- Add PKCE service with RFC 7636 compliance (S256 and plain methods)
- Implement OAuth authorization controller with CSRF protection
- Add comprehensive security testing (SQL injection, XSS, DoS protection)
- Create 44+ tests across 6 test files with 100% pass rate
- Implement public/confidential client support with PKCE enforcement
- Maintain full backward compatibility with existing password grant flow
Implement a new filter parameter 'annotations' for the GET /api/entries endpoint
that allows filtering entries based on whether they have annotations. When
annotations=1, only entries with one or more annotations are returned. When
annotations=0, only entries without annotations are returned. This feature
enables users to easily find annotated content through the API.
