feat: remove OTP gate from transactions, fix categories auth, add implementation plan

- Remove OtpGateGuard from transactions controller (OTP verified at login)
- Fix categories controller to use authenticated user instead of TEMP_USER_ID
- Add comprehensive implementation plan document
- Update .env.example with WEB_APP_URL
- Prepare for admin dashboard development

apps/api/dist/users/users.controller.d.ts

@@ -1,16 +1,54 @@
 import { UsersService } from './users.service';
+interface RequestWithUser extends Request {
+    user: {
+        userId: string;
+        email: string;
+    };
+}
 export declare class UsersController {
     private readonly users;
     constructor(users: UsersService);
     me(): Promise<{
         id: string;
-        email: string | null;
+        email: string;
+        phone: string | null;
         createdAt: Date;
         updatedAt: Date;
         status: string;
+        emailVerified: boolean;
+        passwordHash: string | null;
         name: string | null;
         avatarUrl: string | null;
         defaultCurrency: string | null;
         timeZone: string | null;
+        otpEmailEnabled: boolean;
+        otpWhatsappEnabled: boolean;
+        otpTotpEnabled: boolean;
+        otpTotpSecret: string | null;
     } | null>;
+    updateProfile(req: RequestWithUser, body: {
+        name?: string;
+        phone?: string;
+    }): Promise<{
+        success: boolean;
+        message: string;
+        user: {
+            id: string;
+            email: string;
+            phone: string | null;
+            name: string | null;
+            avatarUrl: string | null;
+        };
+    }>;
+    getAuthInfo(req: RequestWithUser): Promise<{
+        hasGoogleAuth: boolean;
+        hasPassword: boolean;
+    }>;
+    deleteAccount(req: RequestWithUser, body: {
+        password: string;
+    }): Promise<{
+        success: boolean;
+        message: string;
+    }>;
 }
+export {};