Update Dockerfile

Dockerfile

@@ -39,7 +39,7 @@ RUN mkdir -p /app/media/imports /app/staticfiles /app/logs
 # Create custom settings for no-auth mode
 RUN echo 'from .settings import *\n\
 \n\
-# Disable authentication requirements\n\
+# Disable authentication requirements but keep auth apps for model dependencies\n\
 REST_FRAMEWORK = {\n\
     "DEFAULT_AUTHENTICATION_CLASSES": [],\n\
     "DEFAULT_PERMISSION_CLASSES": [\n\
@@ -69,24 +69,28 @@ CACHES = {\n\
     }\n\
 }\n\
 \n\
-# Disable user-related middleware\n\
+# Keep auth middleware but disable auth requirements\n\
 MIDDLEWARE = [\n\
     "corsheaders.middleware.CorsMiddleware",\n\
     "django.middleware.security.SecurityMiddleware",\n\
     "django.contrib.sessions.middleware.SessionMiddleware",\n\
     "django.middleware.common.CommonMiddleware",\n\
     "django.middleware.csrf.CsrfViewMiddleware",\n\
+    "django.contrib.auth.middleware.AuthenticationMiddleware",\n\
     "django.contrib.messages.middleware.MessageMiddleware",\n\
     "django.middleware.clickjacking.XFrameOptionsMiddleware",\n\
 ]\n\
 \n\
-# Remove auth-related apps\n\
+# Keep all apps installed to avoid model dependency issues\n\
 INSTALLED_APPS = [\n\
+    "django.contrib.admin",\n\
+    "django.contrib.auth",\n\
     "django.contrib.contenttypes",\n\
     "django.contrib.sessions",\n\
     "django.contrib.messages",\n\
     "django.contrib.staticfiles",\n\
     "rest_framework",\n\
+    "rest_framework.authtoken",\n\
     "corsheaders",\n\
     "ocr_app",\n\
 ]\n\
@@ -110,7 +114,7 @@ from django.views.generic import TemplateView\n\
 from django.contrib.staticfiles.urls import staticfiles_urlpatterns\n\
 \n\
 urlpatterns = [\n\
-    # API endpoints (no auth required)\n\
+    # API endpoints (no auth required - permissions handled by settings)\n\
     path("api/", include("ocr_app.urls")),\n\
     \n\
     # Frontend routes (single-page application)\n\
@@ -139,6 +143,16 @@ export DJANGO_SETTINGS_MODULE=vlamy_ocr.settings_no_auth\n\
 # Replace the main urls.py with no-auth version\n\
 cp /app/vlamy_ocr/urls_no_auth.py /app/vlamy_ocr/urls.py\n\
 \n\
+# Run migrations for in-memory database (required for each startup)\n\
+python manage.py migrate --noinput\n\
+\n\
+# Create a default anonymous user for the session\n\
+python manage.py shell -c "\n\
+from django.contrib.auth.models import User;\n\
+if not User.objects.filter(username=\"anonymous\").exists():\n\
+    User.objects.create_user(\"anonymous\", \"[email protected]\", \"anonymous\")\n\
+"\n\
+\n\
 # Start the Django development server\n\
 python manage.py runserver 0.0.0.0:$PORT\n\
 ' > /app/start.sh && chmod +x /app/start.sh