What's Changed
New Features
- Admin user management — Admins can now create new users and edit existing users (email, password, admin status) from the admin panel (closes #44, #45)
- Password reset — Email-based password reset flow with secure token expiration. "Forgot password?" link appears on the login page when SMTP is configured. Admins can also reset passwords from the user edit page (closes #46)
- Remove logo — Added "Remove Logo" button in branding settings so uploaded logos can be deleted (closes #48)
- New app icon — Updated to a modern wheel design by @lancetm714 (closes #42, PR #50)
Bug Fixes
- User email editing — Users can now edit their own email address from settings (closes #43)
- Registration toggle — Fixed CSRF token missing from toggle request, which prevented the setting from saving (closes #47)
- Admin settings discoverability — Added quick-links card for admins to SMTP, Branding, and Integrations sections (closes #49)
- Custom branding on auth pages — Login and register pages now display custom logo, app name, and tagline when configured