Fix OAuth user password flow and add VPS deploy docs

- Add password_set field to track if user explicitly set their password
- OAuth users can now set a password without knowing the random one
- Add OAuthAwareChangePasswordForm for proper server-side validation
- Add Ignite one-click VPS deploy instructions to README
- Bump version to 13.1.0

Switch to email-only authentication

- Replace username login with email-based authentication
- Fix password change not persisting after form submission
- Add flash message styling with CSS classes
- Add display_name property to User model
- Update CLI commands to use --email flag

BREAKING: Users must now log in with email instead of username

v12.1.0 - Two-Factor Authentication & WebAuthn

New Features:
- Two-factor authentication with TOTP authenticator apps
- WebAuthn/passkey support for passwordless login
- Hardware security key support (YubiKey, etc.)
- Recovery codes for account backup
- Session management with optional single-session mode

Templates:
- New login-layout.html for unauthenticated security pages
- Complete 2FA setup and verification flow
- WebAuthn registration and authentication
- Recovery code management

Configuration:
- DISABLE_MULTIPLE_SESSIONS option in .env
- SECURITY_WEBAUTHN enabled by default

UI overhaul: collapsible nav, dark mode, Tabler icons, ember theme

Modern Docker setup with non-interactive flask install

Release v11.3.0 - Lite/Full mode, Claude Code skill

Version 11.2.0 - Docker Improvements

feat: Migrate from pip/venv to uv for package management

v11.0: User/roles improvements, activity tracking, OpenAI removal in …

…favor of Cursor Rules

Merge branch 'oauth'