Obsidian-ai-miniserver

- **Docker: persistent config** — all state in a `/data` volume; no `--vault` args needed
- **Lazy sync manager** — sync starts automatically when credentials are saved via web UI
- **Config page diagnostics** — shows sync status messages when vaults exist but sync isn't running
- **Security** — generated admin token no longer printed to stdout

- **Multi-vault support**: Serve multiple Obsidian vaults from one server
- `--vault name:path` repeatable CLI option to register vaults
- Vault-aware path format: `vaultname:path` in all requests
- Wildcard paths (`*:` or empty) operate across all vaults
- Cross-vault file moves
- Combined, sorted, paginated results across vaults
- **Central config**: Config stored in platform app support dir (not inside vault)
- `--config` flag to override config file location
- First run generates admin token and prints to stdout
- **Web UI vault management**: New /vaults, /vaults/add, /vaults/<name> pages
- **Admin API for vaults**: New `upsert_vault` request kind
- **Breaking changes**:
- CLI: positional vault_path removed, use `--vault name:path`
- API: `get_vault_info` → `get_vault_info` (response shape changed)
- API: `files_list` and `search_results` now keyed by vault name
- Config format completely changed (no migration from v0.3.x)

Changed

- Removed `Batch` request and `BatchResponse` — batching is now implicit at the endpoint level (send `list[ServerRequest]`, get `list[ServerResponse]`)
- `MoveFile.new_path` is now optional (`str | None`, default `None`); omit to delete instead of setting to `""`
- Minimized all request docstrings for lower token count
- OpenAPI schema simplified: endpoint accepts `ObsidianBody` (JSON string) and returns raw `Response`
- Fixed `tool_prompt.md` links in README to use absolute raw GitHub URLs (required for PyPI rendering)

Fixed

- Token input now shows the actual token value on user pages (was always empty)
- Added "Copy" button next to token field for clipboard copying
- Add User page now pre-generates a token so admins can copy it before saving
- Contextual hint text: new users see "Copy or overwrite the autogenerated token", existing users see "Copy before changing. Clear to keep current token."

Changed

- Combined server architecture: single port serves `/api`, `/web`, and `/mcp`
- New CLI args: `--port`, `--fqdn`, `--base_path` (replacing `--openapi-port` and `--mcp-port`)
- ServerConfig simplified to: `address`, `port`, `fqdn`, `base_path`

Added

- Web UI admin interface at `/web/`
- Login/logout with cookie-based auth
- Home page with vault info
- Config page showing server settings
- Users page listing all users
- User edit page with access rule management
- Add user page
- New file: `src/obs_ai_ms/webui.py` — HTML rendering via fstrings
- Web routes mounted in `entry.py` under `/web/`
- Screenshot generation via `scripts/update_screenshots.py`
- README updated with screenshots from `docs/images/`
- `docs/images/` directory for committed screenshots

Added

- Environment variable support for all CLI options (`OBS_AI_MS_HOST`, `OBS_AI_MS_PORT`)
- Self-contained `docker-compose.yaml` for headless deployment with Obsidian Headless sync CLI
- Headless deployment section in README