feat(auth): add Gemini Web token saving endpoint

- Introduced `POST /gemini-web-token` endpoint to save Gemini Web cookies directly.
- Added payload validation and hashed-based file naming for persistence.
- Updated documentation to reflect the new management API functionality.

MANAGEMENT_API_CN.md

@@ -659,6 +659,19 @@
     { "status": "ok", "url": "https://..." }
     ```
 
+- POST `/gemini-web-token` — 直接保存 Gemini Web Cookie
+  - 请求：
+    ```bash
+    curl -H 'Authorization: Bearer <MANAGEMENT_KEY>' \
+      -H 'Content-Type: application/json' \
+      -d '{"secure_1psid": "<__Secure-1PSID>", "secure_1psidts": "<__Secure-1PSIDTS>"}' \
+      http://localhost:8317/v0/management/gemini-web-token
+    ```
+  - 响应：
+    ```json
+    { "status": "ok", "file": "gemini-web-<hash>.json" }
+    ```
+
 - GET `/qwen-auth-url` — 开始 Qwen 登录（设备授权流程）
   - 请求：
     ```bash