Password Resets: Ignore magic link visits from bots

For #108. Literally just searches the useragent for "Bot", seems good enough for Telegram atleast.
2026-01-18 16:47:42 +01:00 · 2021-05-29 19:24:00 +01:00
parent fb6256d1ed
commit 953a66ec47
2 changed files with 33 additions and 23 deletions
--- a/pwreset.go
+++ b/pwreset.go
@@ -54,10 +54,12 @@ func pwrMonitor(app *appContext, watcher *fsnotify.Watcher) {
 				var pwr PasswordReset
 				data, err := os.ReadFile(event.Name)
 				if err != nil {
+					app.debug.Printf("PWR: Failed to read file: %v", err)
 					return
 				}
 				err = json.Unmarshal(data, &pwr)
 				if len(pwr.Pin) == 0 || err != nil {
+					app.debug.Printf("PWR: Failed to read PIN: %v", err)
 					return
 				}
 				app.info.Printf("New password reset for user \"%s\"", pwr.Username)