Harden auth flows and add backend quality gate

2026-03-04 12:57:42 +13:00
parent 1ad4823830
commit c6bc31f27e
24 changed files with 811 additions and 137 deletions
--- a/backend/app/services/password_reset.py
+++ b/backend/app/services/password_reset.py
@@ -112,6 +112,9 @@ async def _fetch_all_seerr_users() -> list[dict]:

 def _resolve_seerr_user_email(seerr_user: Optional[dict], local_user: Optional[dict]) -> Optional[str]:
    if isinstance(local_user, dict):
+        stored_email = str(local_user.get("email") or "").strip()
+        if "@" in stored_email:
+            return stored_email
        username = str(local_user.get("username") or "").strip()
        if "@" in username:
            return username