From b2aa385942a74f7cba5cfa2e32e9027ca5860bd5 Mon Sep 17 00:00:00 2001
From: ice yao <yao3690093@gmail.com>
Date: Fri, 18 Oct 2024 20:08:41 +0800
Subject: [PATCH 01/11] feat: Add volcengine tos storage test (#9495)

---
 api/tests/unit_tests/oss/__mock/__init__.py   |   0
 .../unit_tests/oss/__mock/volcengine_tos.py   | 100 ++++++++++++++++++
 .../unit_tests/oss/volcengine_tos/__init__.py |   0
 .../oss/volcengine_tos/test_volcengine_tos.py |  67 ++++++++++++
 4 files changed, 167 insertions(+)
 create mode 100644 api/tests/unit_tests/oss/__mock/__init__.py
 create mode 100644 api/tests/unit_tests/oss/__mock/volcengine_tos.py
 create mode 100644 api/tests/unit_tests/oss/volcengine_tos/__init__.py
 create mode 100644 api/tests/unit_tests/oss/volcengine_tos/test_volcengine_tos.py

diff --git a/api/tests/unit_tests/oss/__mock/__init__.py b/api/tests/unit_tests/oss/__mock/__init__.py
new file mode 100644
index 0000000000..e69de29bb2
diff --git a/api/tests/unit_tests/oss/__mock/volcengine_tos.py b/api/tests/unit_tests/oss/__mock/volcengine_tos.py
new file mode 100644
index 0000000000..241764c521
--- /dev/null
+++ b/api/tests/unit_tests/oss/__mock/volcengine_tos.py
@@ -0,0 +1,100 @@
+import os
+from typing import Union
+from unittest.mock import MagicMock
+
+import pytest
+from _pytest.monkeypatch import MonkeyPatch
+from tos import TosClientV2
+from tos.clientv2 import DeleteObjectOutput, GetObjectOutput, HeadObjectOutput, PutObjectOutput
+
+
+class AttrDict(dict):
+    def __getattr__(self, item):
+        return self.get(item)
+
+
+def get_example_bucket() -> str:
+    return "dify"
+
+
+def get_example_filename() -> str:
+    return "test.txt"
+
+
+def get_example_data() -> bytes:
+    return b"test"
+
+
+def get_example_filepath() -> str:
+    return "/test"
+
+
+class MockVolcengineTosClass:
+    def __init__(self, ak="", sk="", endpoint="", region=""):
+        self.bucket_name = get_example_bucket()
+        self.key = get_example_filename()
+        self.content = get_example_data()
+        self.filepath = get_example_filepath()
+        self.resp = AttrDict(
+            {
+                "x-tos-server-side-encryption": "kms",
+                "x-tos-server-side-encryption-kms-key-id": "trn:kms:cn-beijing:****:keyrings/ring-test/keys/key-test",
+                "x-tos-server-side-encryption-customer-algorithm": "AES256",
+                "x-tos-version-id": "test",
+                "x-tos-hash-crc64ecma": 123456,
+                "request_id": "test",
+                "headers": {
+                    "x-tos-id-2": "test",
+                    "ETag": "123456",
+                },
+                "status": 200,
+            }
+        )
+
+    def put_object(self, bucket: str, key: str, content=None) -> PutObjectOutput:
+        assert bucket == self.bucket_name
+        assert key == self.key
+        assert content == self.content
+        return PutObjectOutput(self.resp)
+
+    def get_object(self, bucket: str, key: str) -> GetObjectOutput:
+        assert bucket == self.bucket_name
+        assert key == self.key
+
+        get_object_output = MagicMock(GetObjectOutput)
+        get_object_output.read.return_value = self.content
+        return get_object_output
+
+    def get_object_to_file(self, bucket: str, key: str, file_path: str):
+        assert bucket == self.bucket_name
+        assert key == self.key
+        assert file_path == self.filepath
+
+    def head_object(self, bucket: str, key: str) -> HeadObjectOutput:
+        assert bucket == self.bucket_name
+        assert key == self.key
+        return HeadObjectOutput(self.resp)
+
+    def delete_object(self, bucket: str, key: str):
+        assert bucket == self.bucket_name
+        assert key == self.key
+        return DeleteObjectOutput(self.resp)
+
+
+MOCK = os.getenv("MOCK_SWITCH", "false").lower() == "true"
+
+
+@pytest.fixture
+def setup_volcengine_tos_mock(monkeypatch: MonkeyPatch):
+    if MOCK:
+        monkeypatch.setattr(TosClientV2, "__init__", MockVolcengineTosClass.__init__)
+        monkeypatch.setattr(TosClientV2, "put_object", MockVolcengineTosClass.put_object)
+        monkeypatch.setattr(TosClientV2, "get_object", MockVolcengineTosClass.get_object)
+        monkeypatch.setattr(TosClientV2, "get_object_to_file", MockVolcengineTosClass.get_object_to_file)
+        monkeypatch.setattr(TosClientV2, "head_object", MockVolcengineTosClass.head_object)
+        monkeypatch.setattr(TosClientV2, "delete_object", MockVolcengineTosClass.delete_object)
+
+    yield
+
+    if MOCK:
+        monkeypatch.undo()
diff --git a/api/tests/unit_tests/oss/volcengine_tos/__init__.py b/api/tests/unit_tests/oss/volcengine_tos/__init__.py
new file mode 100644
index 0000000000..e69de29bb2
diff --git a/api/tests/unit_tests/oss/volcengine_tos/test_volcengine_tos.py b/api/tests/unit_tests/oss/volcengine_tos/test_volcengine_tos.py
new file mode 100644
index 0000000000..3f334a3764
--- /dev/null
+++ b/api/tests/unit_tests/oss/volcengine_tos/test_volcengine_tos.py
@@ -0,0 +1,67 @@
+from collections.abc import Generator
+
+from flask import Flask
+from tos import TosClientV2
+from tos.clientv2 import GetObjectOutput, HeadObjectOutput, PutObjectOutput
+
+from extensions.storage.volcengine_tos_storage import VolcengineTosStorage
+from tests.unit_tests.oss.__mock.volcengine_tos import (
+    get_example_bucket,
+    get_example_data,
+    get_example_filename,
+    get_example_filepath,
+    setup_volcengine_tos_mock,
+)
+
+
+class VolcengineTosTest:
+    _instance = None
+
+    def __new__(cls):
+        if cls._instance == None:
+            cls._instance = object.__new__(cls)
+            return cls._instance
+        else:
+            return cls._instance
+
+    def __init__(self):
+        self.storage = VolcengineTosStorage(app=Flask(__name__))
+        self.storage.bucket_name = get_example_bucket()
+        self.storage.client = TosClientV2(
+            ak="dify",
+            sk="dify",
+            endpoint="https://xxx.volces.com",
+            region="cn-beijing",
+        )
+
+
+def test_save(setup_volcengine_tos_mock):
+    volc_tos = VolcengineTosTest()
+    volc_tos.storage.save(get_example_filename(), get_example_data())
+
+
+def test_load_once(setup_volcengine_tos_mock):
+    volc_tos = VolcengineTosTest()
+    assert volc_tos.storage.load_once(get_example_filename()) == get_example_data()
+
+
+def test_load_stream(setup_volcengine_tos_mock):
+    volc_tos = VolcengineTosTest()
+    generator = volc_tos.storage.load_stream(get_example_filename())
+    assert isinstance(generator, Generator)
+    assert next(generator) == get_example_data()
+
+
+def test_download(setup_volcengine_tos_mock):
+    volc_tos = VolcengineTosTest()
+    volc_tos.storage.download(get_example_filename(), get_example_filepath())
+
+
+def test_exists(setup_volcengine_tos_mock):
+    volc_tos = VolcengineTosTest()
+    assert volc_tos.storage.exists(get_example_filename())
+
+
+def test_delete(setup_volcengine_tos_mock):
+    volc_tos = VolcengineTosTest()
+    volc_tos.storage.delete(get_example_filename())

From a9fc85027d31d76cd8714d6d2633c208cc2f2dcb Mon Sep 17 00:00:00 2001
From: Zven <userzhangqg@163.com>
Date: Fri, 18 Oct 2024 20:22:57 +0800
Subject: [PATCH 02/11] chore: update the description for storage_type (#9492)

---
 api/.env.example                   | 2 +-
 api/configs/middleware/__init__.py | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/api/.env.example b/api/.env.example
index aa155003ab..a7f5206088 100644
--- a/api/.env.example
+++ b/api/.env.example
@@ -42,7 +42,7 @@ DB_DATABASE=dify
 
 # Storage configuration
 # use for store upload files, private keys...
-# storage type: local, s3, azure-blob, google-storage, tencent-cos, huawei-obs, volcengine-tos, baidu-obs, supabase
+# storage type: local, s3, aliyun-oss, azure-blob, baidu-obs, google-storage, huawei-obs, oci-storage, tencent-cos, volcengine-tos, supabase
 STORAGE_TYPE=local
 STORAGE_LOCAL_PATH=storage
 S3_USE_AWS_MANAGED_IAM=false
diff --git a/api/configs/middleware/__init__.py b/api/configs/middleware/__init__.py
index fa7f41d630..84d03e2f45 100644
--- a/api/configs/middleware/__init__.py
+++ b/api/configs/middleware/__init__.py
@@ -35,7 +35,8 @@ from configs.middleware.vdb.weaviate_config import WeaviateConfig
 class StorageConfig(BaseSettings):
     STORAGE_TYPE: str = Field(
         description="Type of storage to use."
-        " Options: 'local', 's3', 'azure-blob', 'aliyun-oss', 'google-storage'. Default is 'local'.",
+        " Options: 'local', 's3', 'aliyun-oss', 'azure-blob', 'baidu-obs', 'google-storage', 'huawei-obs', "
+        "'oci-storage', 'tencent-cos', 'volcengine-tos', 'supabase'. Default is 'local'.",
         default="local",
     )
 

From ce476f2e5c9df876d2f4ca166e1464a9451f4214 Mon Sep 17 00:00:00 2001
From: Chenhe Gu <guchenhe@gmail.com>
Date: Sat, 19 Oct 2024 09:58:22 +0800
Subject: [PATCH 03/11] refine wording in license (#9505)

---
 LICENSE | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/LICENSE b/LICENSE
index 06b0fa1d12..d7b8373839 100644
--- a/LICENSE
+++ b/LICENSE
@@ -6,8 +6,9 @@ Dify is licensed under the Apache License 2.0, with the following additional con
 
 a. Multi-tenant service: Unless explicitly authorized by Dify in writing, you may not use the Dify source code to operate a multi-tenant environment. 
     - Tenant Definition: Within the context of Dify, one tenant corresponds to one workspace. The workspace provides a separated area for each tenant's data and configurations.
-
-b. LOGO and copyright information: In the process of using Dify's frontend components, you may not remove or modify the LOGO or copyright information in the Dify console or applications. This restriction is inapplicable to uses of Dify that do not involve its frontend components.
+    
+b. LOGO and copyright information: In the process of using Dify's frontend, you may not remove or modify the LOGO or copyright information in the Dify console or applications. This restriction is inapplicable to uses of Dify that do not involve its frontend.
+    - Frontend Definition: For the purposes of this license, the "frontend" of Dify includes all components located in the `web/` directory when running Dify from the raw source code, or the "web" image when running Dify with Docker.
 
 Please contact business@dify.ai by email to inquire about licensing matters.
 

From c71af7f610c84fa989997cd0b938146bdf705b21 Mon Sep 17 00:00:00 2001
From: zhuhao <37029601+hwzhuhao@users.noreply.github.com>
Date: Sat, 19 Oct 2024 09:58:50 +0800
Subject: [PATCH 04/11] fix: resolve the error of docker-compose startup when
 the storage is baidu-obs (#9502)

---
 docker/docker-compose.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docker/docker-compose.yaml b/docker/docker-compose.yaml
index 065c5e92bc..a3ea7c6059 100644
--- a/docker/docker-compose.yaml
+++ b/docker/docker-compose.yaml
@@ -96,6 +96,10 @@ x-shared-env: &shared-api-worker-env
   VOLCENGINE_TOS_ACCESS_KEY: ${VOLCENGINE_TOS_ACCESS_KEY:-}
   VOLCENGINE_TOS_ENDPOINT: ${VOLCENGINE_TOS_ENDPOINT:-}
   VOLCENGINE_TOS_REGION: ${VOLCENGINE_TOS_REGION:-}
+  BAIDU_OBS_BUCKET_NAME: ${BAIDU_OBS_BUCKET_NAME:-}
+  BAIDU_OBS_SECRET_KEY: ${BAIDU_OBS_SECRET_KEY:-}
+  BAIDU_OBS_ACCESS_KEY: ${BAIDU_OBS_ACCESS_KEY:-}
+  BAIDU_OBS_ENDPOINT: ${BAIDU_OBS_ENDPOINT:-}
   VECTOR_STORE: ${VECTOR_STORE:-weaviate}
   WEAVIATE_ENDPOINT: ${WEAVIATE_ENDPOINT:-http://weaviate:8080}
   WEAVIATE_API_KEY: ${WEAVIATE_API_KEY:-WVF5YThaHlkYwhGUSmCRgsX3tD5ngdN8pkih}

From 660fc3bb347b4b4b865ca2bdd449bb317cf84c24 Mon Sep 17 00:00:00 2001
From: Ziyu Huang <ziyu4huang@gmail.com>
Date: Sun, 20 Oct 2024 21:59:58 +0800
Subject: [PATCH 05/11] Resolve 9508 openai compatible rerank (#9511)

---
 .../openai_api_compatible.yaml                |  14 ++
 .../openai_api_compatible/rerank/__init__.py  |   0
 .../openai_api_compatible/rerank/rerank.py    | 159 ++++++++++++++++++
 3 files changed, 173 insertions(+)
 create mode 100644 api/core/model_runtime/model_providers/openai_api_compatible/rerank/__init__.py
 create mode 100644 api/core/model_runtime/model_providers/openai_api_compatible/rerank/rerank.py

diff --git a/api/core/model_runtime/model_providers/openai_api_compatible/openai_api_compatible.yaml b/api/core/model_runtime/model_providers/openai_api_compatible/openai_api_compatible.yaml
index 88c76fe16e..69a081f35c 100644
--- a/api/core/model_runtime/model_providers/openai_api_compatible/openai_api_compatible.yaml
+++ b/api/core/model_runtime/model_providers/openai_api_compatible/openai_api_compatible.yaml
@@ -8,6 +8,7 @@ supported_model_types:
   - llm
   - text-embedding
   - speech2text
+  - rerank
 configurate_methods:
   - customizable-model
 model_credential_schema:
@@ -83,6 +84,19 @@ model_credential_schema:
       placeholder:
         zh_Hans: 在此输入您的模型上下文长度
         en_US: Enter your Model context size
+    - variable: context_size
+      label:
+        zh_Hans: 模型上下文长度
+        en_US: Model context size
+      required: true
+      show_on:
+        - variable: __model_type
+          value: rerank
+      type: text-input
+      default: '4096'
+      placeholder:
+        zh_Hans: 在此输入您的模型上下文长度
+        en_US: Enter your Model context size
     - variable: max_tokens_to_sample
       label:
         zh_Hans: 最大 token 上限
diff --git a/api/core/model_runtime/model_providers/openai_api_compatible/rerank/__init__.py b/api/core/model_runtime/model_providers/openai_api_compatible/rerank/__init__.py
new file mode 100644
index 0000000000..e69de29bb2
diff --git a/api/core/model_runtime/model_providers/openai_api_compatible/rerank/rerank.py b/api/core/model_runtime/model_providers/openai_api_compatible/rerank/rerank.py
new file mode 100644
index 0000000000..508da4bf20
--- /dev/null
+++ b/api/core/model_runtime/model_providers/openai_api_compatible/rerank/rerank.py
@@ -0,0 +1,159 @@
+from json import dumps
+from typing import Optional
+
+import httpx
+from requests import post
+from yarl import URL
+
+from core.model_runtime.entities.common_entities import I18nObject
+from core.model_runtime.entities.model_entities import AIModelEntity, FetchFrom, ModelType
+from core.model_runtime.entities.rerank_entities import RerankDocument, RerankResult
+from core.model_runtime.errors.invoke import (
+    InvokeAuthorizationError,
+    InvokeBadRequestError,
+    InvokeConnectionError,
+    InvokeError,
+    InvokeRateLimitError,
+    InvokeServerUnavailableError,
+)
+from core.model_runtime.errors.validate import CredentialsValidateFailedError
+from core.model_runtime.model_providers.__base.rerank_model import RerankModel
+
+
+class OAICompatRerankModel(RerankModel):
+    """
+    rerank model API is compatible with Jina rerank model API. So copy the JinaRerankModel class code here.
+    we need enhance for llama.cpp , which return raw score, not normalize score 0~1.  It seems Dify need it
+    """
+
+    def _invoke(
+        self,
+        model: str,
+        credentials: dict,
+        query: str,
+        docs: list[str],
+        score_threshold: Optional[float] = None,
+        top_n: Optional[int] = None,
+        user: Optional[str] = None,
+    ) -> RerankResult:
+        """
+        Invoke rerank model
+
+        :param model: model name
+        :param credentials: model credentials
+        :param query: search query
+        :param docs: docs for reranking
+        :param score_threshold: score threshold
+        :param top_n: top n documents to return
+        :param user: unique user id
+        :return: rerank result
+        """
+        if len(docs) == 0:
+            return RerankResult(model=model, docs=[])
+
+        server_url = credentials["endpoint_url"]
+        model_name = model
+
+        if not server_url:
+            raise CredentialsValidateFailedError("server_url is required")
+        if not model_name:
+            raise CredentialsValidateFailedError("model_name is required")
+
+        url = server_url
+        headers = {"Authorization": f"Bearer {credentials.get('api_key')}", "Content-Type": "application/json"}
+
+        # TODO: Do we need truncate docs to avoid llama.cpp return error?
+
+        data = {"model": model_name, "query": query, "documents": docs, "top_n": top_n}
+
+        try:
+            response = post(str(URL(url) / "rerank"), headers=headers, data=dumps(data), timeout=60)
+            response.raise_for_status()
+            results = response.json()
+
+            rerank_documents = []
+            scores = [result["relevance_score"] for result in results["results"]]
+
+            # Min-Max Normalization: Normalize scores to 0 ~ 1.0 range
+            min_score = min(scores)
+            max_score = max(scores)
+            score_range = max_score - min_score if max_score != min_score else 1.0  # Avoid division by zero
+
+            for result in results["results"]:
+                index = result["index"]
+
+                # Retrieve document text (fallback if llama.cpp rerank doesn't return it)
+                text = result.get("document", {}).get("text", docs[index])
+
+                # Normalize the score
+                normalized_score = (result["relevance_score"] - min_score) / score_range
+
+                # Create RerankDocument object with normalized score
+                rerank_document = RerankDocument(
+                    index=index,
+                    text=text,
+                    score=normalized_score,
+                )
+
+                # Apply threshold (if defined)
+                if score_threshold is None or normalized_score >= score_threshold:
+                    rerank_documents.append(rerank_document)
+
+            # Sort rerank_documents by normalized score in descending order
+            rerank_documents.sort(key=lambda doc: doc.score, reverse=True)
+
+            return RerankResult(model=model, docs=rerank_documents)
+
+        except httpx.HTTPStatusError as e:
+            raise InvokeServerUnavailableError(str(e))
+
+    def validate_credentials(self, model: str, credentials: dict) -> None:
+        """
+        Validate model credentials
+
+        :param model: model name
+        :param credentials: model credentials
+        :return:
+        """
+        try:
+            self._invoke(
+                model=model,
+                credentials=credentials,
+                query="What is the capital of the United States?",
+                docs=[
+                    "Carson City is the capital city of the American state of Nevada. At the 2010 United States "
+                    "Census, Carson City had a population of 55,274.",
+                    "The Commonwealth of the Northern Mariana Islands is a group of islands in the Pacific Ocean that "
+                    "are a political division controlled by the United States. Its capital is Saipan.",
+                ],
+                score_threshold=0.8,
+            )
+        except Exception as ex:
+            raise CredentialsValidateFailedError(str(ex))
+
+    @property
+    def _invoke_error_mapping(self) -> dict[type[InvokeError], list[type[Exception]]]:
+        """
+        Map model invoke error to unified error
+        """
+        return {
+            InvokeConnectionError: [httpx.ConnectError],
+            InvokeServerUnavailableError: [httpx.RemoteProtocolError],
+            InvokeRateLimitError: [],
+            InvokeAuthorizationError: [httpx.HTTPStatusError],
+            InvokeBadRequestError: [httpx.RequestError],
+        }
+
+    def get_customizable_model_schema(self, model: str, credentials: dict) -> AIModelEntity:
+        """
+        generate custom model entities from credentials
+        """
+        entity = AIModelEntity(
+            model=model,
+            label=I18nObject(en_US=model),
+            model_type=ModelType.RERANK,
+            fetch_from=FetchFrom.CUSTOMIZABLE_MODEL,
+            model_properties={},
+        )
+
+        return entity

From 95ce10f23bb848a13c51706945b200e9a6761b7f Mon Sep 17 00:00:00 2001
From: ice yao <yao3690093@gmail.com>
Date: Sun, 20 Oct 2024 22:06:18 +0800
Subject: [PATCH 06/11] feat: Add custom username and avatar define in discord
 tool (#9514)

---
 .../builtin/discord/tools/discord_webhook.py  |  6 ++---
 .../discord/tools/discord_webhook.yaml        | 25 +++++++++++++++++++
 2 files changed, 28 insertions(+), 3 deletions(-)

diff --git a/api/core/tools/provider/builtin/discord/tools/discord_webhook.py b/api/core/tools/provider/builtin/discord/tools/discord_webhook.py
index 7fdf791aba..c1834a1a26 100644
--- a/api/core/tools/provider/builtin/discord/tools/discord_webhook.py
+++ b/api/core/tools/provider/builtin/discord/tools/discord_webhook.py
@@ -21,7 +21,6 @@ class DiscordWebhookTool(BuiltinTool):
             return self.create_text_message("Invalid parameter content")
 
         webhook_url = tool_parameters.get("webhook_url", "")
-
         if not webhook_url.startswith("https://discord.com/api/webhooks/"):
             return self.create_text_message(
                 f"Invalid parameter webhook_url ${webhook_url}, \
@@ -31,13 +30,14 @@ class DiscordWebhookTool(BuiltinTool):
         headers = {
             "Content-Type": "application/json",
         }
-        params = {}
         payload = {
+            "username": tool_parameters.get("username") or user_id,
             "content": content,
+            "avatar_url": tool_parameters.get("avatar_url") or None,
         }
 
         try:
-            res = httpx.post(webhook_url, headers=headers, params=params, json=payload)
+            res = httpx.post(webhook_url, headers=headers, json=payload)
             if res.is_success:
                 return self.create_text_message("Text message was sent successfully")
             else:
diff --git a/api/core/tools/provider/builtin/discord/tools/discord_webhook.yaml b/api/core/tools/provider/builtin/discord/tools/discord_webhook.yaml
index bb3fa43f24..6847b973ca 100644
--- a/api/core/tools/provider/builtin/discord/tools/discord_webhook.yaml
+++ b/api/core/tools/provider/builtin/discord/tools/discord_webhook.yaml
@@ -38,3 +38,28 @@ parameters:
       pt_BR: Content to sent to the channel or person.
     llm_description: Content of the message
     form: llm
+  - name: username
+    type: string
+    required: false
+    label:
+      en_US: Discord Webhook Username
+      zh_Hans: Discord Webhook用户名
+      pt_BR: Discord Webhook Username
+    human_description:
+      en_US: Discord Webhook Username
+      zh_Hans: Discord Webhook用户名
+      pt_BR: Discord Webhook Username
+    llm_description: Discord Webhook Username
+    form: llm
+  - name: avatar_url
+    type: string
+    required: false
+    label:
+      en_US: Discord Webhook Avatar
+      zh_Hans: Discord Webhook头像
+      pt_BR: Discord Webhook Avatar
+    human_description:
+      en_US: Discord Webhook Avatar URL
+      zh_Hans: Discord Webhook头像地址
+      pt_BR: Discord Webhook Avatar URL
+    form: form

From 444dc019313de08657dec298d5fc94b94c136a74 Mon Sep 17 00:00:00 2001
From: kurokobo <kuro664@gmail.com>
Date: Sun, 20 Oct 2024 23:53:32 +0900
Subject: [PATCH 07/11] fix: ignore all files except for .gitkeep under
 docker/nginx/ssl by gitignore (#9518)

---
 .gitignore | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.gitignore b/.gitignore
index 29374d13dc..27cf8a4ba3 100644
--- a/.gitignore
+++ b/.gitignore
@@ -175,6 +175,8 @@ docker/volumes/pgvector/data/*
 docker/volumes/pgvecto_rs/data/*
 
 docker/nginx/conf.d/default.conf
+docker/nginx/ssl/*
+!docker/nginx/ssl/.gitkeep
 docker/middleware.env
 
 sdks/python-client/build

From 42fe208edad6efcb85dff7ac00cd7d664fd61158 Mon Sep 17 00:00:00 2001
From: chzphoenix <chzphoenix@163.com>
Date: Mon, 21 Oct 2024 09:03:25 +0800
Subject: [PATCH 08/11] refactor wenxin rerank (#9486)

Co-authored-by: cuihz <cuihz@knowbox.cn>
---
 .../model_providers/wenxin/rerank/rerank.py   | 41 ++++---------------
 1 file changed, 8 insertions(+), 33 deletions(-)

diff --git a/api/core/model_runtime/model_providers/wenxin/rerank/rerank.py b/api/core/model_runtime/model_providers/wenxin/rerank/rerank.py
index b22aead22b..9e6a7dd99e 100644
--- a/api/core/model_runtime/model_providers/wenxin/rerank/rerank.py
+++ b/api/core/model_runtime/model_providers/wenxin/rerank/rerank.py
@@ -2,20 +2,15 @@ from typing import Optional
 
 import httpx
 
-from core.model_runtime.entities.common_entities import I18nObject
-from core.model_runtime.entities.model_entities import AIModelEntity, FetchFrom, ModelPropertyKey, ModelType
 from core.model_runtime.entities.rerank_entities import RerankDocument, RerankResult
-from core.model_runtime.errors.invoke import (
-    InvokeAuthorizationError,
-    InvokeBadRequestError,
-    InvokeConnectionError,
-    InvokeError,
-    InvokeRateLimitError,
-    InvokeServerUnavailableError,
-)
+from core.model_runtime.errors.invoke import InvokeError
 from core.model_runtime.errors.validate import CredentialsValidateFailedError
 from core.model_runtime.model_providers.__base.rerank_model import RerankModel
 from core.model_runtime.model_providers.wenxin._common import _CommonWenxin
+from core.model_runtime.model_providers.wenxin.wenxin_errors import (
+    InternalServerError,
+    invoke_error_mapping,
+)
 
 
 class WenxinRerank(_CommonWenxin):
@@ -32,7 +27,7 @@ class WenxinRerank(_CommonWenxin):
             response.raise_for_status()
             return response.json()
         except httpx.HTTPStatusError as e:
-            raise InvokeServerUnavailableError(str(e))
+            raise InternalServerError(str(e))
 
 
 class WenxinRerankModel(RerankModel):
@@ -93,7 +88,7 @@ class WenxinRerankModel(RerankModel):
 
             return RerankResult(model=model, docs=rerank_documents)
         except httpx.HTTPStatusError as e:
-            raise InvokeServerUnavailableError(str(e))
+            raise InternalServerError(str(e))
 
     def validate_credentials(self, model: str, credentials: dict) -> None:
         """
@@ -124,24 +119,4 @@ class WenxinRerankModel(RerankModel):
         """
         Map model invoke error to unified error
         """
-        return {
-            InvokeConnectionError: [httpx.ConnectError],
-            InvokeServerUnavailableError: [httpx.RemoteProtocolError],
-            InvokeRateLimitError: [],
-            InvokeAuthorizationError: [httpx.HTTPStatusError],
-            InvokeBadRequestError: [httpx.RequestError],
-        }
-
-    def get_customizable_model_schema(self, model: str, credentials: dict) -> AIModelEntity:
-        """
-        generate custom model entities from credentials
-        """
-        entity = AIModelEntity(
-            model=model,
-            label=I18nObject(en_US=model),
-            model_type=ModelType.RERANK,
-            fetch_from=FetchFrom.CUSTOMIZABLE_MODEL,
-            model_properties={ModelPropertyKey.CONTEXT_SIZE: int(credentials.get("context_size"))},
-        )
-
-        return entity
+        return invoke_error_mapping()

From 853b0e84ccb21390ad0b88540480443afdd2c396 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E9=9D=9E=E6=B3=95=E6=93=8D=E4=BD=9C?= <hjlarry@163.com>
Date: Mon, 21 Oct 2024 09:05:42 +0800
Subject: [PATCH 09/11] fix: draft run workflow node with image will raise
 error (#9406)

---
 api/core/workflow/workflow_entry.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/api/core/workflow/workflow_entry.py b/api/core/workflow/workflow_entry.py
index 74a598ada5..d3576197d1 100644
--- a/api/core/workflow/workflow_entry.py
+++ b/api/core/workflow/workflow_entry.py
@@ -289,7 +289,7 @@ class WorkflowEntry:
                             new_value.append(file)
 
                 if new_value:
-                    value = new_value
+                    input_value = new_value
 
             # append variable and value to variable pool
             variable_pool.add([variable_node_id] + variable_key_list, input_value)

From 3898fe3311a530347d0520f039e355338e3e06fa Mon Sep 17 00:00:00 2001
From: NFish <douxc512@gmail.com>
Date: Mon, 21 Oct 2024 09:23:20 +0800
Subject: [PATCH 10/11] New Auth Methods (#8119)

---
 web/app/account/account-page/index.tsx        |  79 +++-
 web/app/account/avatar.tsx                    |   2 +-
 web/app/activate/activateForm.tsx             | 202 +---------
 .../base/icons/assets/public/common/lock.svg  |   5 +
 .../account-setting/account-page/index.tsx    |   7 +-
 web/app/components/signin/countdown.tsx       |  41 ++
 web/app/components/swr-initor.tsx             |  70 +++-
 .../forgot-password/ChangePasswordForm.tsx    |  41 +-
 .../forgot-password/ForgotPasswordForm.tsx    |   6 +-
 web/app/install/installForm.tsx               |   3 +-
 web/app/reset-password/check-code/page.tsx    |  92 +++++
 web/app/reset-password/layout.tsx             |  39 ++
 web/app/reset-password/page.tsx               | 101 +++++
 web/app/reset-password/set-password/page.tsx  | 193 +++++++++
 web/app/signin/check-code/page.tsx            |  96 +++++
 .../signin/components/mail-and-code-auth.tsx  |  71 ++++
 .../components/mail-and-password-auth.tsx     | 167 ++++++++
 web/app/signin/components/social-auth.tsx     |  62 +++
 web/app/signin/components/sso-auth.tsx        |  73 ++++
 web/app/signin/forms.tsx                      |  34 --
 web/app/signin/invite-settings/page.tsx       | 154 +++++++
 web/app/signin/layout.tsx                     |  54 +++
 web/app/signin/normalForm.tsx                 | 377 ++++++------------
 web/app/signin/oneMoreStep.tsx                |  34 +-
 web/app/signin/page.tsx                       |  95 +----
 web/app/signin/userSSOForm.tsx                | 107 -----
 web/i18n/en-US/login.ts                       |  42 +-
 web/i18n/zh-Hans/login.ts                     |  43 +-
 web/i18n/zh-Hant/login.ts                     |   4 +-
 web/service/common.ts                         |  26 +-
 web/service/sso.ts                            |  15 +-
 web/types/feature.ts                          |  20 +-
 32 files changed, 1568 insertions(+), 787 deletions(-)
 create mode 100644 web/app/components/base/icons/assets/public/common/lock.svg
 create mode 100644 web/app/components/signin/countdown.tsx
 create mode 100644 web/app/reset-password/check-code/page.tsx
 create mode 100644 web/app/reset-password/layout.tsx
 create mode 100644 web/app/reset-password/page.tsx
 create mode 100644 web/app/reset-password/set-password/page.tsx
 create mode 100644 web/app/signin/check-code/page.tsx
 create mode 100644 web/app/signin/components/mail-and-code-auth.tsx
 create mode 100644 web/app/signin/components/mail-and-password-auth.tsx
 create mode 100644 web/app/signin/components/social-auth.tsx
 create mode 100644 web/app/signin/components/sso-auth.tsx
 delete mode 100644 web/app/signin/forms.tsx
 create mode 100644 web/app/signin/invite-settings/page.tsx
 create mode 100644 web/app/signin/layout.tsx
 delete mode 100644 web/app/signin/userSSOForm.tsx

diff --git a/web/app/account/account-page/index.tsx b/web/app/account/account-page/index.tsx
index 53f7692e6c..b42b481eba 100644
--- a/web/app/account/account-page/index.tsx
+++ b/web/app/account/account-page/index.tsx
@@ -15,6 +15,7 @@ import { ToastContext } from '@/app/components/base/toast'
 import AppIcon from '@/app/components/base/app-icon'
 import Avatar from '@/app/components/base/avatar'
 import { IS_CE_EDITION } from '@/config'
+import Input from '@/app/components/base/input'
 
 const titleClassName = `
   text-sm font-medium text-gray-900
@@ -31,6 +32,7 @@ const validPassword = /^(?=.*[a-zA-Z])(?=.*\d).{8,}$/
 
 export default function AccountPage() {
   const { t } = useTranslation()
+  const { systemFeatures } = useAppContext()
   const { mutateUserProfile, userProfile, apps } = useAppContext()
   const { notify } = useContext(ToastContext)
   const [editNameModalVisible, setEditNameModalVisible] = useState(false)
@@ -41,6 +43,9 @@ export default function AccountPage() {
   const [password, setPassword] = useState('')
   const [confirmPassword, setConfirmPassword] = useState('')
   const [showDeleteAccountModal, setShowDeleteAccountModal] = useState(false)
+  const [showCurrentPassword, setShowCurrentPassword] = useState(false)
+  const [showPassword, setShowPassword] = useState(false)
+  const [showConfirmPassword, setShowConfirmPassword] = useState(false)
 
   const handleEditName = () => {
     setEditNameModalVisible(true)
@@ -158,8 +163,8 @@ export default function AccountPage() {
         </div>
       </div>
       {
-        IS_CE_EDITION && (
-          <div className='mb-8 flex justify-between'>
+        systemFeatures.enable_email_password_login && (
+          <div className='mb-8 flex justify-between gap-2'>
             <div>
               <div className='mb-1 text-sm font-medium text-gray-900'>{t('common.account.password')}</div>
               <div className='mb-2 text-xs text-gray-500'>{t('common.account.passwordTip')}</div>
@@ -191,8 +196,7 @@ export default function AccountPage() {
           >
             <div className='mb-6 text-lg font-medium text-gray-900'>{t('common.account.editName')}</div>
             <div className={titleClassName}>{t('common.account.name')}</div>
-            <input
-              className={inputClassName}
+            <Input className='mt-2'
               value={editName}
               onChange={e => setEditName(e.target.value)}
             />
@@ -223,30 +227,61 @@ export default function AccountPage() {
             {userProfile.is_password_set && (
               <>
                 <div className={titleClassName}>{t('common.account.currentPassword')}</div>
-                <input
-                  type="password"
-                  className={inputClassName}
-                  value={currentPassword}
-                  onChange={e => setCurrentPassword(e.target.value)}
-                />
+                <div className='relative mt-2'>
+                  <Input
+                    type={showCurrentPassword ? 'text' : 'password'}
+                    value={currentPassword}
+                    onChange={e => setCurrentPassword(e.target.value)}
+                  />
+
+                  <div className="absolute inset-y-0 right-0 flex items-center">
+                    <Button
+                      type="button"
+                      variant='ghost'
+                      onClick={() => setShowCurrentPassword(!showCurrentPassword)}
+                    >
+                      {showCurrentPassword ? '👀' : '😝'}
+                    </Button>
+                  </div>
+                </div>
               </>
             )}
             <div className='mt-8 text-sm font-medium text-gray-900'>
               {userProfile.is_password_set ? t('common.account.newPassword') : t('common.account.password')}
             </div>
-            <input
-              type="password"
-              className={inputClassName}
-              value={password}
-              onChange={e => setPassword(e.target.value)}
-            />
+            <div className='relative mt-2'>
+              <Input
+                type={showPassword ? 'text' : 'password'}
+                value={password}
+                onChange={e => setPassword(e.target.value)}
+              />
+              <div className="absolute inset-y-0 right-0 flex items-center">
+                <Button
+                  type="button"
+                  variant='ghost'
+                  onClick={() => setShowPassword(!showPassword)}
+                >
+                  {showPassword ? '👀' : '😝'}
+                </Button>
+              </div>
+            </div>
             <div className='mt-8 text-sm font-medium text-gray-900'>{t('common.account.confirmPassword')}</div>
-            <input
-              type="password"
-              className={inputClassName}
-              value={confirmPassword}
-              onChange={e => setConfirmPassword(e.target.value)}
-            />
+            <div className='relative mt-2'>
+              <Input
+                type={showConfirmPassword ? 'text' : 'password'}
+                value={confirmPassword}
+                onChange={e => setConfirmPassword(e.target.value)}
+              />
+              <div className="absolute inset-y-0 right-0 flex items-center">
+                <Button
+                  type="button"
+                  variant='ghost'
+                  onClick={() => setShowConfirmPassword(!showConfirmPassword)}
+                >
+                  {showConfirmPassword ? '👀' : '😝'}
+                </Button>
+              </div>
+            </div>
             <div className='flex justify-end mt-10'>
               <Button className='mr-2' onClick={() => {
                 setEditPasswordModalVisible(false)
diff --git a/web/app/account/avatar.tsx b/web/app/account/avatar.tsx
index 29bd0cb5a5..2b9aeba5da 100644
--- a/web/app/account/avatar.tsx
+++ b/web/app/account/avatar.tsx
@@ -58,7 +58,7 @@ export default function AppSelector() {
             >
               <Menu.Items
                 className="
-                    absolute -right-3 -top-3 w-60 max-w-80
+                    absolute -right-2 -top-1 w-60 max-w-80
                     divide-y divide-gray-100 origin-top-right rounded-lg bg-white
                     shadow-lg
                   "
diff --git a/web/app/activate/activateForm.tsx b/web/app/activate/activateForm.tsx
index 8e9691b354..9a32a76a73 100644
--- a/web/app/activate/activateForm.tsx
+++ b/web/app/activate/activateForm.tsx
@@ -1,27 +1,16 @@
 'use client'
-import { useCallback, useState } from 'react'
-import { useContext } from 'use-context-selector'
 import { useTranslation } from 'react-i18next'
 import useSWR from 'swr'
-import { useSearchParams } from 'next/navigation'
-import Link from 'next/link'
-import { CheckCircleIcon } from '@heroicons/react/24/solid'
-import style from './style.module.css'
+import { useRouter, useSearchParams } from 'next/navigation'
 import cn from '@/utils/classnames'
 import Button from '@/app/components/base/button'
 
-import { SimpleSelect } from '@/app/components/base/select'
-import { timezones } from '@/utils/timezone'
-import { LanguagesSupported, languages } from '@/i18n/language'
-import { activateMember, invitationCheck } from '@/service/common'
-import Toast from '@/app/components/base/toast'
+import { invitationCheck } from '@/service/common'
 import Loading from '@/app/components/base/loading'
-import I18n from '@/context/i18n'
-const validPassword = /^(?=.*[a-zA-Z])(?=.*\d).{8,}$/
 
 const ActivateForm = () => {
+  const router = useRouter()
   const { t } = useTranslation()
-  const { locale, setLocaleOnClient } = useContext(I18n)
   const searchParams = useSearchParams()
   const workspaceID = searchParams.get('workspace_id')
   const email = searchParams.get('email')
@@ -35,64 +24,20 @@ const ActivateForm = () => {
       token,
     },
   }
-  const { data: checkRes, mutate: recheck } = useSWR(checkParams, invitationCheck, {
+  const { data: checkRes } = useSWR(checkParams, invitationCheck, {
     revalidateOnFocus: false,
+    onSuccess(data) {
+      if (data.is_valid) {
+        const params = new URLSearchParams(searchParams)
+        const { email, workspace_id } = data.data
+        params.set('email', encodeURIComponent(email))
+        params.set('workspace_id', encodeURIComponent(workspace_id))
+        params.set('invite_token', encodeURIComponent(token as string))
+        router.replace(`/signin?${params.toString()}`)
+      }
+    },
   })
 
-  const [name, setName] = useState('')
-  const [password, setPassword] = useState('')
-  const [timezone, setTimezone] = useState(Intl.DateTimeFormat().resolvedOptions().timeZone)
-  const [language, setLanguage] = useState(locale)
-  const [showSuccess, setShowSuccess] = useState(false)
-
-  const showErrorMessage = useCallback((message: string) => {
-    Toast.notify({
-      type: 'error',
-      message,
-    })
-  }, [])
-
-  const valid = useCallback(() => {
-    if (!name.trim()) {
-      showErrorMessage(t('login.error.nameEmpty'))
-      return false
-    }
-    if (!password.trim()) {
-      showErrorMessage(t('login.error.passwordEmpty'))
-      return false
-    }
-    if (!validPassword.test(password)) {
-      showErrorMessage(t('login.error.passwordInvalid'))
-      return false
-    }
-
-    return true
-  }, [name, password, showErrorMessage, t])
-
-  const handleActivate = useCallback(async () => {
-    if (!valid())
-      return
-    try {
-      await activateMember({
-        url: '/activate',
-        body: {
-          workspace_id: workspaceID,
-          email,
-          token,
-          name,
-          password,
-          interface_language: language,
-          timezone,
-        },
-      })
-      setLocaleOnClient(language, false)
-      setShowSuccess(true)
-    }
-    catch {
-      recheck()
-    }
-  }, [email, language, name, password, recheck, setLocaleOnClient, timezone, token, valid, workspaceID])
-
   return (
     <div className={
       cn(
@@ -115,125 +60,6 @@ const ActivateForm = () => {
           </div>
         </div>
       )}
-      {checkRes && checkRes.is_valid && !showSuccess && (
-        <div className='flex flex-col md:w-[400px]'>
-          <div className="w-full mx-auto">
-            <div className={`mb-3 flex justify-center items-center w-20 h-20 p-5 rounded-[20px] border border-gray-100 shadow-lg text-[40px] font-bold ${style.logo}`}>
-            </div>
-            <h2 className="text-[32px] font-bold text-gray-900">
-              {`${t('login.join')} ${checkRes.workspace_name}`}
-            </h2>
-            <p className='mt-1 text-sm text-gray-600 '>
-              {`${t('login.joinTipStart')} ${checkRes.workspace_name} ${t('login.joinTipEnd')}`}
-            </p>
-          </div>
-
-          <div className="w-full mx-auto mt-6">
-            <div className="bg-white">
-              {/* username */}
-              <div className='mb-5'>
-                <label htmlFor="name" className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
-                  {t('login.name')}
-                </label>
-                <div className="mt-1 relative rounded-md shadow-sm">
-                  <input
-                    id="name"
-                    type="text"
-                    value={name}
-                    onChange={e => setName(e.target.value)}
-                    placeholder={t('login.namePlaceholder') || ''}
-                    className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm pr-10'}
-                    tabIndex={1}
-                  />
-                </div>
-              </div>
-              {/* password */}
-              <div className='mb-5'>
-                <label htmlFor="password" className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
-                  {t('login.password')}
-                </label>
-                <div className="mt-1 relative rounded-md shadow-sm">
-                  <input
-                    id="password"
-                    type='password'
-                    value={password}
-                    onChange={e => setPassword(e.target.value)}
-                    placeholder={t('login.passwordPlaceholder') || ''}
-                    className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm pr-10'}
-                    tabIndex={2}
-                  />
-                </div>
-                <div className='mt-1 text-xs text-gray-500'>{t('login.error.passwordInvalid')}</div>
-              </div>
-              {/* language */}
-              <div className='mb-5'>
-                <label htmlFor="name" className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
-                  {t('login.interfaceLanguage')}
-                </label>
-                <div className="relative mt-1 rounded-md shadow-sm">
-                  <SimpleSelect
-                    defaultValue={LanguagesSupported[0]}
-                    items={languages.filter(item => item.supported)}
-                    onSelect={(item) => {
-                      setLanguage(item.value as string)
-                    }}
-                  />
-                </div>
-              </div>
-              {/* timezone */}
-              <div className='mb-4'>
-                <label htmlFor="timezone" className="block text-sm font-medium text-gray-700">
-                  {t('login.timezone')}
-                </label>
-                <div className="relative mt-1 rounded-md shadow-sm">
-                  <SimpleSelect
-                    defaultValue={timezone}
-                    items={timezones}
-                    onSelect={(item) => {
-                      setTimezone(item.value as string)
-                    }}
-                  />
-                </div>
-              </div>
-              <div>
-                <Button
-                  variant='primary'
-                  className='w-full !text-sm'
-                  onClick={handleActivate}
-                >
-                  {`${t('login.join')} ${checkRes.workspace_name}`}
-                </Button>
-              </div>
-              <div className="block w-hull mt-2 text-xs text-gray-600">
-                {t('login.license.tip')}
-                &nbsp;
-                <Link
-                  className='text-primary-600'
-                  target='_blank' rel='noopener noreferrer'
-                  href={`https://docs.dify.ai/${language !== LanguagesSupported[1] ? 'user-agreement' : `v/${locale.toLowerCase()}/policies`}/open-source`}
-                >{t('login.license.link')}</Link>
-              </div>
-            </div>
-          </div>
-        </div>
-      )}
-      {checkRes && checkRes.is_valid && showSuccess && (
-        <div className="flex flex-col md:w-[400px]">
-          <div className="w-full mx-auto">
-            <div className="mb-3 flex justify-center items-center w-20 h-20 p-5 rounded-[20px] border border-gray-100 shadow-lg text-[40px] font-bold">
-              <CheckCircleIcon className='w-10 h-10 text-[#039855]' />
-            </div>
-            <h2 className="text-[32px] font-bold text-gray-900">
-              {`${t('login.activatedTipStart')} ${checkRes.workspace_name} ${t('login.activatedTipEnd')}`}
-            </h2>
-          </div>
-          <div className="w-full mx-auto mt-6">
-            <Button variant='primary' className='w-full !text-sm'>
-              <a href="/signin">{t('login.activated')}</a>
-            </Button>
-          </div>
-        </div>
-      )}
     </div>
   )
 }
diff --git a/web/app/components/base/icons/assets/public/common/lock.svg b/web/app/components/base/icons/assets/public/common/lock.svg
new file mode 100644
index 0000000000..a6987846f7
--- /dev/null
+++ b/web/app/components/base/icons/assets/public/common/lock.svg
@@ -0,0 +1,5 @@
+<svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg">
+<g id="lock">
+<path id="Vector" fill-rule="evenodd" clip-rule="evenodd" d="M8 1.75C6.27411 1.75 4.875 3.14911 4.875 4.875V6.125C3.83947 6.125 3 6.96444 3 8V12.375C3 13.4106 3.83947 14.25 4.875 14.25H11.125C12.1606 14.25 13 13.4106 13 12.375V8C13 6.96444 12.1606 6.125 11.125 6.125V4.875C11.125 3.14911 9.72587 1.75 8 1.75ZM9.875 6.125V4.875C9.875 3.83947 9.03556 3 8 3C6.96444 3 6.125 3.83947 6.125 4.875V6.125H9.875ZM8 8.625C8.34519 8.625 8.625 8.90481 8.625 9.25V11.125C8.625 11.4702 8.34519 11.75 8 11.75C7.65481 11.75 7.375 11.4702 7.375 11.125V9.25C7.375 8.90481 7.65481 8.625 8 8.625Z" fill="#155AEF"/>
+</g>
+</svg>
diff --git a/web/app/components/header/account-setting/account-page/index.tsx b/web/app/components/header/account-setting/account-page/index.tsx
index eecd275b35..7b400dd50d 100644
--- a/web/app/components/header/account-setting/account-page/index.tsx
+++ b/web/app/components/header/account-setting/account-page/index.tsx
@@ -2,7 +2,7 @@
 import { useState } from 'react'
 import { useTranslation } from 'react-i18next'
 
-import { useContext } from 'use-context-selector'
+import { useContext, useContextSelector } from 'use-context-selector'
 import Collapse from '../collapse'
 import type { IItem } from '../collapse'
 import s from './index.module.css'
@@ -11,7 +11,7 @@ import Modal from '@/app/components/base/modal'
 import Confirm from '@/app/components/base/confirm'
 import Button from '@/app/components/base/button'
 import { updateUserProfile } from '@/service/common'
-import { useAppContext } from '@/context/app-context'
+import AppContext, { useAppContext } from '@/context/app-context'
 import { ToastContext } from '@/app/components/base/toast'
 import AppIcon from '@/app/components/base/app-icon'
 import Avatar from '@/app/components/base/avatar'
@@ -42,6 +42,7 @@ export default function AccountPage() {
   const [password, setPassword] = useState('')
   const [confirmPassword, setConfirmPassword] = useState('')
   const [showDeleteAccountModal, setShowDeleteAccountModal] = useState(false)
+  const systemFeatures = useContextSelector(AppContext, state => state.systemFeatures)
 
   const handleEditName = () => {
     setEditNameModalVisible(true)
@@ -144,7 +145,7 @@ export default function AccountPage() {
         <div className={titleClassName}>{t('common.account.email')}</div>
         <div className={classNames(inputClassName, 'cursor-pointer')}>{userProfile.email}</div>
       </div>
-      {IS_CE_EDITION && (
+      {systemFeatures.enable_email_password_login && (
         <div className='mb-8'>
           <div className='mb-1 text-sm font-medium text-gray-900'>{t('common.account.password')}</div>
           <div className='mb-2 text-xs text-gray-500'>{t('common.account.passwordTip')}</div>
diff --git a/web/app/components/signin/countdown.tsx b/web/app/components/signin/countdown.tsx
new file mode 100644
index 0000000000..6282480d10
--- /dev/null
+++ b/web/app/components/signin/countdown.tsx
@@ -0,0 +1,41 @@
+'use client'
+import { useCountDown } from 'ahooks'
+import { useEffect, useState } from 'react'
+import { useTranslation } from 'react-i18next'
+
+export const COUNT_DOWN_TIME_MS = 59000
+export const COUNT_DOWN_KEY = 'leftTime'
+
+type CountdownProps = {
+  onResend?: () => void
+}
+
+export default function Countdown({ onResend }: CountdownProps) {
+  const { t } = useTranslation()
+  const [leftTime, setLeftTime] = useState(Number(localStorage.getItem(COUNT_DOWN_KEY) || COUNT_DOWN_TIME_MS))
+  const [time] = useCountDown({
+    leftTime,
+    onEnd: () => {
+      setLeftTime(0)
+      localStorage.removeItem(COUNT_DOWN_KEY)
+    },
+  })
+
+  const resend = async function () {
+    setLeftTime(COUNT_DOWN_TIME_MS)
+    localStorage.setItem(COUNT_DOWN_KEY, `${COUNT_DOWN_TIME_MS}`)
+    onResend?.()
+  }
+
+  useEffect(() => {
+    localStorage.setItem(COUNT_DOWN_KEY, `${time}`)
+  }, [time])
+
+  return <p className='system-xs-regular text-text-tertiary'>
+    <span>{t('login.checkCode.didNotReceiveCode')}</span>
+    {time > 0 && <span>{Math.round(time / 1000)}s</span>}
+    {
+      time <= 0 && <span className='system-xs-medium text-text-accent-secondary cursor-pointer' onClick={resend}>{t('login.checkCode.resend')}</span>
+    }
+  </p>
+}
diff --git a/web/app/components/swr-initor.tsx b/web/app/components/swr-initor.tsx
index ce126512fa..89141359d6 100644
--- a/web/app/components/swr-initor.tsx
+++ b/web/app/components/swr-initor.tsx
@@ -1,10 +1,11 @@
 'use client'
 
 import { SWRConfig } from 'swr'
-import { useEffect, useState } from 'react'
+import { useCallback, useEffect, useState } from 'react'
 import type { ReactNode } from 'react'
 import { useRouter, useSearchParams } from 'next/navigation'
 import useRefreshToken from '@/hooks/use-refresh-token'
+import { fetchSetupStatus } from '@/service/common'
 
 type SwrInitorProps = {
   children: ReactNode
@@ -21,27 +22,60 @@ const SwrInitor = ({
   const refreshTokenFromLocalStorage = localStorage?.getItem('refresh_token')
   const [init, setInit] = useState(false)
 
-  useEffect(() => {
-    if (!(consoleToken || refreshToken || consoleTokenFromLocalStorage || refreshTokenFromLocalStorage)) {
-      router.replace('/signin')
-      return
+  const isSetupFinished = useCallback(async () => {
+    try {
+      if (localStorage.getItem('setup_status') === 'finished')
+        return true
+      const setUpStatus = await fetchSetupStatus()
+      if (setUpStatus.step !== 'finished') {
+        localStorage.removeItem('setup_status')
+        return false
+      }
+      localStorage.setItem('setup_status', 'finished')
+      return true
     }
-    if (consoleTokenFromLocalStorage && refreshTokenFromLocalStorage)
-      getNewAccessToken()
-
-    if (consoleToken && refreshToken) {
-      localStorage.setItem('console_token', consoleToken)
-      localStorage.setItem('refresh_token', refreshToken)
-      getNewAccessToken().then(() => {
-        router.replace('/apps', { forceOptimisticNavigation: false } as any)
-      }).catch(() => {
-        router.replace('/signin')
-      })
+    catch (error) {
+      console.error(error)
+      return false
     }
-
-    setInit(true)
   }, [])
 
+  const setRefreshToken = useCallback(async () => {
+    try {
+      if (!(consoleToken || refreshToken || consoleTokenFromLocalStorage || refreshTokenFromLocalStorage))
+        return Promise.reject(new Error('No token found'))
+
+      if (consoleTokenFromLocalStorage && refreshTokenFromLocalStorage)
+        await getNewAccessToken()
+
+      if (consoleToken && refreshToken) {
+        localStorage.setItem('console_token', consoleToken)
+        localStorage.setItem('refresh_token', refreshToken)
+        await getNewAccessToken()
+      }
+    }
+    catch (error) {
+      return Promise.reject(error)
+    }
+  }, [consoleToken, refreshToken, consoleTokenFromLocalStorage, refreshTokenFromLocalStorage, getNewAccessToken])
+
+  useEffect(() => {
+    (async () => {
+      try {
+        const isFinished = await isSetupFinished()
+        if (!isFinished) {
+          router.replace('/install')
+          return
+        }
+        await setRefreshToken()
+        setInit(true)
+      }
+      catch (error) {
+        router.replace('/signin')
+      }
+    })()
+  }, [isSetupFinished, setRefreshToken, router])
+
   return init
     ? (
       <SWRConfig value={{
diff --git a/web/app/forgot-password/ChangePasswordForm.tsx b/web/app/forgot-password/ChangePasswordForm.tsx
index d878660416..2f64cd83ac 100644
--- a/web/app/forgot-password/ChangePasswordForm.tsx
+++ b/web/app/forgot-password/ChangePasswordForm.tsx
@@ -5,6 +5,7 @@ import useSWR from 'swr'
 import { useSearchParams } from 'next/navigation'
 import cn from 'classnames'
 import { CheckCircleIcon } from '@heroicons/react/24/solid'
+import Input from '../components/base/input'
 import Button from '@/app/components/base/button'
 import { changePasswordWithToken, verifyForgotPasswordToken } from '@/service/common'
 import Toast from '@/app/components/base/toast'
@@ -113,33 +114,29 @@ const ChangePasswordForm = () => {
                 <label htmlFor="password" className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
                   {t('common.account.newPassword')}
                 </label>
-                <div className="mt-1 relative rounded-md shadow-sm">
-                  <input
-                    id="password"
-                    type='password'
-                    value={password}
-                    onChange={e => setPassword(e.target.value)}
-                    placeholder={t('login.passwordPlaceholder') || ''}
-                    className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm pr-10'}
-                  />
-                </div>
-                <div className='mt-1 text-xs text-gray-500'>{t('login.error.passwordInvalid')}</div>
+                <Input
+                  id="password"
+                  type='password'
+                  value={password}
+                  onChange={e => setPassword(e.target.value)}
+                  placeholder={t('login.passwordPlaceholder') || ''}
+                  className='mt-1'
+                />
+                <div className='mt-1 text-xs text-text-secondary'>{t('login.error.passwordInvalid')}</div>
               </div>
               {/* Confirm Password */}
               <div className='mb-5'>
                 <label htmlFor="confirmPassword" className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
                   {t('common.account.confirmPassword')}
                 </label>
-                <div className="mt-1 relative rounded-md shadow-sm">
-                  <input
-                    id="confirmPassword"
-                    type='password'
-                    value={confirmPassword}
-                    onChange={e => setConfirmPassword(e.target.value)}
-                    placeholder={t('login.confirmPasswordPlaceholder') || ''}
-                    className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm pr-10'}
-                  />
-                </div>
+                <Input
+                  id="confirmPassword"
+                  type='password'
+                  value={confirmPassword}
+                  onChange={e => setConfirmPassword(e.target.value)}
+                  placeholder={t('login.confirmPasswordPlaceholder') || ''}
+                  className='mt-1'
+                />
               </div>
               <div>
                 <Button
@@ -165,7 +162,7 @@ const ChangePasswordForm = () => {
             </h2>
           </div>
           <div className="w-full mx-auto mt-6">
-            <Button variant='primary' className='w-full !text-sm'>
+            <Button variant='primary' className='w-full'>
               <a href="/signin">{t('login.passwordChanged')}</a>
             </Button>
           </div>
diff --git a/web/app/forgot-password/ForgotPasswordForm.tsx b/web/app/forgot-password/ForgotPasswordForm.tsx
index 6fd69a3638..df744924da 100644
--- a/web/app/forgot-password/ForgotPasswordForm.tsx
+++ b/web/app/forgot-password/ForgotPasswordForm.tsx
@@ -8,6 +8,7 @@ import { useForm } from 'react-hook-form'
 import { z } from 'zod'
 import { zodResolver } from '@hookform/resolvers/zod'
 import Loading from '../components/base/loading'
+import Input from '../components/base/input'
 import Button from '@/app/components/base/button'
 
 import {
@@ -78,7 +79,7 @@ const ForgotPasswordForm = () => {
 
   return (
     loading
-      ? <Loading/>
+      ? <Loading />
       : <>
         <div className="sm:mx-auto sm:w-full sm:max-w-md">
           <h2 className="text-[32px] font-bold text-gray-900">
@@ -98,10 +99,9 @@ const ForgotPasswordForm = () => {
                     {t('login.email')}
                   </label>
                   <div className="mt-1">
-                    <input
+                    <Input
                       {...register('email')}
                       placeholder={t('login.emailPlaceholder') || ''}
-                      className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm'}
                     />
                     {errors.email && <span className='text-red-400 text-sm'>{t(`${errors.email?.message}`)}</span>}
                   </div>
diff --git a/web/app/install/installForm.tsx b/web/app/install/installForm.tsx
index 0db88c8e25..abf377e389 100644
--- a/web/app/install/installForm.tsx
+++ b/web/app/install/installForm.tsx
@@ -65,6 +65,7 @@ const InstallForm = () => {
   useEffect(() => {
     fetchSetupStatus().then((res: SetupStatusResponse) => {
       if (res.step === 'finished') {
+        localStorage.setItem('setup_status', 'finished')
         window.location.href = '/signin'
       }
       else {
@@ -153,7 +154,7 @@ const InstallForm = () => {
                 </Button>
               </div>
             </form>
-            <div className="block w-hull mt-2 text-xs text-gray-600">
+            <div className="block w-full mt-2 text-xs text-gray-600">
               {t('login.license.tip')}
               &nbsp;
               <Link
diff --git a/web/app/reset-password/check-code/page.tsx b/web/app/reset-password/check-code/page.tsx
new file mode 100644
index 0000000000..ca53b68750
--- /dev/null
+++ b/web/app/reset-password/check-code/page.tsx
@@ -0,0 +1,92 @@
+'use client'
+import { RiArrowLeftLine, RiMailSendFill } from '@remixicon/react'
+import { useTranslation } from 'react-i18next'
+import { useState } from 'react'
+import { useRouter, useSearchParams } from 'next/navigation'
+import { useContext } from 'use-context-selector'
+import Countdown from '@/app/components/signin/countdown'
+import Button from '@/app/components/base/button'
+import Input from '@/app/components/base/input'
+import Toast from '@/app/components/base/toast'
+import { sendResetPasswordCode, verifyResetPasswordCode } from '@/service/common'
+import I18NContext from '@/context/i18n'
+
+export default function CheckCode() {
+  const { t } = useTranslation()
+  const router = useRouter()
+  const searchParams = useSearchParams()
+  const email = decodeURIComponent(searchParams.get('email') as string)
+  const token = decodeURIComponent(searchParams.get('token') as string)
+  const [code, setVerifyCode] = useState('')
+  const [loading, setIsLoading] = useState(false)
+  const { locale } = useContext(I18NContext)
+
+  const verify = async () => {
+    try {
+      if (!code.trim()) {
+        Toast.notify({
+          type: 'error',
+          message: t('login.checkCode.emptyCode'),
+        })
+        return
+      }
+      if (!/\d{6}/.test(code)) {
+        Toast.notify({
+          type: 'error',
+          message: t('login.checkCode.invalidCode'),
+        })
+        return
+      }
+      setIsLoading(true)
+      const ret = await verifyResetPasswordCode({ email, code, token })
+      ret.is_valid && router.push(`/reset-password/set-password?${searchParams.toString()}`)
+    }
+    catch (error) { console.error(error) }
+    finally {
+      setIsLoading(false)
+    }
+  }
+
+  const resendCode = async () => {
+    try {
+      const res = await sendResetPasswordCode(email, locale)
+      if (res.result === 'success') {
+        const params = new URLSearchParams(searchParams)
+        params.set('token', encodeURIComponent(res.data))
+        router.replace(`/reset-password/check-code?${params.toString()}`)
+      }
+    }
+    catch (error) { console.error(error) }
+  }
+
+  return <div className='flex flex-col gap-3'>
+    <div className='bg-background-default-dodge text-text-accent-light-mode-only border border-components-panel-border-subtle shadow-lg inline-flex w-14 h-14 justify-center items-center rounded-2xl'>
+      <RiMailSendFill className='w-6 h-6 text-2xl' />
+    </div>
+    <div className='pt-2 pb-4'>
+      <h2 className='title-4xl-semi-bold text-text-primary'>{t('login.checkCode.checkYourEmail')}</h2>
+      <p className='mt-2 body-md-regular text-text-secondary'>
+        <span dangerouslySetInnerHTML={{ __html: t('login.checkCode.tips', { email }) as string }}></span>
+        <br />
+        {t('login.checkCode.validTime')}
+      </p>
+    </div>
+
+    <form action="">
+      <input type='text' className='hidden' />
+      <label htmlFor="code" className='system-md-semibold text-text-secondary mb-1'>{t('login.checkCode.verificationCode')}</label>
+      <Input value={code} onChange={e => setVerifyCode(e.target.value)} max-length={6} className='mt-1' placeholder={t('login.checkCode.verificationCodePlaceholder') as string} />
+      <Button loading={loading} disabled={loading} className='my-3 w-full' variant='primary' onClick={verify}>{t('login.checkCode.verify')}</Button>
+      <Countdown onResend={resendCode} />
+    </form>
+    <div className='py-2'>
+      <div className='bg-gradient-to-r from-background-gradient-mask-transparent via-divider-regular to-background-gradient-mask-transparent h-px'></div>
+    </div>
+    <div onClick={() => router.back()} className='flex items-center justify-center h-9 text-text-tertiary cursor-pointer'>
+      <div className='inline-block p-1 rounded-full bg-background-default-dimm'>
+        <RiArrowLeftLine size={12} />
+      </div>
+      <span className='ml-2 system-xs-regular'>{t('login.back')}</span>
+    </div>
+  </div>
+}
diff --git a/web/app/reset-password/layout.tsx b/web/app/reset-password/layout.tsx
new file mode 100644
index 0000000000..16d8642ed2
--- /dev/null
+++ b/web/app/reset-password/layout.tsx
@@ -0,0 +1,39 @@
+import Header from '../signin/_header'
+import style from '../signin/page.module.css'
+
+import cn from '@/utils/classnames'
+
+export default async function SignInLayout({ children }: any) {
+  return <>
+    <div className={cn(
+      style.background,
+      'flex w-full min-h-screen',
+      'sm:p-4 lg:p-8',
+      'gap-x-20',
+      'justify-center lg:justify-start',
+    )}>
+      <div className={
+        cn(
+          'flex w-full flex-col bg-white shadow rounded-2xl shrink-0',
+          'space-between',
+        )
+      }>
+        <Header />
+        <div className={
+          cn(
+            'flex flex-col items-center w-full grow justify-center',
+            'px-6',
+            'md:px-[108px]',
+          )
+        }>
+          <div className='flex flex-col md:w-[400px]'>
+            {children}
+          </div>
+        </div>
+        <div className='px-8 py-6 system-xs-regular text-text-tertiary'>
+          © {new Date().getFullYear()} LangGenius, Inc. All rights reserved.
+        </div>
+      </div>
+    </div>
+  </>
+}
diff --git a/web/app/reset-password/page.tsx b/web/app/reset-password/page.tsx
new file mode 100644
index 0000000000..65f1db3fb5
--- /dev/null
+++ b/web/app/reset-password/page.tsx
@@ -0,0 +1,101 @@
+'use client'
+import Link from 'next/link'
+import { RiArrowLeftLine, RiLockPasswordLine } from '@remixicon/react'
+import { useTranslation } from 'react-i18next'
+import { useState } from 'react'
+import { useRouter, useSearchParams } from 'next/navigation'
+import { useContext } from 'use-context-selector'
+import { COUNT_DOWN_KEY, COUNT_DOWN_TIME_MS } from '../components/signin/countdown'
+import { emailRegex } from '@/config'
+import Button from '@/app/components/base/button'
+import Input from '@/app/components/base/input'
+import Toast from '@/app/components/base/toast'
+import { sendResetPasswordCode } from '@/service/common'
+import I18NContext from '@/context/i18n'
+
+export default function CheckCode() {
+  const { t } = useTranslation()
+  const searchParams = useSearchParams()
+  const router = useRouter()
+  const [email, setEmail] = useState('')
+  const [loading, setIsLoading] = useState(false)
+  const { locale } = useContext(I18NContext)
+
+  const handleGetEMailVerificationCode = async () => {
+    try {
+      if (!email) {
+        Toast.notify({ type: 'error', message: t('login.error.emailEmpty') })
+        return
+      }
+
+      if (!emailRegex.test(email)) {
+        Toast.notify({
+          type: 'error',
+          message: t('login.error.emailInValid'),
+        })
+        return
+      }
+      setIsLoading(true)
+      const res = await sendResetPasswordCode(email, locale)
+      if (res.result === 'success') {
+        localStorage.setItem(COUNT_DOWN_KEY, `${COUNT_DOWN_TIME_MS}`)
+        const params = new URLSearchParams(searchParams)
+        params.set('token', encodeURIComponent(res.data))
+        params.set('email', encodeURIComponent(email))
+        router.push(`/reset-password/check-code?${params.toString()}`)
+      }
+      else if (res.code === 'account_not_found') {
+        Toast.notify({
+          type: 'error',
+          message: t('login.error.registrationNotAllowed'),
+        })
+      }
+      else {
+        Toast.notify({
+          type: 'error',
+          message: res.data,
+        })
+      }
+    }
+    catch (error) {
+      console.error(error)
+    }
+    finally {
+      setIsLoading(false)
+    }
+  }
+
+  return <div className='flex flex-col gap-3'>
+    <div className='bg-background-default-dodge border border-components-panel-border-subtle shadow-lg inline-flex w-14 h-14 justify-center items-center rounded-2xl'>
+      <RiLockPasswordLine className='w-6 h-6 text-2xl text-text-accent-light-mode-only' />
+    </div>
+    <div className='pt-2 pb-4'>
+      <h2 className='title-4xl-semi-bold text-text-primary'>{t('login.resetPassword')}</h2>
+      <p className='body-md-regular mt-2 text-text-secondary'>
+        {t('login.resetPasswordDesc')}
+      </p>
+    </div>
+
+    <form onSubmit={() => { }}>
+      <input type='text' className='hidden' />
+      <div className='mb-2'>
+        <label htmlFor="email" className='my-2 system-md-semibold text-text-secondary'>{t('login.email')}</label>
+        <div className='mt-1'>
+          <Input id='email' type="email" disabled={loading} value={email} placeholder={t('login.emailPlaceholder') as string} onChange={e => setEmail(e.target.value)} />
+        </div>
+        <div className='mt-3'>
+          <Button loading={loading} disabled={loading} variant='primary' className='w-full' onClick={handleGetEMailVerificationCode}>{t('login.sendVerificationCode')}</Button>
+        </div>
+      </div>
+    </form>
+    <div className='py-2'>
+      <div className='bg-gradient-to-r from-background-gradient-mask-transparent via-divider-regular to-background-gradient-mask-transparent h-px'></div>
+    </div>
+    <Link href={`/signin?${searchParams.toString()}`} className='flex items-center justify-center h-9 text-text-tertiary'>
+      <div className='inline-block p-1 rounded-full bg-background-default-dimm'>
+        <RiArrowLeftLine size={12} />
+      </div>
+      <span className='ml-2 system-xs-regular'>{t('login.backToLogin')}</span>
+    </Link>
+  </div>
+}
diff --git a/web/app/reset-password/set-password/page.tsx b/web/app/reset-password/set-password/page.tsx
new file mode 100644
index 0000000000..7948c59a9a
--- /dev/null
+++ b/web/app/reset-password/set-password/page.tsx
@@ -0,0 +1,193 @@
+'use client'
+import { useCallback, useState } from 'react'
+import { useTranslation } from 'react-i18next'
+import { useRouter, useSearchParams } from 'next/navigation'
+import cn from 'classnames'
+import { RiCheckboxCircleFill } from '@remixicon/react'
+import { useCountDown } from 'ahooks'
+import Button from '@/app/components/base/button'
+import { changePasswordWithToken } from '@/service/common'
+import Toast from '@/app/components/base/toast'
+import Input from '@/app/components/base/input'
+
+const validPassword = /^(?=.*[a-zA-Z])(?=.*\d).{8,}$/
+
+const ChangePasswordForm = () => {
+  const { t } = useTranslation()
+  const router = useRouter()
+  const searchParams = useSearchParams()
+  const token = decodeURIComponent(searchParams.get('token') || '')
+
+  const [password, setPassword] = useState('')
+  const [confirmPassword, setConfirmPassword] = useState('')
+  const [showSuccess, setShowSuccess] = useState(false)
+  const [showPassword, setShowPassword] = useState(false)
+  const [showConfirmPassword, setShowConfirmPassword] = useState(false)
+
+  const showErrorMessage = useCallback((message: string) => {
+    Toast.notify({
+      type: 'error',
+      message,
+    })
+  }, [])
+
+  const getSignInUrl = () => {
+    if (searchParams.has('invite_token')) {
+      const params = new URLSearchParams()
+      params.set('token', searchParams.get('invite_token') as string)
+      return `/activate?${params.toString()}`
+    }
+    return '/signin'
+  }
+
+  const AUTO_REDIRECT_TIME = 5000
+  const [leftTime, setLeftTime] = useState<number | undefined>(undefined)
+  const [countdown] = useCountDown({
+    leftTime,
+    onEnd: () => {
+      router.replace(getSignInUrl())
+    },
+  })
+
+  const valid = useCallback(() => {
+    if (!password.trim()) {
+      showErrorMessage(t('login.error.passwordEmpty'))
+      return false
+    }
+    if (!validPassword.test(password)) {
+      showErrorMessage(t('login.error.passwordInvalid'))
+      return false
+    }
+    if (password !== confirmPassword) {
+      showErrorMessage(t('common.account.notEqual'))
+      return false
+    }
+    return true
+  }, [password, confirmPassword, showErrorMessage, t])
+
+  const handleChangePassword = useCallback(async () => {
+    if (!valid())
+      return
+    try {
+      await changePasswordWithToken({
+        url: '/forgot-password/resets',
+        body: {
+          token,
+          new_password: password,
+          password_confirm: confirmPassword,
+        },
+      })
+      setShowSuccess(true)
+      setLeftTime(AUTO_REDIRECT_TIME)
+    }
+    catch (error) {
+      console.error(error)
+    }
+  }, [password, token, valid, confirmPassword])
+
+  return (
+    <div className={
+      cn(
+        'flex flex-col items-center w-full grow justify-center',
+        'px-6',
+        'md:px-[108px]',
+      )
+    }>
+      {!showSuccess && (
+        <div className='flex flex-col md:w-[400px]'>
+          <div className="w-full mx-auto">
+            <h2 className="title-4xl-semi-bold text-text-primary">
+              {t('login.changePassword')}
+            </h2>
+            <p className='mt-2 body-md-regular text-text-secondary'>
+              {t('login.changePasswordTip')}
+            </p>
+          </div>
+
+          <div className="w-full mx-auto mt-6">
+            <div className="bg-white">
+              {/* Password */}
+              <div className='mb-5'>
+                <label htmlFor="password" className="my-2 system-md-semibold text-text-secondary">
+                  {t('common.account.newPassword')}
+                </label>
+                <div className='relative mt-1'>
+                  <Input
+                    id="password" type={showPassword ? 'text' : 'password'}
+                    value={password}
+                    onChange={e => setPassword(e.target.value)}
+                    placeholder={t('login.passwordPlaceholder') || ''}
+                  />
+
+                  <div className="absolute inset-y-0 right-0 flex items-center">
+                    <Button
+                      type="button"
+                      variant='ghost'
+                      onClick={() => setShowPassword(!showPassword)}
+                    >
+                      {showPassword ? '👀' : '😝'}
+                    </Button>
+                  </div>
+                </div>
+                <div className='mt-1 body-xs-regular text-text-secondary'>{t('login.error.passwordInvalid')}</div>
+              </div>
+              {/* Confirm Password */}
+              <div className='mb-5'>
+                <label htmlFor="confirmPassword" className="my-2 system-md-semibold text-text-secondary">
+                  {t('common.account.confirmPassword')}
+                </label>
+                <div className='relative mt-1'>
+                  <Input
+                    id="confirmPassword"
+                    type={showConfirmPassword ? 'text' : 'password'}
+                    value={confirmPassword}
+                    onChange={e => setConfirmPassword(e.target.value)}
+                    placeholder={t('login.confirmPasswordPlaceholder') || ''}
+                  />
+                  <div className="absolute inset-y-0 right-0 flex items-center">
+                    <Button
+                      type="button"
+                      variant='ghost'
+                      onClick={() => setShowConfirmPassword(!showConfirmPassword)}
+                    >
+                      {showConfirmPassword ? '👀' : '😝'}
+                    </Button>
+                  </div>
+                </div>
+              </div>
+              <div>
+                <Button
+                  variant='primary'
+                  className='w-full'
+                  onClick={handleChangePassword}
+                >
+                  {t('login.changePasswordBtn')}
+                </Button>
+              </div>
+            </div>
+          </div>
+        </div>
+      )}
+      {showSuccess && (
+        <div className="flex flex-col md:w-[400px]">
+          <div className="w-full mx-auto">
+            <div className="mb-3 flex justify-center items-center w-14 h-14 rounded-2xl border border-components-panel-border-subtle shadow-lg font-bold">
+              <RiCheckboxCircleFill className='w-6 h-6 text-text-success' />
+            </div>
+            <h2 className="title-4xl-semi-bold text-text-primary">
+              {t('login.passwordChangedTip')}
+            </h2>
+          </div>
+          <div className="w-full mx-auto mt-6">
+            <Button variant='primary' className='w-full' onClick={() => {
+              setLeftTime(undefined)
+              router.replace(getSignInUrl())
+            }}>{t('login.passwordChanged')} ({Math.round(countdown / 1000)}) </Button>
+          </div>
+        </div>
+      )}
+    </div>
+  )
+}
+
+export default ChangePasswordForm
diff --git a/web/app/signin/check-code/page.tsx b/web/app/signin/check-code/page.tsx
new file mode 100644
index 0000000000..4767308f72
--- /dev/null
+++ b/web/app/signin/check-code/page.tsx
@@ -0,0 +1,96 @@
+'use client'
+import { RiArrowLeftLine, RiMailSendFill } from '@remixicon/react'
+import { useTranslation } from 'react-i18next'
+import { useState } from 'react'
+import { useRouter, useSearchParams } from 'next/navigation'
+import { useContext } from 'use-context-selector'
+import Countdown from '@/app/components/signin/countdown'
+import Button from '@/app/components/base/button'
+import Input from '@/app/components/base/input'
+import Toast from '@/app/components/base/toast'
+import { emailLoginWithCode, sendEMailLoginCode } from '@/service/common'
+import I18NContext from '@/context/i18n'
+
+export default function CheckCode() {
+  const { t } = useTranslation()
+  const router = useRouter()
+  const searchParams = useSearchParams()
+  const email = decodeURIComponent(searchParams.get('email') as string)
+  const token = decodeURIComponent(searchParams.get('token') as string)
+  const invite_token = decodeURIComponent(searchParams.get('invite_token') || '')
+  const [code, setVerifyCode] = useState('')
+  const [loading, setIsLoading] = useState(false)
+  const { locale } = useContext(I18NContext)
+
+  const verify = async () => {
+    try {
+      if (!code.trim()) {
+        Toast.notify({
+          type: 'error',
+          message: t('login.checkCode.emptyCode'),
+        })
+        return
+      }
+      if (!/\d{6}/.test(code)) {
+        Toast.notify({
+          type: 'error',
+          message: t('login.checkCode.invalidCode'),
+        })
+        return
+      }
+      setIsLoading(true)
+      const ret = await emailLoginWithCode({ email, code, token })
+      if (ret.result === 'success') {
+        localStorage.setItem('console_token', ret.data.access_token)
+        localStorage.setItem('refresh_token', ret.data.refresh_token)
+        router.replace(invite_token ? `/signin/invite-settings?${searchParams.toString()}` : '/apps')
+      }
+    }
+    catch (error) { console.error(error) }
+    finally {
+      setIsLoading(false)
+    }
+  }
+
+  const resendCode = async () => {
+    try {
+      const ret = await sendEMailLoginCode(email, locale)
+      if (ret.result === 'success') {
+        const params = new URLSearchParams(searchParams)
+        params.set('token', encodeURIComponent(ret.data))
+        router.replace(`/signin/check-code?${params.toString()}`)
+      }
+    }
+    catch (error) { console.error(error) }
+  }
+
+  return <div className='flex flex-col gap-3'>
+    <div className='bg-background-default-dodge border border-components-panel-border-subtle shadow-lg inline-flex w-14 h-14 justify-center items-center rounded-2xl'>
+      <RiMailSendFill className='w-6 h-6 text-2xl text-text-accent-light-mode-only' />
+    </div>
+    <div className='pt-2 pb-4'>
+      <h2 className='title-4xl-semi-bold text-text-primary'>{t('login.checkCode.checkYourEmail')}</h2>
+      <p className='body-md-regular mt-2 text-text-secondary'>
+        <span dangerouslySetInnerHTML={{ __html: t('login.checkCode.tips', { email }) as string }}></span>
+        <br />
+        {t('login.checkCode.validTime')}
+      </p>
+    </div>
+
+    <form action="">
+      <label htmlFor="code" className='system-md-semibold mb-1 text-text-secondary'>{t('login.checkCode.verificationCode')}</label>
+      <Input value={code} onChange={e => setVerifyCode(e.target.value)} max-length={6} className='mt-1' placeholder={t('login.checkCode.verificationCodePlaceholder') as string} />
+      <Button loading={loading} disabled={loading} className='my-3 w-full' variant='primary' onClick={verify}>{t('login.checkCode.verify')}</Button>
+      <Countdown onResend={resendCode} />
+    </form>
+    <div className='py-2'>
+      <div className='bg-gradient-to-r from-background-gradient-mask-transparent via-divider-regular to-background-gradient-mask-transparent h-px'></div>
+    </div>
+    <div onClick={() => router.back()} className='flex items-center justify-center h-9 text-text-tertiary cursor-pointer'>
+      <div className='inline-block p-1 rounded-full bg-background-default-dimm'>
+        <RiArrowLeftLine size={12} />
+      </div>
+      <span className='ml-2 system-xs-regular'>{t('login.back')}</span>
+    </div>
+  </div>
+}
diff --git a/web/app/signin/components/mail-and-code-auth.tsx b/web/app/signin/components/mail-and-code-auth.tsx
new file mode 100644
index 0000000000..7225b094d4
--- /dev/null
+++ b/web/app/signin/components/mail-and-code-auth.tsx
@@ -0,0 +1,71 @@
+import { useState } from 'react'
+import { useTranslation } from 'react-i18next'
+import { useRouter, useSearchParams } from 'next/navigation'
+import { useContext } from 'use-context-selector'
+import Input from '@/app/components/base/input'
+import Button from '@/app/components/base/button'
+import { emailRegex } from '@/config'
+import Toast from '@/app/components/base/toast'
+import { sendEMailLoginCode } from '@/service/common'
+import { COUNT_DOWN_KEY, COUNT_DOWN_TIME_MS } from '@/app/components/signin/countdown'
+import I18NContext from '@/context/i18n'
+
+type MailAndCodeAuthProps = {
+  isInvite: boolean
+}
+
+export default function MailAndCodeAuth({ isInvite }: MailAndCodeAuthProps) {
+  const { t } = useTranslation()
+  const router = useRouter()
+  const searchParams = useSearchParams()
+  const emailFromLink = decodeURIComponent(searchParams.get('email') || '')
+  const [email, setEmail] = useState(emailFromLink)
+  const [loading, setIsLoading] = useState(false)
+  const { locale } = useContext(I18NContext)
+
+  const handleGetEMailVerificationCode = async () => {
+    try {
+      if (!email) {
+        Toast.notify({ type: 'error', message: t('login.error.emailEmpty') })
+        return
+      }
+
+      if (!emailRegex.test(email)) {
+        Toast.notify({
+          type: 'error',
+          message: t('login.error.emailInValid'),
+        })
+        return
+      }
+      setIsLoading(true)
+      const ret = await sendEMailLoginCode(email, locale)
+      if (ret.result === 'success') {
+        localStorage.setItem(COUNT_DOWN_KEY, `${COUNT_DOWN_TIME_MS}`)
+        const params = new URLSearchParams(searchParams)
+        params.set('email', encodeURIComponent(email))
+        params.set('token', encodeURIComponent(ret.data))
+        router.push(`/signin/check-code?${params.toString()}`)
+      }
+    }
+    catch (error) {
+      console.error(error)
+    }
+    finally {
+      setIsLoading(false)
+    }
+  }
+
+  return (<form onSubmit={() => { }}>
+    <input type='text' className='hidden' />
+    <div className='mb-2'>
+      <label htmlFor="email" className='my-2 system-md-semibold text-text-secondary'>{t('login.email')}</label>
+      <div className='mt-1'>
+        <Input id='email' type="email" disabled={isInvite} value={email} placeholder={t('login.emailPlaceholder') as string} onChange={e => setEmail(e.target.value)} />
+      </div>
+      <div className='mt-3'>
+        <Button loading={loading} disabled={loading || !email} variant='primary' className='w-full' onClick={handleGetEMailVerificationCode}>{t('login.continueWithCode')}</Button>
+      </div>
+    </div>
+  </form>
+  )
+}
diff --git a/web/app/signin/components/mail-and-password-auth.tsx b/web/app/signin/components/mail-and-password-auth.tsx
new file mode 100644
index 0000000000..210c877bb7
--- /dev/null
+++ b/web/app/signin/components/mail-and-password-auth.tsx
@@ -0,0 +1,167 @@
+import Link from 'next/link'
+import { useState } from 'react'
+import { useTranslation } from 'react-i18next'
+import { useRouter, useSearchParams } from 'next/navigation'
+import { useContext } from 'use-context-selector'
+import Button from '@/app/components/base/button'
+import Toast from '@/app/components/base/toast'
+import { emailRegex } from '@/config'
+import { login } from '@/service/common'
+import Input from '@/app/components/base/input'
+import I18NContext from '@/context/i18n'
+
+type MailAndPasswordAuthProps = {
+  isInvite: boolean
+  allowRegistration: boolean
+}
+
+const passwordRegex = /^(?=.*[a-zA-Z])(?=.*\d).{8,}$/
+
+export default function MailAndPasswordAuth({ isInvite, allowRegistration }: MailAndPasswordAuthProps) {
+  const { t } = useTranslation()
+  const { locale } = useContext(I18NContext)
+  const router = useRouter()
+  const searchParams = useSearchParams()
+  const [showPassword, setShowPassword] = useState(false)
+  const emailFromLink = decodeURIComponent(searchParams.get('email') || '')
+  const [email, setEmail] = useState(emailFromLink)
+  const [password, setPassword] = useState('')
+
+  const [isLoading, setIsLoading] = useState(false)
+  const handleEmailPasswordLogin = async () => {
+    if (!email) {
+      Toast.notify({ type: 'error', message: t('login.error.emailEmpty') })
+      return
+    }
+    if (!emailRegex.test(email)) {
+      Toast.notify({
+        type: 'error',
+        message: t('login.error.emailInValid'),
+      })
+      return
+    }
+    if (!password?.trim()) {
+      Toast.notify({ type: 'error', message: t('login.error.passwordEmpty') })
+      return
+    }
+    if (!passwordRegex.test(password)) {
+      Toast.notify({
+        type: 'error',
+        message: t('login.error.passwordInvalid'),
+      })
+      return
+    }
+    try {
+      setIsLoading(true)
+      const loginData: Record<string, any> = {
+        email,
+        password,
+        language: locale,
+        remember_me: true,
+      }
+      if (isInvite)
+        loginData.invite_token = decodeURIComponent(searchParams.get('invite_token') as string)
+      const res = await login({
+        url: '/login',
+        body: loginData,
+      })
+      if (res.result === 'success') {
+        if (isInvite) {
+          router.replace(`/signin/invite-settings?${searchParams.toString()}`)
+        }
+        else {
+          localStorage.setItem('console_token', res.data.access_token)
+          localStorage.setItem('refresh_token', res.data.refresh_token)
+          router.replace('/apps')
+        }
+      }
+      else if (res.code === 'account_not_found') {
+        if (allowRegistration) {
+          const params = new URLSearchParams()
+          params.append('email', encodeURIComponent(email))
+          params.append('token', encodeURIComponent(res.data))
+          router.replace(`/reset-password/check-code?${params.toString()}`)
+        }
+        else {
+          Toast.notify({
+            type: 'error',
+            message: t('login.error.registrationNotAllowed'),
+          })
+        }
+      }
+      else {
+        Toast.notify({
+          type: 'error',
+          message: res.data,
+        })
+      }
+    }
+
+    finally {
+      setIsLoading(false)
+    }
+  }
+
+  return <form onSubmit={() => { }}>
+    <div className='mb-3'>
+      <label htmlFor="email" className="my-2 system-md-semibold text-text-secondary">
+        {t('login.email')}
+      </label>
+      <div className="mt-1">
+        <Input
+          value={email}
+          onChange={e => setEmail(e.target.value)}
+          disabled={isInvite}
+          id="email"
+          type="email"
+          autoComplete="email"
+          placeholder={t('login.emailPlaceholder') || ''}
+          tabIndex={1}
+        />
+      </div>
+    </div>
+
+    <div className='mb-3'>
+      <label htmlFor="password" className="my-2 flex items-center justify-between">
+        <span className='system-md-semibold text-text-secondary'>{t('login.password')}</span>
+        <Link href={`/reset-password?${searchParams.toString()}`} className='system-xs-regular text-components-button-secondary-accent-text'>
+          {t('login.forget')}
+        </Link>
+      </label>
+      <div className="relative mt-1">
+        <Input
+          id="password"
+          value={password}
+          onChange={e => setPassword(e.target.value)}
+          onKeyDown={(e) => {
+            if (e.key === 'Enter')
+              handleEmailPasswordLogin()
+          }}
+          type={showPassword ? 'text' : 'password'}
+          autoComplete="current-password"
+          placeholder={t('login.passwordPlaceholder') || ''}
+          tabIndex={2}
+        />
+        <div className="absolute inset-y-0 right-0 flex items-center">
+          <Button
+            type="button"
+            variant='ghost'
+            onClick={() => setShowPassword(!showPassword)}
+          >
+            {showPassword ? '👀' : '😝'}
+          </Button>
+        </div>
+      </div>
+    </div>
+
+    <div className='mb-2'>
+      <Button
+        tabIndex={2}
+        variant='primary'
+        onClick={handleEmailPasswordLogin}
+        disabled={isLoading || !email || !password}
+        className="w-full"
+      >{t('login.signBtn')}</Button>
+    </div>
+  </form>
+}
diff --git a/web/app/signin/components/social-auth.tsx b/web/app/signin/components/social-auth.tsx
new file mode 100644
index 0000000000..39d7ceaa40
--- /dev/null
+++ b/web/app/signin/components/social-auth.tsx
@@ -0,0 +1,62 @@
+import { useTranslation } from 'react-i18next'
+import { useSearchParams } from 'next/navigation'
+import style from '../page.module.css'
+import Button from '@/app/components/base/button'
+import { apiPrefix } from '@/config'
+import classNames from '@/utils/classnames'
+import { getPurifyHref } from '@/utils'
+
+type SocialAuthProps = {
+  disabled?: boolean
+}
+
+export default function SocialAuth(props: SocialAuthProps) {
+  const { t } = useTranslation()
+  const searchParams = useSearchParams()
+
+  const getOAuthLink = (href: string) => {
+    const url = getPurifyHref(`${apiPrefix}${href}`)
+    if (searchParams.has('invite_token'))
+      return `${url}?${searchParams.toString()}`
+
+    return url
+  }
+  return <>
+    <div className='w-full'>
+      <a href={getOAuthLink('/oauth/login/github')}>
+        <Button
+          disabled={props.disabled}
+          className='w-full'
+        >
+          <>
+            <span className={
+              classNames(
+                style.githubIcon,
+                'w-5 h-5 mr-2',
+              )
+            } />
+            <span className="truncate">{t('login.withGitHub')}</span>
+          </>
+        </Button>
+      </a>
+    </div>
+    <div className='w-full'>
+      <a href={getOAuthLink('/oauth/login/google')}>
+        <Button
+          disabled={props.disabled}
+          className='w-full'
+        >
+          <>
+            <span className={
+              classNames(
+                style.googleIcon,
+                'w-5 h-5 mr-2',
+              )
+            } />
+            <span className="truncate">{t('login.withGoogle')}</span>
+          </>
+        </Button>
+      </a>
+    </div>
+  </>
+}
diff --git a/web/app/signin/components/sso-auth.tsx b/web/app/signin/components/sso-auth.tsx
new file mode 100644
index 0000000000..fb303b93e2
--- /dev/null
+++ b/web/app/signin/components/sso-auth.tsx
@@ -0,0 +1,73 @@
+'use client'
+import { useRouter, useSearchParams } from 'next/navigation'
+import type { FC } from 'react'
+import { useState } from 'react'
+import { useTranslation } from 'react-i18next'
+import { Lock01 } from '@/app/components/base/icons/src/vender/solid/security'
+import Toast from '@/app/components/base/toast'
+import { getUserOAuth2SSOUrl, getUserOIDCSSOUrl, getUserSAMLSSOUrl } from '@/service/sso'
+import Button from '@/app/components/base/button'
+import { SSOProtocol } from '@/types/feature'
+
+type SSOAuthProps = {
+  protocol: SSOProtocol | ''
+}
+
+const SSOAuth: FC<SSOAuthProps> = ({
+  protocol,
+}) => {
+  const router = useRouter()
+  const { t } = useTranslation()
+  const searchParams = useSearchParams()
+  const invite_token = decodeURIComponent(searchParams.get('invite_token') || '')
+
+  const [isLoading, setIsLoading] = useState(false)
+
+  const handleSSOLogin = () => {
+    setIsLoading(true)
+    if (protocol === SSOProtocol.SAML) {
+      getUserSAMLSSOUrl(invite_token).then((res) => {
+        router.push(res.url)
+      }).finally(() => {
+        setIsLoading(false)
+      })
+    }
+    else if (protocol === SSOProtocol.OIDC) {
+      getUserOIDCSSOUrl(invite_token).then((res) => {
+        document.cookie = `user-oidc-state=${res.state}`
+        router.push(res.url)
+      }).finally(() => {
+        setIsLoading(false)
+      })
+    }
+    else if (protocol === SSOProtocol.OAuth2) {
+      getUserOAuth2SSOUrl(invite_token).then((res) => {
+        document.cookie = `user-oauth2-state=${res.state}`
+        router.push(res.url)
+      }).finally(() => {
+        setIsLoading(false)
+      })
+    }
+    else {
+      Toast.notify({
+        type: 'error',
+        message: 'invalid SSO protocol',
+      })
+      setIsLoading(false)
+    }
+  }
+
+  return (
+    <Button
+      tabIndex={0}
+      onClick={() => { handleSSOLogin() }}
+      disabled={isLoading}
+      className="w-full"
+    >
+      <Lock01 className='mr-2 w-5 h-5 text-text-accent-light-mode-only' />
+      <span className="truncate">{t('login.withSSO')}</span>
+    </Button>
+  )
+}
+
+export default SSOAuth
diff --git a/web/app/signin/forms.tsx b/web/app/signin/forms.tsx
deleted file mode 100644
index 70a34c26fa..0000000000
--- a/web/app/signin/forms.tsx
+++ /dev/null
@@ -1,34 +0,0 @@
-'use client'
-import React from 'react'
-import { useSearchParams } from 'next/navigation'
-
-import NormalForm from './normalForm'
-import OneMoreStep from './oneMoreStep'
-import cn from '@/utils/classnames'
-
-const Forms = () => {
-  const searchParams = useSearchParams()
-  const step = searchParams.get('step')
-
-  const getForm = () => {
-    switch (step) {
-      case 'next':
-        return <OneMoreStep />
-      default:
-        return <NormalForm />
-    }
-  }
-  return <div className={
-    cn(
-      'flex flex-col items-center w-full grow justify-center',
-      'px-6',
-      'md:px-[108px]',
-    )
-  }>
-    <div className='flex flex-col md:w-[400px]'>
-      {getForm()}
-    </div>
-  </div>
-}
-
-export default Forms
diff --git a/web/app/signin/invite-settings/page.tsx b/web/app/signin/invite-settings/page.tsx
new file mode 100644
index 0000000000..2138399ec3
--- /dev/null
+++ b/web/app/signin/invite-settings/page.tsx
@@ -0,0 +1,154 @@
+'use client'
+import { useTranslation } from 'react-i18next'
+import { useCallback, useState } from 'react'
+import Link from 'next/link'
+import { useContext } from 'use-context-selector'
+import { useRouter, useSearchParams } from 'next/navigation'
+import useSWR from 'swr'
+import { RiAccountCircleLine } from '@remixicon/react'
+import Input from '@/app/components/base/input'
+import { SimpleSelect } from '@/app/components/base/select'
+import Button from '@/app/components/base/button'
+import { timezones } from '@/utils/timezone'
+import { LanguagesSupported, languages } from '@/i18n/language'
+import I18n from '@/context/i18n'
+import { activateMember, invitationCheck } from '@/service/common'
+import Loading from '@/app/components/base/loading'
+import Toast from '@/app/components/base/toast'
+
+export default function InviteSettingsPage() {
+  const { t } = useTranslation()
+  const router = useRouter()
+  const searchParams = useSearchParams()
+  const token = decodeURIComponent(searchParams.get('invite_token') as string)
+  const { locale, setLocaleOnClient } = useContext(I18n)
+  const [name, setName] = useState('')
+  const [language, setLanguage] = useState(LanguagesSupported[0])
+  const [timezone, setTimezone] = useState(Intl.DateTimeFormat().resolvedOptions().timeZone || 'America/Los_Angeles')
+
+  const checkParams = {
+    url: '/activate/check',
+    params: {
+      token,
+    },
+  }
+  const { data: checkRes, mutate: recheck } = useSWR(checkParams, invitationCheck, {
+    revalidateOnFocus: false,
+  })
+
+  const handleActivate = useCallback(async () => {
+    try {
+      if (!name) {
+        Toast.notify({ type: 'error', message: t('login.enterYourName') })
+        return
+      }
+      const res = await activateMember({
+        url: '/activate',
+        body: {
+          token,
+          name,
+          interface_language: language,
+          timezone,
+        },
+      })
+      if (res.result === 'success') {
+        localStorage.setItem('console_token', res.data.access_token)
+        localStorage.setItem('refresh_token', res.data.refresh_token)
+        setLocaleOnClient(language, false)
+        router.replace('/apps')
+      }
+    }
+    catch {
+      recheck()
+    }
+  }, [language, name, recheck, setLocaleOnClient, timezone, token, router, t])
+
+  if (!checkRes)
+    return <Loading />
+  if (!checkRes.is_valid) {
+    return <div className="flex flex-col md:w-[400px]">
+      <div className="w-full mx-auto">
+        <div className="mb-3 flex justify-center items-center w-14 h-14 rounded-2xl border border-components-panel-border-subtle shadow-lg text-2xl font-bold">🤷‍♂️</div>
+        <h2 className="title-4xl-semi-bold">{t('login.invalid')}</h2>
+      </div>
+      <div className="w-full mx-auto mt-6">
+        <Button variant='primary' className='w-full !text-sm'>
+          <a href="https://dify.ai">{t('login.explore')}</a>
+        </Button>
+      </div>
+    </div>
+  }
+
+  return <div className='flex flex-col gap-3'>
+    <div className='bg-background-default-dodge border border-components-panel-border-subtle shadow-lg inline-flex w-14 h-14 justify-center items-center rounded-2xl'>
+      <RiAccountCircleLine className='w-6 h-6 text-2xl text-text-accent-light-mode-only' />
+    </div>
+    <div className='pt-2 pb-4'>
+      <h2 className='title-4xl-semi-bold'>{t('login.setYourAccount')}</h2>
+    </div>
+    <form action=''>
+
+      <div className='mb-5'>
+        <label htmlFor="name" className="my-2 system-md-semibold">
+          {t('login.name')}
+        </label>
+        <div className="mt-1">
+          <Input
+            id="name"
+            type="text"
+            value={name}
+            onChange={e => setName(e.target.value)}
+            placeholder={t('login.namePlaceholder') || ''}
+          />
+        </div>
+      </div>
+      <div className='mb-5'>
+        <label htmlFor="name" className="my-2 system-md-semibold">
+          {t('login.interfaceLanguage')}
+        </label>
+        <div className="mt-1">
+          <SimpleSelect
+            defaultValue={LanguagesSupported[0]}
+            items={languages.filter(item => item.supported)}
+            onSelect={(item) => {
+              setLanguage(item.value as string)
+            }}
+          />
+        </div>
+      </div>
+      {/* timezone */}
+      <div className='mb-5'>
+        <label htmlFor="timezone" className="system-md-semibold">
+          {t('login.timezone')}
+        </label>
+        <div className="mt-1">
+          <SimpleSelect
+            defaultValue={timezone}
+            items={timezones}
+            onSelect={(item) => {
+              setTimezone(item.value as string)
+            }}
+          />
+        </div>
+      </div>
+      <div>
+        <Button
+          variant='primary'
+          className='w-full'
+          onClick={handleActivate}
+        >
+          {`${t('login.join')} ${checkRes?.data?.workspace_name}`}
+        </Button>
+      </div>
+    </form>
+    <div className="block w-full mt-2 system-xs-regular">
+      {t('login.license.tip')}
+      &nbsp;
+      <Link
+        className='system-xs-medium text-text-accent-secondary'
+        target='_blank' rel='noopener noreferrer'
+        href={`https://docs.dify.ai/${language !== LanguagesSupported[1] ? 'user-agreement' : `v/${locale.toLowerCase()}/policies`}/open-source`}
+      >{t('login.license.link')}</Link>
+    </div>
+  </div>
+}
diff --git a/web/app/signin/layout.tsx b/web/app/signin/layout.tsx
new file mode 100644
index 0000000000..342876bc53
--- /dev/null
+++ b/web/app/signin/layout.tsx
@@ -0,0 +1,54 @@
+import Script from 'next/script'
+import Header from './_header'
+import style from './page.module.css'
+
+import cn from '@/utils/classnames'
+import { IS_CE_EDITION } from '@/config'
+
+export default async function SignInLayout({ children }: any) {
+  return <>
+    {!IS_CE_EDITION && (
+      <>
+        <Script strategy="beforeInteractive" async src={'https://www.googletagmanager.com/gtag/js?id=AW-11217955271'}></Script>
+        <Script
+          id="ga-monitor-register"
+          dangerouslySetInnerHTML={{
+            __html: 'window.dataLayer2 = window.dataLayer2 || [];function gtag(){dataLayer2.push(arguments);}gtag(\'js\', new Date());gtag(\'config\', \'AW-11217955271"\');',
+          }}
+        >
+        </Script>
+      </>
+    )}
+
+    <div className={cn(
+      style.background,
+      'flex w-full min-h-screen',
+      'sm:p-4 lg:p-8',
+      'gap-x-20',
+      'justify-center lg:justify-start',
+    )}>
+      <div className={
+        cn(
+          'flex w-full flex-col bg-white shadow rounded-2xl shrink-0',
+          'space-between',
+        )
+      }>
+        <Header />
+        <div className={
+          cn(
+            'flex flex-col items-center w-full grow justify-center',
+            'px-6',
+            'md:px-[108px]',
+          )
+        }>
+          <div className='flex flex-col md:w-[400px]'>
+            {children}
+          </div>
+        </div>
+        <div className='px-8 py-6 system-xs-regular text-text-tertiary'>
+          © {new Date().getFullYear()} LangGenius, Inc. All rights reserved.
+        </div>
+      </div>
+    </div>
+  </>
+}
diff --git a/web/app/signin/normalForm.tsx b/web/app/signin/normalForm.tsx
index 113ed64b57..c0f2d89b37 100644
--- a/web/app/signin/normalForm.tsx
+++ b/web/app/signin/normalForm.tsx
@@ -1,299 +1,170 @@
-'use client'
-import React, { useEffect, useReducer, useState } from 'react'
+import React, { useCallback, useEffect, useState } from 'react'
 import { useTranslation } from 'react-i18next'
-import { useRouter } from 'next/navigation'
-import useSWR from 'swr'
 import Link from 'next/link'
-import Toast from '../components/base/toast'
-import style from './page.module.css'
-import classNames from '@/utils/classnames'
-import { IS_CE_EDITION, SUPPORT_MAIL_LOGIN, apiPrefix, emailRegex } from '@/config'
-import Button from '@/app/components/base/button'
-import { login, oauth } from '@/service/common'
-import { getPurifyHref } from '@/utils'
+import { useRouter, useSearchParams } from 'next/navigation'
+import { RiDoorLockLine } from '@remixicon/react'
+import Loading from '../components/base/loading'
+import MailAndCodeAuth from './components/mail-and-code-auth'
+import MailAndPasswordAuth from './components/mail-and-password-auth'
+import SocialAuth from './components/social-auth'
+import SSOAuth from './components/sso-auth'
+import cn from '@/utils/classnames'
+import { getSystemFeatures, invitationCheck } from '@/service/common'
+import { defaultSystemFeatures } from '@/types/feature'
+import Toast from '@/app/components/base/toast'
 import useRefreshToken from '@/hooks/use-refresh-token'
-
-type IState = {
-  formValid: boolean
-  github: boolean
-  google: boolean
-}
-
-type IAction = {
-  type: 'login' | 'login_failed' | 'github_login' | 'github_login_failed' | 'google_login' | 'google_login_failed'
-}
-
-function reducer(state: IState, action: IAction) {
-  switch (action.type) {
-    case 'login':
-      return {
-        ...state,
-        formValid: true,
-      }
-    case 'login_failed':
-      return {
-        ...state,
-        formValid: true,
-      }
-    case 'github_login':
-      return {
-        ...state,
-        github: true,
-      }
-    case 'github_login_failed':
-      return {
-        ...state,
-        github: false,
-      }
-    case 'google_login':
-      return {
-        ...state,
-        google: true,
-      }
-    case 'google_login_failed':
-      return {
-        ...state,
-        google: false,
-      }
-    default:
-      throw new Error('Unknown action.')
-  }
-}
+import { IS_CE_EDITION } from '@/config'
 
 const NormalForm = () => {
-  const { t } = useTranslation()
   const { getNewAccessToken } = useRefreshToken()
-  const useEmailLogin = IS_CE_EDITION || SUPPORT_MAIL_LOGIN
-
+  const { t } = useTranslation()
   const router = useRouter()
+  const searchParams = useSearchParams()
+  const consoleToken = decodeURIComponent(searchParams.get('access_token') || '')
+  const refreshToken = decodeURIComponent(searchParams.get('refresh_token') || '')
+  const message = decodeURIComponent(searchParams.get('message') || '')
+  const invite_token = decodeURIComponent(searchParams.get('invite_token') || '')
+  const [isLoading, setIsLoading] = useState(true)
+  const [systemFeatures, setSystemFeatures] = useState(defaultSystemFeatures)
+  const [authType, updateAuthType] = useState<'code' | 'password'>('password')
+  const [showORLine, setShowORLine] = useState(false)
+  const [allMethodsAreDisabled, setAllMethodsAreDisabled] = useState(false)
+  const [workspaceName, setWorkSpaceName] = useState('')
 
-  const [state, dispatch] = useReducer(reducer, {
-    formValid: false,
-    github: false,
-    google: false,
-  })
+  const isInviteLink = Boolean(invite_token && invite_token !== 'null')
 
-  const [showPassword, setShowPassword] = useState(false)
-  const [email, setEmail] = useState('')
-  const [password, setPassword] = useState('')
-
-  const [isLoading, setIsLoading] = useState(false)
-  const handleEmailPasswordLogin = async () => {
-    if (!emailRegex.test(email)) {
-      Toast.notify({
-        type: 'error',
-        message: t('login.error.emailInValid'),
-      })
-      return
-    }
+  const init = useCallback(async () => {
     try {
-      setIsLoading(true)
-      const res = await login({
-        url: '/login',
-        body: {
-          email,
-          password,
-          remember_me: true,
-        },
-      })
-      if (res.result === 'success') {
-        localStorage.setItem('console_token', res.data.access_token)
-        localStorage.setItem('refresh_token', res.data.refresh_token)
+      if (consoleToken && refreshToken) {
+        localStorage.setItem('console_token', consoleToken)
+        localStorage.setItem('refresh_token', refreshToken)
         getNewAccessToken()
         router.replace('/apps')
+        return
       }
-      else {
+
+      if (message) {
         Toast.notify({
           type: 'error',
-          message: res.data,
+          message,
         })
       }
+      const features = await getSystemFeatures()
+      const allFeatures = { ...defaultSystemFeatures, ...features }
+      setSystemFeatures(allFeatures)
+      setAllMethodsAreDisabled(!allFeatures.enable_social_oauth_login && !allFeatures.enable_email_code_login && !allFeatures.enable_email_password_login && !allFeatures.sso_enforced_for_signin)
+      setShowORLine((allFeatures.enable_social_oauth_login || allFeatures.sso_enforced_for_signin) && (allFeatures.enable_email_code_login || allFeatures.enable_email_password_login))
+      updateAuthType(allFeatures.enable_email_password_login ? 'password' : 'code')
+      if (isInviteLink) {
+        const checkRes = await invitationCheck({
+          url: '/activate/check',
+          params: {
+            token: invite_token,
+          },
+        })
+        setWorkSpaceName(checkRes?.data?.workspace_name || '')
+      }
     }
-    finally {
-      setIsLoading(false)
+    catch (error) {
+      console.error(error)
+      setAllMethodsAreDisabled(true)
+      setSystemFeatures(defaultSystemFeatures)
     }
+    finally { setIsLoading(false) }
+  }, [consoleToken, refreshToken, message, router, invite_token, isInviteLink, getNewAccessToken])
+  useEffect(() => {
+    init()
+  }, [init])
+  if (isLoading || consoleToken) {
+    return <div className={
+      cn(
+        'flex flex-col items-center w-full grow justify-center',
+        'px-6',
+        'md:px-[108px]',
+      )
+    }>
+      <Loading type='area' />
+    </div>
   }
 
-  const { data: github, error: github_error } = useSWR(state.github
-    ? ({
-      url: '/oauth/login/github',
-      // params: {
-      //   provider: 'github',
-      // },
-    })
-    : null, oauth)
-
-  const { data: google, error: google_error } = useSWR(state.google
-    ? ({
-      url: '/oauth/login/google',
-      // params: {
-      //   provider: 'google',
-      // },
-    })
-    : null, oauth)
-
-  useEffect(() => {
-    if (github_error !== undefined)
-      dispatch({ type: 'github_login_failed' })
-    if (github)
-      window.location.href = github.redirect_url
-  }, [github, github_error])
-
-  useEffect(() => {
-    if (google_error !== undefined)
-      dispatch({ type: 'google_login_failed' })
-    if (google)
-      window.location.href = google.redirect_url
-  }, [google, google_error])
-
   return (
     <>
-      <div className="w-full mx-auto">
-        <h2 className="text-[32px] font-bold text-gray-900">{t('login.pageTitle')}</h2>
-        <p className='mt-1 text-sm text-gray-600'>{t('login.welcome')}</p>
-      </div>
-
       <div className="w-full mx-auto mt-8">
-        <div className="bg-white ">
-          {!useEmailLogin && (
-            <div className="flex flex-col gap-3 mt-6">
-              <div className='w-full'>
-                <a href={getPurifyHref(`${apiPrefix}/oauth/login/github`)}>
-                  <Button
-                    disabled={isLoading}
-                    className='w-full hover:!bg-gray-50'
-                  >
-                    <>
-                      <span className={
-                        classNames(
-                          style.githubIcon,
-                          'w-5 h-5 mr-2',
-                        )
-                      } />
-                      <span className="truncate text-gray-800">{t('login.withGitHub')}</span>
-                    </>
-                  </Button>
-                </a>
-              </div>
-              <div className='w-full'>
-                <a href={getPurifyHref(`${apiPrefix}/oauth/login/google`)}>
-                  <Button
-                    disabled={isLoading}
-                    className='w-full hover:!bg-gray-50'
-                  >
-                    <>
-                      <span className={
-                        classNames(
-                          style.googleIcon,
-                          'w-5 h-5 mr-2',
-                        )
-                      } />
-                      <span className="truncate text-gray-800">{t('login.withGoogle')}</span>
-                    </>
-                  </Button>
-                </a>
-              </div>
+        {isInviteLink
+          ? <div className="w-full mx-auto">
+            <h2 className="title-4xl-semi-bold text-text-primary">{t('login.join')}{workspaceName}</h2>
+            <p className='mt-2 body-md-regular text-text-tertiary'>{t('login.joinTipStart')}{workspaceName}{t('login.joinTipEnd')}</p>
+          </div>
+          : <div className="w-full mx-auto">
+            <h2 className="title-4xl-semi-bold text-text-primary">{t('login.pageTitle')}</h2>
+            <p className='mt-2 body-md-regular text-text-tertiary'>{t('login.welcome')}</p>
+          </div>}
+        <div className="bg-white">
+          <div className="flex flex-col gap-3 mt-6">
+            {systemFeatures.enable_social_oauth_login && <SocialAuth />}
+            {systemFeatures.sso_enforced_for_signin && <div className='w-full'>
+              <SSOAuth protocol={systemFeatures.sso_enforced_for_signin_protocol} />
+            </div>}
+          </div>
+
+          {showORLine && <div className="relative mt-6">
+            <div className="absolute inset-0 flex items-center" aria-hidden="true">
+              <div className='bg-gradient-to-r from-background-gradient-mask-transparent via-divider-regular to-background-gradient-mask-transparent h-px w-full'></div>
             </div>
-          )}
-
+            <div className="relative flex justify-center">
+              <span className="px-2 text-text-tertiary system-xs-medium-uppercase bg-white">{t('login.or')}</span>
+            </div>
+          </div>}
           {
-            useEmailLogin && <>
-              {/* <div className="relative mt-6">
-                <div className="absolute inset-0 flex items-center" aria-hidden="true">
-                  <div className="w-full border-t border-gray-300" />
-                </div>
-                <div className="relative flex justify-center text-sm">
-                  <span className="px-2 text-gray-300 bg-white">OR</span>
-                </div>
-              </div> */}
-
-              <form onSubmit={() => { }}>
-                <div className='mb-5'>
-                  <label htmlFor="email" className="my-2 block text-sm font-medium text-gray-900">
-                    {t('login.email')}
-                  </label>
-                  <div className="mt-1">
-                    <input
-                      value={email}
-                      onChange={e => setEmail(e.target.value)}
-                      id="email"
-                      type="email"
-                      autoComplete="email"
-                      placeholder={t('login.emailPlaceholder') || ''}
-                      className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm'}
-                      tabIndex={1}
-                    />
-                  </div>
-                </div>
-
-                <div className='mb-4'>
-                  <label htmlFor="password" className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
-                    <span>{t('login.password')}</span>
-                    <Link href='/forgot-password' className='text-primary-600'>
-                      {t('login.forget')}
-                    </Link>
-                  </label>
-                  <div className="relative mt-1">
-                    <input
-                      id="password"
-                      value={password}
-                      onChange={e => setPassword(e.target.value)}
-                      onKeyDown={(e) => {
-                        if (e.key === 'Enter')
-                          handleEmailPasswordLogin()
-                      }}
-                      type={showPassword ? 'text' : 'password'}
-                      autoComplete="current-password"
-                      placeholder={t('login.passwordPlaceholder') || ''}
-                      className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm pr-10'}
-                      tabIndex={2}
-                    />
-                    <div className="absolute inset-y-0 right-0 flex items-center pr-3">
-                      <button
-                        type="button"
-                        onClick={() => setShowPassword(!showPassword)}
-                        className="text-gray-400 hover:text-gray-500 focus:outline-none focus:text-gray-500"
-                      >
-                        {showPassword ? '👀' : '😝'}
-                      </button>
-                    </div>
-                  </div>
-                </div>
-
-                <div className='mb-2'>
-                  <Button
-                    tabIndex={0}
-                    variant='primary'
-                    onClick={handleEmailPasswordLogin}
-                    disabled={isLoading}
-                    className="w-full"
-                  >{t('login.signBtn')}</Button>
-                </div>
-              </form>
+            (systemFeatures.enable_email_code_login || systemFeatures.enable_email_password_login) && <>
+              {systemFeatures.enable_email_code_login && authType === 'code' && <>
+                <MailAndCodeAuth isInvite={isInviteLink} />
+                {systemFeatures.enable_email_password_login && <div className='cursor-pointer py-1 text-center' onClick={() => { updateAuthType('password') }}>
+                  <span className='system-xs-medium text-components-button-secondary-accent-text'>{t('login.usePassword')}</span>
+                </div>}
+              </>}
+              {systemFeatures.enable_email_password_login && authType === 'password' && <>
+                <MailAndPasswordAuth isInvite={isInviteLink} allowRegistration={systemFeatures.is_allow_register} />
+                {systemFeatures.enable_email_code_login && <div className='cursor-pointer py-1 text-center' onClick={() => { updateAuthType('code') }}>
+                  <span className='system-xs-medium text-components-button-secondary-accent-text'>{t('login.useVerificationCode')}</span>
+                </div>}
+              </>}
             </>
           }
-          {/*  agree to our Terms and Privacy Policy. */}
-          <div className="w-hull text-center block mt-2 text-xs text-gray-600">
+          {allMethodsAreDisabled && <>
+            <div className="p-4 rounded-lg bg-gradient-to-r from-workflow-workflow-progress-bg-1 to-workflow-workflow-progress-bg-2">
+              <div className='flex items-center justify-center w-10 h-10 rounded-xl bg-components-card-bg shadow shadows-shadow-lg mb-2'>
+                <RiDoorLockLine className='w-5 h-5' />
+              </div>
+              <p className='system-sm-medium text-text-primary'>{t('login.noLoginMethod')}</p>
+              <p className='system-xs-regular text-text-tertiary mt-1'>{t('login.noLoginMethodTip')}</p>
+            </div>
+            <div className="relative my-2 py-2">
+              <div className="absolute inset-0 flex items-center" aria-hidden="true">
+                <div className='bg-gradient-to-r from-background-gradient-mask-transparent via-divider-regular to-background-gradient-mask-transparent h-px w-full'></div>
+              </div>
+            </div>
+          </>}
+          <div className="w-full block mt-2 system-xs-regular text-text-tertiary">
             {t('login.tosDesc')}
             &nbsp;
             <Link
-              className='text-primary-600'
+              className='system-xs-medium text-text-secondary hover:underline'
               target='_blank' rel='noopener noreferrer'
               href='https://dify.ai/terms'
             >{t('login.tos')}</Link>
             &nbsp;&&nbsp;
             <Link
-              className='text-primary-600'
+              className='system-xs-medium text-text-secondary hover:underline'
               target='_blank' rel='noopener noreferrer'
               href='https://dify.ai/privacy'
             >{t('login.pp')}</Link>
           </div>
-
-          {IS_CE_EDITION && <div className="w-hull text-center block mt-2 text-xs text-gray-600">
+          {IS_CE_EDITION && <div className="w-hull block mt-2 system-xs-regular text-text-tertiary">
             {t('login.goToInit')}
             &nbsp;
             <Link
-              className='text-primary-600'
+              className='system-xs-medium text-text-secondary hover:underline'
               href='/install'
             >{t('login.setAdminAccount')}</Link>
           </div>}
diff --git a/web/app/signin/oneMoreStep.tsx b/web/app/signin/oneMoreStep.tsx
index a4324517a5..8554b364c0 100644
--- a/web/app/signin/oneMoreStep.tsx
+++ b/web/app/signin/oneMoreStep.tsx
@@ -3,8 +3,8 @@ import React, { useEffect, useReducer } from 'react'
 import { useTranslation } from 'react-i18next'
 import Link from 'next/link'
 import useSWR from 'swr'
-import { useRouter } from 'next/navigation'
-// import { useContext } from 'use-context-selector'
+import { useRouter, useSearchParams } from 'next/navigation'
+import Input from '../components/base/input'
 import Button from '@/app/components/base/button'
 import Tooltip from '@/app/components/base/tooltip'
 import { SimpleSelect } from '@/app/components/base/select'
@@ -12,7 +12,6 @@ import { timezones } from '@/utils/timezone'
 import { LanguagesSupported, languages } from '@/i18n/language'
 import { oneMoreStep } from '@/service/common'
 import Toast from '@/app/components/base/toast'
-// import I18n from '@/context/i18n'
 
 type IState = {
   formState: 'processing' | 'error' | 'success' | 'initial'
@@ -46,11 +45,11 @@ const reducer = (state: IState, action: any) => {
 const OneMoreStep = () => {
   const { t } = useTranslation()
   const router = useRouter()
-  // const { locale } = useContext(I18n)
+  const searchParams = useSearchParams()
 
   const [state, dispatch] = useReducer(reducer, {
     formState: 'initial',
-    invitation_code: '',
+    invitation_code: searchParams.get('invitation_code') || '',
     interface_language: 'en-US',
     timezone: 'Asia/Shanghai',
   })
@@ -77,36 +76,35 @@ const OneMoreStep = () => {
   return (
     <>
       <div className="w-full mx-auto">
-        <h2 className="text-[32px] font-bold text-gray-900">{t('login.oneMoreStep')}</h2>
-        <p className='mt-1 text-sm text-gray-600 '>{t('login.createSample')}</p>
+        <h2 className="title-4xl-semi-bold text-text-secondary">{t('login.oneMoreStep')}</h2>
+        <p className='mt-1 body-md-regular text-text-tertiary'>{t('login.createSample')}</p>
       </div>
 
       <div className="w-full mx-auto mt-6">
         <div className="bg-white">
           <div className="mb-5">
-            <label className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
+            <label className="my-2 flex items-center justify-between system-md-semibold text-text-secondary">
               {t('login.invitationCode')}
               <Tooltip
                 popupContent={
                   <div className='w-[256px] text-xs font-medium'>
                     <div className='font-medium'>{t('login.sendUsMail')}</div>
-                    <div className='text-xs font-medium cursor-pointer text-primary-600'>
+                    <div className='text-xs font-medium cursor-pointer text-text-accent-secondary'>
                       <a href="mailto:request-invitation@langgenius.ai">request-invitation@langgenius.ai</a>
                     </div>
                   </div>
                 }
                 needsDelay
               >
-                <span className='cursor-pointer text-primary-600'>{t('login.dontHave')}</span>
+                <span className='cursor-pointer text-text-accent-secondary'>{t('login.dontHave')}</span>
               </Tooltip>
             </label>
             <div className="mt-1">
-              <input
+              <Input
                 id="invitation_code"
                 value={state.invitation_code}
                 type="text"
                 placeholder={t('login.invitationCodePlaceholder') || ''}
-                className={'appearance-none block w-full rounded-lg pl-[14px] px-3 py-2 border border-gray-200 hover:border-gray-300 hover:shadow-sm focus:outline-none focus:ring-primary-500 focus:border-primary-500 placeholder-gray-400 caret-primary-600 sm:text-sm'}
                 onChange={(e) => {
                   dispatch({ type: 'invitation_code', value: e.target.value.trim() })
                 }}
@@ -114,10 +112,10 @@ const OneMoreStep = () => {
             </div>
           </div>
           <div className='mb-5'>
-            <label htmlFor="name" className="my-2 flex items-center justify-between text-sm font-medium text-gray-900">
+            <label htmlFor="name" className="my-2 system-md-semibold text-text-secondary">
               {t('login.interfaceLanguage')}
             </label>
-            <div className="relative mt-1 rounded-md shadow-sm">
+            <div className="mt-1">
               <SimpleSelect
                 defaultValue={LanguagesSupported[0]}
                 items={languages.filter(item => item.supported)}
@@ -128,10 +126,10 @@ const OneMoreStep = () => {
             </div>
           </div>
           <div className='mb-4'>
-            <label htmlFor="timezone" className="block text-sm font-medium text-gray-700">
+            <label htmlFor="timezone" className="system-md-semibold text-text-tertiary">
               {t('login.timezone')}
             </label>
-            <div className="relative mt-1 rounded-md shadow-sm">
+            <div className="mt-1">
               <SimpleSelect
                 defaultValue={state.timezone}
                 items={timezones}
@@ -153,11 +151,11 @@ const OneMoreStep = () => {
               {t('login.go')}
             </Button>
           </div>
-          <div className="block w-hull mt-2 text-xs text-gray-600">
+          <div className="block w-full mt-2 system-xs-regular text-text-tertiary">
             {t('login.license.tip')}
             &nbsp;
             <Link
-              className='text-primary-600'
+              className='system-xs-medium text-text-accent-secondary'
               target='_blank' rel='noopener noreferrer'
               href={'https://docs.dify.ai/user-agreement/open-source'}
             >{t('login.license.link')}</Link>
diff --git a/web/app/signin/page.tsx b/web/app/signin/page.tsx
index 5865f40e71..f2ef17c487 100644
--- a/web/app/signin/page.tsx
+++ b/web/app/signin/page.tsx
@@ -1,94 +1,15 @@
 'use client'
-import React, { useEffect, useState } from 'react'
-import Script from 'next/script'
-import Loading from '../components/base/loading'
-import Forms from './forms'
-import Header from './_header'
-import style from './page.module.css'
-import UserSSOForm from './userSSOForm'
-import cn from '@/utils/classnames'
-import { IS_CE_EDITION } from '@/config'
-
-import type { SystemFeatures } from '@/types/feature'
-import { defaultSystemFeatures } from '@/types/feature'
-import { getSystemFeatures } from '@/service/common'
+import { useSearchParams } from 'next/navigation'
+import OneMoreStep from './oneMoreStep'
+import NormalForm from './normalForm'
 
 const SignIn = () => {
-  const [loading, setLoading] = useState<boolean>(true)
-  const [systemFeatures, setSystemFeatures] = useState<SystemFeatures>(defaultSystemFeatures)
+  const searchParams = useSearchParams()
+  const step = searchParams.get('step')
 
-  useEffect(() => {
-    getSystemFeatures().then((res) => {
-      setSystemFeatures(res)
-    }).finally(() => {
-      setLoading(false)
-    })
-  }, [])
-
-  return (
-    <>
-      {!IS_CE_EDITION && (
-        <>
-          <Script strategy="beforeInteractive" async src={'https://www.googletagmanager.com/gtag/js?id=AW-11217955271'}></Script>
-          <Script
-            id="ga-monitor-register"
-            dangerouslySetInnerHTML={{
-              __html: `
-window.dataLayer2 = window.dataLayer2 || [];
-function gtag(){dataLayer2.push(arguments);}
-gtag('js', new Date());
-gtag('config', 'AW-11217955271"');
-        `,
-            }}
-          >
-          </Script>
-        </>
-      )}
-      <div className={cn(
-        style.background,
-        'flex w-full min-h-screen',
-        'sm:p-4 lg:p-8',
-        'gap-x-20',
-        'justify-center lg:justify-start',
-      )}>
-        <div className={
-          cn(
-            'flex w-full flex-col bg-white shadow rounded-2xl shrink-0',
-            'space-between',
-          )
-        }>
-          <Header />
-
-          {loading && (
-            <div className={
-              cn(
-                'flex flex-col items-center w-full grow justify-center',
-                'px-6',
-                'md:px-[108px]',
-              )
-            }>
-              <Loading type='area' />
-            </div>
-          )}
-
-          {!loading && !systemFeatures.sso_enforced_for_signin && (
-            <>
-              <Forms />
-              <div className='px-8 py-6 text-sm font-normal text-gray-500'>
-                © {new Date().getFullYear()} LangGenius, Inc. All rights reserved.
-              </div>
-            </>
-          )}
-
-          {!loading && systemFeatures.sso_enforced_for_signin && (
-            <UserSSOForm protocol={systemFeatures.sso_enforced_for_signin_protocol} />
-          )}
-        </div>
-
-      </div>
-
-    </>
-  )
+  if (step === 'next')
+    return <OneMoreStep />
+  return <NormalForm />
 }
 
 export default SignIn
diff --git a/web/app/signin/userSSOForm.tsx b/web/app/signin/userSSOForm.tsx
deleted file mode 100644
index f01afa9eaf..0000000000
--- a/web/app/signin/userSSOForm.tsx
+++ /dev/null
@@ -1,107 +0,0 @@
-'use client'
-import { useRouter, useSearchParams } from 'next/navigation'
-import type { FC } from 'react'
-import { useEffect, useState } from 'react'
-import { useTranslation } from 'react-i18next'
-import cn from '@/utils/classnames'
-import Toast from '@/app/components/base/toast'
-import { getUserOAuth2SSOUrl, getUserOIDCSSOUrl, getUserSAMLSSOUrl } from '@/service/sso'
-import Button from '@/app/components/base/button'
-import useRefreshToken from '@/hooks/use-refresh-token'
-
-type UserSSOFormProps = {
-  protocol: string
-}
-
-const UserSSOForm: FC<UserSSOFormProps> = ({
-  protocol,
-}) => {
-  const { getNewAccessToken } = useRefreshToken()
-  const searchParams = useSearchParams()
-  const consoleToken = searchParams.get('access_token')
-  const refreshToken = searchParams.get('refresh_token')
-  const message = searchParams.get('message')
-
-  const router = useRouter()
-  const { t } = useTranslation()
-
-  const [isLoading, setIsLoading] = useState(false)
-
-  useEffect(() => {
-    if (refreshToken && consoleToken) {
-      localStorage.setItem('console_token', consoleToken)
-      localStorage.setItem('refresh_token', refreshToken)
-      getNewAccessToken()
-      router.replace('/apps')
-    }
-
-    if (message) {
-      Toast.notify({
-        type: 'error',
-        message,
-      })
-    }
-  }, [consoleToken, refreshToken, message, router])
-
-  const handleSSOLogin = () => {
-    setIsLoading(true)
-    if (protocol === 'saml') {
-      getUserSAMLSSOUrl().then((res) => {
-        router.push(res.url)
-      }).finally(() => {
-        setIsLoading(false)
-      })
-    }
-    else if (protocol === 'oidc') {
-      getUserOIDCSSOUrl().then((res) => {
-        document.cookie = `user-oidc-state=${res.state}`
-        router.push(res.url)
-      }).finally(() => {
-        setIsLoading(false)
-      })
-    }
-    else if (protocol === 'oauth2') {
-      getUserOAuth2SSOUrl().then((res) => {
-        document.cookie = `user-oauth2-state=${res.state}`
-        router.push(res.url)
-      }).finally(() => {
-        setIsLoading(false)
-      })
-    }
-    else {
-      Toast.notify({
-        type: 'error',
-        message: 'invalid SSO protocol',
-      })
-      setIsLoading(false)
-    }
-  }
-
-  return (
-    <div className={
-      cn(
-        'flex flex-col items-center w-full grow justify-center',
-        'px-6',
-        'md:px-[108px]',
-      )
-    }>
-      <div className='flex flex-col md:w-[400px]'>
-        <div className="w-full mx-auto">
-          <h2 className="text-[32px] font-bold text-gray-900">{t('login.pageTitle')}</h2>
-        </div>
-        <div className="w-full mx-auto mt-10">
-          <Button
-            tabIndex={0}
-            variant='primary'
-            onClick={() => { handleSSOLogin() }}
-            disabled={isLoading}
-            className="w-full"
-          >{t('login.sso')}
-          </Button>
-        </div>
-      </div>
-    </div>
-  )
-}
-
-export default UserSSOForm
diff --git a/web/i18n/en-US/login.ts b/web/i18n/en-US/login.ts
index 03b0d27ed5..b47d7bd69a 100644
--- a/web/i18n/en-US/login.ts
+++ b/web/i18n/en-US/login.ts
@@ -1,6 +1,6 @@
 const translation = {
-  pageTitle: 'Hey, let\'s get started!👋',
-  welcome: 'Welcome to Dify, please log in to continue.',
+  pageTitle: 'Hey, let\'s get started!',
+  welcome: '👋 Welcome to Dify, please log in to continue.',
   email: 'Email address',
   emailPlaceholder: 'Your email',
   password: 'Password',
@@ -9,7 +9,11 @@ const translation = {
   namePlaceholder: 'Your username',
   forget: 'Forgot your password?',
   signBtn: 'Sign in',
-  sso: 'Continue with SSO',
+  continueWithCode: 'Continue With Code',
+  sendVerificationCode: 'Send Verification Code',
+  usePassword: 'Use Password',
+  useVerificationCode: 'Use Verification Code',
+  or: 'OR',
   installBtn: 'Set up',
   setAdminAccount: 'Setting up an admin account',
   setAdminAccountDesc: 'Maximum privileges for admin account, which can be used to create applications and manage LLM providers, etc.',
@@ -26,6 +30,7 @@ const translation = {
   reset: 'Please run following command to reset your password',
   withGitHub: 'Continue with GitHub',
   withGoogle: 'Continue with Google',
+  withSSO: 'Continue with SSO',
   rightTitle: 'Unlock the full potential of LLM',
   rightDesc: 'Effortlessly build visually captivating, operable, and improvable AI applications.',
   tos: 'Terms of Service',
@@ -42,8 +47,9 @@ const translation = {
   forgotPasswordDesc: 'Please enter your email address to reset your password. We will send you an email with instructions on how to reset your password.',
   checkEmailForResetLink: 'Please check your email for a link to reset your password. If it doesn\'t appear within a few minutes, make sure to check your spam folder.',
   passwordChanged: 'Sign in now',
-  changePassword: 'Change Password',
+  changePassword: 'Set a password',
   changePasswordTip: 'Please enter a new password for your account',
+  changePasswordBtn: 'Set a password',
   invalidToken: 'Invalid or expired token',
   confirmPassword: 'Confirm Password',
   confirmPasswordPlaceholder: 'Confirm your new password',
@@ -55,14 +61,15 @@ const translation = {
     passwordEmpty: 'Password is required',
     passwordLengthInValid: 'Password must be at least 8 characters',
     passwordInvalid: 'Password must contain letters and numbers, and the length must be greater than 8',
+    registrationNotAllowed: 'Account not found. Please contact the system admin to register.',
   },
   license: {
     tip: 'Before starting Dify Community Edition, read the GitHub',
     link: 'Open-source License',
   },
-  join: 'Join',
-  joinTipStart: 'Invite you join',
-  joinTipEnd: 'team on Dify',
+  join: 'Join ',
+  joinTipStart: 'Invite you join ',
+  joinTipEnd: ' team on Dify',
   invalid: 'The link has expired',
   explore: 'Explore Dify',
   activatedTipStart: 'You have joined the',
@@ -70,6 +77,27 @@ const translation = {
   activated: 'Sign in now',
   adminInitPassword: 'Admin initialization password',
   validate: 'Validate',
+  checkCode: {
+    checkYourEmail: 'Check your email',
+    tips: 'We send a verification code to <strong>{{email}}</strong>',
+    validTime: 'Bear in mind that the code is valid for 5 minutes',
+    verificationCode: 'Verification code',
+    verificationCodePlaceholder: 'Enter 6-digit code',
+    verify: 'Verify',
+    didNotReceiveCode: 'Didn\'t receive the code? ',
+    resend: 'Resend',
+    useAnotherMethod: 'Use another method',
+    emptyCode: 'Code is required',
+    invalidCode: 'Invalid code',
+  },
+  resetPassword: 'Reset Password',
+  resetPasswordDesc: 'Type the email you used to sign up on Dify and we will send you a password reset email.',
+  backToLogin: 'Back to login',
+  setYourAccount: 'Set Your Account',
+  enterYourName: 'Please enter your username',
+  back: 'Back',
+  noLoginMethod: 'Authentication method not configured',
+  noLoginMethodTip: 'Please contact the system admin to add an authentication method.',
 }
 
 export default translation
diff --git a/web/i18n/zh-Hans/login.ts b/web/i18n/zh-Hans/login.ts
index f0a6ab76a3..40697701da 100644
--- a/web/i18n/zh-Hans/login.ts
+++ b/web/i18n/zh-Hans/login.ts
@@ -1,6 +1,6 @@
 const translation = {
-  pageTitle: '嗨，近来可好 👋',
-  welcome: '欢迎来到 Dify, 登录以继续',
+  pageTitle: '嗨，近来可好',
+  welcome: '👋 欢迎来到 Dify, 登录以继续',
   email: '邮箱',
   emailPlaceholder: '输入邮箱地址',
   password: '密码',
@@ -9,6 +9,11 @@ const translation = {
   namePlaceholder: '输入用户名',
   forget: '忘记密码？',
   signBtn: '登录',
+  continueWithCode: '发送验证码',
+  sendVerificationCode: '发送验证码',
+  usePassword: '使用密码登录',
+  useVerificationCode: '使用验证码登录',
+  or: '或',
   installBtn: '设置',
   setAdminAccount: '设置管理员账户',
   setAdminAccountDesc: '管理员拥有的最大权限，可用于创建应用和管理 LLM 供应商等。',
@@ -25,11 +30,12 @@ const translation = {
   reset: '请运行以下命令重置密码',
   withGitHub: '使用 GitHub 登录',
   withGoogle: '使用 Google 登录',
+  withSSO: '使用 SSO 登录',
   rightTitle: '释放大型语言模型的全部潜能',
   rightDesc: '简单构建可视化、可运营、可改进的 AI 应用',
   tos: '使用协议',
   pp: '隐私政策',
-  tosDesc: '使用即代表你并同意我们的',
+  tosDesc: '使用即代表您同意我们的',
   goToInit: '如果您还没有初始化账户，请前往初始化页面',
   dontHave: '还没有邀请码？',
   invalidInvitationCode: '无效的邀请码',
@@ -41,8 +47,9 @@ const translation = {
   forgotPasswordDesc: '请输入您的电子邮件地址以重置密码。我们将向您发送一封电子邮件，包含如何重置密码的说明。',
   checkEmailForResetLink: '请检查您的电子邮件以获取重置密码的链接。如果几分钟内没有收到，请检查您的垃圾邮件文件夹。',
   passwordChanged: '立即登录',
-  changePassword: '更改密码',
+  changePassword: '设置密码',
   changePasswordTip: '请输入您的新密码',
+  changePasswordBtn: '设置密码',
   invalidToken: '无效或已过期的令牌',
   confirmPassword: '确认密码',
   confirmPasswordPlaceholder: '确认您的新密码',
@@ -54,14 +61,15 @@ const translation = {
     passwordEmpty: '密码不能为空',
     passwordInvalid: '密码必须包含字母和数字，且长度不小于8位',
     passwordLengthInValid: '密码必须至少为 8 个字符',
+    registrationNotAllowed: '账户不存在，请联系系统管理员注册账户',
   },
   license: {
     tip: '启动 Dify 社区版之前, 请阅读 GitHub 上的',
     link: '开源协议',
   },
-  join: '加入',
-  joinTipStart: '邀请你加入',
-  joinTipEnd: '团队',
+  join: '加入 ',
+  joinTipStart: '邀请你加入 ',
+  joinTipEnd: ' 团队',
   invalid: '链接已失效',
   explore: '探索 Dify',
   activatedTipStart: '您已加入',
@@ -70,6 +78,27 @@ const translation = {
   adminInitPassword: '管理员初始化密码',
   validate: '验证',
   sso: '使用 SSO 继续',
+  checkCode: {
+    checkYourEmail: '验证您的电子邮件',
+    tips: '验证码已经发送到您的邮箱 <strong>{{email}}</strong>',
+    validTime: '请注意验证码 5 分钟内有效',
+    verificationCode: '验证码',
+    verificationCodePlaceholder: '输入 6 位验证码',
+    verify: '验证',
+    didNotReceiveCode: '没有收到验证码？',
+    resend: '重新发送',
+    useAnotherMethod: '使用其他方式登录',
+    emptyCode: '验证码不能为空',
+    invalidCode: '验证码无效',
+  },
+  resetPassword: '重置密码',
+  resetPasswordDesc: '请输入您的电子邮件地址以重置密码。我们将向您发送一封电子邮件。',
+  backToLogin: '返回登录',
+  setYourAccount: '设置您的账户',
+  enterYourName: '请输入用户名',
+  back: '返回',
+  noLoginMethod: '未配置身份认证方式',
+  noLoginMethodTip: '请联系系统管理员添加身份认证方式',
 }
 
 export default translation
diff --git a/web/i18n/zh-Hant/login.ts b/web/i18n/zh-Hant/login.ts
index 649f618158..69ae69f952 100644
--- a/web/i18n/zh-Hant/login.ts
+++ b/web/i18n/zh-Hant/login.ts
@@ -1,6 +1,6 @@
 const translation = {
-  pageTitle: '嗨，近來可好 👋',
-  welcome: '歡迎來到 Dify, 登入以繼續',
+  pageTitle: '嗨，近來可好',
+  welcome: '👋 歡迎來到 Dify, 登入以繼續',
   email: '郵箱',
   emailPlaceholder: '輸入郵箱地址',
   password: '密碼',
diff --git a/web/service/common.ts b/web/service/common.ts
index bd3dbca0aa..1bf9e915ad 100644
--- a/web/service/common.ts
+++ b/web/service/common.ts
@@ -45,6 +45,8 @@ type LoginSuccess = {
 type LoginFail = {
   result: 'fail'
   data: string
+  code: string
+  message: string
 }
 type LoginResponse = LoginSuccess | LoginFail
 export const login: Fetcher<LoginResponse, { url: string; body: Record<string, any> }> = ({ url, body }) => {
@@ -169,12 +171,12 @@ export const updatePluginProviderAIKey: Fetcher<UpdateOpenAIKeyResponse, { url:
   return post<UpdateOpenAIKeyResponse>(url, { body })
 }
 
-export const invitationCheck: Fetcher<CommonResponse & { is_valid: boolean; workspace_name: string }, { url: string; params: { workspace_id: string; email: string; token: string } }> = ({ url, params }) => {
-  return get<CommonResponse & { is_valid: boolean; workspace_name: string }>(url, { params })
+export const invitationCheck: Fetcher<CommonResponse & { is_valid: boolean; data: { workspace_name: string; email: string; workspace_id: string } }, { url: string; params: { workspace_id?: string; email?: string; token: string } }> = ({ url, params }) => {
+  return get<CommonResponse & { is_valid: boolean; data: { workspace_name: string; email: string; workspace_id: string } }>(url, { params })
 }
 
-export const activateMember: Fetcher<CommonResponse, { url: string; body: any }> = ({ url, body }) => {
-  return post<CommonResponse>(url, { body })
+export const activateMember: Fetcher<LoginResponse, { url: string; body: any }> = ({ url, body }) => {
+  return post<LoginResponse>(url, { body })
 }
 
 export const fetchModelProviders: Fetcher<{ data: ModelProvider[] }, string> = (url) => {
@@ -312,8 +314,8 @@ export const enableModel = (url: string, body: { model: string; model_type: Mode
 export const disableModel = (url: string, body: { model: string; model_type: ModelTypeEnum }) =>
   patch<CommonResponse>(url, { body })
 
-export const sendForgotPasswordEmail: Fetcher<CommonResponse, { url: string; body: { email: string } }> = ({ url, body }) =>
-  post<CommonResponse>(url, { body })
+export const sendForgotPasswordEmail: Fetcher<CommonResponse & { data: string }, { url: string; body: { email: string } }> = ({ url, body }) =>
+  post<CommonResponse & { data: string }>(url, { body })
 
 export const verifyForgotPasswordToken: Fetcher<CommonResponse & { is_valid: boolean; email: string }, { url: string; body: { token: string } }> = ({ url, body }) => {
   return post(url, { body }) as Promise<CommonResponse & { is_valid: boolean; email: string }>
@@ -321,3 +323,15 @@ export const verifyForgotPasswordToken: Fetcher<CommonResponse & { is_valid: boo
 
 export const changePasswordWithToken: Fetcher<CommonResponse, { url: string; body: { token: string; new_password: string; password_confirm: string } }> = ({ url, body }) =>
   post<CommonResponse>(url, { body })
+
+export const sendEMailLoginCode = (email: string, language = 'en-US') =>
+  post<CommonResponse & { data: string }>('/email-code-login', { body: { email, language } })
+
+export const emailLoginWithCode = (data: { email: string;code: string;token: string }) =>
+  post<LoginResponse>('/email-code-login/validity', { body: data })
+
+export const sendResetPasswordCode = (email: string, language = 'en-US') =>
+  post<CommonResponse & { data: string;message?: string ;code?: string }>('/forgot-password', { body: { email, language } })
+
+export const verifyResetPasswordCode = (body: { email: string;code: string;token: string }) =>
+  post<CommonResponse & { is_valid: boolean }>('/forgot-password/validity', { body })
diff --git a/web/service/sso.ts b/web/service/sso.ts
index 9a8581a894..eb22799ba5 100644
--- a/web/service/sso.ts
+++ b/web/service/sso.ts
@@ -1,13 +1,16 @@
 import { get } from './base'
 
-export const getUserSAMLSSOUrl = () => {
-  return get<{ url: string }>('/enterprise/sso/saml/login')
+export const getUserSAMLSSOUrl = (invite_token?: string) => {
+  const url = invite_token ? `/enterprise/sso/saml/login?invite_token=${invite_token}` : '/enterprise/sso/saml/login'
+  return get<{ url: string }>(url)
 }
 
-export const getUserOIDCSSOUrl = () => {
-  return get<{ url: string; state: string }>('/enterprise/sso/oidc/login')
+export const getUserOIDCSSOUrl = (invite_token?: string) => {
+  const url = invite_token ? `/enterprise/sso/oidc/login?invite_token=${invite_token}` : '/enterprise/sso/oidc/login'
+  return get<{ url: string; state: string }>(url)
 }
 
-export const getUserOAuth2SSOUrl = () => {
-  return get<{ url: string; state: string }>('/enterprise/sso/oauth2/login')
+export const getUserOAuth2SSOUrl = (invite_token?: string) => {
+  const url = invite_token ? `/enterprise/sso/oauth2/login?invite_token=${invite_token}` : '/enterprise/sso/oauth2/login'
+  return get<{ url: string; state: string }>(url)
 }
diff --git a/web/types/feature.ts b/web/types/feature.ts
index b129da3aee..0d9b2ec18d 100644
--- a/web/types/feature.ts
+++ b/web/types/feature.ts
@@ -1,9 +1,20 @@
+export enum SSOProtocol {
+  SAML = 'saml',
+  OIDC = 'oidc',
+  OAuth2 = 'oauth2',
+}
+
 export type SystemFeatures = {
   sso_enforced_for_signin: boolean
-  sso_enforced_for_signin_protocol: string
+  sso_enforced_for_signin_protocol: SSOProtocol | ''
   sso_enforced_for_web: boolean
-  sso_enforced_for_web_protocol: string
+  sso_enforced_for_web_protocol: SSOProtocol | ''
   enable_web_sso_switch_component: boolean
+  enable_email_code_login: boolean
+  enable_email_password_login: boolean
+  enable_social_oauth_login: boolean
+  is_allow_create_workspace: boolean
+  is_allow_register: boolean
 }
 
 export const defaultSystemFeatures: SystemFeatures = {
@@ -12,4 +23,9 @@ export const defaultSystemFeatures: SystemFeatures = {
   sso_enforced_for_web: false,
   sso_enforced_for_web_protocol: '',
   enable_web_sso_switch_component: false,
+  enable_email_code_login: false,
+  enable_email_password_login: false,
+  enable_social_oauth_login: false,
+  is_allow_create_workspace: false,
+  is_allow_register: false,
 }

From 2c0eaaec3d0b61dd662abf0fbd36741252080e62 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Mon, 21 Oct 2024 09:43:12 +0800
Subject: [PATCH 11/11] chore: translate i18n files (#9523)

Co-authored-by: douxc <7553076+douxc@users.noreply.github.com>
Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
---
 web/i18n/de-DE/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/es-ES/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/fa-IR/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/fr-FR/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/hi-IN/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/it-IT/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/ja-JP/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/ko-KR/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/pl-PL/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/pt-BR/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/ro-RO/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/ru-RU/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/tr-TR/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/uk-UA/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/vi-VN/login.ts   | 29 +++++++++++++++++++++++++++++
 web/i18n/zh-Hant/login.ts | 29 +++++++++++++++++++++++++++++
 16 files changed, 464 insertions(+)

diff --git a/web/i18n/de-DE/login.ts b/web/i18n/de-DE/login.ts
index 4597228463..6736e34914 100644
--- a/web/i18n/de-DE/login.ts
+++ b/web/i18n/de-DE/login.ts
@@ -54,6 +54,7 @@ const translation = {
     passwordEmpty: 'Passwort wird benötigt',
     passwordInvalid: 'Das Passwort muss Buchstaben und Zahlen enthalten und länger als 8 Zeichen sein',
     passwordLengthInValid: 'Das Passwort muss mindestens 8 Zeichen lang sein',
+    registrationNotAllowed: 'Konto nicht gefunden. Bitte wenden Sie sich an den Systemadministrator, um sich zu registrieren.',
   },
   license: {
     tip: 'Bevor du mit Dify Community Edition beginnst, lies die',
@@ -70,6 +71,34 @@ const translation = {
   adminInitPassword: 'Admin-Initialpasswort',
   validate: 'Validieren',
   sso: 'Mit SSO fortfahren',
+  checkCode: {
+    didNotReceiveCode: 'Sie haben den Code nicht erhalten?',
+    verificationCodePlaceholder: 'Geben Sie den 6-stelligen Code ein',
+    checkYourEmail: 'Überprüfen Sie Ihre E-Mails',
+    verify: 'Überprüfen',
+    verificationCode: 'Verifizierungscode',
+    useAnotherMethod: 'Verwenden Sie eine andere Methode',
+    validTime: 'Beachten Sie, dass der Code 5 Minuten lang gültig ist',
+    emptyCode: 'Code ist erforderlich',
+    tips: 'Wir senden einen Verifizierungscode an <strong>{{email}}</strong>',
+    invalidCode: 'Ungültiger Code',
+    resend: 'Wieder senden',
+  },
+  or: 'ODER',
+  back: 'Zurück',
+  changePasswordBtn: 'Festlegen eines Kennworts',
+  enterYourName: 'Bitte geben Sie Ihren Benutzernamen ein',
+  setYourAccount: 'Richten Sie Ihr Konto ein',
+  sendVerificationCode: 'Verifizierungscode senden',
+  useVerificationCode: 'Verifizierungscode verwenden',
+  withSSO: 'Mit SSO fortfahren',
+  resetPasswordDesc: 'Geben Sie die E-Mail-Adresse ein, mit der Sie sich bei Dify angemeldet haben, und wir senden Ihnen eine E-Mail zum Zurücksetzen des Passworts.',
+  continueWithCode: 'Fahren Sie mit dem Code fort',
+  resetPassword: 'Passwort zurücksetzen',
+  backToLogin: 'Zurück zum Login',
+  noLoginMethodTip: 'Wenden Sie sich an den Systemadministrator, um eine Authentifizierungsmethode hinzuzufügen.',
+  usePassword: 'Passwort verwenden',
+  noLoginMethod: 'Authentifizierungsmethode nicht konfiguriert',
 }
 
 export default translation
diff --git a/web/i18n/es-ES/login.ts b/web/i18n/es-ES/login.ts
index e56161895e..3a6debbe48 100644
--- a/web/i18n/es-ES/login.ts
+++ b/web/i18n/es-ES/login.ts
@@ -55,6 +55,7 @@ const translation = {
     passwordEmpty: 'Se requiere una contraseña',
     passwordLengthInValid: 'La contraseña debe tener al menos 8 caracteres',
     passwordInvalid: 'La contraseña debe contener letras y números, y tener una longitud mayor a 8',
+    registrationNotAllowed: 'Cuenta no encontrada. Póngase en contacto con el administrador del sistema para registrarse.',
   },
   license: {
     tip: 'Antes de comenzar con Dify Community Edition, lee la',
@@ -70,6 +71,34 @@ const translation = {
   activated: 'Inicia sesión ahora',
   adminInitPassword: 'Contraseña de inicialización de administrador',
   validate: 'Validar',
+  checkCode: {
+    verify: 'Verificar',
+    didNotReceiveCode: '¿No recibiste el código?',
+    verificationCodePlaceholder: 'Ingresa el código de 6 dígitos',
+    checkYourEmail: 'Revisa tu correo electrónico',
+    emptyCode: 'Se requiere código',
+    useAnotherMethod: 'Usar otro método',
+    resend: 'Reenviar',
+    tips: 'Enviamos un código de verificación a <strong>{{email}}</strong>',
+    verificationCode: 'Código de verificación',
+    validTime: 'Ten en cuenta que el código es válido durante 5 minutos',
+    invalidCode: 'Código no válido',
+  },
+  or: 'O',
+  back: 'Atrás',
+  continueWithCode: 'Continuar con el código',
+  usePassword: 'Usar contraseña',
+  changePasswordBtn: 'Establecer una contraseña',
+  withSSO: 'Continuar con SSO',
+  sendVerificationCode: 'Enviar código de verificación',
+  backToLogin: 'Volver al inicio de sesión',
+  resetPassword: 'Restablecer contraseña',
+  enterYourName: 'Por favor, introduzca su nombre de usuario',
+  useVerificationCode: 'Usar código de verificación',
+  resetPasswordDesc: 'Escriba el correo electrónico que utilizó para registrarse en Dify y le enviaremos un correo electrónico de restablecimiento de contraseña.',
+  noLoginMethod: 'Método de autenticación no configurado',
+  setYourAccount: 'Configura tu cuenta',
+  noLoginMethodTip: 'Póngase en contacto con el administrador del sistema para agregar un método de autenticación.',
 }
 
 export default translation
diff --git a/web/i18n/fa-IR/login.ts b/web/i18n/fa-IR/login.ts
index 4ac06c866d..0f2fe9464a 100644
--- a/web/i18n/fa-IR/login.ts
+++ b/web/i18n/fa-IR/login.ts
@@ -55,6 +55,7 @@ const translation = {
     passwordEmpty: 'رمز عبور لازم است',
     passwordLengthInValid: 'رمز عبور باید حداقل ۸ کاراکتر باشد',
     passwordInvalid: 'رمز عبور باید شامل حروف و اعداد باشد و طول آن بیشتر از ۸ کاراکتر باشد',
+    registrationNotAllowed: 'حساب پیدا نشد. لطفا برای ثبت نام با مدیر سیستم تماس حاصل فرمایید.',
   },
   license: {
     tip: 'قبل از شروع Dify Community Edition، GitHub را بخوانید',
@@ -70,6 +71,34 @@ const translation = {
   activated: 'اکنون وارد شوید',
   adminInitPassword: 'رمز عبور اولیه مدیر',
   validate: 'اعتبارسنجی',
+  checkCode: {
+    verify: 'تایید',
+    verificationCode: 'کد تأیید',
+    invalidCode: 'کد نامعتبر',
+    emptyCode: 'کد مورد نیاز است',
+    didNotReceiveCode: 'کد را دریافت نکردید؟',
+    verificationCodePlaceholder: 'کد 6 رقمی را وارد کنید',
+    useAnotherMethod: 'از روش دیگری استفاده کنید',
+    checkYourEmail: 'ایمیل خود را بررسی کنید',
+    validTime: 'به خاطر داشته باشید که کد 5 دقیقه اعتبار دارد',
+    tips: 'کد درستی سنجی را به <strong>{{email}}</strong> ارسال می کنیم',
+    resend: 'ارسال مجدد',
+  },
+  or: 'یا',
+  back: 'بازگشت',
+  backToLogin: 'بازگشت به ورود',
+  changePasswordBtn: 'تنظیم رمز عبور',
+  continueWithCode: 'با کد ادامه دهید',
+  withSSO: 'با SSO ادامه دهید',
+  resetPassword: 'بازنشانی رمز عبور',
+  usePassword: 'از رمز عبور استفاده کنید',
+  enterYourName: 'لطفا نام کاربری خود را وارد کنید',
+  useVerificationCode: 'از کد تأیید استفاده کنید',
+  sendVerificationCode: 'ارسال کد تأیید',
+  setYourAccount: 'حساب خود را تنظیم کنید',
+  noLoginMethod: 'روش احراز هویت پیکربندی نشده است',
+  noLoginMethodTip: 'لطفا برای افزودن روش احراز هویت با مدیر سیستم تماس بگیرید.',
+  resetPasswordDesc: 'ایمیلی را که برای ثبت نام در Dify استفاده کرده اید تایپ کنید و ما یک ایمیل بازنشانی رمز عبور برای شما ارسال خواهیم کرد.',
 }
 
 export default translation
diff --git a/web/i18n/fr-FR/login.ts b/web/i18n/fr-FR/login.ts
index cee09cf0e7..2f59b8afef 100644
--- a/web/i18n/fr-FR/login.ts
+++ b/web/i18n/fr-FR/login.ts
@@ -54,6 +54,7 @@ const translation = {
     passwordEmpty: 'Un mot de passe est requis',
     passwordInvalid: 'Le mot de passe doit contenir des lettres et des chiffres, et la longueur doit être supérieure à 8.',
     passwordLengthInValid: 'Le mot de passe doit comporter au moins 8 caractères.',
+    registrationNotAllowed: 'Compte introuvable. Veuillez contacter l’administrateur système pour vous inscrire.',
   },
   license: {
     tip: 'Avant de commencer Dify Community Edition, lisez le GitHub',
@@ -70,6 +71,34 @@ const translation = {
   adminInitPassword: 'Mot de passe d\'initialisation de l\'administrateur',
   validate: 'Valider',
   sso: 'Poursuivre avec l’authentification unique',
+  checkCode: {
+    verificationCode: 'Code de vérification',
+    useAnotherMethod: 'Utiliser une autre méthode',
+    didNotReceiveCode: 'Vous n’avez pas reçu le code ?',
+    emptyCode: 'Le code est requis',
+    verify: 'Vérifier',
+    verificationCodePlaceholder: 'Entrez le code à 6 chiffres',
+    resend: 'Renvoyer',
+    invalidCode: 'Code non valide',
+    checkYourEmail: 'Vérifiez vos e-mails',
+    validTime: 'Gardez à l’esprit que le code est valable 5 minutes',
+    tips: 'Nous envoyons un code de vérification à <strong>{{email}}</strong>',
+  },
+  sendVerificationCode: 'Envoyer le code de vérification',
+  or: 'OU',
+  continueWithCode: 'Continuer avec le code',
+  useVerificationCode: 'Utiliser le code de vérification',
+  noLoginMethod: 'Méthode d’authentification non configurée',
+  backToLogin: 'Retour à la connexion',
+  changePasswordBtn: 'Définir un mot de passe',
+  setYourAccount: 'Configurer votre compte',
+  withSSO: 'Poursuivre avec l’authentification unique',
+  resetPassword: 'Réinitialiser le mot de passe',
+  back: 'Précédent',
+  enterYourName: 'Veuillez entrer votre nom d’utilisateur',
+  noLoginMethodTip: 'Veuillez contacter l’administrateur système pour ajouter une méthode d’authentification.',
+  resetPasswordDesc: 'Tapez l’adresse e-mail que vous avez utilisée pour vous inscrire sur Dify et nous vous enverrons un e-mail de réinitialisation de mot de passe.',
+  usePassword: 'Utiliser le mot de passe',
 }
 
 export default translation
diff --git a/web/i18n/hi-IN/login.ts b/web/i18n/hi-IN/login.ts
index b3ca0b1a52..e3ad60d572 100644
--- a/web/i18n/hi-IN/login.ts
+++ b/web/i18n/hi-IN/login.ts
@@ -60,6 +60,7 @@ const translation = {
     passwordLengthInValid: 'पासवर्ड कम से कम 8 वर्णों का होना चाहिए',
     passwordInvalid:
       'पासवर्ड में अक्षर और अंक होने चाहिए, और लंबाई 8 से अधिक होनी चाहिए',
+    registrationNotAllowed: 'खाता नहीं मिला. रजिस्टर करने के लिए कृपया सिस्टम एडमिन से संपर्क करें।',
   },
   license: {
     tip: 'Dify Community Edition शुरू करने से पहले, GitHub पर',
@@ -75,6 +76,34 @@ const translation = {
   activated: 'अब साइन इन करें',
   adminInitPassword: 'एडमिन प्रारंभिक पासवर्ड',
   validate: 'सत्यापित करें',
+  checkCode: {
+    verify: 'जाँचना',
+    verificationCode: 'सत्यापन कोड',
+    invalidCode: 'अमान्य कोड',
+    useAnotherMethod: 'किसी अन्य विधि का उपयोग करें',
+    emptyCode: 'कोड आवश्यक है',
+    didNotReceiveCode: 'कोड प्राप्त नहीं हुआ?',
+    resend: 'भेजें',
+    checkYourEmail: 'अपना ईमेल जांचें',
+    validTime: 'ध्यान रखें कि कोड 5 मिनट के लिए वैध है',
+    tips: 'हम <strong>{{email}}</strong> को एक सत्यापन कोड भेजते हैं',
+    verificationCodePlaceholder: '6-अंक कोड दर्ज करें',
+  },
+  sendVerificationCode: 'पुष्टि कोड भेजें',
+  or: 'नहीं तो',
+  continueWithCode: 'कोड के साथ जारी रखें',
+  resetPassword: 'पासवर्ड रीसेट करें',
+  changePasswordBtn: 'पासवर्ड सेट करें',
+  setYourAccount: 'अपना खाता सेट करें',
+  useVerificationCode: 'सत्यापन कोड का उपयोग करें',
+  usePassword: 'पासवर्ड का उपयोग करें',
+  backToLogin: 'लॉगिन पर वापस जाएं',
+  noLoginMethod: 'प्रमाणीकरण विधि कॉन्फ़िगर नहीं की गई',
+  enterYourName: 'कृपया अपना उपयोगकर्ता नाम दर्ज करें',
+  noLoginMethodTip: 'प्रमाणीकरण विधि जोड़ने के लिए कृपया सिस्टम व्यवस्थापक से संपर्क करें.',
+  resetPasswordDesc: 'वह ईमेल टाइप करें जिसका उपयोग आपने Dify पर साइन अप करने के लिए किया था और हम आपको एक पासवर्ड रीसेट ईमेल भेजेंगे।',
+  withSSO: 'एसएसओ के साथ जारी रखें',
+  back: 'पीछे',
 }
 
 export default translation
diff --git a/web/i18n/it-IT/login.ts b/web/i18n/it-IT/login.ts
index b46960aa45..eb547ec661 100644
--- a/web/i18n/it-IT/login.ts
+++ b/web/i18n/it-IT/login.ts
@@ -65,6 +65,7 @@ const translation = {
     passwordLengthInValid: 'La password deve essere di almeno 8 caratteri',
     passwordInvalid:
       'La password deve contenere lettere e numeri, e la lunghezza deve essere maggiore di 8',
+    registrationNotAllowed: 'Account non trovato. Si prega di contattare l\'amministratore di sistema per registrarsi.',
   },
   license: {
     tip: 'Prima di avviare Dify Community Edition, leggi su GitHub',
@@ -80,6 +81,34 @@ const translation = {
   activated: 'Accedi ora',
   adminInitPassword: 'Password di inizializzazione amministratore',
   validate: 'Convalida',
+  checkCode: {
+    invalidCode: 'Codice non valido',
+    verificationCodePlaceholder: 'Inserisci il codice a 6 cifre',
+    verify: 'Verificare',
+    emptyCode: 'Il codice è obbligatorio',
+    resend: 'Inviare',
+    verificationCode: 'Codice di verifica',
+    validTime: 'Tieni presente che il codice è valido per 5 minuti',
+    didNotReceiveCode: 'Non hai ricevuto il codice?',
+    checkYourEmail: 'Controlla la tua email',
+    tips: 'Inviamo un codice di verifica a <strong>{{email}}</strong>',
+    useAnotherMethod: 'Usa un altro metodo',
+  },
+  or: 'O',
+  back: 'Indietro',
+  noLoginMethod: 'Metodo di autenticazione non configurato',
+  backToLogin: 'Torna al login',
+  changePasswordBtn: 'Imposta una password',
+  setYourAccount: 'Imposta il tuo account',
+  withSSO: 'Continua con SSO',
+  usePassword: 'Usa password',
+  resetPassword: 'Reimposta password',
+  continueWithCode: 'Continua con il codice',
+  sendVerificationCode: 'Invia codice di verifica',
+  useVerificationCode: 'Usa il codice di verifica',
+  resetPasswordDesc: 'Digita l\'e-mail che hai utilizzato per registrarti su Dify e ti invieremo un\'e-mail per reimpostare la password.',
+  noLoginMethodTip: 'Contatta l\'amministratore di sistema per aggiungere un metodo di autenticazione.',
+  enterYourName: 'Inserisci il tuo nome utente',
 }
 
 export default translation
diff --git a/web/i18n/ja-JP/login.ts b/web/i18n/ja-JP/login.ts
index 72a26df3db..178c2617ae 100644
--- a/web/i18n/ja-JP/login.ts
+++ b/web/i18n/ja-JP/login.ts
@@ -55,6 +55,7 @@ const translation = {
     passwordEmpty: 'パスワードは必須です',
     passwordLengthInValid: 'パスワードは8文字以上でなければなりません',
     passwordInvalid: 'パスワードは文字と数字を含み、長さは8以上である必要があります',
+    registrationNotAllowed: 'アカウントが見つかりません。登録するためにシステム管理者に連絡してください。',
   },
   license: {
     tip: 'Dify Community Editionを開始する前に、GitHubの',
@@ -70,6 +71,34 @@ const translation = {
   activated: '今すぐサインイン',
   adminInitPassword: '管理者初期化パスワード',
   validate: '検証',
+  checkCode: {
+    invalidCode: '無効なコード',
+    verify: '確かめる',
+    verificationCodePlaceholder: '6桁のコードを入力してください',
+    useAnotherMethod: '別の方法を使用する',
+    didNotReceiveCode: 'コードが届きませんか?',
+    resend: '再送',
+    verificationCode: '認証コード',
+    tips: '<strong>確認コードを{{email}}に送信します。</strong>',
+    validTime: 'コードは5分間有効であることに注意してください',
+    emptyCode: 'コードが必要です',
+    checkYourEmail: 'メールをチェックしてください',
+  },
+  useVerificationCode: '確認コードを使用する',
+  or: '又は',
+  back: '戻る',
+  resetPassword: 'パスワードのリセット',
+  changePasswordBtn: 'パスワードを設定する',
+  setYourAccount: 'アカウントを設定する',
+  withSSO: 'SSOを続行する',
+  noLoginMethod: '認証方法が構成されていません',
+  backToLogin: 'ログインに戻る',
+  continueWithCode: 'コードで続行',
+  noLoginMethodTip: 'システム管理者に連絡して、認証方法を追加してください。',
+  usePassword: 'パスワードを使用',
+  sendVerificationCode: '確認コードの送信',
+  enterYourName: 'ユーザー名を入力してください',
+  resetPasswordDesc: 'Difyへのサインアップに使用したメールアドレスを入力すると、パスワードリセットメールが送信されます。',
 }
 
 export default translation
diff --git a/web/i18n/ko-KR/login.ts b/web/i18n/ko-KR/login.ts
index ceddeb7b9b..a338ce5ed7 100644
--- a/web/i18n/ko-KR/login.ts
+++ b/web/i18n/ko-KR/login.ts
@@ -54,6 +54,7 @@ const translation = {
     passwordEmpty: '비밀번호를 입력하세요.',
     passwordInvalid: '비밀번호는 문자와 숫자를 포함하고 8자 이상이어야 합니다.',
     passwordLengthInValid: '비밀번호는 8자 이상이어야 합니다.',
+    registrationNotAllowed: '계정을 찾을 수 없습니다. 등록하려면 시스템 관리자에게 문의하십시오.',
   },
   license: {
     tip: 'Dify Community Edition을 시작하기 전에 GitHub의',
@@ -70,6 +71,34 @@ const translation = {
   adminInitPassword: '관리자 초기화 비밀번호',
   validate: '확인',
   sso: 'SSO로 계속하기',
+  checkCode: {
+    verify: '확인',
+    verificationCode: '인증 코드',
+    tips: '<strong>{{email}}</strong>로 인증 코드를 보내드립니다.',
+    validTime: '코드는 5분 동안 유효합니다',
+    checkYourEmail: '이메일 주소 확인',
+    invalidCode: '유효하지 않은 코드',
+    verificationCodePlaceholder: '6자리 코드 입력',
+    emptyCode: '코드가 필요합니다.',
+    useAnotherMethod: '다른 방법 사용',
+    didNotReceiveCode: '코드를 받지 못하셨나요?',
+    resend: '재전송',
+  },
+  back: '뒤로',
+  or: '또는',
+  useVerificationCode: '인증 코드 사용',
+  continueWithCode: '코드로 계속하기',
+  usePassword: '비밀번호 사용',
+  withSSO: 'SSO로 계속하기',
+  backToLogin: '로그인으로 돌아가기',
+  resetPassword: '비밀번호 재설정',
+  setYourAccount: '계정 설정',
+  noLoginMethod: '인증 방법이 구성되지 않음',
+  sendVerificationCode: '인증 코드 보내기',
+  changePasswordBtn: '비밀번호 설정',
+  enterYourName: '사용자 이름을 입력해 주세요',
+  noLoginMethodTip: '인증 방법을 추가하려면 시스템 관리자에게 문의하십시오.',
+  resetPasswordDesc: 'Dify에 가입할 때 사용한 이메일을 입력하면 비밀번호 재설정 이메일을 보내드립니다.',
 }
 
 export default translation
diff --git a/web/i18n/pl-PL/login.ts b/web/i18n/pl-PL/login.ts
index be9e74f37d..78f11f3a26 100644
--- a/web/i18n/pl-PL/login.ts
+++ b/web/i18n/pl-PL/login.ts
@@ -60,6 +60,7 @@ const translation = {
     passwordInvalid:
       'Hasło musi zawierać litery i cyfry, a jego długość musi być większa niż 8',
     passwordLengthInValid: 'Hasło musi składać się z co najmniej 8 znaków',
+    registrationNotAllowed: 'Nie znaleziono konta. Skontaktuj się z administratorem systemu, aby się zarejestrować.',
   },
   license: {
     tip: 'Przed rozpoczęciem wersji społecznościowej Dify, przeczytaj GitHub',
@@ -75,6 +76,34 @@ const translation = {
   activated: 'Zaloguj się teraz',
   adminInitPassword: 'Hasło inicjalizacyjne administratora',
   validate: 'Sprawdź',
+  checkCode: {
+    verify: 'Zweryfikować',
+    resend: 'Wysłać',
+    invalidCode: 'Nieprawidłowy kod',
+    verificationCodePlaceholder: 'Wprowadź 6-cyfrowy kod',
+    validTime: 'Pamiętaj, że kod jest ważny przez 5 minut',
+    checkYourEmail: 'Sprawdź swoją pocztę e-mail',
+    useAnotherMethod: 'Użyj innej metody',
+    didNotReceiveCode: 'Nie otrzymałeś kodu?',
+    verificationCode: 'Kod weryfikacyjny',
+    tips: 'Wysyłamy kod weryfikacyjny na <strong>adres {{email}}</strong>',
+    emptyCode: 'Kod jest wymagany',
+  },
+  continueWithCode: 'Kontynuuj z kodem',
+  setYourAccount: 'Ustaw swoje konto',
+  usePassword: 'Użyj hasła',
+  withSSO: 'Kontynuuj logowanie jednokrotne',
+  sendVerificationCode: 'Wyślij kod weryfikacyjny',
+  back: 'Wstecz',
+  resetPassword: 'Zresetuj hasło',
+  changePasswordBtn: 'Ustawianie hasła',
+  backToLogin: 'Powrót do logowania',
+  useVerificationCode: 'Użyj kodu weryfikacyjnego',
+  enterYourName: 'Podaj swoją nazwę użytkownika',
+  resetPasswordDesc: 'Wpisz adres e-mail, którego użyłeś do rejestracji w Dify, a my wyślemy Ci wiadomość e-mail z prośbą o zresetowanie hasła.',
+  or: 'LUB',
+  noLoginMethodTip: 'Skontaktuj się z administratorem systemu, aby dodać metodę uwierzytelniania.',
+  noLoginMethod: 'Nie skonfigurowano metody uwierzytelniania',
 }
 
 export default translation
diff --git a/web/i18n/pt-BR/login.ts b/web/i18n/pt-BR/login.ts
index a1f278dba8..6c08de45b0 100644
--- a/web/i18n/pt-BR/login.ts
+++ b/web/i18n/pt-BR/login.ts
@@ -54,6 +54,7 @@ const translation = {
     passwordEmpty: 'A senha é obrigatória',
     passwordInvalid: 'A senha deve conter letras e números e ter um comprimento maior que 8',
     passwordLengthInValid: 'A senha deve ter pelo menos 8 caracteres',
+    registrationNotAllowed: 'Conta não encontrada. Entre em contato com o administrador do sistema para se registrar.',
   },
   license: {
     tip: 'Antes de começar a usar a Edição Comunitária do Dify, leia a',
@@ -70,6 +71,34 @@ const translation = {
   adminInitPassword: 'Senha de inicialização do administrador',
   validate: 'Validar',
   sso: 'Continuar com SSO',
+  checkCode: {
+    useAnotherMethod: 'Use outro método',
+    invalidCode: 'Código inválido',
+    verificationCodePlaceholder: 'Digite o código de 6 dígitos',
+    checkYourEmail: 'Verifique seu e-mail',
+    tips: 'Enviamos um código de verificação para <strong>{{email}}</strong>',
+    emptyCode: 'O código é necessário',
+    verify: 'Verificar',
+    verificationCode: 'Código de verificação',
+    resend: 'Reenviar',
+    didNotReceiveCode: 'Não recebeu o código?',
+    validTime: 'Lembre-se de que o código é válido por 5 minutos',
+  },
+  resetPassword: 'Redefinir senha',
+  or: 'OU',
+  withSSO: 'Continuar com SSO',
+  setYourAccount: 'Defina sua conta',
+  backToLogin: 'Voltar ao login',
+  noLoginMethodTip: 'Entre em contato com o administrador do sistema para adicionar um método de autenticação.',
+  continueWithCode: 'Continuar com o código',
+  enterYourName: 'Por favor, digite seu nome de usuário',
+  noLoginMethod: 'Método de autenticação não configurado',
+  useVerificationCode: 'Usar código de verificação',
+  back: 'Voltar',
+  changePasswordBtn: 'Definir uma senha',
+  resetPasswordDesc: 'Digite o e-mail que você usou para se inscrever no Dify e enviaremos um e-mail de redefinição de senha.',
+  sendVerificationCode: 'Enviar código de verificação',
+  usePassword: 'Usar senha',
 }
 
 export default translation
diff --git a/web/i18n/ro-RO/login.ts b/web/i18n/ro-RO/login.ts
index 6a8d899b33..a60e367ea7 100644
--- a/web/i18n/ro-RO/login.ts
+++ b/web/i18n/ro-RO/login.ts
@@ -55,6 +55,7 @@ const translation = {
     passwordEmpty: 'Parola este obligatorie',
     passwordInvalid: 'Parola trebuie să conțină litere și cifre, iar lungimea trebuie să fie mai mare de 8 caractere',
     passwordLengthInValid: 'Parola trebuie să aibă cel puțin 8 caractere',
+    registrationNotAllowed: 'Contul nu a fost găsit. Vă rugăm să contactați administratorul de sistem pentru a vă înregistra.',
   },
   license: {
     tip: 'Înainte de a începe Dify Community Edition, citește',
@@ -70,6 +71,34 @@ const translation = {
   activated: 'Autentifică-te acum',
   adminInitPassword: 'Parola de inițializare a administratorului',
   validate: 'Validează',
+  checkCode: {
+    verificationCode: 'Cod de verificare',
+    invalidCode: 'Cod nevalid',
+    checkYourEmail: 'Verifică-ți e-mailul',
+    validTime: 'Rețineți că codul este valabil timp de 5 minute',
+    didNotReceiveCode: 'Nu ați primit codul?',
+    verificationCodePlaceholder: 'Introduceți codul din 6 cifre',
+    emptyCode: 'Codul este necesar',
+    verify: 'Verifica',
+    tips: 'Trimitem un cod de verificare la <strong>{{email}}</strong>',
+    useAnotherMethod: 'Utilizați o altă metodă',
+    resend: 'Retrimite',
+  },
+  usePassword: 'Utilizați parola',
+  useVerificationCode: 'Utilizarea codului de verificare',
+  sendVerificationCode: 'Trimiteți codul de verificare',
+  resetPassword: 'Resetați parola',
+  withSSO: 'Continuați cu SSO',
+  setYourAccount: 'Setați-vă contul',
+  noLoginMethodTip: 'Vă rugăm să contactați administratorul de sistem pentru a adăuga o metodă de autentificare.',
+  back: 'Spate',
+  backToLogin: 'Înapoi la autentificare',
+  continueWithCode: 'Continuați cu codul',
+  noLoginMethod: 'Metoda de autentificare nu este configurată',
+  enterYourName: 'Vă rugăm să introduceți numele de utilizator',
+  or: 'SAU',
+  resetPasswordDesc: 'Tastați e-mailul pe care l-ați folosit pentru a vă înscrie pe Dify și vă vom trimite un e-mail de resetare a parolei.',
+  changePasswordBtn: 'Setați o parolă',
 }
 
 export default translation
diff --git a/web/i18n/ru-RU/login.ts b/web/i18n/ru-RU/login.ts
index 81918745dd..7aba7c4cdd 100644
--- a/web/i18n/ru-RU/login.ts
+++ b/web/i18n/ru-RU/login.ts
@@ -55,6 +55,7 @@ const translation = {
     passwordEmpty: 'Пароль обязателен',
     passwordLengthInValid: 'Пароль должен содержать не менее 8 символов',
     passwordInvalid: 'Пароль должен содержать буквы и цифры, а длина должна быть больше 8',
+    registrationNotAllowed: 'Аккаунт не найден. Пожалуйста, свяжитесь с системным администратором для регистрации.',
   },
   license: {
     tip: 'Перед запуском Dify Community Edition ознакомьтесь с лицензией GitHub',
@@ -70,6 +71,34 @@ const translation = {
   activated: 'Войдите сейчас',
   adminInitPassword: 'Пароль инициализации администратора',
   validate: 'Проверить',
+  checkCode: {
+    verify: 'Проверять',
+    resend: 'Отправить',
+    invalidCode: 'Неверный код',
+    didNotReceiveCode: 'Не получили код?',
+    emptyCode: 'Код обязателен для заполнения',
+    verificationCode: 'Проверочный код',
+    checkYourEmail: 'Проверьте свою электронную почту',
+    tips: 'Мы отправляем код подтверждения на <strong>{{email}}</strong>',
+    validTime: 'Имейте в виду, что код действителен в течение 5 минут',
+    verificationCodePlaceholder: 'Введите 6-значный код',
+    useAnotherMethod: 'Используйте другой метод',
+  },
+  back: 'Назад',
+  changePasswordBtn: 'Установите пароль',
+  usePassword: 'Использовать пароль',
+  continueWithCode: 'Продолжить с кодом',
+  resetPassword: 'Сброс пароля',
+  withSSO: 'Продолжение работы с SSO',
+  noLoginMethod: 'Метод аутентификации не настроен',
+  useVerificationCode: 'Используйте код подтверждения',
+  sendVerificationCode: 'Отправить код подтверждения',
+  setYourAccount: 'Настройте свою учетную запись',
+  backToLogin: 'Вернуться к входу',
+  enterYourName: 'Пожалуйста, введите свое имя пользователя',
+  noLoginMethodTip: 'Обратитесь к системному администратору, чтобы добавить метод аутентификации.',
+  resetPasswordDesc: 'Введите адрес электронной почты, который вы использовали для регистрации в Dify, и мы отправим вам электронное письмо для сброса пароля.',
+  or: 'ИЛИ',
 }
 
 export default translation
diff --git a/web/i18n/tr-TR/login.ts b/web/i18n/tr-TR/login.ts
index 8f0a9eff89..b6727082a6 100644
--- a/web/i18n/tr-TR/login.ts
+++ b/web/i18n/tr-TR/login.ts
@@ -55,6 +55,7 @@ const translation = {
     passwordEmpty: 'Şifre gereklidir',
     passwordLengthInValid: 'Şifre en az 8 karakterden oluşmalıdır',
     passwordInvalid: 'Şifre harf ve rakamlardan oluşmalı ve uzunluğu 8 karakterden fazla olmalıdır',
+    registrationNotAllowed: 'Hesap bulunamadı. Kayıt olmak için lütfen sistem yöneticisi ile iletişime geçin.',
   },
   license: {
     tip: 'Dify Community Edition\'ı başlatmadan önce GitHub\'daki',
@@ -70,6 +71,34 @@ const translation = {
   activated: 'Şimdi giriş yapın',
   adminInitPassword: 'Yönetici başlangıç şifresi',
   validate: 'Doğrula',
+  checkCode: {
+    emptyCode: 'Kod gereklidir',
+    verificationCode: 'Doğrulama kodu',
+    verify: 'Doğrulamak',
+    validTime: 'Kodun 5 dakika boyunca geçerli olduğunu unutmayın',
+    invalidCode: 'Geçersiz kod',
+    checkYourEmail: 'E-postanızı kontrol edin',
+    verificationCodePlaceholder: '6 haneli kodu girin',
+    useAnotherMethod: 'Başka bir yöntem kullanın',
+    didNotReceiveCode: 'Kodu almadınız mı?',
+    tips: '<strong>{{email}}</strong> adresine bir doğrulama kodu gönderiyoruz',
+    resend: 'Tekrar Gönder',
+  },
+  enterYourName: 'Lütfen kullanıcı adınızı giriniz',
+  resetPassword: 'Şifre Sıfırlama',
+  noLoginMethod: 'Kimlik doğrulama yöntemi yapılandırılmadı',
+  or: 'VEYA',
+  continueWithCode: 'Kodla Devam Et',
+  setYourAccount: 'Hesabınızı Ayarlayın',
+  changePasswordBtn: 'Bir şifre belirleyin',
+  withSSO: 'TOA ile devam etme',
+  usePassword: 'Şifre Kullan',
+  resetPasswordDesc: 'Dify\'a kaydolmak için kullandığınız e-postayı yazın, size bir şifre sıfırlama e-postası gönderelim.',
+  backToLogin: 'Girişe geri dön',
+  useVerificationCode: 'Doğrulama Kodunu Kullan',
+  noLoginMethodTip: 'Bir kimlik doğrulama yöntemi eklemek için lütfen sistem yöneticisine başvurun.',
+  sendVerificationCode: 'Doğrulama Kodu Gönder',
+  back: 'Geri',
 }
 
 export default translation
diff --git a/web/i18n/uk-UA/login.ts b/web/i18n/uk-UA/login.ts
index 7acc1920fc..cdb0b79d8e 100644
--- a/web/i18n/uk-UA/login.ts
+++ b/web/i18n/uk-UA/login.ts
@@ -54,6 +54,7 @@ const translation = {
     passwordEmpty: 'Пароль є обов’язковим',
     passwordInvalid: 'Пароль повинен містити літери та цифри, а довжина повинна бути більшою за 8',
     passwordLengthInValid: 'Пароль повинен бути не менше 8 символів',
+    registrationNotAllowed: 'Аккаунт не знайдено. Будь ласка, зверніться до адміністратора системи для реєстрації.',
   },
   license: {
     tip: 'Перед запуском Dify Community Edition ознайомтеся з ліцензією з відкритим кодом на GitHub',
@@ -70,6 +71,34 @@ const translation = {
   adminInitPassword: 'Пароль ініціалізації адміністратора',
   validate: 'Перевірити',
   sso: 'Продовжуйте працювати з SSW',
+  checkCode: {
+    didNotReceiveCode: 'Не отримали код?',
+    invalidCode: 'Невірний код',
+    resend: 'Відправити',
+    verificationCodePlaceholder: 'Введіть 6-значний код',
+    emptyCode: 'Код обов\'язковий',
+    checkYourEmail: 'Перевірте свою електронну пошту',
+    verify: 'Перевірити',
+    verificationCode: 'Код підтвердження',
+    useAnotherMethod: 'Використовуйте інший спосіб',
+    tips: 'Ми надсилаємо код підтвердження на <strong>адресу {{email}}</strong>',
+    validTime: 'Майте на увазі, що код дійсний протягом 5 хвилин',
+  },
+  back: 'Задній',
+  backToLogin: 'Назад до входу',
+  or: 'АБО',
+  usePassword: 'Використовуйте пароль',
+  sendVerificationCode: 'Надішліть код підтвердження',
+  changePasswordBtn: 'Встановіть пароль',
+  noLoginMethod: 'Метод автентифікації не налаштовано',
+  withSSO: 'Продовжуйте працювати з SSW',
+  useVerificationCode: 'Використовуйте код підтвердження',
+  setYourAccount: 'Налаштуйте свій обліковий запис',
+  enterYourName: 'Будь ласка, введіть своє ім\'я користувача',
+  continueWithCode: 'Продовжити з кодом',
+  noLoginMethodTip: 'Будь ласка, зверніться до адміністратора системи, щоб додати метод автентифікації.',
+  resetPasswordDesc: 'Введіть адресу електронної пошти, яку ви використовували для реєстрації на Dify, і ми надішлемо вам електронний лист для скидання пароля.',
+  resetPassword: 'Скинути пароль',
 }
 
 export default translation
diff --git a/web/i18n/vi-VN/login.ts b/web/i18n/vi-VN/login.ts
index 0ee39ffe2c..a07c1bf807 100644
--- a/web/i18n/vi-VN/login.ts
+++ b/web/i18n/vi-VN/login.ts
@@ -54,6 +54,7 @@ const translation = {
     passwordEmpty: 'Vui lòng nhập mật khẩu',
     passwordInvalid: 'Mật khẩu phải chứa cả chữ và số, và có độ dài ít nhất 8 ký tự',
     passwordLengthInValid: 'Mật khẩu phải có ít nhất 8 ký tự',
+    registrationNotAllowed: 'Không tìm thấy tài khoản. Vui lòng liên hệ với quản trị viên hệ thống để đăng ký.',
   },
   license: {
     tip: 'Trước khi bắt đầu sử dụng Phiên bản Cộng đồng của Dify, vui lòng đọc',
@@ -70,6 +71,34 @@ const translation = {
   adminInitPassword: 'Mật khẩu khởi tạo quản trị viên',
   validate: 'Xác thực',
   sso: 'Tiếp tục với SSO',
+  checkCode: {
+    checkYourEmail: 'Kiểm tra email của bạn',
+    verify: 'Xác minh',
+    resend: 'Gửi lại',
+    didNotReceiveCode: 'Bạn không nhận được mã?',
+    validTime: 'Lưu ý rằng mã có hiệu lực trong 5 phút',
+    invalidCode: 'Mã không hợp lệ',
+    verificationCode: 'Mã xác minh',
+    useAnotherMethod: 'Sử dụng phương pháp khác',
+    emptyCode: 'Mã là bắt buộc',
+    verificationCodePlaceholder: 'Nhập mã gồm 6 chữ số',
+    tips: 'Chúng tôi gửi mã xác minh đến <strong>{{email}}</strong>',
+  },
+  back: 'Lưng',
+  withSSO: 'Tiếp tục với SSO',
+  continueWithCode: 'Tiếp tục với mã',
+  changePasswordBtn: 'Đặt mật khẩu',
+  useVerificationCode: 'Sử dụng mã xác minh',
+  noLoginMethodTip: 'Vui lòng liên hệ với quản trị viên hệ thống để thêm phương thức xác thực.',
+  enterYourName: 'Vui lòng nhập tên người dùng của bạn',
+  setYourAccount: 'Đặt tài khoản của bạn',
+  backToLogin: 'Quay lại đăng nhập',
+  noLoginMethod: 'Phương thức xác thực không được cấu hình',
+  or: 'HOẶC',
+  resetPasswordDesc: 'Nhập email bạn đã sử dụng để đăng ký trên Dify và chúng tôi sẽ gửi cho bạn email đặt lại mật khẩu.',
+  usePassword: 'Sử dụng mật khẩu',
+  resetPassword: 'Đặt lại mật khẩu',
+  sendVerificationCode: 'Gửi mã xác minh',
 }
 
 export default translation
diff --git a/web/i18n/zh-Hant/login.ts b/web/i18n/zh-Hant/login.ts
index 69ae69f952..a35346e71a 100644
--- a/web/i18n/zh-Hant/login.ts
+++ b/web/i18n/zh-Hant/login.ts
@@ -54,6 +54,7 @@ const translation = {
     passwordEmpty: '密碼不能為空',
     passwordInvalid: '密碼必須包含字母和數字，且長度不小於8位',
     passwordLengthInValid: '密碼必須至少為8個字元',
+    registrationNotAllowed: '找不到帳戶。請聯繫系統管理員進行註冊。',
   },
   license: {
     tip: '啟動 Dify 社群版之前, 請閱讀 GitHub 上的',
@@ -70,6 +71,34 @@ const translation = {
   adminInitPassword: '管理員初始化密碼',
   validate: '驗證',
   sso: '繼續使用 SSO',
+  checkCode: {
+    verify: '驗證',
+    resend: '發送',
+    didNotReceiveCode: '沒有收到驗證碼？',
+    emptyCode: '驗證碼是必需的',
+    checkYourEmail: '檢查您的電子郵件',
+    tips: '我們將驗證碼發送到 <strong>{{email}}</strong>',
+    verificationCodePlaceholder: '輸入6位代碼',
+    useAnotherMethod: '使用其他方法',
+    validTime: '請記住，該代碼的有效期為 5 分鐘',
+    verificationCode: '驗證碼',
+    invalidCode: '無效代碼',
+  },
+  continueWithCode: 'Continue With Code',
+  or: '或',
+  sendVerificationCode: '發送驗證碼',
+  resetPassword: '重置密碼',
+  noLoginMethod: '未配置身份驗證方法',
+  setYourAccount: '設置您的帳戶',
+  useVerificationCode: '使用驗證碼',
+  changePasswordBtn: '設置密碼',
+  enterYourName: '請輸入您的使用者名',
+  backToLogin: '返回登錄',
+  noLoginMethodTip: '請聯繫系統管理員以添加身份驗證方法。',
+  withSSO: '繼續使用 SSO',
+  back: '返回',
+  resetPasswordDesc: '輸入您用於註冊 Dify 的電子郵件，我們將向您發送一封密碼重置電子郵件。',
+  usePassword: '使用密碼',
 }
 
 export default translation