Fixes
CSRF Token Missing Errors (#11)
- Added explicit server-side CSRF tokens to all 24 templates with POST forms
- Eliminates race condition where forms could submit before JavaScript injected tokens
- Forms now work reliably on slow connections
Admin Password Documentation (#12)
- Updated README to explain auto-generated password behavior
- Password is printed to container logs on first run
- Added instructions for checking logs and setting ADMIN_PASSWORD env var
Upgrade
Pull the latest image:
docker pull ghcr.io/dannymcc/may:latest
docker compose up -d