..25939fa 100644
--- a/base/.agent/skills/custom-skills/GenerateTest/UnitTest.md
+++ b/base/.agent/skills/custom-skills/GenerateTest/UnitTest.md
@@ -1,32 +1,32 @@
 ---
 name: GenerateUnitTest
-description: Hướng dẫn tạo Unit Test cô lập (tốc độ cao) sử dụng Mocking (Moq hoặc NSubstitute).
+description: Guide to creating isolated Unit Tests (high speed) using Mocking (Moq or NSubstitute).
 ---
 
 # GenerateUnitTest Skill
 
-Khi user yêu cầu tạo **Unit Test** cho một class/method, bạn cần tuân thủ các nguyên tắc sau để sinh ra code test:
+When a user requests a **Unit Test** for a class/method, you must adhere to the following principles to generate the test code:
 
-## Mục đích
-- Chỉ test duy nhất 1 class/method.
-- Bỏ qua hoàn toàn Database thật, Redis hay HTTP.
-- Tốc độ chạy cực nhanh.
+## Purpose
+- Test solely one class/method in isolation.
+- Completely ignore real Databases, Redis, or HTTP calls.
+- Extremely fast execution speed.
 
-## 1. Với CQRS Handlers hoặc Services
-- **Nhận diện Dependencies:** Tự động nhận diện các Interface (ví dụ: `IRepository`, `IUnitOfWork`, `ILogger`, `IMediator`) được inject vào constructor.
-- **Tạo Mock Object:** Sử dụng thư viện Mocking (như `Moq` hoặc `NSubstitute`) để tạo instance giả của các Interface này.
-- **Kịch bản Test (Arrange - Act - Assert):**
-  - **Arrange:** Cấp data giả (Mock data) cho các hàm của Interface.
-  - **Act:** Gọi hàm thực thi (ví dụ `Handle()` của CQRS hoặc các method của Service).
-  - **Assert:** Kiểm tra kết quả trả về, HOẶC verify xem một method của Mock object có được gọi đúng số lần không (ví dụ kiểm tra xem `_repository.AddAsync()` có được gọi không), HOẶC kiểm tra xem nó có ném ra `ValidationException` khi input sai không.
+## 1. For CQRS Handlers or Services
+- **Identify Dependencies:** Automatically identify the Interfaces (e.g., `IRepository`, `IUnitOfWork`, `ILogger`, `IMediator`) injected into the constructor.
+- **Create Mock Objects:** Use a Mocking library (like `Moq` or `NSubstitute`) to create fake instances of these Interfaces.
+- **Test Scenario (Arrange - Act - Assert):**
+  - **Arrange:** Provide fake data (Mock data) for the Interface methods.
+  - **Act:** Call the method being executed (e.g., `Handle()` in CQRS or Service methods).
+  - **Assert:** Check the returned result, OR verify if a Mock object's method was called the correct number of times (e.g., checking if `_repository.AddAsync()` was called), OR verify if it throws a `ValidationException` given invalid input.
 
-## 2. Với Domain Entities
-- **Mục tiêu:** Kiểm tra các logic kinh doanh, tính toán nội bộ của Entity.
-- **Kịch bản:**
-  - Khởi tạo Entity với các trạng thái cụ thể.
-  - Gọi method thay đổi trạng thái hoặc tính toán (ví dụ: `Order.CalculateTotal()`).
-  - Kiểm tra xem giá trị biến đổi có đúng với quy tắc nghiệp vụ không (ví dụ: `Total` phải bằng `Price * Quantity`).
+## 2. For Domain Entities
+- **Goal:** Verify internal business logic and calculations of the Entity.
+- **Scenario:**
+  - Initialize the Entity with specific states.
+  - Call a method that alters the state or performs a calculation (e.g., `Order.CalculateTotal()`).
+  - Verify if the modified value adheres to business rules (e.g., `Total` must equal `Price * Quantity`).
 
-## Định dạng file đầu ra
-- **Đường dẫn:** Đặt trong project `tests/MyNewProjectName.UnitTests/...` (tương ứng với thư mục gốc của class bị test).
-- **Tên file:** `[ClassName]Tests.cs` (ví dụ: `CreateOrderCommandHandlerTests.cs`).
+## Output File Format
+- **Path:** Placed in the `tests/MyNewProjectName.UnitTests/...` project (corresponding to the tested class's root directory).
+- **File Name:** `[ClassName]Tests.cs` (e.g., `CreateOrderCommandHandlerTests.cs`).
diff --git a/base/02. Requirements/05. Architecture/C4_Code.md b/base/02. Requirements/05. Architecture/C4_Code.md
index 6d34c93..2893fb7 100644
--- a/base/02. Requirements/05. Architecture/C4_Code.md	
+++ b/base/02. Requirements/05. Architecture/C4_Code.md	
@@ -1,24 +1,24 @@
-# Tài liệu Kiến trúc C4 - Mức 4: Code Documentation (Frontend Store)
+# C4 Architecture Document - Level 4: Code Documentation (Frontend Store)
 
-Mô tả chi tiết cấu trúc quản lý dữ liệu (State Management) tại Frontend để phục vụ luồng nghiệp vụ phức tạp.
+Detailed description of the state management structure on the Frontend to support complex business flows.
 
 ## 1. Global State (Zustand/Context)
 
-Để đảm bảo dữ liệu khách hàng được lưu giữ khi chuyển giữa các trang (Chọn sản phẩm -> Quay lại sửa thông tin -> Xem PDF), sử dụng Global Store.
+To ensure customer data is retained when navigating between pages (Selecting Product -> Going back to edit info -> Viewing PDF), a Global Store is utilized.
 
 ### `useCustomerStore`
 - **State**:
   - `personalInfo`: { name, cccd, dob, gender, ... }
   - `ocrStatus`: 'idle' | 'scanning' | 'success' | 'error'
   - `selectedProduct`: 'UVL-IC' | 'UVL-EL' | null
-  - `illustrationUrl`: string (Link PDF)
+  - `illustrationUrl`: string (PDF Link)
 
 - **Actions**:
   - `updateInfo(field, value)`
   - `setOCRData(data)`
   - `resetSession()`
 
-## 2. Sequence Diagram: Luồng OCR & Tạo PDF
+## 2. Sequence Diagram: OCR & PDF Generation Flow
 
 ```mermaid
 sequenceDiagram
@@ -28,21 +28,21 @@ sequenceDiagram
     participant OCR as OCR Service
     participant PDF as PDF Engine
 
-    User->>FE: Upload ảnh CCCD
+    User->>FE: Upload ID Card image
     FE->>BFF: POST /api/ocr (image)
     BFF->>OCR: Extract Info
     OCR-->>BFF: {name, cccd, dob...}
     BFF-->>FE: Return JSON
     FE->>FE: Update Store (personalInfo)
-    FE-->>User: Hiển thị Form (đã điền sẵn)
+    FE-->>User: Display Form (pre-filled)
 
-    User->>FE: Chọn SP & Nhấn "Xem Minh Họa"
+    User->>FE: Select Product & Click "View Illustration"
     FE->>BFF: POST /api/illustration {info, product}
     BFF->>PDF: Generate Request
     PDF-->>BFF: PDF Stream/URL
     BFF-->>FE: Return URL
-    FE-->>User: Hiển thị PDF Viewer
+    FE-->>User: Display PDF Viewer
 ```
 
 ---
-*Biên soạn bởi: Agent mbl-landing-page-architecture*
+*Authored by: Agent mbl-landing-page-architecture*
diff --git a/base/02. Requirements/05. Architecture/C4_Component.md b/base/02. Requirements/05. Architecture/C4_Component.md
index 2bee2af..d6ad7b0 100644
--- a/base/02. Requirements/05. Architecture/C4_Component.md	
+++ b/base/02. Requirements/05. Architecture/C4_Component.md	
@@ -1,31 +1,31 @@
-# Tài liệu Kiến trúc C4 - Mức 3: Component Diagram (Landing Page)
+# C4 Architecture Document - Level 3: Component Diagram (Landing Page)
 
-Chi tiết hóa các thành phần logic trong **Sales Landing App** và **BFF Service**.
+Detailed breakdown of the logical components within the **Sales Landing App** and **BFF Service**.
 
 ## 1. Frontend Components (Sales Landing App)
 
 ### 1.1. Modules
-- **Auth Module**: Form đăng nhập, xử lý Token.
-- **Customer Module**: Form nhập liệu, Component Camera/Upload cho OCR.
-- **Product Module**: Giao diện chọn sản phẩm (Card chọn UVL-IC/UVL-EL).
-- **Illustration Module**: Hiển thị PDF (PDF Viewer) và nút tải về/Submit.
+- **Auth Module**: Login form, Token handling.
+- **Customer Module**: Input form, Camera/Upload Component for OCR.
+- **Product Module**: Product selection interface (Card selection for UVL-IC/UVL-EL).
+- **Illustration Module**: PDF display (PDF Viewer) and download/Submit buttons.
 
 ### 1.2. Shared
-- **UI Kit**: Button, Input, Modal (theo Design System).
-- **API Client**: Axios wrapper để gọi BFF.
+- **UI Kit**: Button, Input, Modal (matching the Design System).
+- **API Client**: Axios wrapper for calling the BFF.
 
 ## 2. Backend Components (BFF Service)
 
 ### 2.1. Controllers
-- **AuthController**: Xác thực với Auth API.
-- **OCRController**: Proxy ảnh sang OCR Service.
-- **IllustrationController**: Tổng hợp dữ liệu -> Gọi PDF Engine -> Trả về URL/File.
-- **SubmissionController**: Gửi dữ liệu cuối cùng về Core.
+- **AuthController**: Authentication via Auth API.
+- **OCRController**: Proxies images to the OCR Service.
+- **IllustrationController**: Aggregates data -> Calls PDF Engine -> Returns URL/File.
+- **SubmissionController**: Submits final data to the Core system.
 
 ### 2.2. Services
-- **ClientService**: Lưu/Lấy thông tin khách hàng từ Database.
+- **ClientService**: Saves/Retrieves customer information from the Database.
 
-## 3. Sơ đồ Component
+## 3. Component Diagram
 
 ```mermaid
 C4Component
@@ -58,4 +58,4 @@ C4Component
 ```
 
 ---
-*Biên soạn bởi: Agent mbl-landing-page-architecture*
+*Authored by: Agent mbl-landing-page-architecture*
diff --git a/base/02. Requirements/05. Architecture/C4_Container.md b/base/02. Requirements/05. Architecture/C4_Container.md
index 6dfe5ad..61a0dd2 100644
--- a/base/02. Requirements/05. Architecture/C4_Container.md	
+++ b/base/02. Requirements/05. Architecture/C4_Container.md	
@@ -1,54 +1,54 @@
-# Tài liệu Kiến trúc C4 - Mức 2: Container Diagram (Landing Page)
+# C4 Architecture Document - Level 2: Container Diagram (Landing Page)
 
-Mô tả các thành phần triển khai của hệ thống Landing Page.
+Describes the deployable components of the Landing Page system.
 
-## 1. Danh sách Container
+## 1. Container List
 
 ### 1.1. Sales Landing App (Frontend)
-- **Công nghệ**: React, Vite, TailwindCSS.
-- **Vai trò**: Cung cấp giao diện tương tác (Responsive).
-- **Chức năng**: Form nhập liệu, Camera capture (cho OCR), PDF Viewer, điều hướng sản phẩm.
+- **Technology**: React, Vite, TailwindCSS.
+- **Role**: Provides the interactive interface (Responsive).
+- **Features**: Data input forms, Camera capture (for OCR), PDF Viewer, product navigation.
 
 ### 1.2. Backend For Frontend (BFF)
-- **Công nghệ**: Node.js / Express (hoặc Serverless Functions).
-- **Vai trò**: Trung gian bảo mật và điều phối API.
-- **Chức năng**:
-    - Ẩn các Token/Secret khi gọi OCR và PDF API.
-    - Quản lý session người dùng.
-    - Chuẩn hóa dữ liệu trước khi gửi đi.
+- **Technology**: Node.js / Express (or Serverless Functions).
+- **Role**: Secures intermediary and API coordinator.
+- **Features**:
+    - Hides Tokens/Secrets when making calls to the OCR and PDF APIs.
+    - Manages user sessions.
+    - Sanitizes and normalizes data before dispatching.
 
 ### 1.3. Local Storage / Caching DB
-- **Công nghệ**: PostgreSQL (hoặc Redis/LocalStorage tùy yêu cầu lưu lâu dài). *Dựa trên yêu cầu lưu lại khách hàng lần sau, sẽ dùng PostgreSQL.*
-- **Vai trò**: Lưu nháp thông tin khách hàng và lịch sử minh họa tạm thời.
+- **Technology**: PostgreSQL (or Redis/LocalStorage depending on long-term storage needs). *Based on the requirement to save customer data for future visits, PostgreSQL will be used.*
+- **Role**: Stores draft customer information and temporary illustration history.
 
-## 2. Sơ đồ Container
+## 2. Container Diagram
 
 ```mermaid
 C4Container
     title Container Diagram - Landing Page Sales Party
 
-    Person(sales_agent, "Nhân viên kinh doanh", "Sử dụng thiết bị cá nhân.")
+    Person(sales_agent, "Sales Agent", "Using personal device.")
 
     System_Boundary(landing_zone, "Landing Page System") {
-        Container(web_app, "Sales Landing App", "React/Vite", "Giao diện người dùng Mobile-first.")
-        Container(bff_api, "BFF Service", "Node.js", "Xử lý logic trung gian và bảo mật.")
-        ContainerDb(local_db, "Client Cache DB", "PostgreSQL", "Lưu thông tin khách hàng nháp.")
+        Container(web_app, "Sales Landing App", "React/Vite", "Mobile-first user interface.")
+        Container(bff_api, "BFF Service", "Node.js", "Intermediary logic and security handler.")
+        ContainerDb(local_db, "Client Cache DB", "PostgreSQL", "Stores draft customer information.")
     }
 
-    System_Ext(auth_api, "Auth API", "Xác thực")
-    System_Ext(ocr_service, "OCR Service", "Xử lý ảnh")
-    System_Ext(pdf_engine, "PDF Engine", "Tạo PDF")
-    System_Ext(core_system, "Core System", "Lưu hợp đồng")
+    System_Ext(auth_api, "Auth API", "Authentication")
+    System_Ext(ocr_service, "OCR Service", "Image processing")
+    System_Ext(pdf_engine, "PDF Engine", "PDF Generation")
+    System_Ext(core_system, "Core System", "Stores contracts")
 
-    Rel(sales_agent, web_app, "Tương tác", "HTTPS")
+    Rel(sales_agent, web_app, "Interacts", "HTTPS")
     Rel(web_app, bff_api, "API Call", "JSON/HTTPS")
     
-    Rel(bff_api, local_db, "Đọc/Ghi dữ liệu KH", "SQL")
-    Rel(bff_api, auth_api, "Proxy xác thực", "REST")
-    Rel(bff_api, ocr_service, "Gọi OCR", "REST")
-    Rel(bff_api, pdf_engine, "Gọi tạo PDF", "REST")
-    Rel(bff_api, core_system, "Submit hồ sơ", "REST")
+    Rel(bff_api, local_db, "Read/Write Customer Data", "SQL")
+    Rel(bff_api, auth_api, "Auth Proxy", "REST")
+    Rel(bff_api, ocr_service, "Calls OCR", "REST")
+    Rel(bff_api, pdf_engine, "Calls PDF Gen", "REST")
+    Rel(bff_api, core_system, "Submits application", "REST")
 ```
 
 ---
-*Biên soạn bởi: Agent mbl-landing-page-architecture*
+*Authored by: Agent mbl-landing-page-architecture*
diff --git a/base/02. Requirements/05. Architecture/C4_Context.md b/base/02. Requirements/05. Architecture/C4_Context.md
index 8424884..94e3b7f 100644
--- a/base/02. Requirements/05. Architecture/C4_Context.md	
+++ b/base/02. Requirements/05. Architecture/C4_Context.md	
@@ -1,58 +1,58 @@
-# Tài liệu Kiến trúc C4 - Mức 1: System Context (Landing Page)
+# C4 Architecture Document - Level 1: System Context (Landing Page)
 
-Tài liệu này mô tả bối cảnh hệ thống của **Landing Page dành cho Sales**, tập trung vào việc hỗ trợ nhân viên kinh doanh trình diễn và khởi tạo bảo hiểm.
+This document describes the system context of the **Sales Landing Page**, focusing on supporting sales agents in presenting and initiating insurance policies.
 
-## 1. Tổng quan hệ thống
-**Landing Page Sales Party** là ứng dụng web giúp nhân viên kinh doanh đăng nhập, quản lý khách hàng (OCR), và tạo bảng minh họa (PDF) cho các sản phẩm bảo hiểm (UVL-IC, UVL-EL) trên đa thiết bị.
+## 1. System Overview
+The **Landing Page Sales Party** is a web application that helps sales agents log in, manage customer data (OCR), and generate illustration boards (PDFs) for insurance products (UVL-IC, UVL-EL) across multiple devices.
 
-## 2. Personas (Tác nhân)
+## 2. Personas (Actors)
 
-### Nhân viên kinh doanh (Sales Agent)
-- **Loại**: Người dùng duy nhất.
-- **Mô tả**: Sử dụng Laptop hoặc Mobile để tư vấn trực tiếp cho khách hàng.
-- **Mục tiêu**: Nhập liệu nhanh (OCR), cho xem bảng minh họa tức thì, chốt hợp đồng tại chỗ.
-- **Tính năng chính**: Login, Scan CCCD, Chọn sản phẩm, Xem/Tải PDF, Submit hồ sơ.
+### Sales Agent
+- **Type**: Primary User.
+- **Description**: Uses a Laptop or Mobile device to consult directly with customers.
+- **Goal**: Rapid data entry (OCR), instant presentation of illustration boards, and on-the-spot contract closure.
+- **Key Features**: Login, Scan ID Card, Select Product, View/Download PDF, Submit Application.
 
-## 3. Các hệ thống bên ngoài (External Systems)
+## 3. External Systems
 
 ### API Authentication (Existing)
-- **Vai trò**: Xác thực tài khoản của Sales Agent.
-- **Giao thức**: REST API / OIDC.
+- **Role**: Authenticates the Sales Agent's account.
+- **Protocol**: REST API / OIDC.
 
-### Dịch vụ OCR (OCR Service)
-- **Vai trò**: Trích xuất thông tin khách hàng từ ảnh CCCD.
-- **Giao thức**: REST API.
+### OCR Service
+- **Role**: Extracts customer information from ID Card images.
+- **Protocol**: REST API.
 
-### API Illustration PDF (PDF Engine)
-- **Vai trò**: Tính toán quyền lợi và kết xuất file PDF minh họa.
-- **Giao thức**: REST API.
+### Illustration PDF API (PDF Engine)
+- **Role**: Calculates benefits and renders the illustration PDF file.
+- **Protocol**: REST API.
 
-### Hệ thống Core Bảo hiểm (Core System)
-- **Vai trò**: Tiếp nhận hồ sơ yêu cầu bảo hiểm (khi Sales submit).
-- **Giao thức**: REST/SOAP API.
+### Core Insurance System (Core System)
+- **Role**: Receives the insurance application (upon Sales submission).
+- **Protocol**: REST/SOAP API.
 
-## 4. Sơ đồ System Context (C4 Context Diagram)
+## 4. System Context Diagram (C4 Context Diagram)
 
 ```mermaid
 C4Context
     title System Context Diagram - Landing Page Sales Party
 
-    Person(sales_agent, "Nhân viên kinh doanh", "Sử dụng Landing Page để tư vấn và chốt đơn.")
+    Person(sales_agent, "Sales Agent", "Uses the Landing Page to consult and close deals.")
 
-    System(landing_system, "Landing Page System", "Cho phép nhập liệu KH, xem minh họa và nộp hồ sơ.")
+    System(landing_system, "Landing Page System", "Allows customer data entry, viewing illustrations, and submitting applications.")
 
-    System_Ext(auth_api, "Auth API", "Hệ thống xác thực tài khoản Sales.")
-    System_Ext(ocr_service, "OCR Service", "Trích xuất dữ liệu CCCD.")
-    System_Ext(pdf_engine, "PDF Generator API", "Tạo file PDF bản minh họa.")
-    System_Ext(core_system, "Core Insurance System", "Ghi nhận hợp đồng.")
+    System_Ext(auth_api, "Auth API", "Sales account authentication system.")
+    System_Ext(ocr_service, "OCR Service", "Extracts ID Card data.")
+    System_Ext(pdf_engine, "PDF Generator API", "Generates the illustration PDF file.")
+    System_Ext(core_system, "Core Insurance System", "Records the contract.")
 
-    Rel(sales_agent, landing_system, "Truy cập, nhập liệu, xem PDF", "HTTPS")
+    Rel(sales_agent, landing_system, "Accesses, inputs data, views PDF", "HTTPS")
 
-    Rel(landing_system, auth_api, "Xác thực người dùng", "REST/JSON")
-    Rel(landing_system, ocr_service, "Gửi ảnh CCCD", "REST/JSON")
-    Rel(landing_system, pdf_engine, "Gửi data để lấy PDF", "REST/JSON")
-    Rel(landing_system, core_system, "Submit hồ sơ", "REST/JSON")
+    Rel(landing_system, auth_api, "Authenticates user", "REST/JSON")
+    Rel(landing_system, ocr_service, "Sends ID image", "REST/JSON")
+    Rel(landing_system, pdf_engine, "Sends data to fetch PDF", "REST/JSON")
+    Rel(landing_system, core_system, "Submits application", "REST/JSON")
 ```
 
 ---
-*Biên soạn bởi: Agent mbl-landing-page-architecture*
+*Authored by: Agent mbl-landing-page-architecture*
diff --git a/base/02. Requirements/05. Architecture/README.md b/base/02. Requirements/05. Architecture/README.md
index 429f397..422eda1 100644
--- a/base/02. Requirements/05. Architecture/README.md	
+++ b/base/02. Requirements/05. Architecture/README.md	
@@ -1,24 +1,24 @@
-# Hệ thống Tài liệu Kiến trúc C4 - Landing Page Sales Party
+# C4 Architecture Documentation System - Landing Page Sales Party
 
-Tài liệu này tổng hợp kiến trúc hệ thống cho dự án **Landing Page dành cho Sales**, giúp đội ngũ phát triển nắm bắt cấu trúc từ tổng quan đến chi tiết.
+This repository consolidates the system architecture for the **Landing Page for Sales** project, helping the development team grasp the structure from a broad overview down to intricate details.
 
-## Mục lục Tài liệu
+## Document Index
 
 ### [Level 1: System Context](./C4_Context.md)
-- **Mô tả**: Bức tranh tổng thể về tương tác giữa Sales Agent và hệ thống Landing Page cùng các đối tác (OCR, Auth, Core).
-- **Trọng tâm**: Xác định ranh giới hệ thống và các điểm tích hợp.
+- **Description**: The big picture of interactions between the Sales Agent, the Landing Page system, and external partners (OCR, Auth, Core).
+- **Focus**: Identifying system boundaries and integration points.
 
 ### [Level 2: Container Diagram](./C4_Container.md)
-- **Mô tả**: Phân rã hệ thống thành Web App (Frontend), BFF (Backend), và Database.
-- **Công nghệ**: React, Node.js, PostgreSQL.
+- **Description**: Decomposing the system into the Web App (Frontend), BFF (Backend), and Database.
+- **Technologies**: React, Node.js, PostgreSQL.
 
 ### [Level 3: Component Diagram](./C4_Component.md)
-- **Mô tả**: Cấu trúc nội bộ của Frontend (Modules) và Backend BFF (Controllers/Services).
-- **Trọng tâm**: Logic xử lý OCR và tạo bảng minh họa.
+- **Description**: The internal structure of the Frontend (Modules) and Backend BFF (Controllers/Services).
+- **Focus**: Processing logic for OCR and illustration generation.
 
 ### [Level 4: Code Documentation](./C4_Code.md)
-- **Mô tả**: Chi tiết luồng xử lý dữ liệu (Sequence Diagram) và quản lý State tại Frontend.
-- **Trọng tâm**: Cơ chế đồng bộ dữ liệu giữa Form nhập liệu và PDF Viewer.
+- **Description**: Detailed data processing flows (Sequence Diagram) and State management on the Frontend.
+- **Focus**: The data synchronization mechanism between the input form and the PDF Viewer.
 
 ---
-*Được cập nhật mới nhất bởi: Agent mbl-landing-page-architecture*
+*Last updated by: Agent mbl-landing-page-architecture*
diff --git a/base/03. Design/01. HighLevelDesign/HighLevelDesign.md b/base/03. Design/01. HighLevelDesign/HighLevelDesign.md
deleted file mode 100644
index e69de29..0000000
diff --git a/base/03. Design/01. HighLevelDesign/System_Design.md b/base/03. Design/01. HighLevelDesign/System_Design.md
new file mode 100644
index 0000000..9d74dc8
--- /dev/null
+++ b/base/03. Design/01. HighLevelDesign/System_Design.md	
@@ -0,0 +1,74 @@
+# High-Level Design (HLD)
+
+## 1. Architectural Overview
+
+The system follows **Clean Architecture** principles to ensure separation of concerns, testability, and independence from frameworks. It utilizes **CQRS** (Command Query Responsibility Segregation) via the **MediatR** library to decouple read and write operations, ensuring scalable and maintainable code.
+
+### 1.1. Project Layers
+
+* **Domain**: Contains core business logic, entities, value objects, domain events, and custom exceptions. It has zero dependencies on other layers or external frameworks.
+* **Application**: Defines use cases and coordinates business logic. It contains MediatR Commands, Queries, Handlers, and validation rules (FluentValidation).
+* **Infrastructure**: Implements interfaces defined in the Application layer, such as Persistence (EF Core), Identity (JWT), Caching (Redis), and third-party API integrations.
+* **Presentation (WebAPI / AdminAPI)**: Acts as the entry point for clients, handling HTTP requests, routing, security middlewares, and returning standardized API responses.
+
+## 2. Technology Stack & Infrastructure
+
+* **Framework**: .NET Core (8/9).
+* **Persistence**: Entity Framework (EF) Core with SQL Server / PostgreSQL.
+* **Caching**: **Redis** for distributed session management, refresh token storage, and performance optimization of frequent queries.
+* **Messaging**: MediatR for in-process messaging. Extensible to asynchronous message brokers (RabbitMQ/Kafka) for background tasks and microservice communication.
+* **Observability**: **Serilog** for structured logging (sinking to Seq/Elasticsearch) and **OpenTelemetry** for distributed tracing and monitoring.
+
+## 3. Core Technical Strategies
+
+### 3.1. Security & Authentication Architecture
+
+* **Authentication**: Stateless authentication using **JWT** (JSON Web Tokens).
+* **Token Rotation**: Implements a secure **Refresh Token** mechanism. Refresh tokens are hashed using a token hasher before being stored in the database to prevent leakage.
+* **Single Active Session**: Logging in automatically revokes previous active refresh tokens for the user, forcing a single active session.
+* **Authorization**: Role-based access control (RBAC) and policy-based authorization managed through claims-based identity.
+
+### 3.2. Data Management & CQRS
+
+* **Commands**: Handled by MediatR to perform write operations (Create, Update, Delete) and mutate system state. Often wrapped in database transactions via an `IUnitOfWork`.
+* **Queries**: Optimized for read-only operations, often bypassing complex domain models to query the database directly (e.g., using EF Core `AsNoTracking` or Dapper) and returning flat **DTOs** (Data Transfer Objects).
+* **Validation**: Automated input validation using **FluentValidation** integrated directly into the MediatR pipeline behavior, ensuring invalid requests are rejected before reaching handlers.
+
+### 3.3. Caching Strategy (Redis)
+
+* **Key Convention**: Strictly namespaced keys using the pattern `{app}:{layer}:{entity}:{action}:{identifier}`.
+* **Data Types**: Optimized use of `Hash` for objects, `String` for simple data, and `Set` for tracking grouping tags.
+* **Invalidation**: Tag-based invalidation ensures that when an entity is updated, all related cached queries are instantly purged.
+* **Mandatory TTL**: Every cached item has an explicit Time-To-Live (TTL) to prevent memory leaks and ensure data freshness.
+
+### 3.4. Error Handling & Response Standard
+
+* **Global Exception Handling**: Centralized middleware/exception filter to catch all unhandled exceptions, preventing stack trace leaks and transforming them into a standard JSON format.
+* **Result Pattern**: All API responses wrap data in a standardized `ApiResponse<T>` or `Result<T>` object, ensuring consistency in error codes, success markers, and payload structure across the FE/BE bridge.
+
+## 4. Deployment & CI/CD Strategy
+
+* **Containerization**: Multi-stage **Docker** builds for Backend APIs to ensure minimal image sizes and consistent runtime environments.
+* **Orchestration**: **Docker Compose** for local development and local testing. Target environments use Kubernetes or managed container services.
+* **CI/CD Pipelines**: Automated GitHub Actions / GitLab CI pipelines for restoring over NuGet, building, running unit and integration tests, building Docker images, and deploying to servers.
+
+---
+
+## 5. System Flow Diagram (Context & Container)
+
+```mermaid
+graph TD
+    Client[Client Apps : Web / Mobile] -->|HTTPS / JWT| API[Presentation : WebAPI / AdminAPI]
+  
+    subgraph "Clean Architecture Core"
+        API -->|MediatR Command/Query| App[Application Layer]
+        App -->|Uses Entities & Interfaces| Domain[Domain Layer]
+    end
+  
+    subgraph "Infrastructure Layer"
+        App -->|Calls Implementations| Infra[Infrastructure Layer]
+        Infra -->|EF Core Queries| DB[(SQL Database)]
+        Infra -->|StackExchange.Redis| Redis[(Redis Cache)]
+        Infra -->|Serilog| Logs[Logging System]
+    end
+```
diff --git a/base/03. Design/02. LowLevelDesign/Auth_Token_Flow.md b/base/03. Design/02. LowLevelDesign/Auth_Token_Flow.md
new file mode 100644
index 0000000..a113d0a
--- /dev/null
+++ b/base/03. Design/02. LowLevelDesign/Auth_Token_Flow.md	
@@ -0,0 +1,86 @@
+# Authentication & Token Flow (iYHCT360)
+
+This document describes in detail the Authentication and Token (Access Token / Refresh Token) processing flow based on the project's actual source code. This is the core security framework designed to be reusable (base) across other projects.
+
+---
+
+## 1. Technology Overview & Design Patterns
+
+- **JWT (JSON Web Token)**: Short-lived Access Token containing the user's basic Claims.
+- **Refresh Token Storage**: Securely stored in the Database (saving only hashed strings to prevent database leak vulnerabilities).
+- **Refresh Token Rotation**: Upon performing a token refresh, the old Refresh Token is revoked, and a completely new Refresh Token is issued (minimizing the risk of theft).
+- **Single Active Session**: Each login will revoke all currently Active Refresh Tokens of that User to ensure there is only 1 active session at a time.
+
+### 1.1. JWT Configuration (`appsettings.json`)
+
+System default lifecycles:
+
+- **Access Token**: Lives for 15 minutes.
+- **Refresh Token**: Lives for 7 days.
+
+---
+
+## 2. Detailed Processing Flows
+
+### 2.1. Login Flow
+
+**Endpoint**: `POST /api/auth/login`
+
+**Processing Steps**:
+
+1. Client sends a `LoginRequest` containing: `Email` and `Password`.
+2. The system searches for the User by Email (only `IsActive` users).
+3. Verifies the password (hashing verification via `IPasswordHasher`).
+4. The system retrieves the User's corresponding Roles from the database.
+5. Generates an **Access Token** containing information (`id`, `roles`, etc.).
+6. Generates a random **Refresh Token** string.
+7. Ensures Single Active Session: The system queries the db to find and mark all previous active Refresh Tokens of the user (`RevokedAt = null` and not Expired) as revoked (`RevokedAt = DateTimeOffset.UtcNow`).
+8. **Hashing the token**: The random Refresh Token string (which is sent to the client only once) is hashed using an algorithm (e.g., `TokenHasher.ComputeHash()`) and ONLY this hash value is saved in the Database along with the IP + UserAgent.
+9. Updates the user's `LastLoginAt` and returns the information (Access Token, Refresh Token, Roles, UserType) to the Client.
+
+### 2.2. Token Refresh Flow (Token Rotation)
+
+**Endpoint**: `POST /api/auth/refresh-token`
+
+**Processing Steps**:
+
+1. Client sends both the `AccessToken` (which might be expired) and the `RefreshToken`.
+2. The system looks up the Refresh Token in the Database (stored as the hash of the original Refresh Token string) => Verifies existence, check it's not revoked (`RevokedAt == null`), and check it's not expired.
+3. Decodes the `AccessToken` using the Extract Claims function to get the `userId`. The `userId` retrieved from the token MUST match the `UserId` owning the Refresh Token.
+4. Checks if the User is still `IsActive`.
+5. Reloads the user's roles from the Database (if roles have changed while the old token was still valid, the refresh action will incorporate the new `roles` into the next Access Token).
+6. Issues a new `AccessToken` and a completely new `RefreshToken`.
+7. Manually marks the current Refresh Token as revoked (`RevokedAt = DateTimeOffset.UtcNow`).
+8. Saves the hash value of the **new RefreshToken** into the DB with a 7-day expiration.
+9. Returns the data to the Client.
+
+### 2.3. Logout Flow
+
+**Endpoint**: `POST /api/auth/logout`
+
+**Processing Steps**:
+
+1. Client sends the `RefreshToken` to the system.
+2. The system hashes the incoming token and finds the corresponding record in the DB.
+3. Marks that Token as revoked (`RevokedAt = DateTimeOffset.UtcNow`).
+4. (Optional: The Client deletes the AccessToken/RefreshToken stored locally on its device).
+
+### 2.4. Password Reset (Forgot password & Reset)
+
+1. **Forgot Password (`POST /api/auth/forgot-password`)**:
+   - Generates a Raw Token (a `Guid.NewGuid()` string).
+   - Hashes that Raw Token and saves it into the User's `SecurityStamp` field.
+   - Concatenates `${user.Id}:{rawToken}`, then applies `Base64 Encode` and returns it (or sends it via Email) to act as the ResetToken.
+2. **Reset Password (`POST /api/auth/reset-password`)**:
+   - `Base64` decodes the token above to extract the `userId` and `rawToken`.
+   - Finds the User in the db, compares the hash of `rawToken` with the `SecurityStamp`.
+   - If valid, Hashes the `NewPassword` into the DB. Sets `SecurityStamp = null` (can only be used to change the password once).
+   - **Security**: Immediately revokes all active Refresh Tokens for this User to forcefully log them out across all devices.
+
+---
+
+## 3. Best Practices Summary Applied in the Backend
+
+- Fully leverage the `TokenHasher` concept: Never store Refresh Tokens, OTP tokens, or Forgot password tokens in direct raw text. If the Database leaks, attackers still cannot use those tokens (similar to hashed passwords).
+- Always cross-check: Ensure the Refresh Token genuinely belongs to the `userId` present in the Access Token to prevent cross-token forgery.
+- Synchronization: When an Admin changes a User's Password/Roles or a User changes their own password (Reset/Change) -> The system must automatically revoke all Refresh Tokens to force a fresh log-in.
diff --git a/base/03. Design/02. LowLevelDesign/LowLevelDesign.md b/base/03. Design/02. LowLevelDesign/LowLevelDesign.md
deleted file mode 100644
index e69de29..0000000