[Applicant+Admin] Withdraw application, delete account, admin analytics dashboard

Applicant: 'انصراف از درخواست' on /Me removes the Apply event for that shift/job. Account: 'حذف حساب من' on /Me/Profile permanently deletes the user + cascades (profile, alerts, reviews, applications), detaches anonymous visitor history, and signs out (per privacy policy). Admin: /Admin/Analytics dashboard — totals (users, facilities/verified, open shifts/jobs, applications, reviews), 7-day deltas, and a 14-day applications bar chart; linked from Overview alongside the new نظرات moderation page.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

src/JobsMedical.Web/Pages/Me/Profile.cshtml.cs

@@ -1,6 +1,7 @@
 using System.Security.Claims;
 using JobsMedical.Web.Data;
 using JobsMedical.Web.Models;
+using Microsoft.AspNetCore.Authentication;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.AspNetCore.Mvc.RazorPages;
@@ -115,6 +116,18 @@ public class ProfileModel : PageModel
         return RedirectToPage();
     }
 
+    /// <summary>Permanently delete the account + its data (per the privacy policy).</summary>
+    public async Task<IActionResult> OnPostDeleteAccountAsync()
+    {
+        var uid = Uid;
+        // Detach anonymous browsing history (keep events, drop the user link), then remove the user.
+        await _db.Visitors.Where(v => v.UserId == uid)
+            .ExecuteUpdateAsync(s => s.SetProperty(v => v.UserId, (int?)null));
+        await _db.Users.Where(u => u.Id == uid).ExecuteDeleteAsync();   // cascades profile/alerts/reviews/applications
+        await HttpContext.SignOutAsync(Microsoft.AspNetCore.Authentication.Cookies.CookieAuthenticationDefaults.AuthenticationScheme);
+        return RedirectToPage("/Index");
+    }
+
     private async Task LoadListsAsync()
     {
         Roles = await _db.Roles.Where(r => r.IsActive).OrderBy(r => r.SortOrder).ToListAsync();