HuajunGao 6fb8421000 fix(config): restore sensitive fields before saving to prevent credential overwrite ...

When GET /config/get returns config to the frontend, sensitive fields
(password, token, api_key, secret) are masked as '********'.  If the
user changes any non-sensitive setting (e.g. ssl: true → false) and
saves, the frontend sends back the masked placeholder verbatim.  The
backend was saving it directly, overwriting the real credential with
the literal string '********', breaking authentication silently.

Add _restore_sensitive() to substitute any '********' placeholder with
the current in-memory value before writing to disk.  Non-sensitive
fields and genuinely new values are unaffected.

Fixes #995

2026-02-28 11:40:25 +11:00

..

.vscode

…

scripts

…

src

fix(config): restore sensitive fields before saving to prevent credential overwrite

2026-02-28 11:40:25 +11:00

.pre-commit-config.yaml

…

dev.sh

…

pyproject.toml

…

uv.lock

fix(downloader): fix qBittorrent SSL connection and rename verification (#923)

2026-02-24 19:52:50 +01:00