- Added login_required decorator definition in api.py to fix NameError

- Created vidai/admin.py with Flask Blueprint for admin web routes
- Moved all /admin/* web routes from web.py to admin.py
- Added /admin/settings and related update routes
- Updated navigation links in base.html to use correct admin URLs
- Registered admin blueprint in web.py

- Created vidai/api.py with Flask Blueprint for all /api/* and /admin/api/* routes
- Moved API authentication decorators and helper functions to api.py
- Removed API routes from web.py and registered the API blueprint
- Set server_dir in api.py from web.py arguments

- Added 'API Documentation' link for all users pointing to /api
- Added 'Admin API Documentation' link for admin users pointing to /admin/api

- Modified /stats to /api/stats with authentication
- Updated /api/analyze to fully implement analysis functionality
- Changed /api/browse to /admin/api/browse
- Implemented /admin/api/train, /admin/api/users, /admin/api/cluster_tokens endpoints
- Implemented /api/api_tokens endpoint
- Created /api and /admin/api documentation pages with curl examples

- Modified landing.html to extend base.html template
- Landing page now shows notification bubbles but hides navbar for non-authenticated users
- Maintains full landing page design and functionality

- Changed notification position from top-right to bottom-right
- Added colored backgrounds: green for success, red for error, blue for info/warning
- Improved visual distinction between notification types

- Made header/navbar conditional on user authentication
- Login and register pages now display without navbar
- Forms remain centered on full page background
- Notifications still work on all pages

- Added user=None to login, register, and config routes to prevent undefined user errors
- Updated config.html to extend base template for consistent notifications
- Simplified config.html styling to work with base template design

- Added global notification system to base.html with bubble popups
- Notifications auto-disappear after 6 seconds with slide-out animation
- Manual close button for immediate dismissal
- Updated login.html and register.html to extend base template
- Removed duplicate notification code from individual templates
- Notifications now appear on all pages including login/register

- Added Redis as optional session storage backend
- SessionManager automatically detects and uses Redis if available
- Falls back to SQL database storage if Redis is not configured
- Added redis>=4.0.0 to requirements.txt
- Configurable via REDIS_HOST, REDIS_PORT, REDIS_DB, REDIS_PASSWORD environment variables
- Maintains same session timeout and functionality

- Added extend_remember_token() function to renew token expiration
- Modified login route to extend existing valid remember tokens instead of creating new ones
- Users who login with remember me checked get their token validity extended to 30 days from login
- Improves UX by keeping users logged in longer if they actively use the service

- Renamed vidai/email.py to vidai/email_utils.py to avoid conflict with built-in email module
- Updated import in payments.py
- This resolves the server startup issue caused by module shadowing

- Modified get_persistent_session to use SQL datetime functions for expiration check
- This ensures consistent time handling between database and application
- Fixes potential issues with time parsing

- Added sessions table to database for persistent session storage
- Modified SessionManager to use database instead of in-memory storage
- Added database functions for session management
- Remember me functionality now works across server reboots

- Added remember_tokens table to database
- Added functions to create, validate, and delete remember tokens
- Modified login route to set remember cookie when checkbox is checked
- Added before_request handler to auto-login from remember cookie
- Modified logout to clear remember cookie and delete token
- Cookie expires in 30 days

- Remove the entire Quick Actions section from dashboard.html
- Simplifies dashboard interface to show only stats and recent jobs
- Users can still access features through navbar links

- Wrap Train link with admin role check in base.html
- Regular users can no longer see/access the Train page from navbar
- Maintains existing admin access to training functionality

- Change closeTokenModal() to redirect to /api_tokens instead of reload
- Prevents POST resubmission when closing generated token modal
- Avoids 'token name already exists' error on close

- Change JWT_SECRET_KEY fallback from hardcoded to get_config('jwt_secret_key')
- Allows configuration through database instead of code changes
- Maintains environment variable priority

- Update token format to 'XVDAI_' + 26-char hex random part
- Total token length exactly 32 characters
- Maintain JWT mapping for security