diff --git a/backend/server.js b/backend/server.js
index 673d673..688b3fc 100644
--- a/backend/server.js
+++ b/backend/server.js
@@ -827,7 +827,7 @@ app.post('/api/register',
         verification_expires_at: expiresAtMs
       });
 
-      const verifyLink = `${getProtocol(req)}://${req.get('host')}/?verifyToken=${verifyToken}`;
+      const verifyLink = `${getProtocol(req)}://${req.get('host')}/app.html?verifyToken=${verifyToken}`;
 
       try {
         await sendMail(
@@ -894,7 +894,7 @@ app.post('/api/resend-verification', [
     const expiresAtMs = Date.now() + 30 * 60 * 1000;
     VerificationDB.setVerification(user.id, verifyToken, expiresAtMs);
 
-    const verifyLink = `${getProtocol(req)}://${req.get('host')}/?verifyToken=${verifyToken}`;
+    const verifyLink = `${getProtocol(req)}://${req.get('host')}/app.html?verifyToken=${verifyToken}`;
     await sendMail(
       user.email,
       '邮箱验证 - 玩玩云',
@@ -959,7 +959,7 @@ app.post('/api/password/forgot', [
     const expiresAtMs = Date.now() + 30 * 60 * 1000;
     PasswordResetTokenDB.create(user.id, token, expiresAtMs);
 
-    const resetLink = `${getProtocol(req)}://${req.get('host')}/?resetToken=${token}`;
+    const resetLink = `${getProtocol(req)}://${req.get('host')}/app.html?resetToken=${token}`;
     await sendMail(
       email,
       '密码重置 - 玩玩云',
diff --git a/frontend/index.html b/frontend/index.html
index 3893701..fb4d5f0 100644
--- a/frontend/index.html
+++ b/frontend/index.html
@@ -4,6 +4,16 @@
   <meta charset="UTF-8">
   <meta name="viewport" content="width=device-width, initial-scale=1.0">
   <title>玩玩云 - 现代化云存储管理平台</title>
+  <script>
+    // 邮件激活/重置链接容错：如果在落地页携带token，自动跳转到应用页处理
+    (function() {
+      const search = window.location.search;
+      if (!search) return;
+      if (search.includes('verifyToken') || search.includes('resetToken')) {
+        window.location.replace(`app.html${search}`);
+      }
+    })();
+  </script>
   <link rel="stylesheet" href="libs/fontawesome/css/all.min.css">
   <style>
     * {