* apparently, the previous config-based approach stopped working

* use blueprint entrypoint instead of initializing it in the extension
* move finalize_app code into a new separate module

* so that we can react in case the original author doesn't have access
  to their account anymore
* and also so that we can measure the amount of spam

* if a user has permission to preview a draft but not to edit it, we now
  redirect them to the preview page instead of rendering the "permission
  denied" error

* that eliminates the necessity to open up colab just to copy the text
  again
* also, it automatically pre-fills the proper names in the template

* this usually happens when the search engine isn't ready yet after a
  redeployment

* replace the network request to doi.org

* as a fallback, initialize a new one

* records can only have a single owner in v12

* also, allow Flask 2.3+

* apparently it's not always initialized

* starting with Invenio-Config-TUW 2024.1.1, the TISS ID is stored in
  the user profile

* lists some user information: name, email, curation consent setting,
  and TISS ID
* allows adding and removing the "trusted-user" role
* of course, only accessible for admins

* Fixes errors caught by pytest-black

* this behavior can be controlled via a configuration flag
* it's disabled per default because it could be used to spam the inbox
  of arbitrary email addresses

* with a default of 5 attempts per hour
* this should be enough for legitimate requests, even with failed
  attempts (i.e. captcha mismatches) but still prevent spam floods
* also, hide the contact form for users when viewing their own records'
  landing pages

* this is possible since we configured sending of emails from the
  backend
* it replaces the current implementation of "contact uploader" that
  worked via "mailto" links, which was suboptimal because it exposes
  email addresses to the public
* it is also optionally protected via a captcha as a simple spam
  prevention mechanism that also prevents accidental resubmission of the
  form on refresh

* this caused issues on the draft preview page
* when a draft didn't have a published record with the same ID, the new
  filters couldn't find any results and an exception would be raised
* this exception was caught by the registered error handlers and masked
  as 404

* via custom jinja filters for resolving the record and its first owner

* Add 2 extra logos with their respective links
* Apply styling
* Add static images: Use webp format and png format to have a reference for the original images
* Add an extra route for terms of use, instead of the external pdf link
* Update pdf links: use external links, instead of serving them locally

* instead, we override the app's config in a way that evaluates the
  SITE_{API,UI}_URL values and casts them to strings
* because we have configured these values as LocalProxy objects with
  some logic for dynamically calculating the URLs based on the HTTP
  request context instead of plain strings, we sometimes ran into typing
  issues
* the above mentioned logic helps us with having multiple valid domain
  names (and generating valid links based on which is being visited)

* they're now passing custom_fields

* Searchbar now includes total record count in its placeholder
* Style enhancements to make placeholder text more noticeable

* to support having the 'SITE_UI_URL' config value be a 'LocalProxy'
  object instead of a plain string

* to make it clearer which templates replace existing ones, and which
  are "new" templates

* create a new permission guard page for creation of communities
* move the templates into their own subdirectory
* update the text on the existing deposit page guard

Tsepelakis, Sotirios authored 2 years ago and Moser, Maximilian committed 2 years ago

* also replace use of 'user.profile' with 'user.user_profile' in
  deposit guard page