feat: harden enterprise control plane

android/app/src/main/java/com/hyzq/boss/BossApiClient.java

@@ -673,9 +673,15 @@ public class BossApiClient {
     }
 
     public ApiResponse logout() throws IOException, JSONException {
-        ApiResponse response = request("POST", "/api/auth/logout", new JSONObject(), false);
+        try {
+            return request("POST", "/api/auth/logout", new JSONObject(), false);
+        } finally {
+            clearSession();
+        }
+    }
+
+    public void clearLocalAuthState() {
         clearSession();
-        return response;
     }
 
     public String getAccountLabel() {
@@ -1067,6 +1073,8 @@ public class BossApiClient {
         prefs.edit()
                 .remove(KEY_SESSION_COOKIE)
                 .remove(KEY_RESTORE_TOKEN)
+                .remove(KEY_ACCOUNT)
+                .remove(KEY_DISPLAY_NAME)
                 .apply();
     }
 

android/app/src/main/java/com/hyzq/boss/BossUi.java

@@ -1227,6 +1227,16 @@ public final class BossUi {
             @Nullable JSONObject progress,
             @Nullable String meta
     ) {
+        String controlMode = progress == null ? "" : progress.optString("controlMode", "").trim();
+        String runtimeKind = progress == null ? "" : progress.optString("runtimeKind", "").trim();
+        boolean nativeRemoteControl = "native_remote_control".equals(controlMode)
+                || "browser-automation-runtime".equals(runtimeKind)
+                || "computer-use-runtime".equals(runtimeKind);
+        String titleText = progress == null ? "" : progress.optString("title", "").trim();
+        if (TextUtils.isEmpty(titleText)) {
+            titleText = nativeRemoteControl ? "远程控制进度" : "进度";
+        }
+
         LinearLayout card = new LinearLayout(context);
         card.setOrientation(LinearLayout.VERTICAL);
         LinearLayout.LayoutParams params = new LinearLayout.LayoutParams(
@@ -1250,7 +1260,7 @@ public final class BossUi {
                 LinearLayout.LayoutParams.MATCH_PARENT,
                 LinearLayout.LayoutParams.WRAP_CONTENT
         ));
-        TextView title = sectionTitle(context, "进度");
+        TextView title = sectionTitle(context, titleText);
         title.setLayoutParams(new LinearLayout.LayoutParams(0, LinearLayout.LayoutParams.WRAP_CONTENT, 1f));
         titleRow.addView(title);
         TextView pin = new TextView(context);
@@ -1277,6 +1287,15 @@ public final class BossUi {
             }
         }
 
+        if (nativeRemoteControl) {
+            if (!TextUtils.isEmpty(meta)) {
+                TextView metaView = secondaryText(context, meta);
+                metaView.setPadding(0, dp(context, 10), 0, 0);
+                card.addView(metaView);
+            }
+            return card;
+        }
+
         card.addView(divider(context));
         card.addView(sectionTitle(context, "分支详情"));
         JSONObject branch = progress == null ? null : progress.optJSONObject("branch");

android/app/src/main/java/com/hyzq/boss/MainActivity.java

@@ -52,6 +52,7 @@ import java.util.function.Supplier;
 
 public class MainActivity extends AppCompatActivity {
     public static final String EXTRA_INITIAL_TAB = "initial_tab";
+    public static final String EXTRA_FORCE_LOGOUT = "force_logout";
     private static final int REQUEST_POST_NOTIFICATIONS = 2101;
     private static final String UI_PREFS = "boss_native_client";
     private static final String KEY_LAST_ROOT_TAB = "last_root_tab";
@@ -169,6 +170,10 @@ public class MainActivity extends AppCompatActivity {
         bindViews();
         bindActions();
         configureBackNavigation();
+        if (isForceLogoutIntent(getIntent())) {
+            forceLogoutToLoginPanel();
+            return;
+        }
         applyInitialTab(getIntent());
         bootstrapSession();
     }
@@ -195,6 +200,10 @@ public class MainActivity extends AppCompatActivity {
     protected void onNewIntent(Intent intent) {
         super.onNewIntent(intent);
         setIntent(intent);
+        if (isForceLogoutIntent(intent)) {
+            forceLogoutToLoginPanel();
+            return;
+        }
         applyInitialTab(intent);
         if (contentPanel.getVisibility() == View.VISIBLE) {
             maybeApplyPreferredEntry();
@@ -202,6 +211,19 @@ public class MainActivity extends AppCompatActivity {
         }
     }
 
+    private boolean isForceLogoutIntent(@Nullable Intent intent) {
+        return intent != null && intent.getBooleanExtra(EXTRA_FORCE_LOGOUT, false);
+    }
+
+    private void forceLogoutToLoginPanel() {
+        apiClient.clearLocalAuthState();
+        sessionData = null;
+        conversationsData = null;
+        devicesData = null;
+        otaData = null;
+        showLogin("已退出登录。点击登录可重新进入系统。");
+    }
+
     private void configureBackNavigation() {
         getOnBackPressedDispatcher().addCallback(this, new OnBackPressedCallback(true) {
             @Override

android/app/src/main/java/com/hyzq/boss/SecurityActivity.java

@@ -134,6 +134,7 @@ public class SecurityActivity extends BossScreenActivity {
                     showMessage("会话已撤销");
                     if (current) {
                         Intent intent = new Intent(this, MainActivity.class);
+                        intent.putExtra(MainActivity.EXTRA_FORCE_LOGOUT, true);
                         intent.addFlags(Intent.FLAG_ACTIVITY_CLEAR_TOP | Intent.FLAG_ACTIVITY_NEW_TASK);
                         startActivity(intent);
                         finish();
@@ -161,6 +162,7 @@ public class SecurityActivity extends BossScreenActivity {
             runOnUiThread(() -> {
                 setRefreshing(false);
                 Intent intent = new Intent(this, MainActivity.class);
+                intent.putExtra(MainActivity.EXTRA_FORCE_LOGOUT, true);
                 intent.addFlags(Intent.FLAG_ACTIVITY_CLEAR_TOP | Intent.FLAG_ACTIVITY_NEW_TASK);
                 startActivity(intent);
                 finish();