zedfrigg/bookwyrm
1
0
Fork 0
Code Activity

Update password reset copy so as not to reveal whether the email exists

Browse source 
A malicious user could use this to test which email addresses are in the
user database.
This commit is contained in:
Mouse Reeve 2022-07-06 19:34:00 -07:00
parent 96bf99034c
commit fd5e513ad6
3 changed files with 10 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

2
bookwyrm/settings.py
View file

@ -11,7 +11,7 @@ from django.utils.translation import gettext_lazy as _
env = Env()
env.read_env()
DOMAIN = env("DOMAIN")
VERSION = "0.4.1"
VERSION = "0.4.2"
RELEASE_API = env(
"RELEASE_API",