- Make ExpiresAt optional in CBOR (omitempty) for smaller tokens - Treat ExpiresAt=0 as 'never expires' in parser - URL-encode token with url.PathEscape() for safety - Add 'Never' as default TTL option in generator form
Login page, logout, URL generator form, and /v1/e/{token} endpoint for serving images from encrypted URLs.
