Fix dashboard static assets and add client e2e scripts

docs/gateway-process-design.md

@@ -682,7 +682,7 @@ SameSite, and scoped with the `__Host-MxGatewayDashboard` name. Logout clears
 that cookie. Login and logout posts use anti-forgery validation, and dashboard
 API keys are not accepted in query strings. `Dashboard:AllowAnonymousLocalhost`
 allows only loopback requests to bypass the dashboard cookie requirement and
-defaults to `false`.
+defaults to `true`.
 
 Recommended scopes:
 
@@ -861,7 +861,7 @@ Suggested configuration shape:
       "Enabled": true,
       "PathBase": "/dashboard",
       "RequireAdminScope": true,
-      "AllowAnonymousLocalhost": false,
+      "AllowAnonymousLocalhost": true,
       "SnapshotIntervalMilliseconds": 1000,
       "RecentFaultLimit": 100,
       "RecentSessionLimit": 200,