- Add listProfile endpoint with default graph sorting and prefix filtering
- Add setDefault/unsetDefault/getDefault endpoints for default graph management
- Add manage(PUT) endpoint for graph nickname update
- Add createByForm for form-urlencoded graph creation compatibility
- Auto-fill HStore/PD defaults (backend/serializer/store) during graph creation

…#3008)

- fix: use @POST/@delete for setDefault/unsetDefault (REST semantics)
- fix: add null/empty validation before role field access in GraphSpaceAPI
  to prevent NPE in setDefaultRole/checkDefaultRole/deleteDefaultRole
- fix: change isPrefix to private static and guard nickname null in
  GraphSpaceAPI and GraphsAPI
- fix: ConfigUtil.writeConfigToString always returns JSON regardless
  of whether config was loaded from file, fixing listProfile endpoint
- fix: add @RolesAllowed annotations to SchemaTemplateAPI endpoints
- fix: use ForbiddenException (403) instead of HugeException (400)
  for authorization failures in SchemaTemplateAPI and GraphSpaceAPI
- fix: correct LOG placeholder count in SchemaTemplateAPI.delete
- fix: use HugeException ('%s') format instead of SLF4J '{}' format
- fix: replace com.alipay StringUtils with commons-lang3 in ManagerAPI
- fix: add @consumes and checkUpdate() validation to SchemaTemplate.update
- fix: add ensurePdModeEnabled guard to ManagerAPI.checkDefaultRole
- fix: guard configs null access in GraphsAPI.create clone branch

… mode

## Background

Hubble 2.0 previously relied exclusively on PD mode (distributed HStore
backend). This PR makes the server-side APIs fully compatible with the
community default: single-node RocksDB without PD/HStore, so that Hubble
remains functional out of the box for all deployment modes.

## Core bug fixes

### GraphsAPI
- Fix `create()`: `backend=hstore` / `serializer=binary` defaults are now
  only injected when `manager.isPDEnabled()` is true, preventing graph
  creation failures on standalone RocksDB deployments.
- Fix `manage()`: replace `exist.nickname(nickname)` (in-memory only) with
  `manager.updateGraphNickname()`, which persists the change to PD meta
  storage in distributed mode and gracefully falls back to in-memory update
  in standalone mode.
- Fix `manage()`: relax `actionMap.size() == 2` validation to
  `containsKey(GRAPH_ACTION)`, so extra fields from the frontend no longer
  cause spurious 400 errors.
- Guard `getDefaultGraph()`, `setDefault()`, `unsetDefault()`, and
  `getDefault()` with `isPDEnabled()` checks; return empty results in
  standalone mode instead of throwing NPE.
- Fix `listProfile()`: guard `getDefaultGraph()` call with `isPDEnabled()`;
  add null-safe fallback for `gs.nickname()` in non-PD mode.

### GraphManager
- `isExistedGraphNickname()`: add non-PD branch that scans in-memory graphs
  instead of accessing the uninitialized `metaManager`, preventing NPE in
  standalone mode.
- New `updateGraphNickname()`: updates in-memory graph instance first, then
  persists nickname to `metaManager` only in PD mode.

### ConfigUtil
- `writeConfigToString()`: always serializes config to JSON (previously
  could emit raw properties format), fixing `listProfile` deserialization.
- New `isSensitiveKey()`: filters keys containing `password`, `secret`,
  `token`, `credential`, `private_key`, or `auth.key` from the serialized
  output to prevent credential leakage through the API.

### ManagerAPI
- Add `ensurePdModeEnabled()` guard to all PD-specific endpoints
  (`createManager`, `deleteManager`, `list`, `checkRole`, `getRolesInGs`,
  `checkDefaultRole`).
- Wrap `HugeDefaultRole.valueOf()` in try-catch to return HTTP 400 instead
  of HTTP 500 when an invalid role string is supplied.

### SchemaTemplateAPI
- Fix incorrect `HugeException` import; replace with `ForbiddenException`
  for proper HTTP 403 semantics.
- Add missing `@RolesAllowed` annotations and implement `checkUpdate()`
  validation.

### StandardAuthManager
- Implement `setDefaultGraph` / `getDefaultGraph` / `unsetDefaultGraph`
  using marker-group pattern (HugeGroup + HugeBelong) for persistence.
- Implement `createDefaultRole` / `createSpaceDefaultRole` /
  `isDefaultRole` / `deleteDefaultRole` with the same marker-group
  mechanism.
- Add detailed design-note Javadoc explaining the workaround, its
  limitations, and the non-PD degradation path.

## Code quality improvements

- Extract shared `isPrefix(Map, String)` helper and `DATE_FORMATTER`
  constant into the `API` base class, eliminating ~30 lines of duplicated
  code across `GraphsAPI` and `GraphSpaceAPI`.
- Replace non-thread-safe `SimpleDateFormat` (constructed per-request) with
  a single static `DateTimeFormatter` (immutable, thread-safe).
- Fix 12-hour clock format `hh` → 24-hour `HH` in `GraphSpaceAPI`.

Add the private static isPrefix() method that was accidentally removed
in a previous commit. This method is used by listProfile() to filter
graphs by name or nickname prefix, with proper null handling for
nickname field.

This fixes a compilation error where isPrefix() was called but not
defined.

- GraphsAPI: remove duplicate private isPrefix() that shadowed the
  protected version in API base class, causing compilation failure
- GraphsAPI: fix NPE in manage() when 'update' value is null by
  guarding value.getClass() in both action and update validation
- GraphsAPI/GraphSpaceAPI: replace org.apache.commons.lang.StringUtils
  with commons-lang3 and remove org.apache.logging.log4j.util.Strings
  import (replaced with StringUtils equivalents) to fix potential
  classpath issues
- GraphManager.updateGraphNickname: restore old nickname (not null)
  on PD persistence failure to avoid a third inconsistent state
- StandardAuthManagerV2.setDefaultGraph: check existBelong() before
  createBelong() to make the operation idempotent; repeated POST calls
  for the same user/graph no longer throw HugeException
- StandardAuthManagerV2.createDefaultRole: same idempotent guard via
  existBelong() check before createBelong()
- ManagerAPI.checkDefaultRole: use @PathParam graphspace instead of
  @QueryParam to match the mounted path contract

…nding

- Fix SchemaTemplateAPI logger using wrong class (RestServer -> SchemaTemplateAPI)
- Fix StandardAuthManager fabricated belong ID: replace string-constructed IDs
  with actual graph traversal (findBelongBinding) to correctly detect/delete
  existing HugeBelong edges, making setDefaultGraph/unsetDefaultGraph/
  createDefaultRole idempotent
- Fix HugeUser.initSchemaIfNeeded: add incremental schema upgrade so existing
  deployments get the user_nickname property key without full schema recreation

- Restore SecurityManager and clean up prepared GremlinServer on startup failures
- Resolve default-role owner type detection for group bindings
- Validate graphspace and observer graph ownership in default-role APIs
- Return 4xx for malformed graph manage requests instead of server errors
- Invalidate user cache after default graph/default role mutations
- Make V2 default-role deletion idempotent for repeated requests
- Validate graph create/clone config values and reject null or non-scalar input
- Avoid rolling back local nickname state after successful PD persistence
- Remove misleading @consumes annotations from entity-less default-role endpoints
- Add standalone tests for malformed graph API requests