diff --git a/.verify/admin-color.png b/.verify/admin-color.png
new file mode 100644
index 00000000..0ac029ec
Binary files /dev/null and b/.verify/admin-color.png differ
diff --git a/.verify/admin-system.png b/.verify/admin-system.png
new file mode 100644
index 00000000..1e42c599
Binary files /dev/null and b/.verify/admin-system.png differ
diff --git a/.verify/screenshot.png b/.verify/screenshot.png
index bca6a584..1e42c599 100644
Binary files a/.verify/screenshot.png and b/.verify/screenshot.png differ
diff --git a/.verify/user-settings.png b/.verify/user-settings.png
new file mode 100644
index 00000000..3ea9deec
Binary files /dev/null and b/.verify/user-settings.png differ
diff --git a/framework/SimpleModule.Core/Settings/SettingDefinition.cs b/framework/SimpleModule.Core/Settings/SettingDefinition.cs
index 62046dde..819662b2 100644
--- a/framework/SimpleModule.Core/Settings/SettingDefinition.cs
+++ b/framework/SimpleModule.Core/Settings/SettingDefinition.cs
@@ -1,3 +1,5 @@
+using System.Collections.Generic;
+
 namespace SimpleModule.Core.Settings;
 
 public class SettingDefinition
@@ -9,4 +11,12 @@ public class SettingDefinition
     public SettingScope Scope { get; set; }
     public string? DefaultValue { get; set; }
     public SettingType Type { get; set; }
+    public IReadOnlyList<string>? AllowedValues { get; set; }
+    public double? Min { get; set; }
+    public double? Max { get; set; }
+    public string? Pattern { get; set; }
+    public bool Required { get; set; }
+    public bool Sensitive { get; set; }
+    public int Order { get; set; }
+    public string? Placeholder { get; set; }
 }
diff --git a/framework/SimpleModule.Core/Settings/SettingType.cs b/framework/SimpleModule.Core/Settings/SettingType.cs
index 8f6e29bb..d3722d85 100644
--- a/framework/SimpleModule.Core/Settings/SettingType.cs
+++ b/framework/SimpleModule.Core/Settings/SettingType.cs
@@ -6,4 +6,11 @@ public enum SettingType
     Number = 1,
     Bool = 2,
     Json = 3,
+    Select = 4,
+    Color = 5,
+    Url = 6,
+    Email = 7,
+    Password = 8,
+    MultilineText = 9,
+    DateTime = 10,
 }
diff --git a/modules/Core/src/SimpleModule.Core/types.ts b/modules/Core/src/SimpleModule.Core/types.ts
new file mode 100644
index 00000000..8e9fb0a0
--- /dev/null
+++ b/modules/Core/src/SimpleModule.Core/types.ts
@@ -0,0 +1,19 @@
+// Auto-generated from [Dto] types — do not edit
+export interface SettingDefinition {
+  key: string;
+  displayName: string;
+  description: string;
+  group: string;
+  scope: any;
+  defaultValue: string;
+  type: any;
+  allowedValues: string[];
+  min: number | null;
+  max: number | null;
+  pattern: string;
+  required: boolean;
+  sensitive: boolean;
+  order: number;
+  placeholder: string;
+}
+
diff --git a/modules/Localization/tests/SimpleModule.Localization.Tests/Unit/LocaleResolutionMiddlewareTests.cs b/modules/Localization/tests/SimpleModule.Localization.Tests/Unit/LocaleResolutionMiddlewareTests.cs
index 19dcdd79..cefedd27 100644
--- a/modules/Localization/tests/SimpleModule.Localization.Tests/Unit/LocaleResolutionMiddlewareTests.cs
+++ b/modules/Localization/tests/SimpleModule.Localization.Tests/Unit/LocaleResolutionMiddlewareTests.cs
@@ -232,9 +232,22 @@ private sealed class FakeSettingsContracts(string? language, Action? onGet = nul
             return Task.FromResult(language);
         }
 
+        public Task<System.Text.Json.JsonElement?> ResolveUserSettingElementAsync(
+            string key,
+            string userId
+        )
+        {
+            if (language is null)
+                return Task.FromResult<System.Text.Json.JsonElement?>(null);
+            using var doc = System.Text.Json.JsonDocument.Parse(
+                System.Text.Json.JsonSerializer.Serialize(language)
+            );
+            return Task.FromResult<System.Text.Json.JsonElement?>(doc.RootElement.Clone());
+        }
+
         public Task SetSettingAsync(
             string key,
-            string value,
+            System.Text.Json.JsonElement value,
             SettingScope scope,
             string? userId = null
         )
@@ -242,14 +255,35 @@ public Task SetSettingAsync(
             return Task.CompletedTask;
         }
 
+        public Task SetManyAsync(IReadOnlyList<BulkSettingUpdate> updates)
+        {
+            return Task.CompletedTask;
+        }
+
         public Task DeleteSettingAsync(string key, SettingScope scope, string? userId = null)
         {
             return Task.CompletedTask;
         }
 
-        public Task<IEnumerable<Setting>> GetSettingsAsync(SettingsFilter? filter = null)
+        public Task ResetToDefaultAsync(string key, SettingScope scope, string? userId = null)
+        {
+            return Task.CompletedTask;
+        }
+
+        public Task<IEnumerable<SettingValueDto>> GetSettingValuesAsync(
+            SettingsFilter? filter = null
+        )
+        {
+            return Task.FromResult<IEnumerable<SettingValueDto>>([]);
+        }
+
+        public Task<SettingValueDto?> GetSettingValueAsync(
+            string key,
+            SettingScope scope,
+            string? userId = null
+        )
         {
-            return Task.FromResult<IEnumerable<Setting>>([]);
+            return Task.FromResult<SettingValueDto?>(null);
         }
     }
 
diff --git a/modules/Settings/src/SimpleModule.Settings.Contracts/BulkUpdateSettingsRequest.cs b/modules/Settings/src/SimpleModule.Settings.Contracts/BulkUpdateSettingsRequest.cs
new file mode 100644
index 00000000..ecd122f9
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings.Contracts/BulkUpdateSettingsRequest.cs
@@ -0,0 +1,19 @@
+using System.Text.Json;
+using SimpleModule.Core;
+using SimpleModule.Core.Settings;
+
+namespace SimpleModule.Settings.Contracts;
+
+[Dto]
+public class BulkSettingUpdate
+{
+    public string Key { get; set; } = string.Empty;
+    public SettingScope Scope { get; set; }
+    public JsonElement Value { get; set; }
+}
+
+[Dto]
+public class BulkUpdateSettingsRequest
+{
+    public IReadOnlyList<BulkSettingUpdate> Updates { get; set; } = [];
+}
diff --git a/modules/Settings/src/SimpleModule.Settings.Contracts/ISettingsContracts.cs b/modules/Settings/src/SimpleModule.Settings.Contracts/ISettingsContracts.cs
index 6a0f681e..3ab41777 100644
--- a/modules/Settings/src/SimpleModule.Settings.Contracts/ISettingsContracts.cs
+++ b/modules/Settings/src/SimpleModule.Settings.Contracts/ISettingsContracts.cs
@@ -1,3 +1,4 @@
+using System.Text.Json;
 using SimpleModule.Core.Settings;
 
 namespace SimpleModule.Settings.Contracts;
@@ -7,7 +8,15 @@ public interface ISettingsContracts
     Task<string?> GetSettingAsync(string key, SettingScope scope, string? userId = null);
     Task<T?> GetSettingAsync<T>(string key, SettingScope scope, string? userId = null);
     Task<string?> ResolveUserSettingAsync(string key, string userId);
-    Task SetSettingAsync(string key, string value, SettingScope scope, string? userId = null);
+    Task<JsonElement?> ResolveUserSettingElementAsync(string key, string userId);
+    Task SetSettingAsync(string key, JsonElement value, SettingScope scope, string? userId = null);
+    Task SetManyAsync(IReadOnlyList<BulkSettingUpdate> updates);
     Task DeleteSettingAsync(string key, SettingScope scope, string? userId = null);
-    Task<IEnumerable<Setting>> GetSettingsAsync(SettingsFilter? filter = null);
+    Task ResetToDefaultAsync(string key, SettingScope scope, string? userId = null);
+    Task<IEnumerable<SettingValueDto>> GetSettingValuesAsync(SettingsFilter? filter = null);
+    Task<SettingValueDto?> GetSettingValueAsync(
+        string key,
+        SettingScope scope,
+        string? userId = null
+    );
 }
diff --git a/modules/Settings/src/SimpleModule.Settings.Contracts/Setting.cs b/modules/Settings/src/SimpleModule.Settings.Contracts/Setting.cs
index 4794a663..347bf01f 100644
--- a/modules/Settings/src/SimpleModule.Settings.Contracts/Setting.cs
+++ b/modules/Settings/src/SimpleModule.Settings.Contracts/Setting.cs
@@ -1,12 +1,25 @@
+using System.Text.Json;
+using SimpleModule.Core;
 using SimpleModule.Core.Settings;
 
 namespace SimpleModule.Settings.Contracts;
 
-public class Setting
+[Dto]
+public class SettingValueDto
 {
-    public string Key { get; set; } = string.Empty;
-    public string? Value { get; set; }
+    public string Key { get; set; } = "";
     public SettingScope Scope { get; set; }
+    public JsonElement? Value { get; set; }
+    public bool IsOverridden { get; set; }
     public string? UserId { get; set; }
-    public DateTimeOffset UpdatedAt { get; set; }
+    public DateTimeOffset? UpdatedAt { get; set; }
+}
+
+[Dto]
+public class UserSettingValueDto
+{
+    public string Key { get; set; } = "";
+    public JsonElement? Value { get; set; }
+    public JsonElement? ResolvedValue { get; set; }
+    public bool IsOverridden { get; set; }
 }
diff --git a/modules/Settings/src/SimpleModule.Settings.Contracts/SettingsConstants.cs b/modules/Settings/src/SimpleModule.Settings.Contracts/SettingsConstants.cs
index c7eb476d..9fcb1d76 100644
--- a/modules/Settings/src/SimpleModule.Settings.Contracts/SettingsConstants.cs
+++ b/modules/Settings/src/SimpleModule.Settings.Contracts/SettingsConstants.cs
@@ -13,7 +13,9 @@ public static class Api
             public const string GetSettings = "/";
             public const string GetSetting = "/{key}";
             public const string GetDefinitions = "/definitions";
+            public const string GetResolvedSetting = "/{key}/resolved";
             public const string UpdateSetting = "/";
+            public const string BulkUpdateSettings = "/bulk";
             public const string DeleteSetting = "/{key}";
             public const string GetMySettings = "/me";
             public const string UpdateMySetting = "/me";
diff --git a/modules/Settings/src/SimpleModule.Settings.Contracts/UpdateSettingRequest.cs b/modules/Settings/src/SimpleModule.Settings.Contracts/UpdateSettingRequest.cs
index 0b47fee7..e650a98b 100644
--- a/modules/Settings/src/SimpleModule.Settings.Contracts/UpdateSettingRequest.cs
+++ b/modules/Settings/src/SimpleModule.Settings.Contracts/UpdateSettingRequest.cs
@@ -1,10 +1,13 @@
+using System.Text.Json;
+using SimpleModule.Core;
 using SimpleModule.Core.Settings;
 
 namespace SimpleModule.Settings.Contracts;
 
+[Dto]
 public class UpdateSettingRequest
 {
     public string Key { get; set; } = string.Empty;
-    public string? Value { get; set; }
     public SettingScope Scope { get; set; }
+    public JsonElement Value { get; set; }
 }
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/BulkUpdateSettingsEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/BulkUpdateSettingsEndpoint.cs
new file mode 100644
index 00000000..d808a5d8
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/BulkUpdateSettingsEndpoint.cs
@@ -0,0 +1,48 @@
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Routing;
+using SimpleModule.Core;
+using SimpleModule.Core.Authorization;
+using SimpleModule.Core.Settings;
+using SimpleModule.Settings.Contracts;
+
+namespace SimpleModule.Settings.Endpoints.Settings;
+
+public class BulkUpdateSettingsEndpoint : IEndpoint
+{
+    public const string Route = SettingsConstants.Routes.Api.BulkUpdateSettings;
+    public const string Method = "PUT";
+
+    public void Map(IEndpointRouteBuilder app) =>
+        app.MapPut(
+                Route,
+                async Task<IResult> (
+                    BulkUpdateSettingsRequest request,
+                    ISettingsContracts settings
+                ) =>
+                {
+                    var userScopedKey = request.Updates.FirstOrDefault(u => u.Scope == SettingScope.User)?.Key;
+                    if (userScopedKey is not null)
+                    {
+                        return TypedResults.Problem(
+                            detail: "Use /api/settings/me to set user-scoped settings.",
+                            statusCode: StatusCodes.Status400BadRequest,
+                            title: "Invalid scope"
+                        );
+                    }
+
+                    try
+                    {
+                        await settings.SetManyAsync(request.Updates);
+                        return TypedResults.Ok(new { count = request.Updates.Count });
+                    }
+                    catch (SettingValidationException ex)
+                    {
+                        return TypedResults.ValidationProblem(
+                            new Dictionary<string, string[]> { [ex.Key] = ex.Errors.ToArray() }
+                        );
+                    }
+                }
+            )
+            .RequirePermission(SettingsPermissions.Update);
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/DeleteSettingEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/DeleteSettingEndpoint.cs
index 56598fd2..c6f16468 100644
--- a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/DeleteSettingEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/DeleteSettingEndpoint.cs
@@ -2,6 +2,7 @@
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Routing;
 using SimpleModule.Core;
+using SimpleModule.Core.Authorization;
 using SimpleModule.Core.Settings;
 using SimpleModule.Settings.Contracts;
 
@@ -15,11 +16,20 @@ public class DeleteSettingEndpoint : IEndpoint
     public void Map(IEndpointRouteBuilder app) =>
         app.MapDelete(
                 Route,
-                async (string key, SettingScope scope, ISettingsContracts settings) =>
+                async Task<IResult> (string key, SettingScope? scope, ISettingsContracts settings) =>
                 {
-                    await settings.DeleteSettingAsync(key, scope);
+                    if (scope is null)
+                    {
+                        return TypedResults.Problem(
+                            detail: "Query parameter 'scope' is required.",
+                            statusCode: StatusCodes.Status400BadRequest,
+                            title: "Missing required parameter"
+                        );
+                    }
+
+                    await settings.ResetToDefaultAsync(key, scope.Value);
                     return TypedResults.NoContent();
                 }
             )
-            .RequireAuthorization();
+            .RequirePermission(SettingsPermissions.Update);
 }
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetResolvedSettingEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetResolvedSettingEndpoint.cs
new file mode 100644
index 00000000..508eaef6
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetResolvedSettingEndpoint.cs
@@ -0,0 +1,30 @@
+using System.Security.Claims;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Routing;
+using SimpleModule.Core;
+using SimpleModule.Settings.Contracts;
+
+namespace SimpleModule.Settings.Endpoints.Settings;
+
+public class GetResolvedSettingEndpoint : IEndpoint
+{
+    public const string Route = SettingsConstants.Routes.Api.GetResolvedSetting;
+
+    public void Map(IEndpointRouteBuilder app) =>
+        app.MapGet(
+                Route,
+                async Task<IResult> (
+                    string key,
+                    ISettingsContracts settings,
+                    ClaimsPrincipal principal
+                ) =>
+                {
+                    var userId =
+                        principal.FindFirstValue(ClaimTypes.NameIdentifier) ?? string.Empty;
+                    var value = await settings.ResolveUserSettingElementAsync(key, userId);
+                    return TypedResults.Ok(new { key, value });
+                }
+            )
+            .RequireAuthorization();
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingEndpoint.cs
index fdf529dc..f1e78b5d 100644
--- a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingEndpoint.cs
@@ -14,19 +14,23 @@ public class GetSettingEndpoint : IEndpoint
     public void Map(IEndpointRouteBuilder app) =>
         app.MapGet(
                 Route,
-                async Task<IResult> (string key, SettingScope scope, ISettingsContracts settings) =>
+                async Task<IResult> (
+                    string key,
+                    SettingScope? scope,
+                    ISettingsContracts settings
+                ) =>
                 {
-                    var value = await settings.GetSettingAsync(key, scope);
-                    return value is not null
-                        ? TypedResults.Ok(
-                            new
-                            {
-                                key,
-                                value,
-                                scope,
-                            }
-                        )
-                        : TypedResults.NotFound();
+                    if (scope is null)
+                    {
+                        return TypedResults.Problem(
+                            detail: "Query parameter 'scope' is required.",
+                            statusCode: StatusCodes.Status400BadRequest,
+                            title: "Missing required parameter"
+                        );
+                    }
+
+                    var dto = await settings.GetSettingValueAsync(key, scope.Value);
+                    return dto is not null ? TypedResults.Ok(dto) : TypedResults.NotFound();
                 }
             )
             .RequireAuthorization();
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingsEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingsEndpoint.cs
index 1c281a6d..a36e14ad 100644
--- a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingsEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/GetSettingsEndpoint.cs
@@ -14,10 +14,15 @@ public class GetSettingsEndpoint : IEndpoint
     public void Map(IEndpointRouteBuilder app) =>
         app.MapGet(
                 Route,
-                async (ISettingsContracts settings, SettingScope? scope) =>
+                async (ISettingsContracts settings, SettingScope? scope, string? group) =>
                 {
-                    var filter = scope is not null ? new SettingsFilter { Scope = scope } : null;
-                    var results = await settings.GetSettingsAsync(filter);
+                    SettingsFilter? filter = null;
+                    if (scope is not null || group is not null)
+                    {
+                        filter = new SettingsFilter { Scope = scope, Group = group };
+                    }
+
+                    var results = await settings.GetSettingValuesAsync(filter);
                     return TypedResults.Ok(results);
                 }
             )
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/UpdateSettingEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/UpdateSettingEndpoint.cs
index 425f0c5e..359ef328 100644
--- a/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/UpdateSettingEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/Settings/UpdateSettingEndpoint.cs
@@ -2,6 +2,8 @@
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Routing;
 using SimpleModule.Core;
+using SimpleModule.Core.Authorization;
+using SimpleModule.Core.Settings;
 using SimpleModule.Settings.Contracts;
 
 namespace SimpleModule.Settings.Endpoints.Settings;
@@ -14,15 +16,29 @@ public class UpdateSettingEndpoint : IEndpoint
     public void Map(IEndpointRouteBuilder app) =>
         app.MapPut(
                 Route,
-                async (UpdateSettingRequest request, ISettingsContracts settings) =>
+                async Task<IResult> (UpdateSettingRequest request, ISettingsContracts settings) =>
                 {
-                    await settings.SetSettingAsync(
-                        request.Key,
-                        request.Value ?? string.Empty,
-                        request.Scope
-                    );
-                    return TypedResults.NoContent();
+                    if (request.Scope == SettingScope.User)
+                    {
+                        return TypedResults.Problem(
+                            detail: "Use /api/settings/me to set user-scoped settings.",
+                            statusCode: StatusCodes.Status400BadRequest,
+                            title: "Invalid scope"
+                        );
+                    }
+
+                    try
+                    {
+                        await settings.SetSettingAsync(request.Key, request.Value, request.Scope);
+                        return TypedResults.NoContent();
+                    }
+                    catch (SettingValidationException ex)
+                    {
+                        return TypedResults.ValidationProblem(
+                            new Dictionary<string, string[]> { [ex.Key] = ex.Errors.ToArray() }
+                        );
+                    }
                 }
             )
-            .RequireAuthorization();
+            .RequirePermission(SettingsPermissions.Update);
 }
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/GetMySettingsEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/GetMySettingsEndpoint.cs
index 190bc31d..2465444a 100644
--- a/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/GetMySettingsEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/GetMySettingsEndpoint.cs
@@ -25,23 +25,27 @@ ClaimsPrincipal principal
                     if (string.IsNullOrEmpty(userId))
                         return Results.Unauthorized();
 
-                    var definitions = registry.GetDefinitions(SettingScope.User);
-                    var results = new List<object>();
+                    var defs = registry.GetDefinitions(SettingScope.User);
+                    var results = new List<UserSettingValueDto>(defs.Count);
 
-                    foreach (var def in definitions)
+                    foreach (var def in defs)
                     {
-                        var resolved = await settings.ResolveUserSettingAsync(def.Key, userId);
-                        var userValue = await settings.GetSettingAsync(
+                        var userDto = await settings.GetSettingValueAsync(
                             def.Key,
                             SettingScope.User,
                             userId
                         );
+                        var resolvedElement = await settings.ResolveUserSettingElementAsync(
+                            def.Key,
+                            userId
+                        );
                         results.Add(
-                            new
+                            new UserSettingValueDto
                             {
-                                definition = def,
-                                value = resolved,
-                                isOverridden = userValue is not null,
+                                Key = def.Key,
+                                Value = userDto?.Value,
+                                ResolvedValue = resolvedElement,
+                                IsOverridden = userDto is not null,
                             }
                         );
                     }
diff --git a/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/UpdateMySettingEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/UpdateMySettingEndpoint.cs
index 2cea42d4..0b32a549 100644
--- a/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/UpdateMySettingEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Endpoints/UserSettings/UpdateMySettingEndpoint.cs
@@ -16,7 +16,7 @@ public class UpdateMySettingEndpoint : IEndpoint
     public void Map(IEndpointRouteBuilder app) =>
         app.MapPut(
                 Route,
-                async (
+                async Task<IResult> (
                     UpdateSettingRequest request,
                     ISettingsContracts settings,
                     ClaimsPrincipal principal
@@ -26,13 +26,22 @@ ClaimsPrincipal principal
                     if (string.IsNullOrEmpty(userId))
                         return Results.Unauthorized();
 
-                    await settings.SetSettingAsync(
-                        request.Key,
-                        request.Value ?? string.Empty,
-                        SettingScope.User,
-                        userId
-                    );
-                    return TypedResults.NoContent();
+                    try
+                    {
+                        await settings.SetSettingAsync(
+                            request.Key,
+                            request.Value,
+                            SettingScope.User,
+                            userId
+                        );
+                        return TypedResults.NoContent();
+                    }
+                    catch (SettingValidationException ex)
+                    {
+                        return TypedResults.ValidationProblem(
+                            new Dictionary<string, string[]> { [ex.Key] = ex.Errors.ToArray() }
+                        );
+                    }
                 }
             )
             .RequireAuthorization();
diff --git a/modules/Settings/src/SimpleModule.Settings/Locales/en.json b/modules/Settings/src/SimpleModule.Settings/Locales/en.json
index 92989989..1bf43bfe 100644
--- a/modules/Settings/src/SimpleModule.Settings/Locales/en.json
+++ b/modules/Settings/src/SimpleModule.Settings/Locales/en.json
@@ -1,11 +1,41 @@
 {
+  "AdminSettings.NoResults": "No settings match your search.",
+  "AdminSettings.SaveError": "{detail}",
+  "AdminSettings.SaveErrorTitle": "Failed to save setting",
   "AdminSettings.Title": "Settings",
   "AdminSettings.TabSystem": "System",
   "AdminSettings.TabApplication": "Application",
+  "AdminSettings.SearchPlaceholder": "Search settings…",
+  "AdminSettings.ShowOnlyModified": "Show only modified",
+  "AdminSettings.BulkEditToggle": "Bulk edit",
+  "AdminSettings.BulkSaveButton": "Save all",
+  "AdminSettings.BulkDiscardButton": "Discard",
+  "AdminSettings.UnsavedChanges": "{count} unsaved changes",
+  "AdminSettings.ResetToDefault": "Reset to default",
+  "AdminSettings.Overridden": "Overridden",
+  "AdminSettings.Default": "Default",
+  "AdminSettings.Current": "Current",
+  "AdminSettings.InheritedDefault": "inherited default",
+  "AdminSettings.YourOverride": "your override",
+  "AdminSettings.RequiredAsterisk": "Required",
+  "AdminSettings.ScopeSystem": "System",
+  "AdminSettings.ScopeApplication": "Application",
+  "AdminSettings.ScopeUser": "User",
+  "UserSettings.NoResults": "No settings match your search.",
+  "UserSettings.SaveError": "{detail}",
+  "UserSettings.SaveErrorTitle": "Failed to save setting",
   "UserSettings.Title": "My Settings",
   "UserSettings.BadgeOverridden": "Overridden",
   "UserSettings.BadgeDefault": "Default",
   "UserSettings.ResetButton": "Reset",
+  "UserSettings.SearchPlaceholder": "Search settings…",
+  "UserSettings.OnlyOverridden": "Only overridden",
+  "UserSettings.ResetToDefault": "Reset to default",
+  "UserSettings.Overridden": "Overridden",
+  "UserSettings.Default": "Default",
+  "UserSettings.Current": "Current",
+  "UserSettings.InheritedDefault": "inherited default",
+  "UserSettings.YourOverride": "your override",
   "MenuManager.Title": "Menu Manager",
   "MenuManager.Description": "Configure the public navigation menu. Add, reorder, and organize menu items.",
   "MenuManager.BreadcrumbSettings": "Settings",
diff --git a/modules/Settings/src/SimpleModule.Settings/Locales/keys.ts b/modules/Settings/src/SimpleModule.Settings/Locales/keys.ts
index f25ee642..cebfb84d 100644
--- a/modules/Settings/src/SimpleModule.Settings/Locales/keys.ts
+++ b/modules/Settings/src/SimpleModule.Settings/Locales/keys.ts
@@ -1,8 +1,27 @@
 export const SettingsKeys = {
   AdminSettings: {
+    BulkDiscardButton: 'AdminSettings.BulkDiscardButton',
+    BulkEditToggle: 'AdminSettings.BulkEditToggle',
+    BulkSaveButton: 'AdminSettings.BulkSaveButton',
+    Current: 'AdminSettings.Current',
+    Default: 'AdminSettings.Default',
+    InheritedDefault: 'AdminSettings.InheritedDefault',
+    NoResults: 'AdminSettings.NoResults',
+    Overridden: 'AdminSettings.Overridden',
+    RequiredAsterisk: 'AdminSettings.RequiredAsterisk',
+    ResetToDefault: 'AdminSettings.ResetToDefault',
+    SaveError: 'AdminSettings.SaveError',
+    SaveErrorTitle: 'AdminSettings.SaveErrorTitle',
+    SearchPlaceholder: 'AdminSettings.SearchPlaceholder',
+    ShowOnlyModified: 'AdminSettings.ShowOnlyModified',
+    ScopeApplication: 'AdminSettings.ScopeApplication',
+    ScopeSystem: 'AdminSettings.ScopeSystem',
+    ScopeUser: 'AdminSettings.ScopeUser',
     TabApplication: 'AdminSettings.TabApplication',
     TabSystem: 'AdminSettings.TabSystem',
     Title: 'AdminSettings.Title',
+    UnsavedChanges: 'AdminSettings.UnsavedChanges',
+    YourOverride: 'AdminSettings.YourOverride',
   },
   MenuManager: {
     AddButton: 'MenuManager.AddButton',
@@ -25,7 +44,18 @@ export const SettingsKeys = {
   UserSettings: {
     BadgeDefault: 'UserSettings.BadgeDefault',
     BadgeOverridden: 'UserSettings.BadgeOverridden',
+    Current: 'UserSettings.Current',
+    Default: 'UserSettings.Default',
+    InheritedDefault: 'UserSettings.InheritedDefault',
+    NoResults: 'UserSettings.NoResults',
+    OnlyOverridden: 'UserSettings.OnlyOverridden',
+    Overridden: 'UserSettings.Overridden',
     ResetButton: 'UserSettings.ResetButton',
+    ResetToDefault: 'UserSettings.ResetToDefault',
+    SaveError: 'UserSettings.SaveError',
+    SaveErrorTitle: 'UserSettings.SaveErrorTitle',
+    SearchPlaceholder: 'UserSettings.SearchPlaceholder',
     Title: 'UserSettings.Title',
+    YourOverride: 'UserSettings.YourOverride',
   },
 } as const;
diff --git a/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettings.tsx b/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettings.tsx
index 2ad268c6..e5cb7d6b 100644
--- a/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettings.tsx
+++ b/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettings.tsx
@@ -1,85 +1,353 @@
 import { useTranslation } from '@simplemodule/client/use-translation';
-import { PageShell, Tabs, TabsContent, TabsList, TabsTrigger } from '@simplemodule/ui';
-import { useMemo, useState } from 'react';
+import {
+  Button,
+  EmptyState,
+  PageShell,
+  Tabs,
+  TabsContent,
+  TabsList,
+  TabsTrigger,
+  Toggle,
+} from '@simplemodule/ui';
+import { useCallback, useMemo, useState } from 'react';
 import type { SettingDefinition } from '@/components/SettingField';
 import SettingGroup from '@/components/SettingGroup';
+import SettingRow from '@/components/SettingRow';
+import SettingsBulkSaveBar from '@/components/SettingsBulkSaveBar';
+import SettingsLayout from '@/components/SettingsLayout';
+import SettingsSearch from '@/components/SettingsSearch';
 import { SettingsKeys } from '@/Locales/keys';
 
-interface StoredSetting {
+interface SettingValueDto {
   key: string;
-  value: string | null;
-  scope: number;
+  scope: 0 | 1 | 2;
+  value: unknown | null;
+  isOverridden: boolean;
+  userId?: string | null;
+  updatedAt?: string | null;
+}
+
+interface ValidationProblemDetails {
+  type?: string;
+  title?: string;
+  status?: number;
+  detail?: string;
+  errors?: Record<string, string[]>;
 }
 
 interface AdminSettingsProps {
   definitions: SettingDefinition[];
-  settings: StoredSetting[];
+  settings: SettingValueDto[];
+}
+
+function buildValueMap(settings: SettingValueDto[]): Map<string, SettingValueDto> {
+  const map = new Map<string, SettingValueDto>();
+  for (const s of settings) {
+    map.set(s.key, s);
+  }
+  return map;
+}
+
+function groupDefinitions(defs: SettingDefinition[]): Record<string, SettingDefinition[]> {
+  const groups: Record<string, SettingDefinition[]> = {};
+  const sorted = [...defs].sort((a, b) => a.order - b.order);
+  for (const def of sorted) {
+    const group = def.group ?? 'General';
+    if (!groups[group]) groups[group] = [];
+    groups[group].push(def);
+  }
+  return groups;
+}
+
+function matchesSearch(def: SettingDefinition, query: string): boolean {
+  if (!query) return true;
+  const q = query.toLowerCase();
+  return (
+    def.displayName.toLowerCase().includes(q) ||
+    def.key.toLowerCase().includes(q) ||
+    (def.group ?? '').toLowerCase().includes(q) ||
+    (def.description ?? '').toLowerCase().includes(q)
+  );
+}
+
+async function parseErrorDetail(res: Response): Promise<string> {
+  try {
+    const body = (await res.json()) as ValidationProblemDetails;
+    if (body.detail) return body.detail;
+    if (body.title) return body.title;
+    if (body.errors) {
+      const messages = Object.values(body.errors).flat();
+      if (messages.length > 0) return messages.join(' ');
+    }
+  } catch {
+    // not JSON — fall through to generic message
+  }
+  return `HTTP ${res.status}`;
 }
 
 export default function AdminSettings({ definitions, settings }: AdminSettingsProps) {
   const { t } = useTranslation('Settings');
-  const [settingsMap, setSettingsMap] = useState<Record<string, string | null>>(() => {
-    const map: Record<string, string | null> = {};
-    for (const s of settings) {
-      map[s.key] = s.value;
-    }
-    return map;
-  });
+
+  const [valueMap, setValueMap] = useState<Map<string, SettingValueDto>>(() =>
+    buildValueMap(settings),
+  );
+
+  const [query, setQuery] = useState('');
+  const [showOnlyModified, setShowOnlyModified] = useState(false);
+  const [bulkMode, setBulkMode] = useState(false);
+  const [dirtyKeys, setDirtyKeys] = useState<Set<string>>(new Set());
+  const [pendingValues, setPendingValues] = useState<
+    Map<string, { scope: number; value: unknown }>
+  >(new Map());
+  const [bulkSaving, setBulkSaving] = useState(false);
+  const [errorMessage, setErrorMessage] = useState<string | null>(null);
 
   const systemDefs = useMemo(() => definitions.filter((d) => d.scope === 0), [definitions]);
   const appDefs = useMemo(() => definitions.filter((d) => d.scope === 1), [definitions]);
 
-  const groupBy = (defs: SettingDefinition[]) => {
-    const groups: Record<string, SettingDefinition[]> = {};
-    for (const def of defs) {
-      const group = def.group ?? 'General';
-      if (!groups[group]) groups[group] = [];
-      groups[group].push(def);
-    }
-    return groups;
-  };
+  const filterDefs = useCallback(
+    (defs: SettingDefinition[]): SettingDefinition[] => {
+      return defs.filter((def) => {
+        if (!matchesSearch(def, query)) return false;
+        if (showOnlyModified) {
+          const v = valueMap.get(def.key);
+          return v?.isOverridden ?? false;
+        }
+        return true;
+      });
+    },
+    [query, showOnlyModified, valueMap],
+  );
 
-  const handleSave = async (key: string, value: string, scope: number) => {
-    await fetch('/api/settings', {
+  const handleSave = async (key: string, scope: number, value: unknown) => {
+    if (bulkMode) {
+      setPendingValues((prev) => new Map(prev).set(key, { scope, value }));
+      return;
+    }
+    setErrorMessage(null);
+    const res = await fetch('/api/settings', {
       method: 'PUT',
       headers: { 'Content-Type': 'application/json' },
-      body: JSON.stringify({ key, value, scope }),
+      body: JSON.stringify({ key, scope, value }),
+    });
+    if (!res.ok) {
+      const detail = await parseErrorDetail(res);
+      setErrorMessage(detail);
+      return;
+    }
+    setValueMap((prev) => {
+      const next = new Map(prev);
+      const existing = next.get(key);
+      next.set(key, { ...existing, key, scope: scope as 0 | 1 | 2, value, isOverridden: true });
+      return next;
+    });
+  };
+
+  const handleReset = async (key: string, scope: number) => {
+    setErrorMessage(null);
+    const res = await fetch(`/api/settings/${encodeURIComponent(key)}?scope=${scope}`, {
+      method: 'DELETE',
+    });
+    if (!res.ok) {
+      const detail = await parseErrorDetail(res);
+      setErrorMessage(detail);
+      return;
+    }
+    setValueMap((prev) => {
+      const next = new Map(prev);
+      const existing = next.get(key);
+      if (existing) {
+        next.set(key, { ...existing, value: null, isOverridden: false });
+      }
+      return next;
+    });
+    setDirtyKeys((prev) => {
+      const next = new Set(prev);
+      next.delete(key);
+      return next;
+    });
+    setPendingValues((prev) => {
+      const next = new Map(prev);
+      next.delete(key);
+      return next;
+    });
+  };
+
+  const handleDirty = useCallback((key: string, isDirty: boolean) => {
+    setDirtyKeys((prev) => {
+      const next = new Set(prev);
+      if (isDirty) next.add(key);
+      else next.delete(key);
+      return next;
     });
-    setSettingsMap((prev) => ({ ...prev, [key]: value }));
+  }, []);
+
+  const handleBulkSave = async () => {
+    if (pendingValues.size === 0) return;
+    setBulkSaving(true);
+    setErrorMessage(null);
+    try {
+      const updates = Array.from(pendingValues.entries()).map(([key, { scope, value }]) => ({
+        key,
+        scope,
+        value,
+      }));
+      const res = await fetch('/api/settings/bulk', {
+        method: 'PUT',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ updates }),
+      });
+      if (!res.ok) {
+        const detail = await parseErrorDetail(res);
+        setErrorMessage(detail);
+        return;
+      }
+      setValueMap((prev) => {
+        const next = new Map(prev);
+        for (const { key, scope, value } of updates) {
+          const existing = next.get(key);
+          next.set(key, {
+            ...existing,
+            key,
+            scope: scope as 0 | 1 | 2,
+            value,
+            isOverridden: true,
+          });
+        }
+        return next;
+      });
+      setPendingValues(new Map());
+      setDirtyKeys(new Set());
+    } finally {
+      setBulkSaving(false);
+    }
+  };
+
+  const handleDiscard = () => {
+    setPendingValues(new Map());
+    setDirtyKeys(new Set());
   };
 
+  const toolbar = (
+    <div className="flex flex-wrap items-center justify-between gap-3">
+      <SettingsSearch
+        query={query}
+        onQueryChange={(q) => {
+          setQuery(q);
+          setErrorMessage(null);
+        }}
+        showOnlyModified={showOnlyModified}
+        onShowOnlyModifiedChange={setShowOnlyModified}
+        modifiedLabel={t(SettingsKeys.AdminSettings.ShowOnlyModified)}
+      />
+      <Toggle
+        pressed={bulkMode}
+        onPressedChange={(v) => {
+          setBulkMode(v);
+          if (!v) handleDiscard();
+        }}
+        variant="outline"
+        aria-label={t(SettingsKeys.AdminSettings.BulkEditToggle)}
+      >
+        {t(SettingsKeys.AdminSettings.BulkEditToggle)}
+      </Toggle>
+    </div>
+  );
+
+  const renderGroups = (defs: SettingDefinition[]) => {
+    const filtered = filterDefs(defs);
+    const grouped = groupDefinitions(filtered);
+    const groupNames = Object.keys(grouped);
+
+    return (
+      <SettingsLayout groups={groupNames} toolbar={toolbar}>
+        {errorMessage !== null && (
+          <div
+            role="alert"
+            className="mb-4 rounded-lg border border-danger/20 bg-danger-bg px-4 py-3 text-sm text-danger-text"
+          >
+            <p className="font-semibold">{t(SettingsKeys.AdminSettings.SaveErrorTitle)}</p>
+            <p className="mt-0.5">{errorMessage}</p>
+            <Button
+              variant="ghost"
+              size="sm"
+              className="mt-2 h-auto px-2 py-1 text-xs"
+              onClick={() => setErrorMessage(null)}
+            >
+              Dismiss
+            </Button>
+          </div>
+        )}
+        {groupNames.length === 0 ? (
+          <EmptyState
+            title={t(SettingsKeys.AdminSettings.NoResults)}
+            description={
+              query ? `No settings match "${query}". Try a different search term.` : undefined
+            }
+            secondaryAction={
+              query ? (
+                <Button variant="outline" size="sm" onClick={() => setQuery('')}>
+                  Clear search
+                </Button>
+              ) : undefined
+            }
+          />
+        ) : (
+          groupNames.map((group) => (
+            <SettingGroup key={group} group={group}>
+              {(grouped[group] ?? []).map((def) => {
+                const v = valueMap.get(def.key);
+                const pending = pendingValues.get(def.key);
+                return (
+                  <SettingRow
+                    key={def.key}
+                    definition={def}
+                    valueInfo={{
+                      value: pending?.value ?? v?.value ?? null,
+                      isOverridden: v?.isOverridden ?? false,
+                    }}
+                    onSave={handleSave}
+                    onReset={handleReset}
+                    onDirty={handleDirty}
+                    bulkMode={bulkMode}
+                    namespace="AdminSettings"
+                  />
+                );
+              })}
+            </SettingGroup>
+          ))
+        )}
+      </SettingsLayout>
+    );
+  };
+
+  const totalDirty = bulkMode ? pendingValues.size : dirtyKeys.size;
+
   return (
-    <PageShell title={t(SettingsKeys.AdminSettings.Title)}>
-      <Tabs defaultValue="system">
+    <PageShell title={t(SettingsKeys.AdminSettings.Title)} size="lg">
+      <Tabs defaultValue="system" className="mt-2">
         <TabsList className="w-full sm:w-auto">
           <TabsTrigger value="system">{t(SettingsKeys.AdminSettings.TabSystem)}</TabsTrigger>
           <TabsTrigger value="application">
             {t(SettingsKeys.AdminSettings.TabApplication)}
           </TabsTrigger>
         </TabsList>
-        <TabsContent value="system" className="space-y-4 sm:space-y-6">
-          {Object.entries(groupBy(systemDefs)).map(([group, defs]) => (
-            <SettingGroup
-              key={group}
-              group={group}
-              definitions={defs}
-              values={settingsMap}
-              onSave={handleSave}
-            />
-          ))}
+        <TabsContent value="system" className="mt-4">
+          {renderGroups(systemDefs)}
         </TabsContent>
-        <TabsContent value="application" className="space-y-4 sm:space-y-6">
-          {Object.entries(groupBy(appDefs)).map(([group, defs]) => (
-            <SettingGroup
-              key={group}
-              group={group}
-              definitions={defs}
-              values={settingsMap}
-              onSave={handleSave}
-            />
-          ))}
+        <TabsContent value="application" className="mt-4">
+          {renderGroups(appDefs)}
         </TabsContent>
       </Tabs>
+
+      {bulkMode && (
+        <SettingsBulkSaveBar
+          dirtyCount={totalDirty}
+          onSaveAll={handleBulkSave}
+          onDiscard={handleDiscard}
+          saving={bulkSaving}
+        />
+      )}
     </PageShell>
   );
 }
diff --git a/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettingsEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettingsEndpoint.cs
index 7f4f5675..fc165d81 100644
--- a/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettingsEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Pages/AdminSettingsEndpoint.cs
@@ -19,10 +19,10 @@ public void Map(IEndpointRouteBuilder app)
                 async (ISettingsContracts settings, ISettingsDefinitionRegistry registry) =>
                 {
                     var definitions = registry.GetDefinitions();
-                    var storedSettings = await settings.GetSettingsAsync();
+                    var settingValues = await settings.GetSettingValuesAsync();
                     return Inertia.Render(
                         "Settings/AdminSettings",
-                        new { definitions, settings = storedSettings }
+                        new { definitions, settings = settingValues }
                     );
                 }
             )
diff --git a/modules/Settings/src/SimpleModule.Settings/Pages/UserSettings.tsx b/modules/Settings/src/SimpleModule.Settings/Pages/UserSettings.tsx
index 24107335..106704c3 100644
--- a/modules/Settings/src/SimpleModule.Settings/Pages/UserSettings.tsx
+++ b/modules/Settings/src/SimpleModule.Settings/Pages/UserSettings.tsx
@@ -1,105 +1,254 @@
 import { useTranslation } from '@simplemodule/client/use-translation';
-import {
-  Badge,
-  Button,
-  Card,
-  CardContent,
-  CardHeader,
-  CardTitle,
-  Container,
-} from '@simplemodule/ui';
-import { useState } from 'react';
+import { Button, Container, EmptyState } from '@simplemodule/ui';
+import { useCallback, useMemo, useState } from 'react';
 import type { SettingDefinition } from '@/components/SettingField';
-import SettingField from '@/components/SettingField';
+import SettingGroup from '@/components/SettingGroup';
+import SettingRow from '@/components/SettingRow';
+import { toAnchorId } from '@/components/SettingsGroupNav';
+import SettingsSearch from '@/components/SettingsSearch';
 import { SettingsKeys } from '@/Locales/keys';
 
-interface UserSettingView {
-  definition: SettingDefinition;
-  value: string | null;
+interface UserSettingValueDto {
+  key: string;
+  value: unknown | null;
+  resolvedValue: unknown | null;
   isOverridden: boolean;
 }
 
+interface ValidationProblemDetails {
+  type?: string;
+  title?: string;
+  status?: number;
+  detail?: string;
+  errors?: Record<string, string[]>;
+}
+
 interface UserSettingsProps {
-  settings: UserSettingView[];
+  definitions: SettingDefinition[];
+  settings: UserSettingValueDto[];
+}
+
+function buildValueMap(settings: UserSettingValueDto[]): Map<string, UserSettingValueDto> {
+  const map = new Map<string, UserSettingValueDto>();
+  for (const s of settings) {
+    map.set(s.key, s);
+  }
+  return map;
+}
+
+function groupDefinitions(defs: SettingDefinition[]): Record<string, SettingDefinition[]> {
+  const groups: Record<string, SettingDefinition[]> = {};
+  const sorted = [...defs].sort((a, b) => a.order - b.order);
+  for (const def of sorted) {
+    const group = def.group ?? 'General';
+    if (!groups[group]) groups[group] = [];
+    groups[group].push(def);
+  }
+  return groups;
+}
+
+function matchesSearch(def: SettingDefinition, query: string): boolean {
+  if (!query) return true;
+  const q = query.toLowerCase();
+  return (
+    def.displayName.toLowerCase().includes(q) ||
+    def.key.toLowerCase().includes(q) ||
+    (def.group ?? '').toLowerCase().includes(q) ||
+    (def.description ?? '').toLowerCase().includes(q)
+  );
+}
+
+async function parseErrorDetail(res: Response): Promise<string> {
+  try {
+    const body = (await res.json()) as ValidationProblemDetails;
+    if (body.detail) return body.detail;
+    if (body.title) return body.title;
+    if (body.errors) {
+      const messages = Object.values(body.errors).flat();
+      if (messages.length > 0) return messages.join(' ');
+    }
+  } catch {
+    // not JSON — fall through to generic message
+  }
+  return `HTTP ${res.status}`;
 }
 
-export default function UserSettings({ settings: initial }: UserSettingsProps) {
+export default function UserSettings({ definitions, settings }: UserSettingsProps) {
   const { t } = useTranslation('Settings');
-  const [settings, setSettings] = useState(initial);
 
-  const handleSave = async (key: string, value: string) => {
-    await fetch('/api/settings/me', {
+  const [valueMap, setValueMap] = useState<Map<string, UserSettingValueDto>>(() =>
+    buildValueMap(settings),
+  );
+
+  const [query, setQuery] = useState('');
+  const [onlyOverridden, setOnlyOverridden] = useState(false);
+  const [errorMessage, setErrorMessage] = useState<string | null>(null);
+
+  const filteredDefs = useMemo(() => {
+    return definitions.filter((def) => {
+      if (!matchesSearch(def, query)) return false;
+      if (onlyOverridden) {
+        const v = valueMap.get(def.key);
+        return v?.isOverridden ?? false;
+      }
+      return true;
+    });
+  }, [definitions, query, onlyOverridden, valueMap]);
+
+  const grouped = useMemo(() => groupDefinitions(filteredDefs), [filteredDefs]);
+  const groupNames = useMemo(() => Object.keys(grouped), [grouped]);
+
+  const handleSave = useCallback(async (key: string, _scope: number, value: unknown) => {
+    setErrorMessage(null);
+    const res = await fetch('/api/settings/me', {
       method: 'PUT',
       headers: { 'Content-Type': 'application/json' },
       body: JSON.stringify({ key, value, scope: 2 }),
     });
-    setSettings((prev) =>
-      prev.map((s) => (s.definition.key === key ? { ...s, value, isOverridden: true } : s)),
-    );
-  };
-
-  const handleReset = async (key: string) => {
-    await fetch(`/api/settings/me/${key}`, { method: 'DELETE' });
-    setSettings((prev) =>
-      prev.map((s) =>
-        s.definition.key === key
-          ? { ...s, isOverridden: false, value: s.definition.defaultValue ?? null }
-          : s,
-      ),
-    );
-  };
-
-  const groups: Record<string, UserSettingView[]> = {};
-  for (const s of settings) {
-    const group = s.definition.group ?? 'General';
-    if (!groups[group]) groups[group] = [];
-    groups[group].push(s);
-  }
+    if (!res.ok) {
+      const detail = await parseErrorDetail(res);
+      setErrorMessage(detail);
+      return;
+    }
+    setValueMap((prev) => {
+      const next = new Map(prev);
+      const existing = next.get(key);
+      if (existing) {
+        next.set(key, { ...existing, value, isOverridden: true, resolvedValue: value });
+      }
+      return next;
+    });
+  }, []);
+
+  const handleReset = useCallback(async (key: string, _scope: number) => {
+    setErrorMessage(null);
+    const res = await fetch(`/api/settings/me/${encodeURIComponent(key)}`, { method: 'DELETE' });
+    if (!res.ok) {
+      const detail = await parseErrorDetail(res);
+      setErrorMessage(detail);
+      return;
+    }
+    setValueMap((prev) => {
+      const next = new Map(prev);
+      const existing = next.get(key);
+      if (existing) {
+        next.set(key, {
+          ...existing,
+          value: null,
+          isOverridden: false,
+          resolvedValue: existing.resolvedValue,
+        });
+      }
+      return next;
+    });
+  }, []);
 
   return (
-    <Container className="space-y-4 sm:space-y-6">
-      <h1 className="text-2xl font-bold tracking-tight">{t(SettingsKeys.UserSettings.Title)}</h1>
-      {Object.entries(groups).map(([group, items]) => (
-        <Card key={group} data-testid="setting-card">
-          <CardHeader className="p-4 sm:p-6">
-            <CardTitle>{group}</CardTitle>
-          </CardHeader>
-          <CardContent className="space-y-4 p-4 sm:space-y-6 sm:p-6">
-            {items.map((s) => (
-              <div key={s.definition.key} className="space-y-1">
-                <div className="flex flex-col gap-2 sm:flex-row sm:items-center sm:justify-between">
-                  <label htmlFor={s.definition.key} className="text-sm font-medium">
-                    {s.definition.displayName}
-                  </label>
-                  <div className="flex items-center gap-2">
-                    {s.isOverridden ? (
-                      <>
-                        <Badge variant="default">
-                          {t(SettingsKeys.UserSettings.BadgeOverridden)}
-                        </Badge>
-                        <Button
-                          variant="ghost"
-                          size="sm"
-                          onClick={() => handleReset(s.definition.key)}
-                        >
-                          {t(SettingsKeys.UserSettings.ResetButton)}
-                        </Button>
-                      </>
-                    ) : (
-                      <Badge variant="info">{t(SettingsKeys.UserSettings.BadgeDefault)}</Badge>
-                    )}
-                  </div>
-                </div>
-                <SettingField
-                  definition={s.definition}
-                  currentValue={s.value}
-                  onSave={handleSave}
-                />
-              </div>
+    <Container className="space-y-0">
+      <h1 className="text-2xl font-bold tracking-tight mb-6">
+        {t(SettingsKeys.UserSettings.Title)}
+      </h1>
+
+      <div
+        className="sticky z-30 -mx-4 bg-surface/95 backdrop-blur-sm border-b border-border px-4 py-3 mb-6 sm:-mx-6 sm:px-6 lg:-mx-8 lg:px-8"
+        style={{ top: 0 }}
+      >
+        <div className="flex flex-col gap-2 sm:flex-row sm:items-center sm:gap-3">
+          <SettingsSearch
+            query={query}
+            onQueryChange={(q) => {
+              setQuery(q);
+              setErrorMessage(null);
+            }}
+            showOnlyModified={onlyOverridden}
+            onShowOnlyModifiedChange={setOnlyOverridden}
+            modifiedLabel={t(SettingsKeys.UserSettings.OnlyOverridden)}
+          />
+        </div>
+      </div>
+
+      {errorMessage !== null && (
+        <div
+          role="alert"
+          className="mb-4 rounded-lg border border-danger/20 bg-danger-bg px-4 py-3 text-sm text-danger-text"
+        >
+          <p className="font-semibold">{t(SettingsKeys.UserSettings.SaveErrorTitle)}</p>
+          <p className="mt-0.5">{errorMessage}</p>
+          <Button
+            variant="ghost"
+            size="sm"
+            className="mt-2 h-auto px-2 py-1 text-xs"
+            onClick={() => setErrorMessage(null)}
+          >
+            Dismiss
+          </Button>
+        </div>
+      )}
+
+      <div className="flex gap-8">
+        <aside className="hidden lg:block w-48 flex-shrink-0">
+          <nav aria-label="Settings groups" className="sticky top-28 space-y-0.5">
+            {groupNames.map((group) => (
+              <a
+                key={group}
+                href={`#${toAnchorId(group)}`}
+                onClick={(e) => {
+                  e.preventDefault();
+                  document
+                    .getElementById(toAnchorId(group))
+                    ?.scrollIntoView({ behavior: 'smooth', block: 'start' });
+                }}
+                className="block rounded-lg px-3 py-2 text-sm text-text-secondary hover:bg-surface-raised hover:text-text transition-colors duration-150"
+              >
+                {group}
+              </a>
             ))}
-          </CardContent>
-        </Card>
-      ))}
+          </nav>
+        </aside>
+
+        <div className="flex-1 min-w-0 pb-8">
+          {groupNames.length === 0 ? (
+            <EmptyState
+              title={t(SettingsKeys.UserSettings.NoResults)}
+              description={
+                query ? `No settings match "${query}". Try a different search term.` : undefined
+              }
+              secondaryAction={
+                query ? (
+                  <Button variant="outline" size="sm" onClick={() => setQuery('')}>
+                    Clear search
+                  </Button>
+                ) : undefined
+              }
+            />
+          ) : (
+            <div className="space-y-8">
+              {groupNames.map((group) => (
+                <SettingGroup key={group} group={group}>
+                  {(grouped[group] ?? []).map((def) => {
+                    const v = valueMap.get(def.key);
+                    return (
+                      <SettingRow
+                        key={def.key}
+                        definition={def}
+                        valueInfo={{
+                          value: v?.value ?? null,
+                          isOverridden: v?.isOverridden ?? false,
+                          resolvedValue: v?.resolvedValue ?? null,
+                        }}
+                        onSave={handleSave}
+                        onReset={handleReset}
+                        showResolvedValue
+                        namespace="UserSettings"
+                      />
+                    );
+                  })}
+                </SettingGroup>
+              ))}
+            </div>
+          )}
+        </div>
+      </div>
     </Container>
   );
 }
diff --git a/modules/Settings/src/SimpleModule.Settings/Pages/UserSettingsEndpoint.cs b/modules/Settings/src/SimpleModule.Settings/Pages/UserSettingsEndpoint.cs
index 73236af7..a84585f8 100644
--- a/modules/Settings/src/SimpleModule.Settings/Pages/UserSettingsEndpoint.cs
+++ b/modules/Settings/src/SimpleModule.Settings/Pages/UserSettingsEndpoint.cs
@@ -26,29 +26,33 @@ ClaimsPrincipal principal
                     var userId = principal.FindFirstValue(ClaimTypes.NameIdentifier);
                     var definitions = registry.GetDefinitions(SettingScope.User);
 
-                    var userSettings = new List<object>();
+                    var userSettings = new List<UserSettingValueDto>(definitions.Count);
                     foreach (var def in definitions)
                     {
-                        var resolved = await settings.ResolveUserSettingAsync(
-                            def.Key,
-                            userId ?? string.Empty
-                        );
-                        var userValue = await settings.GetSettingAsync(
+                        var userDto = await settings.GetSettingValueAsync(
                             def.Key,
                             SettingScope.User,
                             userId
                         );
+                        var resolvedElement = await settings.ResolveUserSettingElementAsync(
+                            def.Key,
+                            userId ?? string.Empty
+                        );
                         userSettings.Add(
-                            new
+                            new UserSettingValueDto
                             {
-                                definition = def,
-                                value = resolved,
-                                isOverridden = userValue is not null,
+                                Key = def.Key,
+                                Value = userDto?.Value,
+                                ResolvedValue = resolvedElement,
+                                IsOverridden = userDto is not null,
                             }
                         );
                     }
 
-                    return Inertia.Render("Settings/UserSettings", new { settings = userSettings });
+                    return Inertia.Render(
+                        "Settings/UserSettings",
+                        new { definitions, settings = userSettings }
+                    );
                 }
             )
             .RequireAuthorization();
diff --git a/modules/Settings/src/SimpleModule.Settings/SettingValidationException.cs b/modules/Settings/src/SimpleModule.Settings/SettingValidationException.cs
new file mode 100644
index 00000000..c30a044a
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/SettingValidationException.cs
@@ -0,0 +1,22 @@
+namespace SimpleModule.Settings;
+
+public sealed class SettingValidationException : Exception
+{
+    public string Key { get; } = string.Empty;
+    public IReadOnlyList<string> Errors { get; } = [];
+
+    public SettingValidationException() { }
+
+    public SettingValidationException(string message)
+        : base(message) { }
+
+    public SettingValidationException(string message, Exception innerException)
+        : base(message, innerException) { }
+
+    public SettingValidationException(string key, IReadOnlyList<string> errors)
+        : base($"Validation failed for setting '{key}': {string.Join("; ", errors)}")
+    {
+        Key = key;
+        Errors = errors;
+    }
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/SettingValidator.cs b/modules/Settings/src/SimpleModule.Settings/SettingValidator.cs
new file mode 100644
index 00000000..5558e133
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/SettingValidator.cs
@@ -0,0 +1,181 @@
+using System.Text.Json;
+using System.Text.RegularExpressions;
+using SimpleModule.Core.Settings;
+
+namespace SimpleModule.Settings;
+
+internal static class SettingValidator
+{
+    private static readonly Regex EmailRegex = new(
+        @"^[^@\s]+@[^@\s]+\.[^@\s]+$",
+        RegexOptions.Compiled
+    );
+
+    private static readonly Regex ColorRegex = new(@"^#[0-9a-fA-F]{6}$", RegexOptions.Compiled);
+
+    internal static List<string> Validate(SettingDefinition definition, JsonElement value)
+    {
+        var errors = new List<string>();
+        var isEmpty =
+            value.ValueKind is JsonValueKind.Null or JsonValueKind.Undefined
+            || (value.ValueKind == JsonValueKind.String && string.IsNullOrEmpty(value.GetString()));
+
+        if (isEmpty)
+        {
+            if (definition.Required)
+                errors.Add($"Setting '{definition.Key}' is required.");
+            return errors;
+        }
+
+        ValidateType(definition, value, errors);
+        ValidateRange(definition, value, errors);
+        ValidatePattern(definition, value, errors);
+        ValidateAllowedValues(definition, value, errors);
+
+        return errors;
+    }
+
+    private static void ValidateType(
+        SettingDefinition definition,
+        JsonElement value,
+        List<string> errors
+    )
+    {
+        switch (definition.Type)
+        {
+            case SettingType.Number:
+                if (!TryGetNumber(value, out _))
+                    errors.Add(
+                        $"Setting '{definition.Key}' expects a number but received {value.ValueKind}."
+                    );
+                break;
+
+            case SettingType.Bool:
+                if (value.ValueKind is not (JsonValueKind.True or JsonValueKind.False))
+                    errors.Add(
+                        $"Setting '{definition.Key}' expects a boolean but received {value.ValueKind}."
+                    );
+                break;
+
+            case SettingType.Email:
+                if (
+                    value.ValueKind != JsonValueKind.String
+                    || !EmailRegex.IsMatch(value.GetString()!)
+                )
+                    errors.Add($"Setting '{definition.Key}' must be a valid email address.");
+                break;
+
+            case SettingType.Color:
+                if (
+                    value.ValueKind != JsonValueKind.String
+                    || !ColorRegex.IsMatch(value.GetString()!)
+                )
+                    errors.Add($"Setting '{definition.Key}' must be a hex color like #3b82f6.");
+                break;
+
+            case SettingType.Url:
+                if (
+                    value.ValueKind != JsonValueKind.String
+                    || !Uri.TryCreate(value.GetString(), UriKind.Absolute, out var uri)
+                    || uri.Scheme is not ("http" or "https")
+                )
+                    errors.Add($"Setting '{definition.Key}' must be a valid absolute URL.");
+                break;
+
+            case SettingType.DateTime:
+                if (
+                    value.ValueKind != JsonValueKind.String
+                    || !DateTimeOffset.TryParse(value.GetString(), out _)
+                )
+                    errors.Add($"Setting '{definition.Key}' must be a valid ISO 8601 timestamp.");
+                break;
+
+            case SettingType.Text:
+            case SettingType.Json:
+            case SettingType.Select:
+            case SettingType.Password:
+            case SettingType.MultilineText:
+                break;
+        }
+    }
+
+    private static void ValidateRange(
+        SettingDefinition definition,
+        JsonElement value,
+        List<string> errors
+    )
+    {
+        if (definition.Type != SettingType.Number)
+            return;
+        if (!TryGetNumber(value, out var num))
+            return;
+
+        if (definition.Min is { } min && num < min)
+            errors.Add($"Setting '{definition.Key}' must be at least {min}.");
+        if (definition.Max is { } max && num > max)
+            errors.Add($"Setting '{definition.Key}' must be at most {max}.");
+    }
+
+    private static void ValidatePattern(
+        SettingDefinition definition,
+        JsonElement value,
+        List<string> errors
+    )
+    {
+        if (string.IsNullOrEmpty(definition.Pattern))
+            return;
+        if (value.ValueKind != JsonValueKind.String)
+            return;
+
+        // Structured types enforce their own format via ValidateType; skip the user-supplied
+        // Pattern to prevent reporting two errors for the same invalid value.
+        if (
+            definition.Type
+            is SettingType.Email
+                or SettingType.Url
+                or SettingType.Color
+                or SettingType.DateTime
+        )
+            return;
+
+        try
+        {
+            if (!Regex.IsMatch(value.GetString()!, definition.Pattern))
+                errors.Add($"Setting '{definition.Key}' does not match the required pattern.");
+        }
+        catch (ArgumentException)
+        {
+            errors.Add($"Setting '{definition.Key}' has an invalid pattern regex configured.");
+        }
+    }
+
+    private static void ValidateAllowedValues(
+        SettingDefinition definition,
+        JsonElement value,
+        List<string> errors
+    )
+    {
+        if (definition.AllowedValues is null || definition.AllowedValues.Count == 0)
+            return;
+        if (value.ValueKind != JsonValueKind.String)
+            return;
+
+        var str = value.GetString();
+        if (!definition.AllowedValues.Contains(str))
+            errors.Add(
+                $"Setting '{definition.Key}' must be one of: {string.Join(", ", definition.AllowedValues)}."
+            );
+    }
+
+    internal static bool TryGetNumber(JsonElement value, out double result)
+    {
+        if (value.ValueKind == JsonValueKind.Number)
+        {
+            result = value.GetDouble();
+            return true;
+        }
+
+        result = 0;
+        return false;
+    }
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/SettingsModule.cs b/modules/Settings/src/SimpleModule.Settings/SettingsModule.cs
index 11e14e73..f04f20c8 100644
--- a/modules/Settings/src/SimpleModule.Settings/SettingsModule.cs
+++ b/modules/Settings/src/SimpleModule.Settings/SettingsModule.cs
@@ -117,6 +117,56 @@ public void ConfigureSettings(ISettingsBuilder settings)
                     DefaultValue = "true",
                     Type = SettingType.Bool,
                 }
+            )
+            .Add(
+                new SettingDefinition
+                {
+                    Key = "app.primary_color",
+                    DisplayName = "Primary Color",
+                    Description = "Brand color used throughout the application",
+                    Group = "Appearance",
+                    Scope = SettingScope.Application,
+                    DefaultValue = "\"#3b82f6\"",
+                    Type = SettingType.Color,
+                }
+            )
+            .Add(
+                new SettingDefinition
+                {
+                    Key = "app.support_email",
+                    DisplayName = "Support Email",
+                    Description = "Email address displayed on support pages",
+                    Group = "General",
+                    Scope = SettingScope.Application,
+                    Type = SettingType.Email,
+                    Pattern = @"^[^@\s]+@[^@\s]+\.[^@\s]+$",
+                    Placeholder = "support@example.com",
+                }
+            )
+            .Add(
+                new SettingDefinition
+                {
+                    Key = "app.welcome_message",
+                    DisplayName = "Welcome Message",
+                    Description = "Message shown to users on the dashboard",
+                    Group = "General",
+                    Scope = SettingScope.Application,
+                    Type = SettingType.MultilineText,
+                    Placeholder = "Welcome to the application!",
+                }
+            )
+            .Add(
+                new SettingDefinition
+                {
+                    Key = "user.preferred_density",
+                    DisplayName = "Display Density",
+                    Description = "Controls spacing and size of UI elements",
+                    Group = "Appearance",
+                    Scope = SettingScope.User,
+                    DefaultValue = "\"comfortable\"",
+                    Type = SettingType.Select,
+                    AllowedValues = ["compact", "comfortable", "spacious"],
+                }
             );
     }
 }
diff --git a/modules/Settings/src/SimpleModule.Settings/SettingsService.cs b/modules/Settings/src/SimpleModule.Settings/SettingsService.cs
index 6ab10c86..eefb23a7 100644
--- a/modules/Settings/src/SimpleModule.Settings/SettingsService.cs
+++ b/modules/Settings/src/SimpleModule.Settings/SettingsService.cs
@@ -82,13 +82,33 @@ ILogger<SettingsService> logger
         return definition?.DefaultValue;
     }
 
+    public async Task<JsonElement?> ResolveUserSettingElementAsync(string key, string userId)
+    {
+        var raw = await ResolveUserSettingAsync(key, userId);
+        if (raw is null)
+            return null;
+
+        return ParseElement(raw);
+    }
+
     public async Task SetSettingAsync(
         string key,
-        string value,
+        JsonElement value,
         SettingScope scope,
         string? userId = null
     )
     {
+        var definition = definitions.GetDefinition(key);
+
+        if (definition is not null)
+        {
+            var errors = SettingValidator.Validate(definition, value);
+            if (errors.Count > 0)
+                throw new SettingValidationException(key, errors);
+        }
+
+        var storageValue = value.GetRawText();
+
         var existing = await db.Settings.FirstOrDefaultAsync(s =>
             s.Key == key
             && s.Scope == scope
@@ -99,7 +119,7 @@ public async Task SetSettingAsync(
 
         if (existing is not null)
         {
-            existing.Value = value;
+            existing.Value = storageValue;
         }
         else
         {
@@ -107,7 +127,7 @@ public async Task SetSettingAsync(
                 new SettingEntity
                 {
                     Key = key,
-                    Value = value,
+                    Value = storageValue,
                     Scope = scope,
                     UserId = scope == SettingScope.User ? userId : null,
                 }
@@ -120,7 +140,73 @@ public async Task SetSettingAsync(
 
         // IMessageBus is Lazy to break the SettingsService → IMessageBus → AuditingMessageBus
         // → ISettingsContracts → SettingsService cycle at construction time.
-        await bus.Value.PublishAsync(new SettingChangedEvent(key, oldValue, value, scope));
+        await bus.Value.PublishAsync(new SettingChangedEvent(key, oldValue, storageValue, scope));
+    }
+
+    public async Task SetManyAsync(IReadOnlyList<BulkSettingUpdate> updates)
+    {
+        // User-scoped settings cannot be bulk-updated because there is no authenticated
+        // user identity in a bulk request. Callers must use /api/settings/me instead.
+        var userScopedKey = updates.FirstOrDefault(u => u.Scope == SettingScope.User)?.Key;
+        if (userScopedKey is not null)
+            throw new SettingValidationException(
+                userScopedKey,
+                [
+                    "Bulk updates do not support User scope; use /api/settings/me for per-user settings.",
+                ]
+            );
+
+        foreach (var update in updates)
+        {
+            var definition = definitions.GetDefinition(update.Key);
+            if (definition is not null)
+            {
+                var errors = SettingValidator.Validate(definition, update.Value);
+                if (errors.Count > 0)
+                    throw new SettingValidationException(update.Key, errors);
+            }
+        }
+
+        var events = new List<SettingChangedEvent>(updates.Count);
+
+        foreach (var update in updates)
+        {
+            var storageValue = update.Value.GetRawText();
+
+            var existing = await db.Settings.FirstOrDefaultAsync(s =>
+                s.Key == update.Key && s.Scope == update.Scope && s.UserId == null
+            );
+
+            var oldValue = existing?.Value;
+
+            if (existing is not null)
+            {
+                existing.Value = storageValue;
+            }
+            else
+            {
+                db.Settings.Add(
+                    new SettingEntity
+                    {
+                        Key = update.Key,
+                        Value = storageValue,
+                        Scope = update.Scope,
+                        UserId = null,
+                    }
+                );
+            }
+
+            events.Add(new SettingChangedEvent(update.Key, oldValue, storageValue, update.Scope));
+        }
+
+        await db.SaveChangesAsync();
+
+        foreach (var evt in events)
+        {
+            await cache.RemoveAsync(BuildCacheKey(evt.Key, evt.Scope, null));
+            LogSettingUpdated(evt.Key, evt.Scope);
+            await bus.Value.PublishAsync(evt);
+        }
     }
 
     public async Task DeleteSettingAsync(string key, SettingScope scope, string? userId = null)
@@ -142,7 +228,12 @@ public async Task DeleteSettingAsync(string key, SettingScope scope, string? use
         }
     }
 
-    public async Task<IEnumerable<Setting>> GetSettingsAsync(SettingsFilter? filter = null)
+    public Task ResetToDefaultAsync(string key, SettingScope scope, string? userId = null) =>
+        DeleteSettingAsync(key, scope, userId);
+
+    public async Task<IEnumerable<SettingValueDto>> GetSettingValuesAsync(
+        SettingsFilter? filter = null
+    )
     {
         var query = db.Settings.AsQueryable();
 
@@ -159,17 +250,72 @@ public async Task<IEnumerable<Setting>> GetSettingsAsync(SettingsFilter? filter
             query = query.Where(s => keysInGroup.Contains(s.Key));
         }
 
-        return await query
+        var entities = await query
             .AsNoTracking()
-            .Select(e => new Setting
+            .Select(e => new
             {
-                Key = e.Key,
-                Value = e.Value,
-                Scope = e.Scope,
-                UserId = e.UserId,
-                UpdatedAt = e.UpdatedAt,
+                e.Key,
+                e.Value,
+                e.Scope,
+                e.UserId,
+                e.UpdatedAt,
             })
             .ToListAsync();
+
+        return entities.Select(e => new SettingValueDto
+        {
+            Key = e.Key,
+            Scope = e.Scope,
+            Value = IsSensitive(e.Key) ? null : ParseElement(e.Value),
+            IsOverridden = true,
+            UserId = e.UserId,
+            UpdatedAt = e.UpdatedAt,
+        });
+    }
+
+    public async Task<SettingValueDto?> GetSettingValueAsync(
+        string key,
+        SettingScope scope,
+        string? userId = null
+    )
+    {
+        var entity = await db
+            .Settings.AsNoTracking()
+            .FirstOrDefaultAsync(s =>
+                s.Key == key
+                && s.Scope == scope
+                && (scope == SettingScope.User ? s.UserId == userId : s.UserId == null)
+            );
+
+        if (entity is null)
+            return null;
+
+        return new SettingValueDto
+        {
+            Key = entity.Key,
+            Scope = entity.Scope,
+            Value = IsSensitive(key) ? null : ParseElement(entity.Value),
+            IsOverridden = true,
+            UserId = entity.UserId,
+            UpdatedAt = entity.UpdatedAt,
+        };
+    }
+
+    private bool IsSensitive(string key) => definitions.GetDefinition(key)?.Sensitive ?? false;
+
+    private static JsonElement? ParseElement(string? raw)
+    {
+        if (raw is null)
+            return null;
+
+        try
+        {
+            return JsonSerializer.Deserialize<JsonElement>(raw);
+        }
+        catch (JsonException)
+        {
+            return null;
+        }
     }
 
     [LoggerMessage(
diff --git a/modules/Settings/src/SimpleModule.Settings/components/SettingField.tsx b/modules/Settings/src/SimpleModule.Settings/components/SettingField.tsx
index ea4e0ae2..162fefcf 100644
--- a/modules/Settings/src/SimpleModule.Settings/components/SettingField.tsx
+++ b/modules/Settings/src/SimpleModule.Settings/components/SettingField.tsx
@@ -1,158 +1,45 @@
-import { Button, Input, Switch, Textarea } from '@simplemodule/ui';
-import { useMemo, useState } from 'react';
-
-const SettingTypes = {
-  Text: 0,
-  Number: 1,
-  Bool: 2,
-  Json: 3,
-} as const;
-
-type SettingType = (typeof SettingTypes)[keyof typeof SettingTypes];
-
-interface SettingDefinition {
-  key: string;
-  displayName: string;
-  description?: string;
-  group?: string;
-  scope: number;
-  defaultValue?: string;
-  type: SettingType;
-}
-
-interface SettingFieldProps {
+import type React from 'react';
+import type { SettingDefinition } from './fields';
+import {
+  BoolField,
+  ColorField,
+  DateTimeField,
+  EmailField,
+  JsonField,
+  MultilineTextField,
+  NumberField,
+  PasswordField,
+  SelectField,
+  TextField,
+  UrlField,
+} from './fields';
+
+export interface SettingFieldProps {
   definition: SettingDefinition;
-  currentValue?: string | null;
-  onSave: (key: string, value: string, scope: number) => Promise<void>;
+  value: unknown;
+  onSave: (value: unknown) => Promise<void>;
+  onDirty?: (isDirty: boolean) => void;
+  disabled?: boolean;
+  autoFocus?: boolean;
 }
 
-function decodeForDisplay(stored: string, type: SettingType): string {
-  if (stored === '') return '';
-  try {
-    const parsed = JSON.parse(stored);
-    switch (type) {
-      case SettingTypes.Text:
-        return typeof parsed === 'string' ? parsed : stored;
-      case SettingTypes.Number:
-        return typeof parsed === 'number' ? String(parsed) : stored;
-      case SettingTypes.Bool:
-        return typeof parsed === 'boolean' ? String(parsed) : stored;
-      case SettingTypes.Json:
-        return JSON.stringify(parsed, null, 2);
-      default:
-        return stored;
-    }
-  } catch {
-    return stored;
-  }
-}
-
-function encodeForStorage(input: string, type: SettingType): string {
-  switch (type) {
-    case SettingTypes.Text:
-      return JSON.stringify(input);
-    case SettingTypes.Number: {
-      const num = Number(input);
-      return Number.isFinite(num) && input.trim() !== '' ? String(num) : JSON.stringify(input);
-    }
-    case SettingTypes.Bool:
-      return input === 'true' ? 'true' : 'false';
-    case SettingTypes.Json:
-      return input;
-    default:
-      return input;
-  }
-}
-
-export default function SettingField({ definition, currentValue, onSave }: SettingFieldProps) {
-  const storedRaw = currentValue ?? definition.defaultValue ?? '';
-  const initial = useMemo(
-    () => decodeForDisplay(storedRaw, definition.type),
-    [storedRaw, definition.type],
-  );
-  const [value, setValue] = useState(initial);
-  const [saving, setSaving] = useState(false);
-  const [jsonError, setJsonError] = useState<string | null>(null);
-  const hasChanged = value !== initial;
-
-  const performSave = async (rawInput: string) => {
-    if (definition.type === SettingTypes.Json) {
-      try {
-        JSON.parse(rawInput);
-        setJsonError(null);
-      } catch (err) {
-        setJsonError(err instanceof Error ? err.message : 'Invalid JSON');
-        return;
-      }
-    }
-    setSaving(true);
-    try {
-      await onSave(definition.key, encodeForStorage(rawInput, definition.type), definition.scope);
-    } finally {
-      setSaving(false);
-    }
-  };
-
-  const renderInput = () => {
-    switch (definition.type) {
-      case SettingTypes.Text:
-        return (
-          <Input id={definition.key} value={value} onChange={(e) => setValue(e.target.value)} />
-        );
-      case SettingTypes.Number:
-        return (
-          <Input
-            id={definition.key}
-            type="number"
-            value={value}
-            onChange={(e) => setValue(e.target.value)}
-          />
-        );
-      case SettingTypes.Bool:
-        return (
-          <Switch
-            id={definition.key}
-            checked={value === 'true'}
-            disabled={saving}
-            onCheckedChange={(checked) => {
-              const newVal = String(checked);
-              setValue(newVal);
-              void performSave(newVal);
-            }}
-          />
-        );
-      case SettingTypes.Json:
-        return (
-          <Textarea
-            id={definition.key}
-            value={value}
-            onChange={(e) => {
-              setValue(e.target.value);
-              if (jsonError) setJsonError(null);
-            }}
-            rows={4}
-            className="font-mono text-sm"
-          />
-        );
-      default:
-        return null;
-    }
-  };
+const fieldMap = {
+  0: TextField,
+  1: NumberField,
+  2: BoolField,
+  3: JsonField,
+  4: SelectField,
+  5: ColorField,
+  6: UrlField,
+  7: EmailField,
+  8: PasswordField,
+  9: MultilineTextField,
+  10: DateTimeField,
+} as const;
 
-  return (
-    <div className="space-y-2">
-      {definition.description && (
-        <p className="text-sm text-muted-foreground">{definition.description}</p>
-      )}
-      {renderInput()}
-      {jsonError && <p className="text-sm text-destructive">{jsonError}</p>}
-      {definition.type !== SettingTypes.Bool && hasChanged && (
-        <Button size="sm" onClick={() => performSave(value)} disabled={saving}>
-          {saving ? 'Saving...' : 'Save'}
-        </Button>
-      )}
-    </div>
-  );
+export default function SettingField(props: SettingFieldProps): React.JSX.Element {
+  const Field = fieldMap[props.definition.type] ?? TextField;
+  return <Field {...props} />;
 }
 
 export type { SettingDefinition };
diff --git a/modules/Settings/src/SimpleModule.Settings/components/SettingGroup.tsx b/modules/Settings/src/SimpleModule.Settings/components/SettingGroup.tsx
index 474a3357..bceec4dd 100644
--- a/modules/Settings/src/SimpleModule.Settings/components/SettingGroup.tsx
+++ b/modules/Settings/src/SimpleModule.Settings/components/SettingGroup.tsx
@@ -1,30 +1,29 @@
-import { Card, CardContent, CardHeader, CardTitle } from '@simplemodule/ui';
-import type { SettingDefinition } from './SettingField';
-import SettingField from './SettingField';
+import { Card } from '@simplemodule/ui';
+import { toAnchorId } from './SettingsGroupNav';
 
 interface SettingGroupProps {
   group: string;
-  definitions: SettingDefinition[];
-  values: Record<string, string | null>;
-  onSave: (key: string, value: string, scope: number) => Promise<void>;
+  children: React.ReactNode;
 }
 
-export default function SettingGroup({ group, definitions, values, onSave }: SettingGroupProps) {
+export default function SettingGroup({ group, children }: SettingGroupProps) {
   return (
-    <Card data-testid="setting-card">
-      <CardHeader className="p-4 sm:p-6">
-        <CardTitle>{group}</CardTitle>
-      </CardHeader>
-      <CardContent className="space-y-4 p-4 sm:space-y-6 sm:p-6">
-        {definitions.map((def) => (
-          <div key={def.key}>
-            <label htmlFor={def.key} className="text-sm font-medium">
-              {def.displayName}
-            </label>
-            <SettingField definition={def} currentValue={values[def.key]} onSave={onSave} />
-          </div>
-        ))}
-      </CardContent>
-    </Card>
+    <section
+      id={toAnchorId(group)}
+      aria-labelledby={`${toAnchorId(group)}-heading`}
+      data-testid="setting-card"
+      className="scroll-mt-32"
+    >
+      <h2
+        id={`${toAnchorId(group)}-heading`}
+        className="text-base font-bold mb-3 flex items-center gap-2 before:content-[''] before:w-1 before:h-5 before:rounded-full before:bg-gradient-to-b before:from-primary before:to-accent"
+        style={{ fontFamily: 'var(--font-display)' }}
+      >
+        {group}
+      </h2>
+      <Card padding="none" className="divide-y divide-border">
+        {children}
+      </Card>
+    </section>
   );
 }
diff --git a/modules/Settings/src/SimpleModule.Settings/components/SettingRow.tsx b/modules/Settings/src/SimpleModule.Settings/components/SettingRow.tsx
new file mode 100644
index 00000000..a92a0997
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/SettingRow.tsx
@@ -0,0 +1,165 @@
+import { useTranslation } from '@simplemodule/client/use-translation';
+import { Badge, Button, Label } from '@simplemodule/ui';
+import { SettingsKeys } from '@/Locales/keys';
+import type { SettingDefinition } from './SettingField';
+import SettingField from './SettingField';
+
+interface SettingValueInfo {
+  value: unknown | null;
+  isOverridden: boolean;
+  resolvedValue?: unknown | null;
+}
+
+interface SettingRowProps {
+  definition: SettingDefinition;
+  valueInfo: SettingValueInfo;
+  onSave: (key: string, scope: number, value: unknown) => Promise<void>;
+  onReset?: (key: string, scope: number) => Promise<void>;
+  onDirty?: (key: string, isDirty: boolean) => void;
+  showResolvedValue?: boolean;
+  bulkMode?: boolean;
+  disabled?: boolean;
+  namespace: 'AdminSettings' | 'UserSettings';
+}
+
+const scopeBadgeVariant: Record<number, 'danger' | 'info' | 'success'> = {
+  0: 'danger',
+  1: 'info',
+  2: 'success',
+};
+
+// Wide types (Json, MultilineText) need their own row below the label.
+const WIDE_TYPES = new Set([3, 9]);
+
+function formatResolved(value: unknown): string | null {
+  if (value === null || value === undefined) return null;
+  if (typeof value === 'string') return value;
+  return JSON.stringify(value);
+}
+
+export default function SettingRow({
+  definition,
+  valueInfo,
+  onSave,
+  onReset,
+  onDirty,
+  showResolvedValue = false,
+  bulkMode = false,
+  disabled = false,
+  namespace,
+}: SettingRowProps) {
+  const { t } = useTranslation('Settings');
+  const keys = SettingsKeys[namespace];
+
+  const scopeVariant = scopeBadgeVariant[definition.scope] ?? 'default';
+  const isWide = WIDE_TYPES.has(definition.type);
+
+  const scopeLabel = (() => {
+    switch (definition.scope) {
+      case 0:
+        return t(SettingsKeys.AdminSettings.ScopeSystem);
+      case 1:
+        return t(SettingsKeys.AdminSettings.ScopeApplication);
+      case 2:
+        return t(SettingsKeys.AdminSettings.ScopeUser);
+      default:
+        return String(definition.scope);
+    }
+  })();
+
+  const resolvedDisplay = showResolvedValue
+    ? (formatResolved(valueInfo.resolvedValue) ?? formatResolved(definition.defaultValue))
+    : null;
+
+  const handleSave = async (value: unknown) => {
+    await onSave(definition.key, definition.scope, value);
+  };
+
+  const handleReset =
+    onReset && valueInfo.isOverridden
+      ? async () => {
+          await onReset(definition.key, definition.scope);
+        }
+      : undefined;
+
+  const labelBlock = (
+    <div className="min-w-0 flex-1 space-y-1.5">
+      <div className="flex flex-wrap items-center gap-2">
+        <Label htmlFor={definition.key} className="text-sm font-semibold text-text">
+          {definition.displayName}
+          {definition.required && (
+            <span
+              className="ml-0.5 text-danger-text"
+              title={t(SettingsKeys.AdminSettings.RequiredAsterisk)}
+              aria-hidden="true"
+            >
+              *
+            </span>
+          )}
+        </Label>
+        <Badge variant={scopeVariant}>{scopeLabel}</Badge>
+        {valueInfo.isOverridden && <Badge variant="warning">{t(keys.Overridden)}</Badge>}
+        {!valueInfo.isOverridden && namespace === 'UserSettings' && (
+          <Badge variant="default">{t(keys.Default)}</Badge>
+        )}
+      </div>
+      {definition.description && (
+        <p className="text-sm text-text-secondary max-w-prose">{definition.description}</p>
+      )}
+      {showResolvedValue && resolvedDisplay !== null && (
+        <p className="text-xs text-text-muted">
+          {t(keys.Current)}:{' '}
+          <span className="font-mono text-text-secondary">{resolvedDisplay}</span>{' '}
+          <span className="text-text-muted">
+            &#8592; ({valueInfo.isOverridden ? t(keys.YourOverride) : t(keys.InheritedDefault)})
+          </span>
+        </p>
+      )}
+    </div>
+  );
+
+  const fieldBlock = (
+    <SettingField
+      definition={definition}
+      value={valueInfo.value}
+      onSave={handleSave}
+      onDirty={onDirty ? (isDirty: boolean) => onDirty(definition.key, isDirty) : undefined}
+      disabled={disabled}
+    />
+  );
+
+  const resetButton = !bulkMode && handleReset && (
+    <Button
+      variant="ghost"
+      size="sm"
+      onClick={handleReset}
+      className="text-text-secondary hover:text-danger-text whitespace-nowrap shrink-0"
+    >
+      {t(keys.ResetToDefault)}
+    </Button>
+  );
+
+  if (isWide) {
+    return (
+      <div className="px-6 py-6">
+        <div className="flex items-start justify-between gap-4 mb-3">
+          {labelBlock}
+          {resetButton}
+        </div>
+        {fieldBlock}
+      </div>
+    );
+  }
+
+  return (
+    <div className="px-6 py-6">
+      <div className="flex flex-col gap-4 sm:flex-row sm:items-center sm:gap-8">
+        {labelBlock}
+        <div className="flex items-center gap-3 shrink-0 sm:w-72">
+          <div className="flex-1 min-w-0">{fieldBlock}</div>
+          {resetButton}
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/SettingsBulkSaveBar.tsx b/modules/Settings/src/SimpleModule.Settings/components/SettingsBulkSaveBar.tsx
new file mode 100644
index 00000000..a32a937f
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/SettingsBulkSaveBar.tsx
@@ -0,0 +1,51 @@
+import { useTranslation } from '@simplemodule/client/use-translation';
+import { Button } from '@simplemodule/ui';
+import { SettingsKeys } from '@/Locales/keys';
+
+interface SettingsBulkSaveBarProps {
+  dirtyCount: number;
+  onSaveAll: () => Promise<void>;
+  onDiscard: () => void;
+  saving: boolean;
+}
+
+export default function SettingsBulkSaveBar({
+  dirtyCount,
+  onSaveAll,
+  onDiscard,
+  saving,
+}: SettingsBulkSaveBarProps) {
+  const { t } = useTranslation('Settings');
+
+  if (dirtyCount === 0) {
+    return null;
+  }
+
+  const label = t(SettingsKeys.AdminSettings.UnsavedChanges).replace('{count}', String(dirtyCount));
+
+  return (
+    <div
+      role="status"
+      aria-live="polite"
+      className="fixed bottom-0 left-0 right-0 z-50 border-t border-border bg-surface/95 backdrop-blur-sm shadow-lg"
+    >
+      <div className="mx-auto flex max-w-7xl items-center justify-between gap-4 px-4 py-3 sm:px-6 lg:px-8">
+        <p className="text-sm text-text-secondary font-medium">{label}</p>
+        <div className="flex items-center gap-2">
+          <Button variant="secondary" size="sm" onClick={onDiscard} disabled={saving}>
+            {t(SettingsKeys.AdminSettings.BulkDiscardButton)}
+          </Button>
+          <Button
+            variant="primary"
+            size="sm"
+            onClick={() => void onSaveAll()}
+            isLoading={saving}
+            loadingText={t(SettingsKeys.AdminSettings.BulkSaveButton)}
+          >
+            {t(SettingsKeys.AdminSettings.BulkSaveButton)}
+          </Button>
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/SettingsGroupNav.tsx b/modules/Settings/src/SimpleModule.Settings/components/SettingsGroupNav.tsx
new file mode 100644
index 00000000..31b8f0eb
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/SettingsGroupNav.tsx
@@ -0,0 +1,48 @@
+interface SettingsGroupNavProps {
+  groups: string[];
+  activeGroup: string | null;
+}
+
+function toAnchorId(group: string) {
+  return `settings-group-${group.toLowerCase().replace(/\s+/g, '-')}`;
+}
+
+export { toAnchorId };
+
+export default function SettingsGroupNav({ groups, activeGroup }: SettingsGroupNavProps) {
+  if (groups.length === 0) {
+    return null;
+  }
+
+  const handleClick = (e: React.MouseEvent<HTMLAnchorElement>, group: string) => {
+    e.preventDefault();
+    const el = document.getElementById(toAnchorId(group));
+    if (el) {
+      el.scrollIntoView({ behavior: 'smooth', block: 'start' });
+    }
+  };
+
+  return (
+    <nav aria-label="Settings groups" className="sticky top-28 space-y-0.5">
+      {groups.map((group) => {
+        const isActive = group === activeGroup;
+        return (
+          <a
+            key={group}
+            href={`#${toAnchorId(group)}`}
+            onClick={(e) => handleClick(e, group)}
+            className={[
+              'block rounded-lg px-3 py-2 text-sm transition-colors duration-150',
+              isActive
+                ? 'bg-primary-subtle text-primary font-semibold'
+                : 'text-text-secondary hover:bg-surface-raised hover:text-text',
+            ].join(' ')}
+            aria-current={isActive ? 'location' : undefined}
+          >
+            {group}
+          </a>
+        );
+      })}
+    </nav>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/SettingsLayout.tsx b/modules/Settings/src/SimpleModule.Settings/components/SettingsLayout.tsx
new file mode 100644
index 00000000..f2ef977d
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/SettingsLayout.tsx
@@ -0,0 +1,75 @@
+import { useEffect, useRef, useState } from 'react';
+import SettingsGroupNav, { toAnchorId } from './SettingsGroupNav';
+
+interface SettingsLayoutProps {
+  groups: string[];
+  toolbar: React.ReactNode;
+  children: React.ReactNode;
+  topOffset?: number;
+}
+
+export default function SettingsLayout({
+  groups,
+  toolbar,
+  children,
+  topOffset = 112,
+}: SettingsLayoutProps) {
+  const [activeGroup, setActiveGroup] = useState<string | null>(groups[0] ?? null);
+  const observerRef = useRef<IntersectionObserver | null>(null);
+
+  useEffect(() => {
+    observerRef.current?.disconnect();
+
+    const entries = new Map<string, number>();
+
+    observerRef.current = new IntersectionObserver(
+      (observed) => {
+        for (const entry of observed) {
+          entries.set(entry.target.id, entry.intersectionRatio);
+        }
+        let bestId: string | null = null;
+        let bestRatio = -1;
+        for (const [id, ratio] of entries) {
+          if (ratio > bestRatio) {
+            bestRatio = ratio;
+            bestId = id;
+          }
+        }
+        if (bestId !== null) {
+          const group = groups.find((g) => toAnchorId(g) === bestId) ?? null;
+          if (group !== null) setActiveGroup(group);
+        }
+      },
+      {
+        rootMargin: `-${topOffset}px 0px -60% 0px`,
+        threshold: [0, 0.25, 0.5, 0.75, 1],
+      },
+    );
+
+    for (const group of groups) {
+      const el = document.getElementById(toAnchorId(group));
+      if (el) observerRef.current.observe(el);
+    }
+
+    return () => observerRef.current?.disconnect();
+  }, [groups, topOffset]);
+
+  return (
+    <div className="flex flex-col gap-4">
+      <div
+        className="sticky z-30 -mx-4 bg-surface/95 backdrop-blur-sm border-b border-border px-4 py-3 sm:-mx-6 sm:px-6 lg:-mx-8 lg:px-8"
+        style={{ top: 0 }}
+      >
+        {toolbar}
+      </div>
+
+      <div className="flex gap-8">
+        <aside className="hidden lg:block w-48 flex-shrink-0">
+          <SettingsGroupNav groups={groups} activeGroup={activeGroup} />
+        </aside>
+
+        <div className="flex-1 min-w-0 space-y-8 pb-24">{children}</div>
+      </div>
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/SettingsSearch.tsx b/modules/Settings/src/SimpleModule.Settings/components/SettingsSearch.tsx
new file mode 100644
index 00000000..a29e985c
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/SettingsSearch.tsx
@@ -0,0 +1,48 @@
+import { useTranslation } from '@simplemodule/client/use-translation';
+import { Checkbox, Label, SearchInput } from '@simplemodule/ui';
+import { useId } from 'react';
+import { SettingsKeys } from '@/Locales/keys';
+
+interface SettingsSearchProps {
+  query: string;
+  onQueryChange: (q: string) => void;
+  showOnlyModified: boolean;
+  onShowOnlyModifiedChange: (v: boolean) => void;
+  modifiedLabel: string;
+}
+
+export default function SettingsSearch({
+  query,
+  onQueryChange,
+  showOnlyModified,
+  onShowOnlyModifiedChange,
+  modifiedLabel,
+}: SettingsSearchProps) {
+  const { t } = useTranslation('Settings');
+  const checkboxId = useId();
+
+  return (
+    <div className="flex flex-col gap-3 sm:flex-row sm:items-center sm:gap-4">
+      <SearchInput
+        aria-label={t(SettingsKeys.AdminSettings.SearchPlaceholder)}
+        placeholder={t(SettingsKeys.AdminSettings.SearchPlaceholder)}
+        value={query}
+        onChange={(e) => onQueryChange(e.target.value)}
+        className="sm:max-w-xs"
+      />
+      <div className="flex items-center gap-2">
+        <Checkbox
+          id={checkboxId}
+          checked={showOnlyModified}
+          onCheckedChange={(v) => onShowOnlyModifiedChange(v === true)}
+        />
+        <Label
+          htmlFor={checkboxId}
+          className="text-sm text-text-secondary cursor-pointer whitespace-nowrap"
+        >
+          {modifiedLabel}
+        </Label>
+      </div>
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/BoolField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/BoolField.tsx
new file mode 100644
index 00000000..4d873a90
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/BoolField.tsx
@@ -0,0 +1,34 @@
+import { Switch } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSyncedLocal } from './common';
+import type { FieldProps } from './types';
+
+export default function BoolField({ definition, value, onSave, onDirty, disabled }: FieldProps) {
+  const [checked, setChecked] = useSyncedLocal(value === true);
+  const [saving, setSaving] = useState(false);
+
+  const handleChange = async (next: boolean) => {
+    setChecked(next);
+    onDirty?.(next !== (value === true));
+    setSaving(true);
+    try {
+      await onSave(next);
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <div className="flex items-center gap-3">
+      <Switch
+        id={definition.key}
+        checked={checked}
+        disabled={disabled || saving}
+        onCheckedChange={(v) => void handleChange(v)}
+        aria-describedby={undefined}
+      />
+      <span className="text-sm text-muted-foreground">{checked ? 'On' : 'Off'}</span>
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/ColorField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/ColorField.tsx
new file mode 100644
index 00000000..3219d54e
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/ColorField.tsx
@@ -0,0 +1,96 @@
+import { Button, Input } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateColor, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+export default function ColorField({ definition, value, onSave, onDirty, disabled }: FieldProps) {
+  const initial = typeof value === 'string' ? value : '#000000';
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const validate = (): string | null => {
+    if (definition.required && !local) return validateRequired(local);
+    return validateColor(local);
+  };
+
+  const handleHexChange = (v: string) => {
+    const normalized = v.startsWith('#') ? v : `#${v}`;
+    setLocal(normalized);
+    setError(null);
+    onDirty?.(normalized !== initial);
+  };
+
+  const handlePickerChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(local);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <div className="space-y-2">
+      <div className="flex items-center gap-2">
+        <div
+          className="h-9 w-9 shrink-0 rounded-lg border border-border"
+          style={{ backgroundColor: local }}
+        />
+        <input
+          type="color"
+          value={local}
+          disabled={disabled || saving}
+          onChange={(e) => handlePickerChange(e.target.value)}
+          className="h-9 w-9 shrink-0 cursor-pointer rounded border-0 bg-transparent p-0"
+          aria-label="Color picker"
+        />
+        <Input
+          id={definition.key}
+          type="text"
+          value={local}
+          maxLength={7}
+          disabled={disabled || saving}
+          aria-invalid={!!error}
+          aria-describedby={error ? `${definition.key}-error` : undefined}
+          onChange={(e) => handleHexChange(e.target.value)}
+          onBlur={() => {
+            const err = validate();
+            if (err) setError(err);
+          }}
+          onKeyDown={(e) => {
+            if (e.key === 'Enter' && hasChanged) void handleSave();
+          }}
+          className="w-32 font-mono"
+        />
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      {hasChanged && (
+        <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+          {saving ? 'Saving...' : 'Save'}
+        </Button>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/DateTimeField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/DateTimeField.tsx
new file mode 100644
index 00000000..2d5a77a0
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/DateTimeField.tsx
@@ -0,0 +1,110 @@
+import { Button, Input } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+function isoToLocal(iso: string): string {
+  if (!iso) return '';
+  try {
+    const d = new Date(iso);
+    if (Number.isNaN(d.getTime())) return '';
+    // datetime-local expects "YYYY-MM-DDTHH:mm"
+    const pad = (n: number) => String(n).padStart(2, '0');
+    return `${d.getFullYear()}-${pad(d.getMonth() + 1)}-${pad(d.getDate())}T${pad(d.getHours())}:${pad(d.getMinutes())}`;
+  } catch {
+    return '';
+  }
+}
+
+function localToIso(local: string): string {
+  if (!local) return '';
+  try {
+    return new Date(local).toISOString();
+  } catch {
+    return local;
+  }
+}
+
+export default function DateTimeField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const isoInitial = typeof value === 'string' ? value : '';
+  const [local, setLocal] = useSyncedLocal(isoToLocal(isoInitial));
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== isoToLocal(isoInitial);
+
+  const validate = (): string | null => {
+    if (definition.required && !local) return validateRequired(local);
+    if (local) {
+      const d = new Date(local);
+      if (Number.isNaN(d.getTime())) return 'Enter a valid date and time.';
+    }
+    return null;
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== isoToLocal(isoInitial));
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(local ? localToIso(local) : null);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <div className="space-y-2">
+      <div className="flex items-center gap-2">
+        <Input
+          id={definition.key}
+          type="datetime-local"
+          value={local}
+          disabled={disabled || saving}
+          autoFocus={autoFocus}
+          aria-invalid={!!error}
+          aria-describedby={error ? `${definition.key}-error` : undefined}
+          onChange={(e) => handleChange(e.target.value)}
+          onKeyDown={(e) => {
+            if (e.key === 'Enter' && hasChanged) void handleSave();
+          }}
+          onBlur={() => {
+            const err = validate();
+            if (err) setError(err);
+          }}
+          className="flex-1"
+        />
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      {hasChanged && (
+        <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+          {saving ? 'Saving...' : 'Save'}
+        </Button>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/EmailField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/EmailField.tsx
new file mode 100644
index 00000000..b2499a8c
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/EmailField.tsx
@@ -0,0 +1,86 @@
+import { Button, Input } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateEmail, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+export default function EmailField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const initial = typeof value === 'string' ? value : '';
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const validate = (): string | null => {
+    if (definition.required && !local) return validateRequired(local);
+    if (local) return validateEmail(local);
+    return null;
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(local);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <div className="space-y-2">
+      <div className="flex items-center gap-2">
+        <Input
+          id={definition.key}
+          type="email"
+          value={local}
+          placeholder={definition.placeholder ?? 'user@example.com'}
+          disabled={disabled || saving}
+          autoFocus={autoFocus}
+          aria-invalid={!!error}
+          aria-describedby={error ? `${definition.key}-error` : undefined}
+          onChange={(e) => handleChange(e.target.value)}
+          onKeyDown={(e) => {
+            if (e.key === 'Enter' && hasChanged) void handleSave();
+          }}
+          onBlur={() => {
+            const err = validate();
+            if (err) setError(err);
+          }}
+          className="flex-1"
+        />
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      {hasChanged && (
+        <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+          {saving ? 'Saving...' : 'Save'}
+        </Button>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/JsonField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/JsonField.tsx
new file mode 100644
index 00000000..5ec9fd3e
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/JsonField.tsx
@@ -0,0 +1,112 @@
+import { Button, Textarea } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+function prettyPrint(raw: unknown): string {
+  if (raw === null || raw === undefined) return '';
+  if (typeof raw === 'string') {
+    try {
+      return JSON.stringify(JSON.parse(raw), null, 2);
+    } catch {
+      return raw;
+    }
+  }
+  return JSON.stringify(raw, null, 2);
+}
+
+export default function JsonField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const initial = prettyPrint(value);
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const parseAndValidate = (): [unknown, string | null] => {
+    if (definition.required && local.trim() === '') return [null, validateRequired(local)];
+    if (local.trim() === '') return [null, null];
+    try {
+      return [JSON.parse(local), null];
+    } catch (err) {
+      return [null, err instanceof Error ? err.message : 'Invalid JSON'];
+    }
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    if (error) setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleFormat = () => {
+    const [parsed, err] = parseAndValidate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    const formatted = JSON.stringify(parsed, null, 2);
+    setLocal(formatted);
+    onDirty?.(formatted !== initial);
+  };
+
+  const handleSave = async () => {
+    const [parsed, err] = parseAndValidate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(parsed);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <div className="space-y-2">
+      <Textarea
+        id={definition.key}
+        value={local}
+        rows={6}
+        className="font-mono text-sm"
+        placeholder={definition.placeholder ?? '{}'}
+        disabled={disabled || saving}
+        autoFocus={autoFocus}
+        aria-invalid={!!error}
+        aria-describedby={error ? `${definition.key}-error` : undefined}
+        onChange={(e) => handleChange(e.target.value)}
+        onKeyDown={(e) => {
+          if (e.key === 'Enter' && (e.ctrlKey || e.metaKey) && hasChanged) void handleSave();
+        }}
+      />
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      <div className="flex items-center gap-2">
+        <Button size="sm" variant="outline" onClick={handleFormat} disabled={disabled || saving}>
+          Format
+        </Button>
+        {hasChanged && (
+          <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+            {saving ? 'Saving...' : 'Save'}
+          </Button>
+        )}
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/MultilineTextField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/MultilineTextField.tsx
new file mode 100644
index 00000000..ae2219ff
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/MultilineTextField.tsx
@@ -0,0 +1,83 @@
+import { Button, Textarea } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+export default function MultilineTextField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const initial = typeof value === 'string' ? value : '';
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const validate = (): string | null => {
+    if (definition.required && !local.trim()) return validateRequired(local);
+    return null;
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(local);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <div className="space-y-2">
+      <Textarea
+        id={definition.key}
+        value={local}
+        rows={6}
+        placeholder={definition.placeholder}
+        disabled={disabled || saving}
+        autoFocus={autoFocus}
+        aria-invalid={!!error}
+        aria-describedby={error ? `${definition.key}-error` : undefined}
+        onChange={(e) => handleChange(e.target.value)}
+        onKeyDown={(e) => {
+          if (e.key === 'Enter' && (e.ctrlKey || e.metaKey) && hasChanged) void handleSave();
+        }}
+      />
+      <div className="flex items-center justify-between">
+        <span className="text-xs text-muted-foreground">{local.length} chars</span>
+        <div className="flex items-center gap-2">
+          {saved && <span className="text-sm text-green-600">&#10003;</span>}
+          {hasChanged && (
+            <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+              {saving ? 'Saving...' : 'Save'}
+            </Button>
+          )}
+        </div>
+      </div>
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/NumberField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/NumberField.tsx
new file mode 100644
index 00000000..62d1b941
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/NumberField.tsx
@@ -0,0 +1,111 @@
+import { Button, Input } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateRange, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+export default function NumberField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const initial = value !== null && value !== undefined ? String(value) : '';
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const validate = (): string | null => {
+    if (definition.required && local.trim() === '') return validateRequired(local);
+    if (local.trim() !== '') {
+      const num = Number(local);
+      if (!Number.isFinite(num)) return 'Enter a valid number.';
+      const rangeErr = validateRange(num, definition.min, definition.max);
+      if (rangeErr) return rangeErr;
+    }
+    return null;
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    const raw = local.trim();
+    const num = raw === '' ? null : Number(raw);
+    const clamped =
+      num !== null && Number.isFinite(num)
+        ? Math.min(definition.max ?? num, Math.max(definition.min ?? num, num))
+        : num;
+    setSaving(true);
+    try {
+      await onSave(clamped);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  const hint =
+    definition.min !== undefined || definition.max !== undefined ? (
+      <span className="text-xs text-muted-foreground">
+        {definition.min !== undefined && definition.max !== undefined
+          ? `${definition.min} – ${definition.max}`
+          : definition.min !== undefined
+            ? `min ${definition.min}`
+            : `max ${definition.max}`}
+      </span>
+    ) : null;
+
+  return (
+    <div className="space-y-2">
+      <div className="flex items-center gap-2">
+        <Input
+          id={definition.key}
+          type="number"
+          value={local}
+          placeholder={definition.placeholder}
+          min={definition.min}
+          max={definition.max}
+          disabled={disabled || saving}
+          autoFocus={autoFocus}
+          aria-invalid={!!error}
+          aria-describedby={error ? `${definition.key}-error` : undefined}
+          onChange={(e) => handleChange(e.target.value)}
+          onKeyDown={(e) => {
+            if (e.key === 'Enter' && hasChanged) void handleSave();
+          }}
+          onBlur={() => {
+            const err = validate();
+            if (err) setError(err);
+          }}
+          className="flex-1"
+        />
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+      {hint}
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      {hasChanged && (
+        <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+          {saving ? 'Saving...' : 'Save'}
+        </Button>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/PasswordField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/PasswordField.tsx
new file mode 100644
index 00000000..c571d72f
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/PasswordField.tsx
@@ -0,0 +1,129 @@
+import { Button, Input } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+export default function PasswordField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const hasExistingValue = definition.sensitive ? value !== null && value !== undefined : !!value;
+  const initial = definition.sensitive ? '' : typeof value === 'string' ? value : '';
+
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [showPassword, setShowPassword] = useState(false);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const validate = (): string | null => {
+    if (definition.required && !local) return validateRequired(local);
+    return null;
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(local);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  const placeholder =
+    definition.sensitive && hasExistingValue
+      ? 'Enter new value to replace'
+      : (definition.placeholder ?? '');
+
+  return (
+    <div className="space-y-2">
+      {definition.sensitive && hasExistingValue && !local && (
+        <p className="text-sm text-muted-foreground">
+          &#8226;&#8226;&#8226;&#8226;&#8226;&#8226;&#8226; (set)
+        </p>
+      )}
+      <div className="flex items-center gap-2">
+        <div className="relative flex-1">
+          <Input
+            id={definition.key}
+            type={showPassword ? 'text' : 'password'}
+            value={local}
+            placeholder={placeholder}
+            disabled={disabled || saving}
+            autoFocus={autoFocus}
+            aria-invalid={!!error}
+            aria-describedby={error ? `${definition.key}-error` : undefined}
+            onChange={(e) => handleChange(e.target.value)}
+            onKeyDown={(e) => {
+              if (e.key === 'Enter' && hasChanged) void handleSave();
+            }}
+            className="pr-10"
+          />
+          <button
+            type="button"
+            onClick={() => setShowPassword((v) => !v)}
+            className="absolute right-3 top-1/2 -translate-y-1/2 text-muted-foreground hover:text-text"
+            aria-label={showPassword ? 'Hide password' : 'Show password'}
+          >
+            {showPassword ? (
+              <svg
+                aria-hidden="true"
+                className="h-4 w-4"
+                fill="none"
+                stroke="currentColor"
+                strokeWidth="2"
+                viewBox="0 0 24 24"
+              >
+                <path d="M17.94 17.94A10.07 10.07 0 0 1 12 20c-7 0-11-8-11-8a18.45 18.45 0 0 1 5.06-5.94" />
+                <path d="M9.9 4.24A9.12 9.12 0 0 1 12 4c7 0 11 8 11 8a18.5 18.5 0 0 1-2.16 3.19" />
+                <line x1="1" y1="1" x2="23" y2="23" />
+              </svg>
+            ) : (
+              <svg
+                aria-hidden="true"
+                className="h-4 w-4"
+                fill="none"
+                stroke="currentColor"
+                strokeWidth="2"
+                viewBox="0 0 24 24"
+              >
+                <path d="M1 12s4-8 11-8 11 8 11 8-4 8-11 8-11-8-11-8z" />
+                <circle cx="12" cy="12" r="3" />
+              </svg>
+            )}
+          </button>
+        </div>
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      {hasChanged && (
+        <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+          {saving ? 'Saving...' : 'Save'}
+        </Button>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/SelectField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/SelectField.tsx
new file mode 100644
index 00000000..b70721e0
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/SelectField.tsx
@@ -0,0 +1,39 @@
+import { Select, SelectContent, SelectItem, SelectTrigger, SelectValue } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSyncedLocal } from './common';
+import type { FieldProps } from './types';
+
+export default function SelectField({ definition, value, onSave, onDirty, disabled }: FieldProps) {
+  const initial = typeof value === 'string' ? value : '';
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [saving, setSaving] = useState(false);
+
+  const options = definition.allowedValues ?? [];
+
+  const handleChange = async (next: string) => {
+    setLocal(next);
+    onDirty?.(next !== initial);
+    setSaving(true);
+    try {
+      await onSave(next);
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <Select value={local} disabled={disabled || saving} onValueChange={(v) => void handleChange(v)}>
+      <SelectTrigger id={definition.key} aria-describedby={undefined}>
+        <SelectValue placeholder={definition.placeholder ?? 'Select an option'} />
+      </SelectTrigger>
+      <SelectContent>
+        {options.map((opt) => (
+          <SelectItem key={opt} value={opt}>
+            {opt}
+          </SelectItem>
+        ))}
+      </SelectContent>
+    </Select>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/TextField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/TextField.tsx
new file mode 100644
index 00000000..ce9b58d1
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/TextField.tsx
@@ -0,0 +1,91 @@
+import { Button, Input } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validatePattern, validateRequired } from './common';
+import type { FieldProps } from './types';
+
+export default function TextField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const initial = typeof value === 'string' ? value : '';
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const validate = (): string | null => {
+    if (definition.required && !local) return validateRequired(local);
+    if (definition.pattern && local) return validatePattern(local, definition.pattern);
+    return null;
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(local);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  const charCount = definition.pattern ? (
+    <span className="text-xs text-muted-foreground">{local.length} chars</span>
+  ) : null;
+
+  return (
+    <div className="space-y-2">
+      <div className="flex items-center gap-2">
+        <Input
+          id={definition.key}
+          type="text"
+          value={local}
+          placeholder={definition.placeholder}
+          disabled={disabled || saving}
+          autoFocus={autoFocus}
+          aria-invalid={!!error}
+          aria-describedby={error ? `${definition.key}-error` : undefined}
+          onChange={(e) => handleChange(e.target.value)}
+          onKeyDown={(e) => {
+            if (e.key === 'Enter' && hasChanged) void handleSave();
+          }}
+          onBlur={() => {
+            const err = validate();
+            if (err) setError(err);
+          }}
+          className="flex-1"
+        />
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+      {charCount}
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      {hasChanged && (
+        <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+          {saving ? 'Saving...' : 'Save'}
+        </Button>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/UrlField.tsx b/modules/Settings/src/SimpleModule.Settings/components/fields/UrlField.tsx
new file mode 100644
index 00000000..d61a2e96
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/UrlField.tsx
@@ -0,0 +1,105 @@
+import { Button, Input } from '@simplemodule/ui';
+import { useState } from 'react';
+import { useSavedFlash, useSyncedLocal, validateRequired, validateUrl } from './common';
+import type { FieldProps } from './types';
+
+export default function UrlField({
+  definition,
+  value,
+  onSave,
+  onDirty,
+  disabled,
+  autoFocus,
+}: FieldProps) {
+  const initial = typeof value === 'string' ? value : '';
+  const [local, setLocal] = useSyncedLocal(initial);
+  const [error, setError] = useState<string | null>(null);
+  const [saving, setSaving] = useState(false);
+  const [saved, flash] = useSavedFlash();
+
+  const hasChanged = local !== initial;
+
+  const validate = (): string | null => {
+    if (definition.required && !local) return validateRequired(local);
+    if (local) return validateUrl(local);
+    return null;
+  };
+
+  const isValidUrl = (v: string): boolean => {
+    try {
+      new URL(v);
+      return true;
+    } catch {
+      return false;
+    }
+  };
+
+  const handleChange = (v: string) => {
+    setLocal(v);
+    setError(null);
+    onDirty?.(v !== initial);
+  };
+
+  const handleSave = async () => {
+    const err = validate();
+    if (err) {
+      setError(err);
+      return;
+    }
+    setSaving(true);
+    try {
+      await onSave(local);
+      flash();
+      onDirty?.(false);
+    } finally {
+      setSaving(false);
+    }
+  };
+
+  return (
+    <div className="space-y-2">
+      <div className="flex items-center gap-2">
+        <Input
+          id={definition.key}
+          type="url"
+          value={local}
+          placeholder={definition.placeholder ?? 'https://'}
+          disabled={disabled || saving}
+          autoFocus={autoFocus}
+          aria-invalid={!!error}
+          aria-describedby={error ? `${definition.key}-error` : undefined}
+          onChange={(e) => handleChange(e.target.value)}
+          onKeyDown={(e) => {
+            if (e.key === 'Enter' && hasChanged) void handleSave();
+          }}
+          onBlur={() => {
+            const err = validate();
+            if (err) setError(err);
+          }}
+          className="flex-1"
+        />
+        {local && isValidUrl(local) && (
+          <a
+            href={local}
+            target="_blank"
+            rel="noopener noreferrer"
+            className="shrink-0 text-sm text-primary hover:underline"
+          >
+            &#8599; open
+          </a>
+        )}
+        {saved && <span className="text-sm text-green-600">&#10003;</span>}
+      </div>
+      {error && (
+        <p id={`${definition.key}-error`} className="text-sm text-destructive">
+          {error}
+        </p>
+      )}
+      {hasChanged && (
+        <Button size="sm" onClick={() => void handleSave()} disabled={disabled || saving}>
+          {saving ? 'Saving...' : 'Save'}
+        </Button>
+      )}
+    </div>
+  );
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/common.ts b/modules/Settings/src/SimpleModule.Settings/components/fields/common.ts
new file mode 100644
index 00000000..1ac3dfdf
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/common.ts
@@ -0,0 +1,80 @@
+import { useEffect, useRef, useState } from 'react';
+
+export function validateRequired(value: unknown): string | null {
+  if (value === null || value === undefined || value === '') {
+    return 'This field is required.';
+  }
+  return null;
+}
+
+export function validatePattern(value: string, pattern: string): string | null {
+  try {
+    const re = new RegExp(pattern);
+    if (!re.test(value)) return 'Value does not match the required pattern.';
+  } catch {
+    // malformed pattern — skip
+  }
+  return null;
+}
+
+export function validateRange(value: number, min?: number, max?: number): string | null {
+  if (min !== undefined && value < min) return `Value must be at least ${min}.`;
+  if (max !== undefined && value > max) return `Value must be at most ${max}.`;
+  return null;
+}
+
+const EMAIL_RE = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+export function validateEmail(value: string): string | null {
+  if (!EMAIL_RE.test(value)) return 'Enter a valid email address.';
+  return null;
+}
+
+export function validateUrl(value: string): string | null {
+  try {
+    new URL(value);
+    return null;
+  } catch {
+    return 'Enter a valid URL.';
+  }
+}
+
+const COLOR_RE = /^#[0-9a-fA-F]{6}$/;
+export function validateColor(value: string): string | null {
+  if (!COLOR_RE.test(value)) return 'Enter a valid hex color (e.g. #3b82f6).';
+  return null;
+}
+
+export function useSyncedLocal<T>(initial: T): [T, (v: T) => void] {
+  const [local, setLocal] = useState<T>(initial);
+  const lastRef = useRef(initial);
+  useEffect(() => {
+    if (lastRef.current !== initial) {
+      lastRef.current = initial;
+      setLocal(initial);
+    }
+  }, [initial]);
+  return [local, setLocal];
+}
+
+export function useSavedFlash(): [boolean, () => void] {
+  const [saved, setSaved] = useState(false);
+  const timerRef = useRef<ReturnType<typeof setTimeout> | null>(null);
+
+  const flash = () => {
+    if (timerRef.current) clearTimeout(timerRef.current);
+    setSaved(true);
+    timerRef.current = setTimeout(() => {
+      setSaved(false);
+      timerRef.current = null;
+    }, 1500);
+  };
+
+  useEffect(
+    () => () => {
+      if (timerRef.current) clearTimeout(timerRef.current);
+    },
+    [],
+  );
+
+  return [saved, flash];
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/index.ts b/modules/Settings/src/SimpleModule.Settings/components/fields/index.ts
new file mode 100644
index 00000000..88f8a005
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/index.ts
@@ -0,0 +1,12 @@
+export { default as BoolField } from './BoolField';
+export { default as ColorField } from './ColorField';
+export { default as DateTimeField } from './DateTimeField';
+export { default as EmailField } from './EmailField';
+export { default as JsonField } from './JsonField';
+export { default as MultilineTextField } from './MultilineTextField';
+export { default as NumberField } from './NumberField';
+export { default as PasswordField } from './PasswordField';
+export { default as SelectField } from './SelectField';
+export { default as TextField } from './TextField';
+export type { FieldProps, SettingDefinition, SettingScope, SettingType } from './types';
+export { default as UrlField } from './UrlField';
diff --git a/modules/Settings/src/SimpleModule.Settings/components/fields/types.ts b/modules/Settings/src/SimpleModule.Settings/components/fields/types.ts
new file mode 100644
index 00000000..4581a9aa
--- /dev/null
+++ b/modules/Settings/src/SimpleModule.Settings/components/fields/types.ts
@@ -0,0 +1,41 @@
+export type SettingType =
+  | 0 // Text
+  | 1 // Number
+  | 2 // Bool
+  | 3 // Json
+  | 4 // Select
+  | 5 // Color
+  | 6 // Url
+  | 7 // Email
+  | 8 // Password
+  | 9 // MultilineText
+  | 10; // DateTime
+
+export type SettingScope = 0 /* System */ | 1 /* Application */ | 2 /* User */;
+
+export interface SettingDefinition {
+  key: string;
+  displayName: string;
+  description?: string;
+  group?: string;
+  scope: SettingScope;
+  defaultValue?: string;
+  type: SettingType;
+  allowedValues?: string[];
+  min?: number;
+  max?: number;
+  pattern?: string;
+  required: boolean;
+  sensitive: boolean;
+  order: number;
+  placeholder?: string;
+}
+
+export interface FieldProps {
+  definition: SettingDefinition;
+  value: unknown;
+  onSave: (value: unknown) => Promise<void>;
+  onDirty?: (isDirty: boolean) => void;
+  disabled?: boolean;
+  autoFocus?: boolean;
+}
diff --git a/modules/Settings/src/SimpleModule.Settings/types.ts b/modules/Settings/src/SimpleModule.Settings/types.ts
index 5b4fd6dc..c6028465 100644
--- a/modules/Settings/src/SimpleModule.Settings/types.ts
+++ b/modules/Settings/src/SimpleModule.Settings/types.ts
@@ -1,4 +1,36 @@
 // Auto-generated from [Dto] types — do not edit
+export interface BulkSettingUpdate {
+  key: string;
+  scope: any;
+  value: any;
+}
+
+export interface BulkUpdateSettingsRequest {
+  updates: BulkSettingUpdate[];
+}
+
+export interface SettingValueDto {
+  key: string;
+  scope: any;
+  value: any | null;
+  isOverridden: boolean;
+  userId: string;
+  updatedAt: string | null;
+}
+
+export interface UserSettingValueDto {
+  key: string;
+  value: any | null;
+  resolvedValue: any | null;
+  isOverridden: boolean;
+}
+
+export interface UpdateSettingRequest {
+  key: string;
+  scope: any;
+  value: any;
+}
+
 export interface CreateMenuItemRequest {
   parentId: any | null;
   label: string;
@@ -36,14 +68,6 @@ export interface ReorderItem {
   sortOrder: number;
 }
 
-export interface Setting {
-  key: string;
-  value: string;
-  scope: any;
-  userId: string;
-  updatedAt: string;
-}
-
 export interface SettingsFilter {
   scope: any | null;
   group: string;
@@ -60,9 +84,3 @@ export interface UpdateMenuItemRequest {
   isHomePage: boolean;
 }
 
-export interface UpdateSettingRequest {
-  key: string;
-  value: string;
-  scope: any;
-}
-
diff --git a/modules/Settings/tests/SimpleModule.Settings.Tests/Integration/SettingsEndpointTests.cs b/modules/Settings/tests/SimpleModule.Settings.Tests/Integration/SettingsEndpointTests.cs
index 786a74fc..a5acef8a 100644
--- a/modules/Settings/tests/SimpleModule.Settings.Tests/Integration/SettingsEndpointTests.cs
+++ b/modules/Settings/tests/SimpleModule.Settings.Tests/Integration/SettingsEndpointTests.cs
@@ -3,6 +3,7 @@
 using System.Text.Json;
 using FluentAssertions;
 using SimpleModule.Core.Settings;
+using SimpleModule.Settings;
 using SimpleModule.Settings.Contracts;
 using SimpleModule.Tests.Shared.Fixtures;
 
@@ -13,20 +14,33 @@ public class SettingsEndpointTests(SimpleModuleWebApplicationFactory factory)
 {
     private static string UniqueKey(string prefix) => $"{prefix}.{Guid.NewGuid():N}";
 
+    private static readonly JsonSerializerOptions JsonOptions = new(JsonSerializerDefaults.Web);
+
+    private HttpClient CreateAdminClient() =>
+        factory.CreateAuthenticatedClient([SettingsPermissions.Update]);
+
+    private static UpdateSettingRequest StringRequest(
+        string key,
+        string value,
+        SettingScope scope
+    ) =>
+        new()
+        {
+            Key = key,
+            Scope = scope,
+            Value = JsonSerializer.Deserialize<JsonElement>($"\"{value}\""),
+        };
+
     [Fact]
     public async Task UpdateSetting_StoresValue_ReadableViaGetSetting()
     {
-        var client = factory.CreateAuthenticatedClient();
+        var client = CreateAdminClient();
         var key = UniqueKey("integration");
 
         var updateResponse = await client.PutAsJsonAsync(
             "/api/settings",
-            new UpdateSettingRequest
-            {
-                Key = key,
-                Value = "\"hello\"",
-                Scope = SettingScope.Application,
-            }
+            StringRequest(key, "hello", SettingScope.Application),
+            JsonOptions
         );
         updateResponse.StatusCode.Should().Be(HttpStatusCode.NoContent);
 
@@ -35,27 +49,21 @@ public async Task UpdateSetting_StoresValue_ReadableViaGetSetting()
 
         var body = await getResponse.Content.ReadFromJsonAsync<JsonElement>();
         body.GetProperty("key").GetString().Should().Be(key);
-        // Settings are stored as raw JSON, so the string value comes back
-        // quoted exactly as it was written.
-        body.GetProperty("value").GetString().Should().Be("\"hello\"");
+        body.GetProperty("isOverridden").GetBoolean().Should().BeTrue();
+        body.GetProperty("value").GetString().Should().Be("hello");
     }
 
     [Fact]
     public async Task DeleteSetting_RemovesValue_SubsequentGetReturns404()
     {
-        var client = factory.CreateAuthenticatedClient();
+        var client = CreateAdminClient();
         var key = UniqueKey("delete");
 
         await client.PutAsJsonAsync(
             "/api/settings",
-            new UpdateSettingRequest
-            {
-                Key = key,
-                Value = "\"temp\"",
-                Scope = SettingScope.Application,
-            }
+            StringRequest(key, "temp", SettingScope.Application),
+            JsonOptions
         );
-        // Sanity check: the setting exists before deletion.
         (await client.GetAsync($"/api/settings/{key}?scope=1"))
             .StatusCode.Should()
             .Be(HttpStatusCode.OK);
@@ -77,15 +85,50 @@ public async Task GetDefinitions_ReturnsArrayOfDefinitions()
 
         var body = await response.Content.ReadFromJsonAsync<JsonElement>();
         body.ValueKind.Should().Be(JsonValueKind.Array);
-        // Each item must have at least the canonical "key" property — proves
-        // the registry is actually populated and serialized, not just that
-        // the route returned 200.
         if (body.GetArrayLength() > 0)
         {
             body[0].TryGetProperty("key", out _).Should().BeTrue();
         }
     }
 
+    [Fact]
+    public async Task BulkUpdateSettings_StoresMultipleValues()
+    {
+        var client = CreateAdminClient();
+        var key1 = UniqueKey("bulk1");
+        var key2 = UniqueKey("bulk2");
+
+        var request = new BulkUpdateSettingsRequest
+        {
+            Updates =
+            [
+                new BulkSettingUpdate
+                {
+                    Key = key1,
+                    Scope = SettingScope.Application,
+                    Value = JsonSerializer.Deserialize<JsonElement>("\"val1\""),
+                },
+                new BulkSettingUpdate
+                {
+                    Key = key2,
+                    Scope = SettingScope.Application,
+                    Value = JsonSerializer.Deserialize<JsonElement>("\"val2\""),
+                },
+            ],
+        };
+
+        var response = await client.PutAsJsonAsync("/api/settings/bulk", request, JsonOptions);
+        response.StatusCode.Should().Be(HttpStatusCode.OK);
+
+        var body = await response.Content.ReadFromJsonAsync<JsonElement>();
+        body.GetProperty("count").GetInt32().Should().Be(2);
+
+        var get1 = await client.GetAsync($"/api/settings/{key1}?scope=1");
+        get1.StatusCode.Should().Be(HttpStatusCode.OK);
+        var get2 = await client.GetAsync($"/api/settings/{key2}?scope=1");
+        get2.StatusCode.Should().Be(HttpStatusCode.OK);
+    }
+
     [Fact]
     public async Task UpdateMySetting_StoresUserScopedValue_ReadableViaGetMySettings()
     {
@@ -94,12 +137,8 @@ public async Task UpdateMySetting_StoresUserScopedValue_ReadableViaGetMySettings
         var theme = "dark-" + Guid.NewGuid().ToString("N")[..8];
         var updateResponse = await client.PutAsJsonAsync(
             "/api/settings/me",
-            new UpdateSettingRequest
-            {
-                Key = "app.theme",
-                Value = $"\"{theme}\"",
-                Scope = SettingScope.User,
-            }
+            StringRequest("app.theme", theme, SettingScope.User),
+            JsonOptions
         );
         updateResponse.StatusCode.Should().Be(HttpStatusCode.NoContent);
 
@@ -108,15 +147,25 @@ public async Task UpdateMySetting_StoresUserScopedValue_ReadableViaGetMySettings
 
         var body = await getResponse.Content.ReadFromJsonAsync<JsonElement>();
         body.ValueKind.Should().Be(JsonValueKind.Array);
-        // The endpoint returns each user-scope definition with the resolved
-        // value; the app.theme entry must reflect the override we just set.
         var themeEntry = body.EnumerateArray()
             .FirstOrDefault(item =>
-                item.TryGetProperty("definition", out var def)
-                && def.TryGetProperty("key", out var key)
-                && key.GetString() == "app.theme"
+                item.TryGetProperty("key", out var k) && k.GetString() == "app.theme"
             );
         themeEntry.ValueKind.Should().NotBe(JsonValueKind.Undefined);
+        themeEntry.GetProperty("isOverridden").GetBoolean().Should().BeTrue();
+    }
+
+    [Fact]
+    public async Task GetResolvedSetting_ReturnsEffectiveValue()
+    {
+        var client = factory.CreateAuthenticatedClient();
+        var key = UniqueKey("resolved");
+
+        var response = await client.GetAsync($"/api/settings/{key}/resolved");
+        response.StatusCode.Should().Be(HttpStatusCode.OK);
+
+        var body = await response.Content.ReadFromJsonAsync<JsonElement>();
+        body.GetProperty("key").GetString().Should().Be(key);
     }
 
     [Fact]
@@ -126,4 +175,102 @@ public async Task GetSettings_Unauthenticated_Returns401()
         var response = await client.GetAsync("/api/settings");
         response.StatusCode.Should().Be(HttpStatusCode.Unauthorized);
     }
+
+    // GAP-PERM: write endpoints require Settings.Update permission
+
+    [Fact]
+    public async Task UpdateSetting_WithoutPermission_Returns403()
+    {
+        var client = factory.CreateAuthenticatedClient();
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            StringRequest(UniqueKey("perm"), "value", SettingScope.Application),
+            JsonOptions
+        );
+        response.StatusCode.Should().Be(HttpStatusCode.Forbidden);
+    }
+
+    [Fact]
+    public async Task DeleteSetting_WithoutPermission_Returns403()
+    {
+        var client = factory.CreateAuthenticatedClient();
+        var response = await client.DeleteAsync($"/api/settings/some.key?scope=1");
+        response.StatusCode.Should().Be(HttpStatusCode.Forbidden);
+    }
+
+    [Fact]
+    public async Task BulkUpdateSettings_WithoutPermission_Returns403()
+    {
+        var client = factory.CreateAuthenticatedClient();
+        var request = new BulkUpdateSettingsRequest
+        {
+            Updates =
+            [
+                new BulkSettingUpdate
+                {
+                    Key = UniqueKey("bulk-perm"),
+                    Scope = SettingScope.Application,
+                    Value = JsonSerializer.Deserialize<JsonElement>("\"v\""),
+                },
+            ],
+        };
+        var response = await client.PutAsJsonAsync("/api/settings/bulk", request, JsonOptions);
+        response.StatusCode.Should().Be(HttpStatusCode.Forbidden);
+    }
+
+    // BUG-3: GET /api/settings/{key} without ?scope returns 400
+
+    [Fact]
+    public async Task GetSetting_WithoutScope_Returns400()
+    {
+        var client = factory.CreateAuthenticatedClient();
+        var response = await client.GetAsync("/api/settings/any.key");
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+    }
+
+    // BUG-4: DELETE /api/settings/{key} without ?scope returns 400
+
+    [Fact]
+    public async Task DeleteSetting_WithoutScope_Returns400()
+    {
+        var client = CreateAdminClient();
+        var response = await client.DeleteAsync("/api/settings/any.key");
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+    }
+
+    // BUG-6: PUT /api/settings with scope=User returns 400
+
+    [Fact]
+    public async Task UpdateSetting_WithUserScope_Returns400()
+    {
+        var client = CreateAdminClient();
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            StringRequest(UniqueKey("user-scope"), "value", SettingScope.User),
+            JsonOptions
+        );
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+    }
+
+    // BUG-6: PUT /api/settings/bulk with any User-scope entry returns 400
+
+    [Fact]
+    public async Task BulkUpdateSettings_WithUserScopeEntry_Returns400()
+    {
+        var client = CreateAdminClient();
+        var request = new BulkUpdateSettingsRequest
+        {
+            Updates =
+            [
+                new BulkSettingUpdate
+                {
+                    Key = UniqueKey("bulk-user"),
+                    Scope = SettingScope.User,
+                    Value = JsonSerializer.Deserialize<JsonElement>("\"v\""),
+                },
+            ],
+        };
+        var response = await client.PutAsJsonAsync("/api/settings/bulk", request, JsonOptions);
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+    }
 }
diff --git a/modules/Settings/tests/SimpleModule.Settings.Tests/Integration/SettingsValidationEndpointTests.cs b/modules/Settings/tests/SimpleModule.Settings.Tests/Integration/SettingsValidationEndpointTests.cs
new file mode 100644
index 00000000..f24aafd5
--- /dev/null
+++ b/modules/Settings/tests/SimpleModule.Settings.Tests/Integration/SettingsValidationEndpointTests.cs
@@ -0,0 +1,548 @@
+using System.Net;
+using System.Net.Http.Json;
+using System.Text.Json;
+using FluentAssertions;
+using SimpleModule.Core.Settings;
+using SimpleModule.Settings;
+using SimpleModule.Settings.Contracts;
+using SimpleModule.Tests.Shared.Fixtures;
+
+namespace Settings.Tests.Integration;
+
+/// <summary>
+/// Integration tests that hit the running ASP.NET pipeline to verify:
+/// - Validation returns 400 (not 500) for type mismatches
+/// - Endpoint binding errors return 400 (not 500) for missing query params
+/// - BulkUpdate with User scope returns 400 (not 500)
+/// - Decoded-value round-trips for all primitive types
+/// - Cache invalidation after writes and deletes
+/// - Scope isolation (userId-specific rows)
+/// </summary>
+[Collection(TestCollections.Integration)]
+public class SettingsValidationEndpointTests(SimpleModuleWebApplicationFactory factory)
+{
+    private static string UniqueKey(string prefix) => $"qa.{prefix}.{Guid.NewGuid():N}";
+
+    private static readonly JsonSerializerOptions JsonOptions = new(JsonSerializerDefaults.Web);
+
+    private HttpClient AdminClient() =>
+        factory.CreateAuthenticatedClient([SettingsPermissions.Update]);
+
+    // -----------------------------------------------------------------------
+    // Decoded-value round-trips
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task RoundTrip_BoolTrue_DecodedAsRealBool()
+    {
+        var client = AdminClient();
+        var key = UniqueKey("bool");
+
+        var put = await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = true,
+            },
+            JsonOptions
+        );
+        put.StatusCode.Should().Be(HttpStatusCode.NoContent);
+
+        var get = await client.GetAsync($"/api/settings/{key}?scope=1");
+        get.StatusCode.Should().Be(HttpStatusCode.OK);
+
+        var body = await get.Content.ReadFromJsonAsync<JsonElement>();
+        // value must be JSON true (ValueKind.True), not the string "true"
+        body.GetProperty("value").ValueKind.Should().Be(JsonValueKind.True);
+    }
+
+    [Fact]
+    public async Task RoundTrip_Number_DecodedAsNumeric()
+    {
+        var client = AdminClient();
+        var key = UniqueKey("num");
+
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = 42,
+            },
+            JsonOptions
+        );
+
+        var body = await (
+            await client.GetAsync($"/api/settings/{key}?scope=1")
+        ).Content.ReadFromJsonAsync<JsonElement>();
+
+        body.GetProperty("value").ValueKind.Should().Be(JsonValueKind.Number);
+        body.GetProperty("value").GetInt32().Should().Be(42);
+    }
+
+    [Fact]
+    public async Task RoundTrip_String_DecodedAsPlainString_NotDoubleEncoded()
+    {
+        var client = AdminClient();
+        var key = UniqueKey("str");
+
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = "hello world",
+            },
+            JsonOptions
+        );
+
+        var body = await (
+            await client.GetAsync($"/api/settings/{key}?scope=1")
+        ).Content.ReadFromJsonAsync<JsonElement>();
+
+        var value = body.GetProperty("value");
+        value.ValueKind.Should().Be(JsonValueKind.String);
+        // Must be the plain string, never a JSON-encoded string-within-a-string
+        value.GetString().Should().Be("hello world");
+        value.GetString().Should().NotStartWith("\"");
+    }
+
+    [Fact]
+    public async Task RoundTrip_JsonObject_PreservesStructure()
+    {
+        var client = AdminClient();
+        var key = UniqueKey("json");
+
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = new { nested = "object", count = 3 },
+            },
+            JsonOptions
+        );
+
+        var body = await (
+            await client.GetAsync($"/api/settings/{key}?scope=1")
+        ).Content.ReadFromJsonAsync<JsonElement>();
+
+        var value = body.GetProperty("value");
+        value.ValueKind.Should().Be(JsonValueKind.Object);
+        value.GetProperty("nested").GetString().Should().Be("object");
+        value.GetProperty("count").GetInt32().Should().Be(3);
+    }
+
+    // -----------------------------------------------------------------------
+    // Validation returns 400
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validation_BoolAString_Returns400WithFieldError()
+    {
+        var client = AdminClient();
+
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key = "system.maintenance_mode",
+                scope = (int)SettingScope.System,
+                value = "yes",
+            },
+            JsonOptions
+        );
+
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+        var body = await response.Content.ReadFromJsonAsync<JsonElement>();
+        body.GetProperty("errors")
+            .TryGetProperty("system.maintenance_mode", out var errs)
+            .Should()
+            .BeTrue();
+        errs.EnumerateArray().Should().Contain(e => e.GetString()!.Contains("boolean"));
+    }
+
+    [Fact]
+    public async Task Validation_InvalidEmail_Returns400()
+    {
+        var client = AdminClient();
+
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key = "app.support_email",
+                scope = (int)SettingScope.Application,
+                value = "not-an-email",
+            },
+            JsonOptions
+        );
+
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+        var body = await response.Content.ReadFromJsonAsync<JsonElement>();
+        body.GetProperty("errors")
+            .TryGetProperty("app.support_email", out var errs)
+            .Should()
+            .BeTrue();
+        // Document current behavior: 2 errors (type check + pattern) — see also SettingValidatorTests
+        errs.GetArrayLength().Should().BeGreaterThanOrEqualTo(1);
+    }
+
+    [Fact]
+    public async Task Validation_InvalidColor_Returns400()
+    {
+        var client = AdminClient();
+
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key = "app.primary_color",
+                scope = (int)SettingScope.Application,
+                value = "red",
+            },
+            JsonOptions
+        );
+
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+    }
+
+    [Fact]
+    public async Task Validation_SelectInvalidOption_Returns400()
+    {
+        var client = AdminClient();
+
+        var response = await client.PutAsJsonAsync(
+            "/api/settings/me",
+            new
+            {
+                key = "user.preferred_density",
+                scope = (int)SettingScope.User,
+                value = "giant",
+            },
+            JsonOptions
+        );
+
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+        var body = await response.Content.ReadFromJsonAsync<JsonElement>();
+        body.GetProperty("errors")
+            .TryGetProperty("user.preferred_density", out var errs)
+            .Should()
+            .BeTrue();
+        errs.EnumerateArray().Should().Contain(e => e.GetString()!.Contains("one of"));
+    }
+
+    // -----------------------------------------------------------------------
+    // Bug: missing ?scope= causes 500
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task GetSetting_MissingScopeQueryParam_Returns400()
+    {
+        // The in-process test host correctly returns 400 when ?scope= is missing.
+        // NOTE: The production dev server (dotnet run) returns 500 for this same request,
+        // suggesting the production host's exception-handling pipeline differs from the
+        // test host. The 500 in production is still a bug — a missing required parameter
+        // should always produce 400, not 500.
+        var client = AdminClient();
+
+        var response = await client.GetAsync("/api/settings/app.title");
+
+        response
+            .StatusCode.Should()
+            .Be(
+                HttpStatusCode.BadRequest,
+                "missing ?scope= must return 400 Bad Request. "
+                    + "Note: the production server returns 500 for this — see live server probe."
+            );
+    }
+
+    [Fact]
+    public async Task DeleteSetting_MissingScopeQueryParam_Returns400()
+    {
+        // Same as GetSetting — test host returns 400, production server returns 500.
+        var client = AdminClient();
+
+        var response = await client.DeleteAsync("/api/settings/app.title");
+
+        response
+            .StatusCode.Should()
+            .Be(
+                HttpStatusCode.BadRequest,
+                "missing ?scope= must return 400 Bad Request. "
+                    + "Note: the production server returns 500 for this — see live server probe."
+            );
+    }
+
+    // -----------------------------------------------------------------------
+    // Bug: BulkUpdate with User scope throws 500
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task BulkUpdate_UserScope_Returns400()
+    {
+        // The endpoint rejects User-scope entries with 400 (defense-in-depth at the endpoint
+        // level, plus SetManyAsync throws SettingValidationException as a backstop).
+        var client = AdminClient();
+
+        var request = new BulkUpdateSettingsRequest
+        {
+            Updates =
+            [
+                new BulkSettingUpdate
+                {
+                    Key = "app.theme",
+                    Scope = SettingScope.User,
+                    Value = JsonSerializer.Deserialize<JsonElement>("\"dark\""),
+                },
+            ],
+        };
+
+        var response = await client.PutAsJsonAsync("/api/settings/bulk", request, JsonOptions);
+
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+    }
+
+    // -----------------------------------------------------------------------
+    // Bug: PUT /api/settings with scope=User stores userId=null
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task UpdateSetting_WithUserScope_IsRejected()
+    {
+        // PUT /api/settings rejects User scope at the admin endpoint to prevent ghost rows
+        // (UserId=null). Callers must use /api/settings/me for per-user values.
+        var client = AdminClient();
+        var key = UniqueKey("user-scope-ghost");
+
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.User,
+                value = "ghostly",
+            },
+            JsonOptions
+        );
+
+        response.StatusCode.Should().Be(HttpStatusCode.BadRequest);
+    }
+
+    // -----------------------------------------------------------------------
+    // Cache invalidation
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task AfterPut_NextGet_ReflectsNewValue()
+    {
+        var client = AdminClient();
+        var key = UniqueKey("cache");
+
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = "first",
+            },
+            JsonOptions
+        );
+        var first = await (
+            await client.GetAsync($"/api/settings/{key}?scope=1")
+        ).Content.ReadFromJsonAsync<JsonElement>();
+        first.GetProperty("value").GetString().Should().Be("first");
+
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = "second",
+            },
+            JsonOptions
+        );
+        var second = await (
+            await client.GetAsync($"/api/settings/{key}?scope=1")
+        ).Content.ReadFromJsonAsync<JsonElement>();
+        second
+            .GetProperty("value")
+            .GetString()
+            .Should()
+            .Be("second", "cache must be invalidated after PUT");
+    }
+
+    [Fact]
+    public async Task AfterDelete_GetResolved_ReturnsDefinitionDefault()
+    {
+        var client = AdminClient();
+
+        // Set a value then delete it; resolved should fall back to definition default.
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key = "app.primary_color",
+                scope = (int)SettingScope.Application,
+                value = "#aabbcc",
+            },
+            JsonOptions
+        );
+
+        await client.DeleteAsync("/api/settings/app.primary_color?scope=1");
+
+        var resolved = await client.GetAsync("/api/settings/app.primary_color/resolved");
+        resolved.StatusCode.Should().Be(HttpStatusCode.OK);
+
+        var body = await resolved.Content.ReadFromJsonAsync<JsonElement>();
+        // Definition default is "#3b82f6"
+        body.GetProperty("value")
+            .GetString()
+            .Should()
+            .Be(
+                "#3b82f6",
+                "resolved endpoint must return definition default after delete, not a stale cached value"
+            );
+    }
+
+    // -----------------------------------------------------------------------
+    // Scope semantics
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task ScopeIsolation_SystemAndApplicationAreSeparateRows()
+    {
+        var client = AdminClient();
+        var key = UniqueKey("scope-isolation");
+
+        // Set different values at System and Application scope
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.System,
+                value = "sys-value",
+            },
+            JsonOptions
+        );
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = "app-value",
+            },
+            JsonOptions
+        );
+
+        var sysBody = await (
+            await client.GetAsync($"/api/settings/{key}?scope=0")
+        ).Content.ReadFromJsonAsync<JsonElement>();
+        var appBody = await (
+            await client.GetAsync($"/api/settings/{key}?scope=1")
+        ).Content.ReadFromJsonAsync<JsonElement>();
+
+        sysBody.GetProperty("value").GetString().Should().Be("sys-value");
+        appBody.GetProperty("value").GetString().Should().Be("app-value");
+    }
+
+    [Fact]
+    public async Task UserScopeResolution_FallsThroughAppThenDefinitionDefault()
+    {
+        var client = AdminClient();
+        var key = "app.primary_color";
+
+        // Ensure no app-scope override exists
+        await client.DeleteAsync($"/api/settings/{key}?scope=1");
+
+        // Set an app-scope value
+        await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key,
+                scope = (int)SettingScope.Application,
+                value = "#ff0000",
+            },
+            JsonOptions
+        );
+
+        // The resolved endpoint uses the authenticated user's ID.
+        // With no user-scope override the user gets the app value.
+        var resolved = await client.GetAsync($"/api/settings/{key}/resolved");
+        var body = await resolved.Content.ReadFromJsonAsync<JsonElement>();
+        body.GetProperty("value")
+            .GetString()
+            .Should()
+            .Be(
+                "#ff0000",
+                "resolved must fall back to application scope when no user override exists"
+            );
+
+        // Cleanup
+        await client.DeleteAsync($"/api/settings/{key}?scope=1");
+    }
+
+    // -----------------------------------------------------------------------
+    // Permission gate — any authenticated user can write (no Settings.Update check)
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task AnonymousPut_Returns401()
+    {
+        var client = factory.CreateClient();
+
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key = "app.title",
+                scope = (int)SettingScope.Application,
+                value = "hacked",
+            },
+            JsonOptions
+        );
+
+        response.StatusCode.Should().Be(HttpStatusCode.Unauthorized);
+    }
+
+    [Fact]
+    public async Task AnonymousDelete_Returns401()
+    {
+        var client = factory.CreateClient();
+
+        var response = await client.DeleteAsync("/api/settings/app.title?scope=1");
+
+        response.StatusCode.Should().Be(HttpStatusCode.Unauthorized);
+    }
+
+    [Fact]
+    public async Task AuthenticatedUserWithoutSettingsUpdatePermission_GetsForbidden()
+    {
+        // Write endpoints are gated on Settings.Update. An authenticated user without that
+        // permission cannot modify system-scope settings.
+        var client = factory.CreateAuthenticatedClient(); // no Settings.Update claim
+
+        var response = await client.PutAsJsonAsync(
+            "/api/settings",
+            new
+            {
+                key = "system.maintenance_mode",
+                scope = (int)SettingScope.System,
+                value = false,
+            },
+            JsonOptions
+        );
+
+        response.StatusCode.Should().Be(HttpStatusCode.Forbidden);
+    }
+}
diff --git a/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingValidatorTests.cs b/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingValidatorTests.cs
new file mode 100644
index 00000000..f01112b2
--- /dev/null
+++ b/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingValidatorTests.cs
@@ -0,0 +1,665 @@
+using System.Text.Json;
+using FluentAssertions;
+using Microsoft.EntityFrameworkCore;
+using Microsoft.Extensions.Logging.Abstractions;
+using Microsoft.Extensions.Options;
+using NSubstitute;
+using SimpleModule.Core.Settings;
+using SimpleModule.Database;
+using SimpleModule.Settings;
+using SimpleModule.Settings.Contracts;
+using Wolverine;
+using ZiggyCreatures.Caching.Fusion;
+
+namespace Settings.Tests.Unit;
+
+/// <summary>
+/// Tests for validation behavior covering all 11 SettingTypes, boundary conditions,
+/// the Required flag, and edge cases that reveal bugs.
+///
+/// SettingValidator is internal — tests exercise it via SettingsService.SetSettingAsync,
+/// which is the only path that calls Validate() in production.
+/// </summary>
+public sealed class SettingValidatorTests : IDisposable
+{
+    private readonly SettingsDbContext _db;
+    private readonly FusionCache _cache;
+
+    public SettingValidatorTests()
+    {
+        var options = new DbContextOptionsBuilder<SettingsDbContext>()
+            .UseInMemoryDatabase(Guid.NewGuid().ToString())
+            .Options;
+        var dbOptions = Options.Create(
+            new DatabaseOptions { DefaultConnection = "Data Source=:memory:" }
+        );
+        _db = new SettingsDbContext(options, dbOptions);
+        _db.Database.EnsureCreated();
+        _cache = new FusionCache(new FusionCacheOptions());
+    }
+
+    private SettingsService BuildService(params SettingDefinition[] definitions)
+    {
+        var registry = new SettingsDefinitionRegistry([.. definitions]);
+        return new SettingsService(
+            _db,
+            registry,
+            _cache,
+            new Lazy<IMessageBus>(() => Substitute.For<IMessageBus>()),
+            Options.Create(new SettingsModuleOptions()),
+            NullLogger<SettingsService>.Instance
+        );
+    }
+
+    private static JsonElement Json(string raw) => JsonSerializer.Deserialize<JsonElement>(raw);
+
+    // -----------------------------------------------------------------------
+    // Bool
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Bool_AcceptsTrue()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "b",
+                DisplayName = "B",
+                Type = SettingType.Bool,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("b", Json("true"), SettingScope.Application))
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Bool_AcceptsFalse()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "b",
+                DisplayName = "B",
+                Type = SettingType.Bool,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("b", Json("false"), SettingScope.Application))
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Bool_RejectsStringYes_ThrowsValidationException()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "b",
+                DisplayName = "B",
+                Type = SettingType.Bool,
+                Scope = SettingScope.Application,
+            }
+        );
+        var act = () => svc.SetSettingAsync("b", Json("\"yes\""), SettingScope.Application);
+        var ex = await act.Should().ThrowAsync<SettingValidationException>();
+        ex.Which.Errors.Should().ContainMatch("*boolean*");
+    }
+
+    [Fact]
+    public async Task Validate_Bool_RejectsNumber1_ThrowsValidationException()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "b",
+                DisplayName = "B",
+                Type = SettingType.Bool,
+                Scope = SettingScope.Application,
+            }
+        );
+        var act = () => svc.SetSettingAsync("b", Json("1"), SettingScope.Application);
+        await act.Should().ThrowAsync<SettingValidationException>();
+    }
+
+    // -----------------------------------------------------------------------
+    // Number
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Number_AcceptsInteger()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "n",
+                DisplayName = "N",
+                Type = SettingType.Number,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("n", Json("42"), SettingScope.Application))
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Number_RejectsString()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "n",
+                DisplayName = "N",
+                Type = SettingType.Number,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s =>
+                s.SetSettingAsync("n", Json("\"not-a-number\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+    }
+
+    [Theory]
+    [InlineData("4")] // below min=5
+    [InlineData("11")] // above max=10
+    public async Task Validate_Number_RejectsOutOfRange(string valueJson)
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "n",
+                DisplayName = "N",
+                Type = SettingType.Number,
+                Scope = SettingScope.Application,
+                Min = 5,
+                Max = 10,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("n", Json(valueJson), SettingScope.Application))
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+    }
+
+    [Theory]
+    [InlineData("5")] // at min
+    [InlineData("10")] // at max
+    [InlineData("7")] // in range
+    public async Task Validate_Number_AcceptsAtBoundaryAndWithinRange(string valueJson)
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "n",
+                DisplayName = "N",
+                Type = SettingType.Number,
+                Scope = SettingScope.Application,
+                Min = 5,
+                Max = 10,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("n", Json(valueJson), SettingScope.Application))
+            .Should()
+            .NotThrowAsync();
+    }
+
+    // -----------------------------------------------------------------------
+    // Color
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Color_AcceptsValidHex()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "c",
+                DisplayName = "C",
+                Type = SettingType.Color,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s =>
+                s.SetSettingAsync("c", Json("\"#3b82f6\""), SettingScope.Application)
+            )
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Color_RejectsInvalidFormat()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "c",
+                DisplayName = "C",
+                Type = SettingType.Color,
+                Scope = SettingScope.Application,
+            }
+        );
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("c", Json("\"red\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+        ex.Which.Errors.Should().ContainMatch("*hex*");
+    }
+
+    [Fact]
+    public async Task Validate_Color_Rejects3DigitShorthand()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "c",
+                DisplayName = "C",
+                Type = SettingType.Color,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("c", Json("\"#fff\""), SettingScope.Application))
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+    }
+
+    // -----------------------------------------------------------------------
+    // Email
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Email_AcceptsValidAddress()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "e",
+                DisplayName = "E",
+                Type = SettingType.Email,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s =>
+                s.SetSettingAsync("e", Json("\"user@example.com\""), SettingScope.Application)
+            )
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Email_RejectsMissingAtSign()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "e",
+                DisplayName = "E",
+                Type = SettingType.Email,
+                Scope = SettingScope.Application,
+            }
+        );
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("e", Json("\"not-an-email\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+        ex.Which.Errors.Should().ContainMatch("*email*");
+    }
+
+    /// <summary>
+    /// Bug: when an Email definition also carries a Pattern field (as app.support_email does),
+    /// the Email type check AND the Pattern check both fire, producing two error messages
+    /// for the same constraint. The caller receives duplicate errors in the ValidationProblem.
+    ///
+    /// This test documents the CURRENT (buggy) behavior and will start failing
+    /// when the duplication is fixed to produce only a single error.
+    /// </summary>
+    [Fact]
+    public async Task Validate_Email_WithPattern_ProducesSingleError()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "e",
+                DisplayName = "E",
+                Type = SettingType.Email,
+                Scope = SettingScope.Application,
+                Pattern = @"^[^@\s]+@[^@\s]+\.[^@\s]+$",
+            }
+        );
+
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("e", Json("\"not-an-email\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+
+        // Pattern validation is skipped for typed validators (Email/Url/Color/DateTime),
+        // so only the Email-format error fires.
+        ex.Which.Errors.Should().HaveCount(1);
+    }
+
+    // -----------------------------------------------------------------------
+    // Url
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Url_AcceptsAbsoluteHttps()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "u",
+                DisplayName = "U",
+                Type = SettingType.Url,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s =>
+                s.SetSettingAsync(
+                    "u",
+                    Json("\"https://example.com/path\""),
+                    SettingScope.Application
+                )
+            )
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Url_RejectsRelativePath()
+    {
+        // On Linux, Uri.TryCreate("/relative/path", UriKind.Absolute) returns true (file://),
+        // so the validator additionally requires the scheme to be http or https.
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "u",
+                DisplayName = "U",
+                Type = SettingType.Url,
+                Scope = SettingScope.Application,
+            }
+        );
+
+        await svc.Invoking(s =>
+                s.SetSettingAsync("u", Json("\"/relative/path\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+    }
+
+    [Fact]
+    public async Task Validate_Url_RejectsPlainString()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "u",
+                DisplayName = "U",
+                Type = SettingType.Url,
+                Scope = SettingScope.Application,
+            }
+        );
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("u", Json("\"not-a-url\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+        ex.Which.Errors.Should().ContainMatch("*URL*");
+    }
+
+    // -----------------------------------------------------------------------
+    // DateTime
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_DateTime_AcceptsIso8601()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "dt",
+                DisplayName = "DT",
+                Type = SettingType.DateTime,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s =>
+                s.SetSettingAsync("dt", Json("\"2025-01-15T14:30:00Z\""), SettingScope.Application)
+            )
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_DateTime_RejectsArbitraryString()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "dt",
+                DisplayName = "DT",
+                Type = SettingType.DateTime,
+                Scope = SettingScope.Application,
+            }
+        );
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("dt", Json("\"not-a-date\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+        ex.Which.Errors.Should().ContainMatch("*ISO 8601*");
+    }
+
+    // -----------------------------------------------------------------------
+    // Select
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Select_AcceptsAllowedValue()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "s",
+                DisplayName = "S",
+                Type = SettingType.Select,
+                Scope = SettingScope.User,
+                AllowedValues = ["compact", "comfortable", "spacious"],
+            }
+        );
+        await svc.Invoking(s =>
+                s.SetSettingAsync("s", Json("\"compact\""), SettingScope.User, "u1")
+            )
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Select_RejectsValueNotInList()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "s",
+                DisplayName = "S",
+                Type = SettingType.Select,
+                Scope = SettingScope.User,
+                AllowedValues = ["compact", "comfortable", "spacious"],
+            }
+        );
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("s", Json("\"enormous\""), SettingScope.User, "u1")
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+        ex.Which.Errors.Should().ContainMatch("*one of*");
+    }
+
+    // -----------------------------------------------------------------------
+    // Required flag
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Required_RejectsNull()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "r",
+                DisplayName = "R",
+                Type = SettingType.Text,
+                Scope = SettingScope.Application,
+                Required = true,
+            }
+        );
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("r", Json("null"), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+        ex.Which.Errors.Should().ContainMatch("*required*");
+    }
+
+    [Fact]
+    public async Task Validate_Required_RejectsEmptyString()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "r",
+                DisplayName = "R",
+                Type = SettingType.Text,
+                Scope = SettingScope.Application,
+                Required = true,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("r", Json("\"\""), SettingScope.Application))
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+    }
+
+    [Fact]
+    public async Task Validate_NotRequired_AllowsNull()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "r",
+                DisplayName = "R",
+                Type = SettingType.Text,
+                Scope = SettingScope.Application,
+                Required = false,
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("r", Json("null"), SettingScope.Application))
+            .Should()
+            .NotThrowAsync("a non-required setting should accept null without error");
+    }
+
+    // -----------------------------------------------------------------------
+    // Pattern (regex)
+    // -----------------------------------------------------------------------
+
+    [Fact]
+    public async Task Validate_Pattern_AcceptsMatchingValue()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "p",
+                DisplayName = "P",
+                Type = SettingType.Text,
+                Scope = SettingScope.Application,
+                Pattern = @"^\d{4}$",
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("p", Json("\"1234\""), SettingScope.Application))
+            .Should()
+            .NotThrowAsync();
+    }
+
+    [Fact]
+    public async Task Validate_Pattern_RejectsNonMatchingValue()
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "p",
+                DisplayName = "P",
+                Type = SettingType.Text,
+                Scope = SettingScope.Application,
+                Pattern = @"^\d{4}$",
+            }
+        );
+        await svc.Invoking(s => s.SetSettingAsync("p", Json("\"abc\""), SettingScope.Application))
+            .Should()
+            .ThrowAsync<SettingValidationException>();
+    }
+
+    [Fact]
+    public async Task Validate_MalformedPattern_ReturnsInvalidPatternError_NotException()
+    {
+        // If a definition is misconfigured with an invalid regex the validator must not throw
+        // an unhandled exception — it must surface a clean validation error message.
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "p",
+                DisplayName = "P",
+                Type = SettingType.Text,
+                Scope = SettingScope.Application,
+                Pattern = "[unclosed",
+            }
+        );
+
+        // Should throw SettingValidationException (clean error), not ArgumentException/RuntimeException
+        var ex = await svc.Invoking(s =>
+                s.SetSettingAsync("p", Json("\"some-value\""), SettingScope.Application)
+            )
+            .Should()
+            .ThrowAsync<SettingValidationException>(
+                "malformed regex must produce a clean validation error, not a 500"
+            );
+
+        ex.Which.Errors.Should().ContainMatch("*invalid pattern*");
+    }
+
+    // -----------------------------------------------------------------------
+    // Text/MultilineText/Password/Json — permissive type checking
+    // -----------------------------------------------------------------------
+
+    [Theory]
+    [InlineData(SettingType.Text)]
+    [InlineData(SettingType.MultilineText)]
+    [InlineData(SettingType.Password)]
+    [InlineData(SettingType.Json)]
+    public async Task Validate_StringTypes_AcceptAnyNonEmptyString(SettingType type)
+    {
+        var svc = BuildService(
+            new SettingDefinition
+            {
+                Key = "x",
+                DisplayName = "X",
+                Type = type,
+                Scope = SettingScope.Application,
+            }
+        );
+        await svc.Invoking(s =>
+                s.SetSettingAsync("x", Json("\"any string value\""), SettingScope.Application)
+            )
+            .Should()
+            .NotThrowAsync();
+    }
+
+    public void Dispose()
+    {
+        _cache.Dispose();
+        _db.Dispose();
+        GC.SuppressFinalize(this);
+    }
+}
diff --git a/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingsServiceSensitiveTests.cs b/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingsServiceSensitiveTests.cs
new file mode 100644
index 00000000..d57a3a25
--- /dev/null
+++ b/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingsServiceSensitiveTests.cs
@@ -0,0 +1,169 @@
+using System.Text.Json;
+using FluentAssertions;
+using Microsoft.EntityFrameworkCore;
+using Microsoft.Extensions.Logging.Abstractions;
+using Microsoft.Extensions.Options;
+using NSubstitute;
+using SimpleModule.Core.Settings;
+using SimpleModule.Database;
+using SimpleModule.Settings;
+using SimpleModule.Settings.Contracts;
+using Wolverine;
+using ZiggyCreatures.Caching.Fusion;
+
+namespace Settings.Tests.Unit;
+
+/// <summary>
+/// Tests for Sensitive masking in SettingsService.
+/// No seeded Sensitive=true definition exists in production, so we build
+/// an in-process registry with Sensitive=true here.
+/// </summary>
+public sealed class SettingsServiceSensitiveTests : IDisposable
+{
+    private readonly SettingsDbContext _db;
+    private readonly FusionCache _cache;
+    private readonly ISettingsDefinitionRegistry _registry;
+    private readonly SettingsService _service;
+
+    public SettingsServiceSensitiveTests()
+    {
+        var options = new DbContextOptionsBuilder<SettingsDbContext>()
+            .UseInMemoryDatabase(Guid.NewGuid().ToString())
+            .Options;
+        var dbOptions = Options.Create(
+            new DatabaseOptions { DefaultConnection = "Data Source=:memory:" }
+        );
+        _db = new SettingsDbContext(options, dbOptions);
+        _db.Database.EnsureCreated();
+
+        _registry = new SettingsDefinitionRegistry([
+            new SettingDefinition
+            {
+                Key = "app.api_secret",
+                DisplayName = "API Secret",
+                Scope = SettingScope.Application,
+                Type = SettingType.Password,
+                Sensitive = true,
+            },
+            new SettingDefinition
+            {
+                Key = "app.public_name",
+                DisplayName = "App Name",
+                Scope = SettingScope.Application,
+                Type = SettingType.Text,
+                Sensitive = false,
+            },
+        ]);
+
+        _cache = new FusionCache(new FusionCacheOptions());
+        _service = new SettingsService(
+            _db,
+            _registry,
+            _cache,
+            new Lazy<IMessageBus>(() => Substitute.For<IMessageBus>()),
+            Options.Create(new SettingsModuleOptions()),
+            NullLogger<SettingsService>.Instance
+        );
+    }
+
+    private static JsonElement JsonString(string s) =>
+        JsonSerializer.Deserialize<JsonElement>($"\"{s}\"");
+
+    [Fact]
+    public async Task GetSettingValuesAsync_MasksSensitiveValue_ReturnsNullValue()
+    {
+        await _service.SetSettingAsync(
+            "app.api_secret",
+            JsonString("super-secret-token"),
+            SettingScope.Application
+        );
+
+        var results = await _service.GetSettingValuesAsync();
+
+        var secret = results.Single(r => r.Key == "app.api_secret");
+        secret.Value.Should().BeNull("sensitive values must be masked in list responses");
+    }
+
+    [Fact]
+    public async Task GetSettingValueAsync_MasksSensitiveValue_ReturnsNullValue()
+    {
+        await _service.SetSettingAsync(
+            "app.api_secret",
+            JsonString("super-secret-token"),
+            SettingScope.Application
+        );
+
+        var dto = await _service.GetSettingValueAsync("app.api_secret", SettingScope.Application);
+
+        dto.Should().NotBeNull();
+        dto!.Value.Should().BeNull("sensitive values must be masked in single-key responses");
+    }
+
+    [Fact]
+    public async Task GetSettingAsync_SensitiveSetting_StillReturnsRawValueForInternalCallers()
+    {
+        // GetSettingAsync is the internal service call (used by resolvers, not the API DTOs).
+        // It returns the raw stored string. The masking only applies at the DTO layer.
+        await _service.SetSettingAsync(
+            "app.api_secret",
+            JsonString("super-secret-token"),
+            SettingScope.Application
+        );
+
+        var raw = await _service.GetSettingAsync("app.api_secret", SettingScope.Application);
+
+        raw.Should().NotBeNull("internal callers need the actual value");
+        raw.Should().Be("\"super-secret-token\"");
+    }
+
+    [Fact]
+    public async Task GetSettingValuesAsync_NonSensitiveSetting_ReturnsDecodedValue()
+    {
+        await _service.SetSettingAsync(
+            "app.public_name",
+            JsonString("My Application"),
+            SettingScope.Application
+        );
+
+        var results = await _service.GetSettingValuesAsync();
+
+        var name = results.Single(r => r.Key == "app.public_name");
+        name.Value.Should().NotBeNull("non-sensitive values must NOT be masked");
+        name.Value!.Value.GetString().Should().Be("My Application");
+    }
+
+    [Fact]
+    public async Task GetSettingValuesAsync_SensitiveNotPoisonsCacheForNonSensitive()
+    {
+        // Store both settings and call GetSettingValuesAsync twice.
+        // The sensitive masking must not write null into the cache for the sensitive key
+        // in a way that GetSettingAsync would subsequently return null.
+        await _service.SetSettingAsync(
+            "app.api_secret",
+            JsonString("tok-abc"),
+            SettingScope.Application
+        );
+        await _service.SetSettingAsync(
+            "app.public_name",
+            JsonString("Visible Name"),
+            SettingScope.Application
+        );
+
+        _ = await _service.GetSettingValuesAsync();
+        _ = await _service.GetSettingValuesAsync();
+
+        // Internal lookup must still return the actual stored value
+        var raw = await _service.GetSettingAsync("app.api_secret", SettingScope.Application);
+        raw.Should().Be("\"tok-abc\"", "GetSettingValuesAsync masking must not poison the cache");
+
+        var publicRaw = await _service.GetSettingAsync("app.public_name", SettingScope.Application);
+        publicRaw.Should().Be("\"Visible Name\"");
+    }
+
+    public void Dispose()
+    {
+        _cache.Dispose();
+        _db.Dispose();
+        GC.SuppressFinalize(this);
+    }
+}
diff --git a/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingsServiceTests.cs b/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingsServiceTests.cs
index afb63cf9..b38b609c 100644
--- a/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingsServiceTests.cs
+++ b/modules/Settings/tests/SimpleModule.Settings.Tests/Unit/SettingsServiceTests.cs
@@ -1,3 +1,4 @@
+using System.Text.Json;
 using FluentAssertions;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Extensions.Logging.Abstractions;
@@ -6,6 +7,7 @@
 using SimpleModule.Core.Settings;
 using SimpleModule.Database;
 using SimpleModule.Settings;
+using SimpleModule.Settings.Contracts;
 using SimpleModule.Tests.Shared.Fakes;
 using Wolverine;
 using ZiggyCreatures.Caching.Fusion;
@@ -52,11 +54,23 @@ public SettingsServiceTests()
         );
     }
 
+    private static JsonElement JsonString(string s) =>
+        JsonSerializer.Deserialize<JsonElement>($"\"{s}\"");
+
+    private static JsonElement JsonNumber(double n) =>
+        JsonSerializer.Deserialize<JsonElement>(
+            n.ToString(System.Globalization.CultureInfo.InvariantCulture)
+        );
+
     [Fact]
     public async Task ResolveUserSettingAsync_ReturnsUserValue_WhenSet()
     {
-        await _service.SetSettingAsync("theme", "\"dark\"", SettingScope.User, "user1");
-        await _service.SetSettingAsync("theme", "\"system-default\"", SettingScope.Application);
+        await _service.SetSettingAsync("theme", JsonString("dark"), SettingScope.User, "user1");
+        await _service.SetSettingAsync(
+            "theme",
+            JsonString("system-default"),
+            SettingScope.Application
+        );
 
         var result = await _service.ResolveUserSettingAsync("theme", "user1");
 
@@ -66,7 +80,7 @@ public async Task ResolveUserSettingAsync_ReturnsUserValue_WhenSet()
     [Fact]
     public async Task ResolveUserSettingAsync_FallsBackToApp_WhenNoUserValue()
     {
-        await _service.SetSettingAsync("theme", "\"corporate\"", SettingScope.Application);
+        await _service.SetSettingAsync("theme", JsonString("corporate"), SettingScope.Application);
 
         var result = await _service.ResolveUserSettingAsync("theme", "user1");
 
@@ -84,8 +98,8 @@ public async Task ResolveUserSettingAsync_FallsBackToCodeDefault_WhenNothingSet(
     [Fact]
     public async Task SetSettingAsync_Upserts_WhenKeyAlreadyExists()
     {
-        await _service.SetSettingAsync("theme", "\"dark\"", SettingScope.Application);
-        await _service.SetSettingAsync("theme", "\"blue\"", SettingScope.Application);
+        await _service.SetSettingAsync("theme", JsonString("dark"), SettingScope.Application);
+        await _service.SetSettingAsync("theme", JsonString("blue"), SettingScope.Application);
 
         var value = await _service.GetSettingAsync("theme", SettingScope.Application);
         value.Should().Be("\"blue\"");
@@ -99,7 +113,7 @@ public async Task SetSettingAsync_Upserts_WhenKeyAlreadyExists()
     [Fact]
     public async Task DeleteSettingAsync_RemovesSetting()
     {
-        await _service.SetSettingAsync("theme", "\"dark\"", SettingScope.User, "user1");
+        await _service.SetSettingAsync("theme", JsonString("dark"), SettingScope.User, "user1");
         await _service.DeleteSettingAsync("theme", SettingScope.User, "user1");
 
         var value = await _service.GetSettingAsync("theme", SettingScope.User, "user1");
@@ -109,7 +123,7 @@ public async Task DeleteSettingAsync_RemovesSetting()
     [Fact]
     public async Task GetSettingAsync_Generic_DeserializesCorrectly()
     {
-        await _service.SetSettingAsync("count", "42", SettingScope.Application);
+        await _service.SetSettingAsync("count", JsonNumber(42), SettingScope.Application);
 
         var result = await _service.GetSettingAsync<int>("count", SettingScope.Application);
         result.Should().Be(42);
@@ -118,8 +132,6 @@ public async Task GetSettingAsync_Generic_DeserializesCorrectly()
     [Fact]
     public async Task GetSettingAsync_NoDbValue_ReturnsNull()
     {
-        // GetSettingAsync returns null when no DB row exists.
-        // Callers must handle null as "use default".
         var result = await _service.GetSettingAsync("nonexistent.key", SettingScope.System);
 
         result.Should().BeNull();
@@ -128,10 +140,6 @@ public async Task GetSettingAsync_NoDbValue_ReturnsNull()
     [Fact]
     public async Task GetSettingAsync_Bool_NoDbValue_ReturnsFalse()
     {
-        // Regression awareness: GetSettingAsync<bool> returns default(bool) = false
-        // when no DB row exists. Callers MUST NOT use `== false` to check if a
-        // feature is explicitly disabled — they must use the string overload and
-        // compare against "false" to distinguish "not set" from "disabled".
         var result = await _service.GetSettingAsync<bool>("nonexistent.key", SettingScope.System);
 
         result
@@ -142,6 +150,207 @@ public async Task GetSettingAsync_Bool_NoDbValue_ReturnsFalse()
             );
     }
 
+    [Fact]
+    public async Task GetSettingValueAsync_ReturnsDto_WithDecodedValue()
+    {
+        await _service.SetSettingAsync("theme", JsonString("dark"), SettingScope.User, "user1");
+
+        var dto = await _service.GetSettingValueAsync("theme", SettingScope.User, "user1");
+
+        dto.Should().NotBeNull();
+        dto!.Key.Should().Be("theme");
+        dto.IsOverridden.Should().BeTrue();
+        dto.Value.Should().NotBeNull();
+        dto.Value!.Value.GetString().Should().Be("dark");
+    }
+
+    [Fact]
+    public async Task GetSettingValueAsync_ReturnsNull_WhenNotSet()
+    {
+        var dto = await _service.GetSettingValueAsync("nonexistent.key", SettingScope.Application);
+
+        dto.Should().BeNull();
+    }
+
+    [Fact]
+    public async Task ResetToDefaultAsync_RemovesSetting()
+    {
+        await _service.SetSettingAsync("theme", JsonString("dark"), SettingScope.User, "user1");
+        await _service.ResetToDefaultAsync("theme", SettingScope.User, "user1");
+
+        var value = await _service.GetSettingAsync("theme", SettingScope.User, "user1");
+        value.Should().BeNull();
+    }
+
+    [Fact]
+    public async Task SetManyAsync_UpsertsBulk()
+    {
+        var updates = new List<BulkSettingUpdate>
+        {
+            new()
+            {
+                Key = "app.a",
+                Scope = SettingScope.Application,
+                Value = JsonString("val1"),
+            },
+            new()
+            {
+                Key = "app.b",
+                Scope = SettingScope.Application,
+                Value = JsonString("val2"),
+            },
+        };
+
+        await _service.SetManyAsync(updates);
+
+        var a = await _service.GetSettingAsync("app.a", SettingScope.Application);
+        var b = await _service.GetSettingAsync("app.b", SettingScope.Application);
+        a.Should().Be("\"val1\"");
+        b.Should().Be("\"val2\"");
+    }
+
+    // BUG-5: SetManyAsync with User scope should throw SettingValidationException (→ 400),
+    // not InvalidOperationException (→ 500).
+    [Fact]
+    public async Task SetManyAsync_ThrowsSettingValidationException_ForUserScope()
+    {
+        var updates = new List<BulkSettingUpdate>
+        {
+            new()
+            {
+                Key = "theme",
+                Scope = SettingScope.User,
+                Value = JsonString("dark"),
+            },
+        };
+
+        var act = () => _service.SetManyAsync(updates);
+        await act.Should()
+            .ThrowAsync<SettingValidationException>(
+                "bulk updates must reject User scope with a clean 400 error, not a 500"
+            );
+    }
+
+    [Fact]
+    public async Task Validate_Number_RejectsString()
+    {
+        var registry = new SettingsDefinitionRegistry([
+            new SettingDefinition
+            {
+                Key = "count",
+                DisplayName = "Count",
+                Scope = SettingScope.Application,
+                Type = SettingType.Number,
+            },
+        ]);
+        var svc = new SettingsService(
+            _db,
+            registry,
+            _cache,
+            new Lazy<IMessageBus>(() => Substitute.For<IMessageBus>()),
+            Options.Create(new SettingsModuleOptions()),
+            NullLogger<SettingsService>.Instance
+        );
+
+        var act = () =>
+            svc.SetSettingAsync("count", JsonString("not-a-number"), SettingScope.Application);
+        await act.Should().ThrowAsync<SettingValidationException>();
+    }
+
+    // BUG-1: Email type with a Pattern should produce exactly ONE validation error,
+    // not two (one from ValidateType + one from ValidatePattern).
+    [Fact]
+    public async Task Validate_Email_WithPattern_ProducesExactlyOneError()
+    {
+        var registry = new SettingsDefinitionRegistry([
+            new SettingDefinition
+            {
+                Key = "contact.email",
+                DisplayName = "Contact Email",
+                Scope = SettingScope.Application,
+                Type = SettingType.Email,
+                // Pattern would also reject the value, but should be skipped for Email type.
+                Pattern = @"^[^@]+@example\.com$",
+            },
+        ]);
+        var svc = new SettingsService(
+            _db,
+            registry,
+            _cache,
+            new Lazy<IMessageBus>(() => Substitute.For<IMessageBus>()),
+            Options.Create(new SettingsModuleOptions()),
+            NullLogger<SettingsService>.Instance
+        );
+
+        var ex = await Assert.ThrowsAsync<SettingValidationException>(() =>
+            svc.SetSettingAsync(
+                "contact.email",
+                JsonString("not-an-email"),
+                SettingScope.Application
+            )
+        );
+        ex.Errors
+            .Should()
+            .HaveCount(1, "ValidatePattern must be skipped for Email type to avoid duplicate errors");
+    }
+
+    // BUG-2: URL validator must reject file:// URIs, relative paths, and non-http/https schemes.
+    [Theory]
+    [InlineData("file:///etc/passwd")]
+    [InlineData("/foo/bar")]
+    [InlineData("ftp://example.com/file")]
+    public async Task Validate_Url_RejectsNonHttpSchemes(string value)
+    {
+        var registry = new SettingsDefinitionRegistry([
+            new SettingDefinition
+            {
+                Key = "site.url",
+                DisplayName = "Site URL",
+                Scope = SettingScope.Application,
+                Type = SettingType.Url,
+            },
+        ]);
+        var svc = new SettingsService(
+            _db,
+            registry,
+            _cache,
+            new Lazy<IMessageBus>(() => Substitute.For<IMessageBus>()),
+            Options.Create(new SettingsModuleOptions()),
+            NullLogger<SettingsService>.Instance
+        );
+
+        var act = () => svc.SetSettingAsync("site.url", JsonString(value), SettingScope.Application);
+        await act.Should().ThrowAsync<SettingValidationException>();
+    }
+
+    [Theory]
+    [InlineData("https://example.com")]
+    [InlineData("http://localhost:5001/api")]
+    public async Task Validate_Url_AcceptsHttpAndHttps(string value)
+    {
+        var registry = new SettingsDefinitionRegistry([
+            new SettingDefinition
+            {
+                Key = "site.url2",
+                DisplayName = "Site URL",
+                Scope = SettingScope.Application,
+                Type = SettingType.Url,
+            },
+        ]);
+        var svc = new SettingsService(
+            _db,
+            registry,
+            _cache,
+            new Lazy<IMessageBus>(() => Substitute.For<IMessageBus>()),
+            Options.Create(new SettingsModuleOptions()),
+            NullLogger<SettingsService>.Instance
+        );
+
+        var act = () =>
+            svc.SetSettingAsync("site.url2", JsonString(value), SettingScope.Application);
+        await act.Should().NotThrowAsync();
+    }
+
     public void Dispose()
     {
         _cache.Dispose();
diff --git a/packages/SimpleModule.Client/src/routes.ts b/packages/SimpleModule.Client/src/routes.ts
index eb54e841..c825e578 100644
--- a/packages/SimpleModule.Client/src/routes.ts
+++ b/packages/SimpleModule.Client/src/routes.ts
@@ -71,8 +71,10 @@ export const routes = {
       reorderMenuItems: () => '/api/settings/menus/reorder' as const,
       setHomePage: (id: string | number) => `/api/settings/menus/${id}/home`,
       updateMenuItem: (id: string | number) => `/api/settings/menus/${id}`,
+      bulkUpdateSettings: () => '/api/settings/bulk' as const,
       deleteSetting: (key: string | number) => `/api/settings/${key}`,
       getDefinitions: () => '/api/settings/definitions' as const,
+      getResolvedSetting: (key: string | number) => `/api/settings/${key}/resolved`,
       getSetting: (key: string | number) => `/api/settings/${key}`,
       getSettings: () => '/api/settings' as const,
       updateSetting: () => '/api/settings' as const,
diff --git a/tests/SimpleModule.Core.Tests/Infrastructure/EventDurabilityE2ETests.cs b/tests/SimpleModule.Core.Tests/Infrastructure/EventDurabilityE2ETests.cs
index 63b108a9..57f573c8 100644
--- a/tests/SimpleModule.Core.Tests/Infrastructure/EventDurabilityE2ETests.cs
+++ b/tests/SimpleModule.Core.Tests/Infrastructure/EventDurabilityE2ETests.cs
@@ -123,13 +123,14 @@ public async Task PublishedEvent_Survives_The_Durable_Pipeline_End_To_End()
         // Belt-and-suspenders companion to the test above: a real HTTP request that
         // hits a service which internally calls bus.PublishAsync. Ensures the full
         // ASP.NET → service → Wolverine path works under the durable wiring.
-        var client = factory.CreateAuthenticatedClient();
+        // Settings.Update permission claim — write endpoints are gated on it.
+        var client = factory.CreateAuthenticatedClient(["Settings.Update"]);
         var response = await client.PutAsJsonAsync(
             "/api/settings",
             new
             {
                 key = "verify.api.event",
-                value = "\"hello\"",
+                value = "hello",
                 scope = 0,
             }
         );
diff --git a/tests/e2e/tests/flows/settings-api.spec.ts b/tests/e2e/tests/flows/settings-api.spec.ts
new file mode 100644
index 00000000..15d92cb8
--- /dev/null
+++ b/tests/e2e/tests/flows/settings-api.spec.ts
@@ -0,0 +1,263 @@
+import { expect, test } from '../../fixtures/base';
+
+/**
+ * API-level probes for the settings refactor.
+ * These tests make direct requests and assert on the JSON shape —
+ * no browser UI interaction needed.
+ */
+
+test.describe('Settings API — decoded values and contract', () => {
+  // -------------------------------------------------------------------------
+  // GET /api/settings — decoded-value contract
+  // -------------------------------------------------------------------------
+  test('GET /api/settings returns empty array when no settings saved', async ({ page }) => {
+    const r = await page.request.get('/api/settings');
+    expect(r.ok()).toBeTruthy();
+    const body = (await r.json()) as unknown[];
+    expect(Array.isArray(body)).toBeTruthy();
+  });
+
+  test('GET /api/settings values are never double-encoded strings', async ({ page }) => {
+    // Seed a value first
+    await page.request.put('/api/settings', {
+      data: { key: 'app.title', scope: 1, value: 'Decoded Test' },
+    });
+
+    const r = await page.request.get('/api/settings');
+    const body = (await r.json()) as Array<{ key: string; value: unknown }>;
+
+    for (const entry of body) {
+      if (typeof entry.value === 'string') {
+        // A double-encoded string would look like: "\"hello\"" — starts and ends with quote
+        const isDoubleEncoded = entry.value.startsWith('"') && entry.value.endsWith('"');
+        expect(isDoubleEncoded).toBeFalsy();
+      }
+    }
+
+    await page.request.delete('/api/settings/app.title?scope=1');
+  });
+
+  // -------------------------------------------------------------------------
+  // Scope filter parameter
+  // -------------------------------------------------------------------------
+  test('GET /api/settings?scope=0 returns only System-scope rows', async ({ page }) => {
+    await page.request.put('/api/settings', {
+      data: { key: 'system.maintenance_mode', scope: 0, value: false },
+    });
+
+    const r = await page.request.get('/api/settings?scope=0');
+    expect(r.ok()).toBeTruthy();
+    const body = (await r.json()) as Array<{ scope: number }>;
+    for (const entry of body) {
+      expect(entry.scope).toBe(0);
+    }
+
+    await page.request.delete('/api/settings/system.maintenance_mode?scope=0');
+  });
+
+  // -------------------------------------------------------------------------
+  // GET /api/settings/definitions — structure
+  // -------------------------------------------------------------------------
+  test('GET /api/settings/definitions returns array with required fields', async ({ page }) => {
+    const r = await page.request.get('/api/settings/definitions');
+    expect(r.ok()).toBeTruthy();
+    const defs = (await r.json()) as Array<Record<string, unknown>>;
+    expect(defs.length).toBeGreaterThan(0);
+    for (const def of defs) {
+      expect(typeof def['key']).toBe('string');
+      expect(typeof def['type']).toBe('number');
+      expect(typeof def['scope']).toBe('number');
+    }
+  });
+
+  test('definitions include all 4 new seeded types (Color, Email, MultilineText, Select)', async ({
+    page,
+  }) => {
+    const r = await page.request.get('/api/settings/definitions');
+    const defs = (await r.json()) as Array<{ key: string; type: number }>;
+    const typesByKey = Object.fromEntries(defs.map((d) => [d.key, d.type]));
+
+    expect(typesByKey['app.primary_color']).toBe(5); // Color
+    expect(typesByKey['app.support_email']).toBe(7); // Email
+    expect(typesByKey['app.welcome_message']).toBe(9); // MultilineText
+    expect(typesByKey['user.preferred_density']).toBe(4); // Select
+  });
+
+  // -------------------------------------------------------------------------
+  // GET /api/settings/{key}/resolved — inheritance chain
+  // -------------------------------------------------------------------------
+  test('resolved endpoint returns definition default when no value is stored', async ({ page }) => {
+    // user.preferred_density default is "comfortable"
+    await page.request.delete('/api/settings/me/user.preferred_density');
+
+    const r = await page.request.get('/api/settings/user.preferred_density/resolved');
+    expect(r.ok()).toBeTruthy();
+    const body = (await r.json()) as { key: string; value: unknown };
+    expect(body.key).toBe('user.preferred_density');
+    expect(body.value).toBe('comfortable');
+  });
+
+  test('resolved endpoint falls through user → application → default', async ({ page }) => {
+    // Use app.support_email (Email) — not shared with any other test in this file that
+    // writes scope=1 to avoid parallel-worker cross-contamination on app.primary_color.
+    const key = 'app.support_email';
+
+    // Clear overrides
+    await page.request.delete(`/api/settings/${key}?scope=1`);
+
+    // Set app-scope value
+    await page.request.put('/api/settings', { data: { key, scope: 1, value: 'qa@example.com' } });
+
+    const r = await page.request.get(`/api/settings/${key}/resolved`);
+    const body = (await r.json()) as { value: unknown };
+    expect(body.value).toBe('qa@example.com');
+
+    await page.request.delete(`/api/settings/${key}?scope=1`);
+  });
+
+  test('resolved endpoint for nonexistent key returns null value (not 404)', async ({ page }) => {
+    const r = await page.request.get('/api/settings/does.not.exist.anywhere/resolved');
+    expect(r.ok()).toBeTruthy();
+    const body = (await r.json()) as { key: string; value: unknown };
+    expect(body.value).toBeNull();
+  });
+
+  // -------------------------------------------------------------------------
+  // PUT /api/settings — validation errors
+  // -------------------------------------------------------------------------
+  test('PUT with invalid color returns 400 with field-level error', async ({ page }) => {
+    const r = await page.request.put('/api/settings', {
+      data: { key: 'app.primary_color', scope: 1, value: 'not-a-color' },
+    });
+    expect(r.status()).toBe(400);
+    const body = (await r.json()) as { errors: Record<string, string[]> };
+    expect(body.errors['app.primary_color']).toBeDefined();
+    expect(body.errors['app.primary_color'].length).toBeGreaterThan(0);
+  });
+
+  test('PUT with invalid email returns 400', async ({ page }) => {
+    const r = await page.request.put('/api/settings', {
+      data: { key: 'app.support_email', scope: 1, value: 'not-an-email' },
+    });
+    expect(r.status()).toBe(400);
+  });
+
+  test('PUT select with out-of-allowedValues option returns 400 from /me', async ({ page }) => {
+    const r = await page.request.put('/api/settings/me', {
+      data: { key: 'user.preferred_density', scope: 2, value: 'ultra-wide' },
+    });
+    expect(r.status()).toBe(400);
+  });
+
+  test('PUT with bool-as-string returns 400', async ({ page }) => {
+    const r = await page.request.put('/api/settings', {
+      data: { key: 'system.maintenance_mode', scope: 0, value: 'yes' },
+    });
+    expect(r.status()).toBe(400);
+  });
+
+  // -------------------------------------------------------------------------
+  // Bug assertions
+  // -------------------------------------------------------------------------
+
+  test('GET /api/settings/{key} without ?scope returns 400', async ({ page }) => {
+    const r = await page.request.get('/api/settings/app.title');
+    expect(r.status()).toBe(400);
+  });
+
+  test('DELETE /api/settings/{key} without ?scope returns 400', async ({ page }) => {
+    const r = await page.request.delete('/api/settings/app.title');
+    expect(r.status()).toBe(400);
+  });
+
+  test('PUT /api/settings/bulk with User scope returns 400', async ({ page }) => {
+    const r = await page.request.put('/api/settings/bulk', {
+      data: { updates: [{ key: 'app.theme', scope: 2, value: 'dark' }] },
+    });
+    expect(r.status()).toBe(400);
+  });
+
+  // -------------------------------------------------------------------------
+  // Cache invalidation
+  // -------------------------------------------------------------------------
+  test('after PUT the next GET reflects the new value immediately', async ({ page }) => {
+    // Use app.welcome_message (MultilineText) — not shared with any other test in this file,
+    // so parallel test runs cannot cause cross-contamination DELETE/GET races.
+    await page.request.put('/api/settings', {
+      data: { key: 'app.welcome_message', scope: 1, value: 'CacheTest1' },
+    });
+    let r = await page.request.get('/api/settings/app.welcome_message?scope=1');
+    expect(r.ok()).toBeTruthy();
+    expect(((await r.json()) as { value: unknown }).value).toBe('CacheTest1');
+
+    await page.request.put('/api/settings', {
+      data: { key: 'app.welcome_message', scope: 1, value: 'CacheTest2' },
+    });
+    r = await page.request.get('/api/settings/app.welcome_message?scope=1');
+    expect(r.ok()).toBeTruthy();
+    expect(((await r.json()) as { value: unknown }).value).toBe('CacheTest2');
+
+    await page.request.delete('/api/settings/app.welcome_message?scope=1');
+  });
+
+  test('after DELETE the resolved endpoint returns definition default', async ({ page }) => {
+    await page.request.put('/api/settings', {
+      data: { key: 'app.primary_color', scope: 1, value: '#123456' },
+    });
+    await page.request.delete('/api/settings/app.primary_color?scope=1');
+
+    const r = await page.request.get('/api/settings/app.primary_color/resolved');
+    const body = (await r.json()) as { value: unknown };
+    // Definition default is "#3b82f6"
+    expect(body.value).toBe('#3b82f6');
+  });
+
+  // -------------------------------------------------------------------------
+  // GET /api/settings/me — UserSettingValueDto shape
+  // -------------------------------------------------------------------------
+  test('GET /api/settings/me returns UserSettingValueDto with resolvedValue', async ({ page }) => {
+    const r = await page.request.get('/api/settings/me');
+    expect(r.ok()).toBeTruthy();
+    const body = (await r.json()) as Array<{
+      key: string;
+      value: unknown;
+      resolvedValue: unknown;
+      isOverridden: boolean;
+    }>;
+
+    expect(Array.isArray(body)).toBeTruthy();
+    for (const entry of body) {
+      expect(typeof entry.key).toBe('string');
+      expect(typeof entry.isOverridden).toBe('boolean');
+      // resolvedValue should be present (may be null but must exist as a property)
+      expect('resolvedValue' in entry).toBeTruthy();
+    }
+  });
+
+  test('GET /api/settings/me shows isOverridden=true after PUT /me', async ({ page }) => {
+    await page.request.put('/api/settings/me', {
+      data: { key: 'user.preferred_density', scope: 2, value: 'compact' },
+    });
+
+    const r = await page.request.get('/api/settings/me');
+    const body = (await r.json()) as Array<{ key: string; isOverridden: boolean; value: unknown }>;
+    const density = body.find((d) => d.key === 'user.preferred_density');
+    expect(density).toBeDefined();
+    expect(density!.isOverridden).toBe(true);
+    expect(density!.value).toBe('compact');
+
+    await page.request.delete('/api/settings/me/user.preferred_density');
+  });
+
+  test('DELETE /api/settings/me/{key} resets isOverridden to false', async ({ page }) => {
+    await page.request.put('/api/settings/me', {
+      data: { key: 'user.preferred_density', scope: 2, value: 'compact' },
+    });
+    await page.request.delete('/api/settings/me/user.preferred_density');
+
+    const r = await page.request.get('/api/settings/me');
+    const body = (await r.json()) as Array<{ key: string; isOverridden: boolean }>;
+    const density = body.find((d) => d.key === 'user.preferred_density');
+    expect(density!.isOverridden).toBe(false);
+  });
+});
diff --git a/tests/e2e/tests/flows/settings-validation.spec.ts b/tests/e2e/tests/flows/settings-validation.spec.ts
new file mode 100644
index 00000000..86e38360
--- /dev/null
+++ b/tests/e2e/tests/flows/settings-validation.spec.ts
@@ -0,0 +1,416 @@
+import { expect, test } from '../../fixtures/base';
+
+/**
+ * Validation flows — server-side validation feedback and UI behavior probes.
+ */
+
+test.describe('Settings validation flows', () => {
+  // -------------------------------------------------------------------------
+  // UI search filter behavior
+  // -------------------------------------------------------------------------
+  test.describe('Admin settings search', () => {
+    test('search by display name narrows list', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+      await expect(page.getByText(/^Primary Color$/)).toBeVisible();
+    });
+
+    test('search by key narrows list', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByPlaceholder(/search settings/i).fill('app.primary_color');
+
+      await expect(page.getByText(/^Primary Color$/)).toBeVisible();
+    });
+
+    test('no-match search shows empty state message', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByPlaceholder(/search settings/i).fill('XXXXXXXXXNOTFOUND');
+
+      await expect(page.getByRole('heading', { name: /no settings match/i })).toBeVisible();
+    });
+
+    test('clearing search restores all settings', async ({ page }) => {
+      // BUG-8 fix: SettingsSearch + the Clear search action stay mounted in the empty state,
+      // so the user can recover without a page reload.
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await expect(page.getByPlaceholder(/search settings/i)).toBeVisible();
+
+      await page.getByPlaceholder(/search settings/i).fill('XXXXXXXXXNOTFOUND');
+      await expect(page.getByRole('heading', { name: /no settings match/i })).toBeVisible();
+
+      // Search input stays mounted — clear it via the button or the input itself.
+      await page.getByRole('button', { name: /clear search/i }).click();
+      await expect(page.getByTestId('setting-card').first()).toBeVisible();
+    });
+
+    test('switching tabs preserves the search query', async ({ page }) => {
+      // Use a query that returns results in the Application tab, then switch to System tab.
+      // The query state lives in AdminSettings (shared across tab renders), so after
+      // switching to the System tab the same query string is active.
+      // If the System tab has no results for the query, SettingsSearch is unmounted —
+      // we cannot read inputValue() in that case.
+      // Strategy: use a query that matches in BOTH tabs, or check only from the
+      // Application tab perspective.
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      // Type a generic term that is likely to match settings in both tabs
+      await page.getByPlaceholder(/search settings/i).fill('a');
+
+      // Confirm Application tab shows results with the query active
+      await expect(page.getByTestId('setting-card').first()).toBeVisible();
+
+      // Switch to System tab — same query 'a' should still be in the input
+      await page.getByRole('tab', { name: /system/i }).click();
+      await expect(page.getByTestId('setting-card').first()).toBeVisible();
+
+      // Re-locate the input (it may have remounted under a new SettingsLayout instance)
+      const valueAfterSwitch = await page.getByPlaceholder(/search settings/i).inputValue();
+      // The query state persists across tab switches because it is owned by AdminSettings.
+      expect(valueAfterSwitch).toBe('a');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // "Show only modified" checkbox
+  // -------------------------------------------------------------------------
+  // serial: tests mutate app.primary_color scope=1; sequential execution prevents
+  // a parallel DELETE from invalidating our seeded override before the UI filter assertion.
+  test.describe
+    .serial('Show only modified filter', () => {
+      test('shows all settings by default', async ({ page }) => {
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+
+        await expect(page.getByTestId('setting-card').first()).toBeVisible();
+      });
+
+      test('show-only-modified checkbox hides unmodified rows', async ({ page }) => {
+        // Ensure at least one setting is overridden
+        await page.request.put('/api/settings', {
+          data: { key: 'app.primary_color', scope: 1, value: '#ff5500' },
+        });
+
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+
+        // Wait for setting cards to be present before counting
+        await expect(page.getByTestId('setting-card').first()).toBeVisible();
+        const allCount = await page.getByTestId('setting-card').count();
+
+        // The SettingsSearch Checkbox renders as button[role="checkbox"] (Radix UI).
+        // Clicking the associated Label may not fire the Radix click handler in all browsers
+        // because htmlFor on a <label> only activates <input> controls, not <button> elements.
+        // Use getByRole('checkbox') to locate the actual Radix checkbox button and click it.
+        await page.getByRole('checkbox').click();
+
+        // Wait for filter to apply — the count should drop
+        await expect(async () => {
+          const filteredCount = await page.getByTestId('setting-card').count();
+          expect(filteredCount).toBeLessThan(allCount);
+        }).toPass({ timeout: 3000 });
+
+        // The overridden setting must still be visible
+        await expect(page.getByText(/^Primary Color$/)).toBeVisible();
+
+        await page.request.delete('/api/settings/app.primary_color?scope=1');
+      });
+
+      test('disabling show-only-modified restores full list', async ({ page }) => {
+        await page.request.put('/api/settings', {
+          data: { key: 'app.primary_color', scope: 1, value: '#ff5500' },
+        });
+
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+
+        await expect(page.getByTestId('setting-card').first()).toBeVisible();
+        const allCount = await page.getByTestId('setting-card').count();
+
+        const checkbox = page.getByRole('checkbox');
+        await checkbox.click(); // enable filter
+        await expect(async () => {
+          expect(await page.getByTestId('setting-card').count()).toBeLessThan(allCount);
+        }).toPass({ timeout: 3000 });
+
+        await checkbox.click(); // disable filter
+        await expect(async () => {
+          expect(await page.getByTestId('setting-card').count()).toBe(allCount);
+        }).toPass({ timeout: 3000 });
+
+        await page.request.delete('/api/settings/app.primary_color?scope=1');
+      });
+    });
+
+  // -------------------------------------------------------------------------
+  // Reset button
+  // -------------------------------------------------------------------------
+  // serial: all three tests mutate app.primary_color scope=1; sequential execution
+  // prevents parallel workers from producing ghost overrides that corrupt assertions.
+  test.describe
+    .serial('Reset to default button', () => {
+      test('reset button absent when setting is not overridden', async ({ page }) => {
+        // Ensure no override
+        await page.request.delete('/api/settings/app.primary_color?scope=1');
+
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+        await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+        // Wait for the setting to be visible before asserting the button is absent —
+        // otherwise the assertion passes vacuously before hydration renders anything.
+        await expect(page.getByText(/^Primary Color$/)).toBeVisible();
+
+        // No "Reset to default" button should be visible (setting is not overridden)
+        await expect(page.getByRole('button', { name: 'Reset to default' })).toHaveCount(0);
+      });
+
+      test('reset button appears when setting is overridden', async ({ page }) => {
+        await page.request.put('/api/settings', {
+          data: { key: 'app.primary_color', scope: 1, value: '#ff5500' },
+        });
+
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+        await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+        await expect(page.getByRole('button', { name: 'Reset to default' })).toBeVisible();
+
+        await page.request.delete('/api/settings/app.primary_color?scope=1');
+      });
+
+      test('clicking reset removes override without full reload', async ({ page }) => {
+        await page.request.put('/api/settings', {
+          data: { key: 'app.primary_color', scope: 1, value: '#ff5500' },
+        });
+
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+        await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+        await page.getByRole('button', { name: 'Reset to default' }).click();
+
+        // Reset button should disappear (isOverridden becomes false)
+        await expect(page.getByRole('button', { name: 'Reset to default' })).toHaveCount(0);
+
+        // API should confirm the value is gone
+        const r = await page.request.get('/api/settings/app.primary_color?scope=1');
+        expect(r.status()).toBe(404);
+      });
+    });
+
+  // -------------------------------------------------------------------------
+  // Bulk edit mode
+  // -------------------------------------------------------------------------
+  // serial: tests write to app.primary_color scope=1 via bulk save; sequential
+  // execution prevents cross-worker state interference.
+  test.describe
+    .serial('Bulk edit mode', () => {
+      test('toggle switches to bulk mode — SettingsBulkSaveBar only appears when changes queued', async ({
+        page,
+      }) => {
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+
+        // The bulk edit button uses aria-label from BulkEditToggle key = "Bulk edit"
+        const bulkToggle = page.getByRole('button', { name: 'Bulk edit' });
+        await bulkToggle.click();
+
+        // The SettingsBulkSaveBar only renders when dirtyCount > 0
+        // So bulk mode is on but bar not yet visible until we change something
+        // Just assert that the toggle is now "pressed"
+        await expect(bulkToggle).toHaveAttribute('aria-pressed', 'true');
+      });
+
+      test('bulk mode queues changes and save-all sends to /api/settings/bulk', async ({
+        page,
+      }) => {
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+
+        // Switch to bulk mode
+        await page.getByRole('button', { name: 'Bulk edit' }).click();
+        await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+        const hexInput = page.locator('input[maxlength="7"]');
+        await hexInput.fill('#005500');
+        // In bulk mode, pressing Enter triggers the onDirty callback but queues, not saves
+        await hexInput.press('Enter');
+
+        // SettingsBulkSaveBar appears once there's a queued change
+        // But Color field in bulk mode still uses a Save button that triggers handleSave
+        // which calls onSave -> AdminSettings.handleSave -> queues to pendingValues
+        // The Save button text is "Save" but in bulk mode it queues, not POSTs
+        const saveBtn = page.getByRole('button', { name: /^save$/i }).first();
+        if (await saveBtn.isVisible()) {
+          // Intercept the bulk request (won't fire yet — queued)
+          await saveBtn.click();
+        }
+
+        // Now the bulk save bar should show (dirtyCount > 0)
+        await expect(page.getByRole('button', { name: 'Save all' })).toBeVisible({ timeout: 5000 });
+
+        const bulkRequest = page.waitForRequest(
+          (req) => req.url().includes('/api/settings/bulk') && req.method() === 'PUT',
+        );
+
+        await page.getByRole('button', { name: 'Save all' }).click();
+        const req = await bulkRequest;
+        const body = req.postDataJSON() as { updates: unknown[] };
+        expect(body.updates.length).toBeGreaterThan(0);
+
+        await page.request.delete('/api/settings/app.primary_color?scope=1');
+      });
+
+      test('discard clears the pending queue — save bar disappears', async ({ page }) => {
+        // Start from a clean state so the new value is guaranteed to differ from the stored one
+        await page.request.delete('/api/settings/app.primary_color?scope=1');
+
+        await page.goto('/settings/manage');
+        await page.getByRole('tab', { name: /application/i }).click();
+
+        await page.getByRole('button', { name: 'Bulk edit' }).click();
+        await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+        const hexInput = page.locator('input[maxlength="7"]');
+        await hexInput.fill('#abcdef');
+
+        await page
+          .getByRole('button', { name: /^save$/i })
+          .first()
+          .click();
+
+        await expect(page.getByRole('button', { name: 'Discard' })).toBeVisible({ timeout: 5000 });
+        await page.getByRole('button', { name: 'Discard' }).click();
+
+        // Save bar should disappear (dirtyCount back to 0)
+        await expect(page.getByRole('button', { name: 'Save all' })).not.toBeVisible();
+      });
+    });
+
+  // -------------------------------------------------------------------------
+  // User settings page — "Only overridden" filter
+  // -------------------------------------------------------------------------
+  test.describe('User settings only-overridden filter', () => {
+    test('only-overridden filter hides non-overridden settings', async ({ page }) => {
+      await page.request.put('/api/settings/me', {
+        data: { key: 'user.preferred_density', scope: 2, value: 'compact' },
+      });
+
+      await page.goto('/settings/me');
+
+      // Wait for cards to appear before counting
+      await expect(page.getByTestId('setting-card').first()).toBeVisible();
+      const beforeCount = await page.getByTestId('setting-card').count();
+
+      // The Checkbox renders as button[role="checkbox"] (Radix UI).
+      // Click the actual checkbox button rather than the label text — label's htmlFor
+      // targets a <button> element, and browsers do not fire the button click via label
+      // activation (htmlFor only activates native <input> controls).
+      await page.getByRole('checkbox').click();
+
+      // Wait for the filter to reduce the card count
+      await expect(async () => {
+        const afterCount = await page.getByTestId('setting-card').count();
+        expect(afterCount).toBeLessThan(beforeCount);
+      }).toPass({ timeout: 3000 });
+
+      await page.request.delete('/api/settings/me/user.preferred_density');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // Accessibility quick pass
+  // -------------------------------------------------------------------------
+  test.describe('Accessibility', () => {
+    test('inputs have associated labels via htmlFor/id', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+      // The color field input should have an id matching the definition key
+      const colorInput = page.locator('[id="app.primary_color"]');
+      await expect(colorInput).toBeVisible();
+
+      // A label with matching htmlFor should exist
+      const label = page.locator(`label[for="app.primary_color"]`);
+      await expect(label).toBeVisible();
+    });
+
+    test('search input has an accessible label or aria-label', async ({ page }) => {
+      await page.goto('/settings/manage');
+
+      const search = page.getByPlaceholder(/search settings/i);
+      await expect(search).toBeVisible();
+
+      // Should have either aria-label or an associated visible label
+      const ariaLabel = await search.getAttribute('aria-label');
+      const id = await search.getAttribute('id');
+      let hasLabel = !!ariaLabel;
+      if (!hasLabel && id) {
+        hasLabel = (await page.locator(`label[for="${id}"]`).count()) > 0;
+      }
+      expect(hasLabel).toBeTruthy();
+    });
+
+    test('reset button is reachable via keyboard Tab', async ({ page }) => {
+      await page.request.put('/api/settings', {
+        data: { key: 'app.primary_color', scope: 1, value: '#ff5500' },
+      });
+
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByPlaceholder(/search settings/i).fill('primary color');
+
+      const resetBtn = page.getByRole('button', { name: /reset/i });
+      await expect(resetBtn).toBeVisible();
+      await expect(resetBtn).toBeEnabled();
+
+      await page.request.delete('/api/settings/app.primary_color?scope=1');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // User settings group sidebar navigation
+  // -------------------------------------------------------------------------
+  test.describe('User settings group sidebar', () => {
+    test('group sidebar is visible on large viewport', async ({ page }) => {
+      await page.setViewportSize({ width: 1280, height: 900 });
+      await page.goto('/settings/me');
+
+      // The nav has aria-label "Settings groups"
+      await expect(page.getByRole('navigation', { name: /settings groups/i })).toBeVisible();
+    });
+
+    test('clicking group link scrolls to that group', async ({ page }) => {
+      await page.setViewportSize({ width: 1280, height: 900 });
+      await page.goto('/settings/me');
+
+      const nav = page.getByRole('navigation', { name: /settings groups/i });
+      const firstGroupLink = nav.getByRole('link').first();
+      const groupName = await firstGroupLink.textContent();
+
+      await firstGroupLink.click();
+
+      // The group heading should be in view
+      if (groupName) {
+        await expect(page.getByRole('heading', { name: groupName.trim() })).toBeInViewport();
+      }
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // Server-side validation surface
+  // -------------------------------------------------------------------------
+
+  test('PUT /api/settings with invalid color value returns 400', async ({ page }) => {
+    const r = await page.request.put('/api/settings', {
+      data: { key: 'app.primary_color', scope: 1, value: 'not-a-color' },
+    });
+    expect(r.status()).toBe(400);
+  });
+});
diff --git a/tests/e2e/tests/smoke/settings-fields.spec.ts b/tests/e2e/tests/smoke/settings-fields.spec.ts
new file mode 100644
index 00000000..28e43e18
--- /dev/null
+++ b/tests/e2e/tests/smoke/settings-fields.spec.ts
@@ -0,0 +1,275 @@
+import { expect, test } from '../../fixtures/base';
+
+/**
+ * Field-type coverage for the 11 SettingTypes.
+ *
+ * Seeded definitions that cover types: Text, Bool, Color, Email, MultilineText, Select.
+ * Types with no seeded definition (Url, Password, DateTime, Number-with-range, Json):
+ * those gaps are noted inline — they require either a new definition or API-only testing.
+ */
+
+test.describe('Settings field type coverage', () => {
+  // -------------------------------------------------------------------------
+  // Color field (app.primary_color — type 5, Application scope)
+  // -------------------------------------------------------------------------
+  test.describe('Color field', () => {
+    test('renders color picker and hex text input', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('primary color');
+
+      await expect(page.locator('input[type="color"]')).toBeVisible();
+      await expect(page.locator('input[maxlength="7"]')).toBeVisible();
+    });
+
+    test('hex text input contains a valid 6-digit hex value', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('primary color');
+
+      const hexInput = page.locator('input[maxlength="7"]');
+      await expect(hexInput).toHaveValue(/^#[0-9a-fA-F]{6}$/);
+    });
+
+    test('color save persists and round-trips as a plain hex string (not JSON-encoded)', async ({
+      page,
+    }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('primary color');
+
+      const hexInput = page.locator('input[maxlength="7"]');
+      await hexInput.fill('#aabbcc');
+      // ColorField shows a "Save" button when hasChanged=true
+      await page
+        .getByRole('button', { name: /^save$/i })
+        .first()
+        .click();
+
+      // API must return the decoded plain hex string
+      await expect(async () => {
+        const r = await page.request.get('/api/settings/app.primary_color?scope=1');
+        expect(r.ok()).toBeTruthy();
+        const body = (await r.json()) as { value: unknown };
+        expect(body.value).toBe('#aabbcc');
+      }).toPass({ timeout: 5000 });
+
+      // Cleanup
+      await page.request.delete('/api/settings/app.primary_color?scope=1');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // Email field (app.support_email — type 7, Application scope)
+  // -------------------------------------------------------------------------
+  test.describe('Email field', () => {
+    test('renders as an email input', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('support email');
+
+      // Email field should render <input type="email"> or a text input with email label
+      const emailInput = page
+        .locator('[id="app.support_email"]')
+        .or(page.locator('input[type="email"]'))
+        .first();
+      await expect(emailInput).toBeVisible();
+    });
+
+    test('accepts a valid email address and saves', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('support email');
+
+      const emailInput = page.locator('[id="app.support_email"]').first();
+      await emailInput.fill('support@example.com');
+      await emailInput.press('Enter');
+
+      await expect(async () => {
+        const r = await page.request.get('/api/settings/app.support_email?scope=1');
+        expect(r.ok()).toBeTruthy();
+        const body = (await r.json()) as { value: unknown };
+        expect(body.value).toBe('support@example.com');
+      }).toPass({ timeout: 5000 });
+
+      await page.request.delete('/api/settings/app.support_email?scope=1');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // MultilineText field (app.welcome_message — type 9, Application scope)
+  // -------------------------------------------------------------------------
+  test.describe('MultilineText field', () => {
+    test('renders a textarea element', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('welcome message');
+
+      await expect(page.locator('textarea')).toBeVisible();
+    });
+
+    test('accepts multiline text and saves', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('welcome message');
+
+      const textarea = page.locator('textarea').first();
+      await textarea.fill('Line one\nLine two\nLine three');
+
+      // MultilineText fields use a Save button, not Enter
+      const saveBtn = page.getByRole('button', { name: /^save$/i }).first();
+      await saveBtn.click();
+
+      await expect(async () => {
+        const r = await page.request.get('/api/settings/app.welcome_message?scope=1');
+        expect(r.ok()).toBeTruthy();
+        const body = (await r.json()) as { value: unknown };
+        expect(typeof body.value).toBe('string');
+        expect((body.value as string).includes('Line two')).toBeTruthy();
+      }).toPass({ timeout: 5000 });
+
+      await page.request.delete('/api/settings/app.welcome_message?scope=1');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // Select field (user.preferred_density — type 4, User scope)
+  // -------------------------------------------------------------------------
+  test.describe('Select field', () => {
+    test('renders a combobox with allowedValues as options', async ({ page }) => {
+      await page.goto('/settings/me');
+
+      const trigger = page.getByRole('combobox', { name: /display density/i });
+      await expect(trigger).toBeVisible();
+      await trigger.click();
+
+      await expect(page.getByRole('option', { name: 'compact' })).toBeVisible();
+      await expect(page.getByRole('option', { name: 'comfortable' })).toBeVisible();
+      await expect(page.getByRole('option', { name: 'spacious' })).toBeVisible();
+    });
+
+    test('selecting an option saves via /api/settings/me and returns decoded string', async ({
+      page,
+    }) => {
+      await page.goto('/settings/me');
+
+      const trigger = page.getByRole('combobox', { name: /display density/i });
+      await trigger.click();
+      await page.getByRole('option', { name: 'spacious' }).click();
+
+      await expect(async () => {
+        const r = await page.request.get('/api/settings/user.preferred_density/resolved');
+        const body = (await r.json()) as { value: unknown };
+        expect(body.value).toBe('spacious');
+      }).toPass({ timeout: 5000 });
+
+      // Cleanup
+      await page.request.delete('/api/settings/me/user.preferred_density');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // Bool field (system.maintenance_mode — type 2, System scope)
+  // -------------------------------------------------------------------------
+  test.describe('Bool field', () => {
+    test('renders a toggle or checkbox', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /system/i }).click();
+      await page.getByRole('searchbox').fill('maintenance');
+
+      // Bool fields render as a Switch/Toggle (aria role="switch") or checkbox
+      const toggle = page.getByRole('switch').or(page.locator('input[type="checkbox"]')).first();
+      await expect(toggle).toBeVisible();
+    });
+
+    test('API returns decoded boolean true/false, not string', async ({ page }) => {
+      const r = await page.request.put('/api/settings', {
+        data: { key: 'system.maintenance_mode', scope: 0, value: true },
+      });
+      expect(r.ok()).toBeTruthy();
+
+      const get = await page.request.get('/api/settings/system.maintenance_mode?scope=0');
+      const body = (await get.json()) as { value: unknown };
+      expect(typeof body.value).toBe('boolean');
+      expect(body.value).toBe(true);
+
+      // Cleanup
+      await page.request.delete('/api/settings/system.maintenance_mode?scope=0');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // Text field (app.title — type 0, Application scope)
+  // -------------------------------------------------------------------------
+  test.describe('Text field', () => {
+    test('renders a text input', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('application title');
+
+      await expect(page.locator('[id="app.title"]')).toBeVisible();
+    });
+
+    test('saves and persists value across page reload', async ({ page }) => {
+      await page.goto('/settings/manage');
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('application title');
+
+      const input = page.locator('[id="app.title"]');
+      await input.fill('QA Test Title');
+      await input.press('Enter');
+
+      await expect(async () => {
+        const r = await page.request.get('/api/settings/app.title?scope=1');
+        const body = (await r.json()) as { value: unknown };
+        expect(body.value).toBe('QA Test Title');
+      }).toPass({ timeout: 5000 });
+
+      // Reload and verify persistence
+      await page.reload();
+      await page.getByRole('tab', { name: /application/i }).click();
+      await page.getByRole('searchbox').fill('application title');
+      await expect(page.locator('[id="app.title"]')).toHaveValue('QA Test Title');
+
+      // Cleanup
+      await page.request.delete('/api/settings/app.title?scope=1');
+    });
+  });
+
+  // -------------------------------------------------------------------------
+  // Coverage gaps — types with no seeded definition
+  // -------------------------------------------------------------------------
+
+  /**
+   * GAP: No seeded definitions exist for:
+   * - SettingType.Url (6) — no URL-type definition registered in SettingsModule.cs
+   * - SettingType.Password (8) — no Password-type definition registered
+   * - SettingType.DateTime (10) — no DateTime-type definition registered
+   * - SettingType.Number (1) with Min/Max — FileStorage.MaxFileSizeMb exists but has
+   *   no Min/Max constraints in its definition, so range validation cannot be exercised
+   *   via the UI
+   * - SettingType.Json (3) — no Json-type definition registered in the settings module
+   *
+   * To close these gaps: add sample definitions in SettingsModule.ConfigureSettings()
+   * for developer/QA environments, or add them to the integration test factory.
+   * API-level round-trip tests for these types exist in SettingsValidationEndpointTests.cs.
+   */
+  test('COVERAGE NOTE: Url/Password/DateTime/Number-range/Json types have no seeded definitions', async ({
+    page,
+  }) => {
+    const r = await page.request.get('/api/settings/definitions');
+    const defs = (await r.json()) as Array<{ type: number; key: string }>;
+
+    const typeNums = new Set(defs.map((d) => d.type));
+
+    // Types 6 (Url), 8 (Password), 10 (DateTime) have no seeded definitions
+    const missingTypes = [6, 8, 10].filter((t) => !typeNums.has(t));
+
+    // This assertion documents the gap — it passes vacuously when they're missing
+    // and will start failing (usefully) once definitions are added.
+    expect(missingTypes).toEqual(
+      [6, 8, 10],
+      'Url, Password, and DateTime type definitions are not seeded — UI components cannot be exercised',
+    );
+  });
+});
diff --git a/tests/e2e/tests/smoke/settings.spec.ts b/tests/e2e/tests/smoke/settings.spec.ts
index a3f7de73..5931bc92 100644
--- a/tests/e2e/tests/smoke/settings.spec.ts
+++ b/tests/e2e/tests/smoke/settings.spec.ts
@@ -21,4 +21,69 @@ test.describe('Settings pages', () => {
     await user.goto();
     await expect(user.heading).toBeVisible();
   });
+
+  test('search filters settings by display name', async ({ page }) => {
+    const admin = new AdminSettingsPage(page);
+    await admin.goto();
+    await admin.applicationTab.click();
+    const search = page.getByPlaceholder(/search settings/i);
+    await search.fill('primary color');
+    await expect(page.getByText(/^Primary Color$/)).toBeVisible();
+    await expect(page.getByText(/^Max File Size/)).toHaveCount(0);
+  });
+
+  test('color setting renders hex input and swatch', async ({ page }) => {
+    const admin = new AdminSettingsPage(page);
+    await admin.goto();
+    await admin.applicationTab.click();
+    await page.getByPlaceholder(/search settings/i).fill('primary color');
+    await expect(page.locator('input[type="color"]')).toBeVisible();
+    await expect(page.locator('input[maxlength="7"]')).toHaveValue(/^#[0-9a-fA-F]{6}$/);
+  });
+
+  test('select setting populates options from allowedValues and saves', async ({ page }) => {
+    // Reset to clean state — other parallel tests may have left this user-scoped row in place
+    await page.request.delete('/api/settings/me/user.preferred_density');
+
+    const user = new UserSettingsPage(page);
+    await user.goto();
+
+    const trigger = page.getByRole('combobox', { name: /display density/i });
+    await trigger.click();
+    await expect(page.getByRole('option', { name: 'compact' })).toBeVisible();
+    await expect(page.getByRole('option', { name: 'comfortable' })).toBeVisible();
+    await expect(page.getByRole('option', { name: 'spacious' })).toBeVisible();
+    await page.getByRole('option', { name: 'spacious' }).click();
+
+    // Verify via API that the override was actually persisted with the decoded string value.
+    await expect(async () => {
+      const r = await page.request.get('/api/settings/user.preferred_density/resolved');
+      expect(r.ok()).toBeTruthy();
+      const body = (await r.json()) as { value: unknown };
+      expect(body.value).toBe('spacious');
+    }).toPass({ timeout: 10_000 });
+
+    // Cleanup so the test is idempotent across runs.
+    await page.request.delete('/api/settings/me/user.preferred_density');
+  });
+
+  test('user settings show inheritance line for unset values', async ({ page }) => {
+    const user = new UserSettingsPage(page);
+    await user.goto();
+    await expect(page.getByText(/Current:/).first()).toBeVisible();
+    await expect(page.getByText(/inherited default/i).first()).toBeVisible();
+  });
+
+  test('admin api returns decoded values not double-encoded strings', async ({ page }) => {
+    const response = await page.request.get('/api/settings');
+    expect(response.ok()).toBeTruthy();
+    const body = (await response.json()) as Array<{ value: unknown }>;
+    // Any non-null value must be the decoded primitive/object, never a JSON-encoded string.
+    for (const entry of body) {
+      if (typeof entry.value === 'string') {
+        // The string itself must not start with a JSON-encoded quote
+        expect(entry.value.startsWith('"') && entry.value.endsWith('"')).toBeFalsy();
+      }
+    }
+  });
 });